No more typing reviews! Try our Samantha, our new voice AI agent.

ESET Cloud Apps Protection vs JFrog Xray comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 9, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Qualys TotalCloud
Sponsored
Ranking in Vulnerability Management
11th
Average Rating
8.6
Reviews Sentiment
7.3
Number of Reviews
39
Ranking in other categories
Container Security (11th), Cloud Workload Protection Platforms (CWPP) (7th), Cloud Security Posture Management (CSPM) (8th), SaaS Security Posture Management (SSPM) (1st), Cloud-Native Application Protection Platforms (CNAPP) (6th)
ESET Cloud Apps Protection
Ranking in Vulnerability Management
70th
Average Rating
9.6
Reviews Sentiment
7.4
Number of Reviews
2
Ranking in other categories
Email Security (44th), Patch Management (29th)
JFrog Xray
Ranking in Vulnerability Management
43rd
Average Rating
7.8
Reviews Sentiment
6.3
Number of Reviews
10
Ranking in other categories
Container Security (16th), Software Composition Analysis (SCA) (7th), Software Supply Chain Security (3rd)
 

Mindshare comparison

As of July 2026, in the Vulnerability Management category, the mindshare of Qualys TotalCloud is 1.1%, up from 1.0% compared to the previous year. The mindshare of ESET Cloud Apps Protection is 0.5%, up from 0.1% compared to the previous year. The mindshare of JFrog Xray is 1.3%, down from 1.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Vulnerability Management Mindshare Distribution
ProductMindshare (%)
Qualys TotalCloud1.1%
JFrog Xray1.3%
ESET Cloud Apps Protection0.5%
Other97.1%
Vulnerability Management
 

Featured Reviews

RO
IT Security Expert at Alior Bank S.A.
Unified risk scoring has improved our cloud visibility and simplifies remediation priorities
Qualys TotalCloud provides unified vulnerability and threat assessment across both IAS and SaaS. This solution provides a single prioritized view of risk, which helps reduce the work I would have to do. We are no longer based on CVSS; we are based on Qualys risk scoring, which is based on CVSS plus internal findings made by Qualys, and then assigns its own score. The TruRisk insight feature has found a small number of assets with high vulnerability scores, though I am cautious since some information is classified. Qualys TotalCloud has positively impacted our bank's performance, and we have definitely seen benefits after implementing this solution.
LA
Team Manager at JJ soluciones
Great protection, good privacy, and helpful support
The only thing I would like is a way to open the email that is going to quarantine. Based on the level of security, they cannot open the email to check the message. Even for the administrator, you have to create a security copy to be sent, which will lock the log support. It's not easy for an admin to check and decide if the email is good or not. That is the only thing that I'm seeing could be improved. Basically, ESET doesn't have the ability to let the administrator release an email showing the message on the email. It's not possible. If you want to have an email review, you have to select an option to send a copy. In the way that they designed the system, for security, they are not letting anyone even have the admin privileges to make this happen. Privacy is at a really high level.
Anand Nanwana - PeerSpot reviewer
DevOps Engineer at Syvora
Offers flexibility across clouds and easy credential management while interface improvements are needed
For JFrog Xray, the Artifactory and package repositories are valuable features. There are many benefits from JFrog Xray. For example, with other registries such as ECR, we can use the images only in the AWS cloud. With JFrog, we can use this registry from any cloud or work locally as well. JFrog can support multiple packages, such as NuGet package, pip, and other technologies. It can be used for Terraform as well. The credential management is very easy in JFrog. For instance, when using GitHub action as a CI/CD tool, I just need to create a token and set up JFrog CLI there and give access to the repository. With multiple repositories, I can generate a token for a specific repository, add that token in the GitHub secret, fetch from the CI/CD, run the command JFrog CLI, and authenticate through the token. Then we can push the images into JFrog.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Generally, Qualys is very good at detections, whether on cloud or on-prem, and the agent allows deployment on both infrastructures, providing continuous monitoring of your assets, which is a key selling point for us."
"I would recommend Qualys TotalCloud to other users because it is cost-efficient and has a good return on investment."
"I would rate Qualys TotalCloud ten out of ten."
"I would definitely recommend it because it is easy to handle any cloud resources."
"The best features in Qualys TotalCloud include the total asset management of the cloud environment. It is very easy to export the report and see the vulnerabilities related to the cloud specifically."
"CSPM is currently the most used feature, and we are enjoying the new feature, FlexScan, which is valuable for Internet-facing VMs."
"We were able to realize its benefits within 24 to 48 hours."
"I like the web API security and IoT scanning features the most. The user-friendly design of TotalCloud's interface enables customers to navigate it and use its full potential easily"
"The most valuable features are the precision of detection and the level of customization of the policy."
"It's a trustworthy solution that is easy to learn."
"We are close to having 99% or 98% detection."
"JFrog Xray's reporting feature has a lot of options in it, including scanning."
"Good reporting functionalities."
"The solution is stable and reliable."
"If multiple dependencies and vulnerabilities are found in a project, JFrog Xray is intelligent enough to tell you which vulnerability to target first."
"The most valuable feature of JFrog Xray is the display of the entire internal dependencies hierarchy."
"The most valuable features of JFrog Xray are its curation capabilities, its native integration with Artifactory, scanning for vulnerabilities, and license compliance features."
"I am utilizing the deep scanning capabilities in JFrog Xray product, and this feature is very handy because with other software, you don't know where the bad dependencies come from."
"JFrog Xray shows us a list of vulnerabilities that can impact our code."
 

