We performed a comparison between Coverity and PortSwigger Burp Suite Professional based on real PeerSpot user reviews.
Find out in this report how the two Application Security Testing (AST) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."This solution is easy to use."
"Coverity gives advisory and deviation features, which are some of the parts I liked."
"We were very comfortable with the initial setup."
"It provides reports about a lot of potential defects."
"The solution effectively identifies bugs in code."
"The app analysis is the most valuable feature as I know other solutions don't have that."
"It is a scalable solution."
"The solution has improved our code quality and security very well."
"The feature that we have found most valuable is that it comes with pre-set configurations. They have a set of predefined options where you can pick one and start scanning. We also have the option of creating our own configurations, like how often do the applications need to be scanned."
"The solution has a limited range of functions, which is good for small companies. This is because, in small companies, websites are less complex. They also have single services which makes the solution good enough for them. However, the most advantageous aspect of the solution is its affordable price."
"The extension that it provides with the community version for the skills mapping is excellent."
"PortSwigger Burp Suite does not hamper the node of the server, and it does not shut down the server if it is running."
""The product is very good just the way it is; It has everything already well established and functions great. I can't see any way for this current version to be improved.""
"The automated scan is what I find most useful because a lot of customers will need it. Not every domain will be looking for complete security, they just need a stamp on the security key. For these kinds of customers, the scan works really well."
"With the Extender Tab, if you know how to code then you can create a plugin and add it to Burp."
"It's good testing software."
"Coverity takes a lot of time to dereference null pointers."
"The quality of the code needs improvement."
"Coverity is not stable."
"Ideally, it would have a user-based license that does not have a restriction in the number of lines of code."
"It would be great if we could customize the rules to focus on critical issues."
"Sometimes it's a bit hard to figure out how to use the product’s UI."
"The solution is a bit complex to use in comparison to other products that have many plugins."
"The product could be enhanced by providing video troubleshooting guides, making issue resolution more accessible. Troubleshooting without visual guides can be time-consuming."
"BurpSuite has some issues regarding authentication with OAT tokens that need to be improved."
"The biggest drawback is reporting. It's not so good. I can download them, but they're not so informative."
"The solution doesn't offer very good scalability."
"The Burp Collaborator needs improvement. There also needs to be improved integration."
"The price could be better. The rest is fine."
"Scanning needs to be improved in enterprise and professional versions."
"Currently, the scanning is only available in the full version of Burp, and not in the Community version."
"The Auto Scanning features should be updated more frequently and should include the latest attack vectors."
More PortSwigger Burp Suite Professional Pricing and Cost Advice →
Coverity is ranked 4th in Application Security Testing (AST) with 33 reviews while PortSwigger Burp Suite Professional is ranked 5th in Application Security Testing (AST) with 55 reviews. Coverity is rated 7.8, while PortSwigger Burp Suite Professional is rated 8.6. The top reviewer of Coverity writes "Best SAST tool to check software quality issues". On the other hand, the top reviewer of PortSwigger Burp Suite Professional writes "The solution is versatile and easy to deploy, but it needs to give more detailed security reports". Coverity is most compared with SonarQube, Klocwork, Fortify on Demand, Checkmarx One and Veracode, whereas PortSwigger Burp Suite Professional is most compared with OWASP Zap, Fortify WebInspect, Acunetix, HCL AppScan and Qualys Web Application Scanning. See our Coverity vs. PortSwigger Burp Suite Professional report.
See our list of best Application Security Testing (AST) vendors.
We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.