Microsoft Purview Data Loss Prevention and GitGuardian Platform both compete in the data protection and compliance category. Both have strong offerings, but each has advantages in particular environments; Microsoft Purview in regulatory compliance and GitGuardian in development-centric environments.
Features: Microsoft Purview Data Loss Prevention offers robust compliance features, auto-labeling capabilities, and seamless Microsoft ecosystem integration for widespread data protection. It is preferable for global compliance requirements. GitGuardian Platform excels in rapid and accurate secret detection across software repositories, fast alerting, and effective remediation, making it ideal for development environments with its low false-positive rate and extensive integration support.
Room for Improvement: Microsoft Purview could benefit from simpler label configuration, enhanced third-party integration especially in source code, improved technical support, and richer endpoint features. GitGuardian could enhance integration with other software tools, improve user role management, and develop better automated feedback systems, while also extending its capabilities for specific regulatory needs of smaller or uniquely situated enterprises.
Ease of Deployment and Customer Service: Microsoft Purview leads with flexible deployment options including public, private, and hybrid clouds, although technical support receives mixed reviews for its response times. Its documentation partially compensates for this. GitGuardian, supporting both public and on-premises environments, is noted for its effective technical support and easy deployment, with its documentation also receiving praise.
Pricing and ROI: Microsoft Purview Data Loss Prevention, part of the E5 license, is critiqued for high costs but integrates effectively with Microsoft tools, providing good ROI by eliminating the need for third-party solutions. GitGuardian is seen as expensive for larger teams but offers value in security assurance, its competitive pricing strategy includes a free tier, ensuring outstanding ROI by mitigating security risks in software development.
WordPress security can be tricky, and that's where Cloudflare can be absolutely helpful for small businesses.
For the small project I was working on, using the basic tier provided a huge improvement at zero cost.
I can certainly say that we have saved significant time and resources in terms of people and automation.
The majority of our incidents for critical detectors and important secret types are remediated automatically or proactively by developers through GitGuardian's notification system, without security team involvement.
This would help us address issues promptly, especially during unforeseen events like DDoS attacks.
Cloudflare does not offer hands-on technical support to fix customer problems but rather a self-service model.
The key factor is the language in which the support is offered, which, in this case, is in Thai.
I would rate their technical support a nine out of ten.
I would rate the technical support as excellent.
Once we got to the Microsoft engineers, the experience was great.
It is a SaaS tool, but the fact that they have workloads deployed across the world proves that it is a highly scalable tool.
The tool offers very good performance, even during high-traffic periods.
I rate the solution’s scalability an eight out of ten.
In terms of scalability, I would rate it around a ten out of ten, as it handles all the repositories and commit activity we have.
I would rate it a ten out of ten for scalability.
Currently, what GitGuardian Platform is doing works effectively.
The policy working and detection technology need enhancements.
For DDoS protection, I would not recommend Cloudflare.
I rate the solution’s stability an eight out of ten.
The service is very stable with no impacts during high-traffic periods.
We set up a lot of the repository, so GitGuardian is a required check.
The SaaS platform has experienced two significant moments of downtime or instability in the last six months, requiring notices and retrospectives.
I would rate the stability of the GitGuardian Platform as excellent with no downtimes.
Sometimes the solution is not stable when the internal connection is not reliable, so this aspect needs improvement.
There's a need for improvement in areas like AI-based DDoS attacks and Layer 7 WAF features.
Despite these challenges, overall, Cloudflare remains the preferred solution compared to Azure, AWS CloudFront, and Google Cloud Armor.
Cloudflare should add more documentation and pricing to the cloud version.
Another thing that would be good to see is some more metrics on the usage of the GitGuardian pre-push hooks.
The self-healing activity by developers isn't reflected in the analytics, requiring us to collect this data ourselves.
We are looking for better metrics and audit data, wanting more features such as knowing which users are creating the most secrets or committing the most secrets, what repository, what directory, and who is not checking in secrets.
Implementing a degree of severity ranking is essential.
Endpoint Data Loss Prevention needs to be improved as it is not up to expectations.
That's where Cloudflare shines for smaller businesses – it's ten times cheaper than Akamai.
I find it to be cheap.
I think they should consider reevaluating the pricing for support, as it can be quite high.
Overall, the secret detection sector is expensive, but we are happy with the value we get.
It's fairly priced, as it performs a lot of analysis and is a valuable tool.
The most valuable features of the solution are performance and security.
Techniques like minification and image compression reduce the size of assets, leading to better performance and faster user load times.
The solution has been able to compare it to the market, and I think the product has taken great strides in automating quite a bit of things, and they use a lot of AI.
One of the best features of the solution is the ability to use pre-push hooks.
A high number of our exposures are remediated by developers before security needs to step in, as the self-healing playbook process engages them automatically.
GitGuardian Platform performs the capability to detect secrets in real time exceptionally, as it activates from the commit and can detect it immediately.
Microsoft Purview Data Loss Prevention usually performs well, except for endpoint Data Loss Prevention, which may need improvements.
