Customer case study

OSRAM

Burp Suite Professional in the industrial manufacturing sector.

Introduction

OSRAM is a global corporation based in Munich, with operations based in over 120 countries. It is listed on both the Frankfurt and Munich stock exchanges, and has over 26,000 employees worldwide. It is a high-tech global operation producing semiconductor-based technologies with a wide variety of applications.

Use case

Burp Suite Professional is important to OSRAM because it allows them to:

Secure the software they rely on to run their business.
Secure the software/services they sell to customers, thus ensuring uptime and maintaining the trust of their customers.

Key features

Burp Suite Professional has a number of key features that are used by OSRAM:

Burp Intruder, to automate customized attacks.
Burp Scanner, to automate searching for bugs.
The wide array of manual tools Burp Suite Professional puts in one product.

[Burp Suite] has been my standard tool for some years now when it comes to web app testing. No other tool that I know of is so flexible and offers the functionality in one suite.

Jan Muenther

Application Security Manager

Challenges

OSRAM purchased Burp Suite Professional to allow their security engineer(s) to test their organization's own web applications.

For me it's a baseline. I use it to ensure I haven't missed anything obvious and to ensure I got all the low-hanging fruits covered.

Jan Muenther

Application Security Manager

Benefits

OSRAM finds that it gains a number of benefits from using Burp Suite Professional:

Discovering harder to find vulnerabilities.
It has all the features they need in one product.
PortSwigger are web security experts and their toolkit can catch critical bugs.

98% of surveyed penetration testers are likely to recommend Burp Suite Professional. ^{Source: TechValidate survey of PortSwigger customers}

Value statements

Jan Muenther - an application security manager at OSRAM - agreed with the following statements:

I perform my job more effectively by using Burp Suite.
Burp Suite's scanning technology helps me catch more vulnerabilities faster.
Burp Suite is great value for money.
Burp Suite helps to keep my business secure.
Burp Suite is "best in class" software.

Final thoughts

OSRAM had the following to share on its experience with Burp Suite Professional:

Given that Burp Scanner detects the latest web vulnerability types discovered by PortSwigger Research, it has been valuable to their ability to catch vulnerabilities that they cannot with other tools.
Resources like PortSwigger Research and the Web Security Academy mean PortSwigger are the experts I'd recommend to anyone wanting to expand their cybersecurity capabilities.

About Burp Suite Professional

Burp Suite Professional is an advanced set of tools for testing web security - all within a single product. From a basic intercepting proxy to a cutting-edge vulnerability scanner, with Burp Suite Pro, the right tool is never more than a click away.

Customer case study

OSRAM

Burp Suite Professional in the industrial manufacturing sector.

Introduction

Use case

Key features

Challenges

Benefits

Value statements

Final thoughts

About Burp Suite Professional

Product Overview

Features

Try for free

Get started for free

The most widely used application security toolkit