Burp Scanner is a state-of-the-art vulnerability scanner for web applications. It is designed with security testers in mind, to integrate closely with your existing techniques and methodologies for manual and automated testing.
Unlike other scanners, Burp gives you fine-grained control over which items get scanned. You can use the Scanner in various ways:
[SS scan host from site map]
Burp Scanner gives you real-time feedback about each item that is scanned, so you can use it to guide your manual testing, without needing to wait for an entire scan to complete:
[SS scan queue with some results, and context menu "show details" option]
Burp produces detailed customized advisories for every reported issue, highlighting any unusual features of the vulnerability, with tailored remediation advice:
[SS XSS advisory with some interesting features]
Burp's scanning engine is highly mature and accurate, having been used in the field for many years by thousands of security professionals. Numerous independent surveys have testified to Burp's effectiveness:
[SS of report table / blog showing performance vs price]