sai212018 PE Forty -vs- Portswigger Burp Suite - FireCompass Fire Compass Home / Markets / AST | Comparisions of Application Security Testing products HPE Fortify -vs- Portswigger Burp Suite = excise © Be Appservo™ Fortify Burp Suite © Cigitalgital ast Contact Vendor Vendor Verified * v {P GerexéodeProfiler Deployment and performance © iF Dexcuard Available as a service v - Available as a tool v v e At Community SAST Checklist ncaaiewes Comprehensive v - @ Meet cernity programming & Scanner Scripting language support fb onmmas's" Check for correct v - Assess usage of security libraries Py Detectity Detect Logical flaws v - Vhitebae Remediation advice v v © LL" ntinel for vulnerabilities Product Family ‘API & framework v v ‘Appknox support © PPKNA, plication Scan non compiled v v Security code Scan compiled code v - BF Blueclosure Scan OWASP, SANS, v - CWE vulnerabilities ° Ou... was Cloud compiled & v _ Quatys ar hitpsiwww.frecompass.com/securty/comparlsonstappicalon-secuny-testing-aeihpe-foriy-ve-portswigge-burp-sute Asai212018 PE Forty -vs- Portswigger Burp Suite - FireCompass Fire Compass Scan dynamic v { v programming language Composite language v - scan support. Auto-detect v ~ composite applications General features Fully automated v v testing Manual testing v v Hybrid approach v v (manual & automatic) Support API-based - v scheduling of scans ? Robust remediation v v support Satisfy regulations v v such as HIPPA, PCI etc > Integrations Integration with IDE's v - Integration with QA v v tools Integration with Bug v v tracking tools Integration with WAF v v vendors Integration with v - MDM/EMM vendors DAST Checklist Detect Business logic v v flaws Test protected v v applications hntpsswwwfrecompass.comisecurty/comparlsonstappicalon-securiy-testing-astnpe-oriy-ve-porswigge-burpsulte Security Scanner X Promon SHIELD™ PRADEO 2 SECURITY - Mobile Application Security Testing Application SeSHL2187 Inerability b Assessment and Penetration Testing Vulnerability BS Fiesessment o and Penetration Testing App Scan Bandard ImmuniWeb® SA") Application ° Security Testing Platform © muesc/ParosPro © xmmsobOAtest © By Seeker © RAPIDFpPSpider 24sai212018 PE Forty -vs- Portswigger Burp Suite - FireCompass Fire Compass Test web services = { v Software Test for fuzzing & v v © pamoliuecoe” brute force attacks Sess Detects privileged v v tsparker access related Job vulnerabilities ° lication Supports Delta v v Security analysis Scanner HTTP v v request/response © F AuditMyApps analysis Signature based v v ° ‘App Scanner approach Family Detects OWASP top v v \dusGuard 10, WASC & SANS P tout, top 25 Vulnerabilities Webservers/application v v (oe Pechare ‘CXSAST server platforms vulnerabilities ymuniWeb® Checks COTS & OSS v v ° Jobile App vulnerabilities Scanner Detects data v v bp cere disclosure Enterprise vulnerabilities Detects application v v o $ SolaredAPPscreen DOS vulnerabilities Supports multiple v v © — Appthority application test in parallel Oa Mobile app security Test Supports SAST Support for Android Support for |OS Support for Windows aS 6 66 < Behavioral Analysis Supports DAST v ~ npn recompass.comisecury/comparlzons/appicaon- secur estng-ashpefory-e-prtswiggerburp-eute wusai212018 ‘Supports RASP For Vendors Terms of Service PE Forty -vs- Portswigger Burp Suite - FireCompass FireCompass v | - Copyright @ FireCompass Privacy Policy Management Careers About Write Review Blog Contact Us hitpssiwwwfrecompass.comisecurty/comparlsonstappicalon-secury-testing-asthpe-oriy-ve-porswigge-burpsute 44