The feature I find most valuable that I'm currently using is the quickness of the emails that the Microsoft Purview Data Loss Prevention solution sends to us, where we get notifications that say a user has potentially breached our data guideline rules, and we get those alerts continuously, allowing us to enforce them manually.
Cloudflare is a highly-regarded Content Delivery Network (CDN) and a Distributed Denial-of-Service (DDoS) protection solution. The robust global connectivity cloud platform that is Cloudflare ensures users are able to connect to the Internet quickly, securely, and reliably. Cloudflare is one of the world's largest networks in the marketplace today. Using Cloudflare, businesses, educational entities, NGOs, vloggers, bloggers, and anyone else with an internet presence can experience more secure, faster websites and applications.
Currently, there are millions of Internet locations on Cloudflare, and the Cloudflare network
continues to grow every day by the thousands. The solution is able to fulfill the requests for
millions of websites seamlessly and serves on average 45 million HTTP requests per second.
Cloudflare has safe, secure data centers in close to 300 cities worldwide to ensure every
client request is filled as quickly as possible. It is Cloudflare’s edge network that makes this
possible by keeping content and other services as close to each client as possible, so the
information requests are always only seconds away.
Many organizations that work in democracy, civil society, human rights, or the arts are able to
access Cloudflare's highest levels of protection for free via Project Galileo. Additionally, official
election websites can be secured from hacking and fraud through Cloudflare’s Project
Athenian, also at no additional cost.
Cloudflare can also help organizations of all sizes develop a robust zero-trust strategy to
ensure the highest levels of productivity and profitability. Employees, stakeholders, and end users have a greater level of satisfaction and overall improved user experience, which can, in
turn, result in higher revenues and overall ROI. Zero-trust and BYOD (bring your own device)
access ensure end users and employees always have the best resources and technology
available to them at all times.
Cloudflare benefits
Cloudflare has many benefits. Some of its most valuable benefits include:
- Faster load times
- Robust DNS security
- Intuitive cloud Web Application Firewall (WAF)
- Free universal SSL
- Image enhancement
- Automatic browser caching
- Next-generation cloud load balancer
- Accelerated Mobile Pages (AMP)
- Rate limiting
- Minification
- Zero-trust capabilities
- Cost-effective
- Reduced carbon footprint
Reviews from real users
“Many websites require an SSL certificate because they sell stuff and want SSL. Cloudflare
comes with an SSL certificate built in. It's automatic. You sign yourself up for Cloudflare, and
an SSL certificate automatically protects your website. If you have a connection between your
website and your host, the server, Cloudflare, and the host, you don't necessarily need a
certificate.” Spencer M., Owner at Tech Exchange
“What I like best about Cloudflare is that my company can use it to trace and manage
applications and monitor traffic. The solution tells you if there's a spike in traffic. Cloudflare
also sends you a link to check your equipment and deployment and track it through peering,
so it's a valuable tool.” Daniel P., Network Engineer at Ufinet
“The most valuable feature of Cloudflare is the GUI. You are able to control the solution very
well through the interface. There is a lot of functionality that is embedded in the service.” PeerSpot user, Competence Center Manager at a tech services company
GitGuardian helps organizations detect and fix vulnerabilities in source code at every step of the software development lifecycle. With GitGuardian’s policy engine, security teams can monitor and enforce rules across their VCS, DevOps tools, and infrastructure-as-code configurations.
Widely adopted by developer communities, GitGuardian is used by more than 500,000 developers and is the #1 app in the security category on the GitHub Marketplace. GitGuardian is also trusted by leading companies, including Instacart, Genesys, Orange, Iress, Beyond Identity, NOW: Pensions, and Stedi.
GitGuardian Platform includes automated secrets detection and remediation. By reducing the risks of secrets exposure across the SDLC, GitGuardian helps software-driven organizations strengthen their security posture and comply with frameworks and standards.
Its detection engine is trained against more than a billion public GitHub commits every year, and it covers 350+ types of secrets such as API keys, database connection strings, private keys, certificates, and more.
GitGuardian brings security and development teams together with automated remediation playbooks and collaboration features to resolve incidents fast and in full. By pulling developers closer to the remediation process, organizations can achieve higher incident closing rates and shorter fix times.
The platform integrates across the DevOps toolchain, including native support for continuously scanning VCS platforms like GitHub, Gitlab, Azure DevOps and Bitbucket or CI/CD tools like Jenkins, CircleCI, Travis CI, GitLab pipelines, and many more. It also integrates with ticketing and messaging systems like Splunk, PagerDuty, Jira and Slack to support teams with their incident remediation workflows. GitGuardian is offered as a SaaS platform but can also be hosted on-premise for organizations operating in highly regulated industries or with strict data privacy requirements.
At Microsoft, our mission is to empower every person and every organization on the planet to achieve more. Our mission is grounded in both the world in which we live and the future we strive to create. Today, we live in a mobile-first, cloud-first world, and the transformation we are driving across our businesses is designed to enable Microsoft and our customers to thrive in this world.
We monitor all Data Loss Prevention (DLP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
