I am not familiar with WebInspect, but i use burp pro every day, and the more i rely on it, the more features i discover (even after multiple years of use).
It is so much more than only a proxy. You can actively or passively scan webapplications, compare requests, use the intruder to perform brute forcing, it even has a compare function for sessions to check for randomness in the received session identifier. Heck, it even helps you spider the website, and if you use the active scanner it will find sql injections, xss, path traversals etc. so you can even use it as an automated tool.
Viewing 1 reply thread
You must be logged in to reply to this topic.
– EH-Net Live!Thurs Oct 29 @ 1:00 PM US ET. Details Coming Soon!