Open Source Burp Suite AlternativesTop Vulnerability Scanners and other similar apps like Burp Suite
The best open source alternative to Burp Suite is mitmproxy. If that doesn't suit you, our users have ranked more than 25 alternatives to Burp Suite and six of them is open source so hopefully you can find a suitable replacement. Other interesting open source alternatives to Burp Suite are OWASP Zed Attack Proxy (ZAP), w3af, PETEP and Tamper Data.
Burp Suite alternatives are mainly Vulnerability Scanners but may also be Penetration Testing Tools or HTTP(S) Debuggers. Filter by these if you want a narrower list of alternatives or looking for a specific functionality of Burp Suite.mitmproxy is an SSL-capable man-in-the-middle proxy for HTTP. It provides a console interface that allows traffic flows to be inspected and edited on the fly. It also features mitmdump, a commandline tool that provides a tcpdump-like interface for saving, viewing and...
- - mitmproxy is the most popular Mac & Linux alternative to Burp Suite.
- - mitmproxy is the most popular Open Source alternative to Burp Suite.
Opinions about mitmproxy as a Alternative to Burp Suite
- 31 OWASP Zed Attack Proxy (ZAP) alternatives
- Free • Open Source
- Penetration Testing Tool
- Mac
- Windows
- Linux
The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications.
OWASP Zed Attack Proxy (ZAP) Features
Opinions about OWASP Zed Attack Proxy (ZAP) as a Alternative to Burp Suite
w3af is a Web Application Attack and Audit Framework.
- 7 PETEP alternatives
- Free • Open Source
- Penetration Testing Tool
- Mac
- Windows
- Linux
PETEP (PEnetration TEsting Proxy) is open-source Java application for network communication proxying for the purpose of penetration testing. It allows penetration testers to setup proxies (TCP, UDP) and interceptors to manage the traffic transmitted between client and server.
Firefox add-on that lets you change headers and request parameters before they're sent to the server. Unlike proxy request modifiers, it's integrated into the browser, so it has no problem with HTTPS connections, client authentication certificates, or other features that...
Tamper Data Features
DiscontinuedThe extension is no longer developed since 2010 and it's not compatible with Firefox 57 and later. It still works on XUL-based Firefox forks like
Waterfox and
Pale Moon
- 18 nuclei alternatives
- Free • Open Source
- Vulnerability Scanner
- Mac
- Windows
- Linux
Nuclei is used to send requests across targets based on a template, leading to zero false positives and providing fast scanning on a large number of hosts. Nuclei offers scanning for a variety of protocols, including TCP, DNS, HTTP, SSL, File, Whois, Websocket, Headless etc.
nuclei Features