Case Study: California Polytechnic State University automates web vulnerability scanning with PortSwigger Burp Suite DAST

California Polytechnic State University Burp Suite Enterprise Edition in the education sector

California Polytechnic State University (Cal Poly) sought to enhance its application security by automating its web vulnerability scanning process. This would free its dedicated AppSec team from manual tasks, allowing them to focus on more critical security initiatives and integrate testing earlier into the software development lifecycle. To address this, the university turned to PortSwigger and implemented Burp Suite DAST.

By using PortSwigger's Burp Suite DAST, Cal Poly automated its security scanning, which provided greater coverage across its entire web portfolio. The solution enabled the team to catch critical vulnerabilities, reduce risk, and provide faster feedback to software engineers. The university also realized cost savings by replacing prior web vulnerability scanners. According to their CISO, the PortSwigger solution allows the AppSec team to spend their time where it is most valuable, and the university plans to increase its use of the software in the future.

California Polytechnic State University