Burp Suite is described as 'Integrated platform for performing security testing of web applications. Its various tools work seamlessly together to support the entire testing process, from initial mapping and analysis of an application's attack surface, through to finding and exploiting' and is a vulnerability scanner in the security & privacy category. There are more than 25 alternatives to Burp Suite for a variety of platforms, including Windows, Linux, Mac, Web-based and iPhone apps. The best Burp Suite alternative is mitmproxy, which is both free and Open Source. Other great apps like Burp Suite are Zed Attack Proxy (ZAP), Fiddler, SiteOne Crawler and HTTP Toolkit.
mitmproxy is an SSL-capable man-in-the-middle proxy for HTTP. It provides a console interface that allows traffic flows to be inspected and edited on the fly. It also features mitmdump, a commandline tool that provides a tcpdump-like interface for saving, viewing and...
The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications.
Web Debugging Proxy that logs all HTTP(S) traffic for comprehensive analysis. It allows manipulation of traffic, supports scripting, and extends with .NET. Debugs virtually any application, implementing man-in-the-middle interception with self-signed certificates. Freeware, ideal for developers.
A free in-depth website analyzer providing audits of security, performance, SEO, accessibility and other technical aspects. Available as a desktop application for Windows/macOS/Linux and as a CLI tool for advanced users and CI/CD processes. It also includes an offline web page exporter.
HTTP Toolkit is a beautiful, cross-platform & open-source HTTP(S) debugging proxy, analyzer & client, with built-in support for modern tools and automatic interception for clients from Docker to Android to iOS.
Charles is an HTTP proxy / HTTP monitor / Reverse Proxy that enables a developer to view all of the HTTP and SSL / HTTPS traffic between their machine and the Internet. This includes requests, responses and the HTTP headers (which contain the cookies and caching information).
Proxyman is a high-performance macOS app, which enables developers to view HTTP/HTTPS requests from apps and domains. Available on macOS, iOS, Windows & Linux.
Caido is a cutting-edge web application security tool that enables users to efficiently identify and assess potential vulnerabilities in their web applications. It can be easily integrated into both personal and enterprise environments, making it adaptable to a wide range of...
Netsparker is the only False-positive-free web application security scanner. Simply point it at your website and it will automatically discover the flaws that could leave you dangerously exposed.
Audit your website security and web applications for SQL injection, Cross site scripting and other web vulnerabilities with Acunetix Web Security Scanner. Download Free Edition!
Astra’s Pentest is a comprehensive penetration testing solution with an intelligent automated vulnerability scanner coupled with in-depth manual pentesting.
Intruder is a security monitoring platform for internet-facing systems.
Intruder provides an easy to use security solution which continually scans your digital assets, highlighting vulnerabilities and outlining remediation advice in simple terms.
United States
Czechia
EU
Spain
New Zealand
United Kingdom
India
this is a scanner not a proxy used for manual app testing