PortSwigger
The leader in web application security, testing, and scanning.
Users
70,000+ in 160 countries
Web Security Academy Users
Millions
Customers
17,500+ businesses
About PortSwigger
PortSwigger is the company behind Burp Suite, the world's most widely used web application security testing software. Burp Suite is a graphical tool for testing web application security, available as a free Community Edition, a Professional edition for pentesters, and an Enterprise edition for scalable, automated scanning. The toolkit's various tools work together to support the entire testing process, from initial mapping and analysis of an application's attack surface, through to finding and exploiting security vulnerabilities. PortSwigger also runs the Web Security Academy, a free online training center for web application security, packed with articles, labs, and tutorials.
Product Suite
Burp Suite Community
Free, core manual tools for web application security testing.
Burp Suite Professional
The essential toolkit for web security professionals, including a powerful vulnerability scanner and advanced manual tools.
Burp Suite Enterprise
A scalable, automated web vulnerability scanner that integrates with CI/CD pipelines for DevSecOps.
Educational Resources
Web Security Academy
A free, online training platform with interactive labs to learn and practice web security skills.
Research
Cutting-edge research on web security vulnerabilities and techniques from PortSwigger's research team.
Blog
Daily web security news, articles, and technical write-ups.
Key Features
Scanner
Advanced DAST scanner for detecting a wide range of web vulnerabilities.
Proxy
Intercepting proxy to view, modify, and drop all traffic between the browser and the target application.
Extensibility
The BApp Store allows users to install extensions that add new functionality, written using the Burp Extender API.
Ci/Cd Integration
Enterprise Edition offers integrations with Jenkins, TeamCity, Jira, and more for automated security testing in development pipelines.