We performed a comparison between GitLab and PortSwigger Burp Suite Professional based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."CI/CD is very good. The version control system is also good. These are the two features that we use."
"It scales well."
"Of all available products, it was the easiest to use and easy to install."
"GitLab's best feature is Actions."
"I have found the most valuable features of GitLab are the GitClone, GitPush, GitPull, GitMatch, GitMit, GitCommit, and GitStatus."
"The best thing is that as the developers work on separate tasks, all of the code goes there and the other team members don't have to wait on each other to finish."
"For us, Gitlab's most valuable feature is the integration with Cypress. We're using Cypress as an automation tool, so we're using GitLab as a tool for running in parallel."
"The dashboard and interface make it easy to use."
"The most valuable feature of PortSwigger Burp Suite Professional is the advanced features, user-friendly interface, and integration with other tools."
"The most valuable feature of PortSwigger Burp Suite Professional is the Burp Intruder tool."
"The solution has a pretty simple setup."
"The active scanner, which does an automated search of any web vulnerabilities."
"For pentesting scenarios, this is the number one tool. It can capture the request, and there are so many functions that are very good for that. For example, a black box satellite host."
"PortSwigger Burp Suite Professional is one of the best user-friendly solutions for getting the proxy set up."
"The tool provides complimentary services. It allows you to add a lot of extensions, and you can get extensions quite often. It is quite a flexible application."
"You can scan any number of applications and it updates its database."
"The solution could improve by providing more integration into the CI/CD pipeline, an autocomplete search tool, and more supporting documentation."
"The integration could be slightly better."
"I would like to have some features to support peer review."
"I would like to see static analysis also embedded in GitLab. That would also help us. If there's something that it does internally by GitLab and then that is already tied up with your pipeline and then it can tell you that you're coding is good or your code is not great. Based on that, it would pass or fail. That should be streamlined. I would think that would help to a greater extent, in terms of having one solution rather than depending on multiple vendors."
"I used Spring Cloud config and to connect that to GitLab was so hard."
"The price of GitLab could improve, it is high."
"I believe there's room for improvement in the advanced features, particularly in enhancing the pipeline functionalities."
"The documentation could be improved to help newcomers better understand things like creating new branches."
"The biggest drawback is reporting. It's not so good. I can download them, but they're not so informative."
"As with most automated security tools, too many false positives."
"There is a lot to this product, and it would be good if when you purchase the tool, they can provide us with a more extensive user manual."
"There needs to be better documentation provided. Currently, we need to buy books, or we need to review online some use cases from other professionals who have been using the solution to find out their experience. It is not easy to find out how to properly do a security assessment."
"There could be an improvement in the API security testing. There is another tool called Postman and if we had a built-in portal similar to Postman which captures the API, we would be able to generate the API traffic. Right now we need a Postman tool and the Burp Suite for performing API tests. It would be a huge benefit to be able to do it in a single UI."
"There were a lot of false positives there, and we used to spend a lot of time, like, for security reasons, reproducing those bugs for the development team to fix it."
"PortSwigger Burp Suite Professional can improve by having more features in the free version for beginners to try."
"A lot of our interns find it difficult to get used to PortSwigger Burp's environment."
More PortSwigger Burp Suite Professional Pricing and Cost Advice →
GitLab is ranked 7th in Application Security Tools with 70 reviews while PortSwigger Burp Suite Professional is ranked 9th in Application Security Tools with 57 reviews. GitLab is rated 8.6, while PortSwigger Burp Suite Professional is rated 8.6. The top reviewer of GitLab writes "Powerful, mature, and easy to set up and manage". On the other hand, the top reviewer of PortSwigger Burp Suite Professional writes "The solution is versatile and easy to deploy, but it needs to give more detailed security reports". GitLab is most compared with Microsoft Azure DevOps, SonarQube, Bamboo, AWS CodePipeline and Tekton, whereas PortSwigger Burp Suite Professional is most compared with OWASP Zap, Fortify WebInspect, Acunetix, HCL AppScan and Digital.ai Application Security. See our GitLab vs. PortSwigger Burp Suite Professional report.
See our list of best Application Security Tools vendors, best Static Application Security Testing (SAST) vendors, and best Fuzz Testing Tools vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.