Cons

"In a future release, I suggest that zero-day vulnerabilities should be predicted in advance using AI technologies. The system is not 100% secure yet, so proactive threat hunting could be enhanced to be more proactive than the current system."
"Regarding technical support from Qualys, they respond, but the response time can be too long. Sometimes we need to wait weeks for solutions to simple questions."
"A feature improvement could be the inclusion of Windows OS support for container security, as it is currently only supported for Linux."
"The patching process with Qualys Patch Management, which is part of TotalCloud, does not cover installing certain prerequisites on the servers or workstations. This shortcoming means we must rely on SCCM when any service stack updates or additional prerequisites are needed."
"I sometimes have difficulty detecting or uninstalling certain versions of applications, which I have to do manually."
"To improve the user experience, reporting could be simplified for better comprehension by end users and project managers, facilitating issue resolution."
"Their customer support needs improvement."
"The response part of the Cloud Detection and Response (CDR) module can be improved."
"It's not easy for an admin to check and decide if the email is good or not."
"The specific domain file for Apache needs to be well-defined."
"The UI of JFrog Xray could be improved. There is a dialogue box in the Xray section that doesn't always work properly."
"Since we have been using the solution via APIs, there are some limitations in the APIs."
"Lacks deeper reporting, the ability to compare things."
"JFrog Xray does not have a dashboard."
"I think that the user interface should be expanded to provide customers with a better dashboard for reviewing their feedback regarding their images and the vulnerabilities that are associated with the images."
"The out-of-the-box PostgreSQL provided is not stable, which is why we are considering enterprise support."
"I'd like to see deeper reporting, they're pretty basic and there are no categories for comparing things."
"Apart from this integration aspect, JFrog Xray does the job, but the user experience is not very good."
 

Pricing and Cost Advice

"The cost is high, but it meets our organizational needs."
"The pricing for TotalCloud is attractive and competitive in the market. Given the features, especially the dashboard, I have no concerns regarding pricing."
"Qualys TotalCloud is cost-efficient and was selected for its value compared to other products."
"While Qualys TotalCloud's pricing is currently acceptable, it is becoming increasingly expensive and may soon be considered overpriced."
"Qualys TotalCloud offers competitive pricing given its comprehensive suite of features, including integration, assessment, remediation, and detection capabilities, all within a single platform."
"It isn't cheap, but it's reasonable. It helps us to manage things with very few resources."
"Qualys TotalCloud is expensive, but it offers a premier solution with no headaches."
"Qualys TotalCloud offers good pricing that is affordable and competitive with the market. Our partnership also provides us with additional benefits."
"The solution provides affordable pricing for medium sized industries."
Information not available
report
Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
17%
Financial Services Firm
14%
Construction Company
8%
Comms Service Provider
7%
Construction Company
13%
Comms Service Provider
12%
Computer Software Company
10%
Financial Services Firm
8%
Financial Services Firm
25%
Manufacturing Company
11%
Computer Software Company
7%
Government
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise4
Large Enterprise29
No data available
By reviewers
Company SizeCount
Small Business1
Midsize Enterprise3
Large Enterprise6
 

Questions from the Community

What needs improvement with Qualys TotalCloud?
Areas that need improvement in every solution include the remediation part. The remediation steps should be simple en...
What is your primary use case for Qualys TotalCloud?
Our use case involves the assets that we have under cloud, the assets exposed to the internet, and the internal appli...
Ask a question
Earn 20 points
What needs improvement with JFrog Xray?
I would assess the integration of JFrog Xray with CI/CD tools as the weak point. You have two means to do that: one i...
What is your primary use case for JFrog Xray?
For JFrog Xray product, you can use it for two main goals: compliance and security. You can use it to check if your l...
What is your experience regarding pricing and costs for JFrog Xray?
It is affordable because JFrog Xray provides a free trial of 14 days. We can explore all the features of JFrog in the...
 

Also Known As

Qualys TotalCloud with FlexScan
ESET Mail Security
JFrog Security Essentials
 

Overview

 

Sample Customers

Information Not Available
Information Not Available
google, amazon, cisco, netflix, oracle, vmware, facebook
Find out what your peers are saying about ESET Cloud Apps Protection vs. JFrog Xray and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.