Burp Suite Free Edition contains the following web application testing functions:
- Inspect and modify traffic between the browser and the target application, using the intercepting Proxy.
- Crawl application content and functionality, with the application-aware Spider.
- Manipulate and resend individual requests, using the Repeater tool.
- Benefit from various other handy utilities for analyzing and decoding application data.
Additional features are available with the paid additions.
Paid addition Required for - Burp Suite Professional. See here for point by point differences http://portswigger.net/burp/download.html You can:
- Automatically probe for security flaws, with the state-of-the-art web application Scanner.
- Discover and exploit complex and unusual vulnerabilities, using the Intruder tool to deliver powerful customized attacks.
- Save your Burp session and resume working later.
- Benefit from numerous high-value features, including search, target analysis, content discovery, and task scheduling.
- Receive frequent product updates and earlier access to new releases.