Open Source Burp Suite AlternativesTop Vulnerability Scanners and other similar apps like Burp Suite
The best open source alternative to Burp Suite is mitmproxy. If that doesn't suit you, our users have ranked more than 25 alternatives to Burp Suite and seven of them is open source so hopefully you can find a suitable replacement. Other interesting open source alternatives to Burp Suite are OWASP Zed Attack Proxy (ZAP), SiteOne Crawler, HTTP Toolkit and w3af.
filter to find the best alternatives
Burp Suite alternatives are mainly Web Debuggers, but if you're looking for Vulnerability Scanners or HTTP(S) Debuggers you can filter on that. These are just examples - use the filter bar below to find more specific alternatives to Burp Suite.- Vulnerability Scanner
- Freemium • Proprietary
- 17 mitmproxy alternatives
mitmproxy is an SSL-capable man-in-the-middle proxy for HTTP. It provides a console interface that allows traffic flows to be inspected and edited on the fly. It also features mitmdump, a commandline tool that provides a tcpdump-like interface for saving, viewing and...
License model
- Free • Open Source
Application types
Platforms
- Mac
- Windows
- Linux
- Flathub
- Flatpak
mitmproxy Features
- 30 OWASP Zed Attack Proxy (ZAP) alternatives
The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications.
License model
- Free • Open Source
Application types
Platforms
- Mac
- Windows
- Linux
OWASP Zed Attack Proxy (ZAP) Features
- 26 SiteOne Crawler alternatives
A free in-depth website analyzer providing audits of security, performance, SEO, accessibility and other technical aspects. Available as a desktop application for Windows/macOS/Linux and as a CLI tool for advanced users and CI/CD processes. It also includes an offline web page exporter.
License model
- Free • Open Source
Application types
Country of Origin
Czechia
EU
Platforms
- Mac
- Windows
- Linux
Top SiteOne Crawler Features
- 48 HTTP Toolkit alternatives
HTTP Toolkit is a beautiful, cross-platform & open-source HTTP(S) debugging proxy, analyzer & client, with built-in support for modern tools and automatic interception for clients from Docker to Android to iOS.
License model
- Freemium • Open Source
Application types
Country of Origin
Spain
EU
Platforms
- Mac
- Windows
- Linux
- Android
- iPhone
- Docker
License model
- Free • Open Source
Country of Origin
United States
Platforms
- Windows
- Linux
- 21 nuclei alternatives
Nuclei is used to send requests across targets based on a template, leading to zero false positives and providing fast scanning on a large number of hosts. Nuclei offers scanning for a variety of protocols, including TCP, DNS, HTTP, SSL, File, Whois, Websocket, Headless etc.
License model
- Free • Open Source
Application type
Country of Origin
United States
Platforms
- Mac
- Windows
- Linux
nuclei Features
- 8 Tamper Data alternatives
Firefox add-on that lets you change headers and request parameters before they're sent to the server. Unlike proxy request modifiers, it's integrated into the browser, so it has no problem with HTTPS connections, client authentication certificates, or other features that...
License model
- Free • Open Source
Application type
Country of Origin
United Kingdom
Platforms
- Mac
- Windows
- Linux
- Firefox