GitHub Advanced Security vs Onapsis comparison

GitHub Advanced Security
Read 7 GitHub Advanced Security reviews
  • 3,413 Views
  • 3,006 Comparison Views
100% willing to recommend
Onapsis
Read 1 Onapsis review
  • 381 Views
  • 265 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between GitHub Advanced Security and Onapsis based on real PeerSpot user reviews.

Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Application Security Tools.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Application Security Tools Report (Updated: July 2024).
Buyer's Guide
Application Security Tools
July 2024
Download the complete report
Helped 793,295 peers since 2012
 

Categories and Ranking

GitHub Advanced Security
Ranking in Application Security Tools
15th
Average Rating
8.8
Number of Reviews
7
Ranking in other categories
No ranking in other categories
Onapsis
Ranking in Application Security Tools
38th
Average Rating
8.0
Number of Reviews
1
Ranking in other categories
No ranking in other categories
 

Featured Reviews

DO
Jul 1, 2024
Primarily targets code security and uses AI, specifically CodeQL, to analyze code,
It finds hardcoded secrets directly in the code and points them out immediately. Then, I can go back to the developers and let them know. I can even block the commit in the repository so they cannot commit until they fix the issue. AI in the backend: CodeQL uses AI algorithms, so it reduces false positives. For example, in a SQL injection, it finds the user input flow of the code instead of looking for hardcoded SQL statements. It looks at where parameters can be created and filled with data. If it ends on a path where it comes from a user, then you really get an SQL injection. If it's just a parameter populated through something else, there is no danger. This is one difference between SonarQube and GitHub Advanced Security. It gives you fewer false positives, so you don't waste time figuring out if it's a real security issue or a false alarm.
Read full review
it_user19113 - PeerSpot reviewer
Sep 29, 2016
It checks for and reports vulnerabilities on all SAP systems at the OS, DB and SAP levels.
I really love how Onapsis X1 is able to check SAP for threats; the reporting was something I felt could be improved. It could be a little easier to use and to publish for consumption with a larger audience. Currently, it takes some background jobs and additional work to get them published. It was difficult to get interactive reports to the different levels of the business. I would have to download them and send them out, or save them on my SharePoint site and send out a weekly link. In the version of the product I was usingת I had to log into the X1 system directly to get to the reports. Reporting would be used by several different areas of the organizationת many of whom would be at the director and executive levels. It would not make sense to have them log directly into the tool to look at these reports. Add to this that there was only one ID that could be used to log in and view the reports. To solve this problemת I had to run all of the different reports; executive summary down to detailed analysis and then export them out to my security team SharePoint site. To automate this processת a batch script was created to run after the X1 analyzed the systems. The script would pull the reports and place them in the SharePoint site automatically, but it was a bit of a hassle to get set up.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pricing and Cost Advice

"The current licensing model, which relies on active commitments, poses challenges, particularly in predicting and managing growth."
"The solution is expensive."
Information not available
report
See which vendors are best for you
Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
See recommendations
793,295 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
13%
Computer Software Company
12%
Manufacturing Company
9%
Government
7%
Computer Software Company
20%
Manufacturing Company
12%
Energy/Utilities Company
9%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about GitHub Advanced Security?
It is a stable solution...It is a scalable solution as it can handle new applications along with the analysis part.
See all answers
What needs improvement with GitHub Advanced Security?
Maybe make it compatible with more programming languages. Have a customized ruleset where the end-user can create their own rules for scanning. Also, support for container stuff, like when the code...
See all answers
What is your primary use case for GitHub Advanced Security?
I use it for Azure DevOps, for example. This tool focuses on the security of the code. It performs code analysis to identify security issues, such as hard-coded secrets and passwords, potential SQL...
See all answers
Ask a question
Earn 20 points
 

Comparisons

SonarQube vs GitHub Advanced Security Logo
SonarQube vs GitHub Advanced Security
Compared 53% of the time
Snyk vs GitHub Advanced Security Logo
Snyk vs GitHub Advanced Security
Compared 27% of the time
Veracode vs GitHub Advanced Security Logo
Veracode vs GitHub Advanced Security
Compared 8% of the time
Fortify on Demand vs GitHub Advanced Security Logo
Fortify on Demand vs GitHub Advanced Security
Compared 4% of the time
Checkmarx One vs GitHub Advanced Security Logo
Checkmarx One vs GitHub Advanced Security
Compared 3% of the time
More GitHub Advanced Security Competitors
Qualys Web Application Scanning vs Onapsis Logo
Qualys Web Application Scanning vs Onapsis
Compared 55% of the time
SonarQube vs Onapsis Logo
SonarQube vs Onapsis
Compared 45% of the time
More Onapsis Competitors
 

Product Reports

Buyer's Guide
GitHub Advanced Security
July 2024
GitHub Advanced Security reportDownload GitHub Advanced Security product report
Buyer's Guide
Application Security Tools
July 2024
Onapsis reportDownload Onapsis product report
 

Learn More

GitHub
Onapsis
 

Overview

GitHub makes extra security features available to customers under an Advanced Security license. These features are also enabled for public repositories on GitHub.com.

Through continuous monitoring, the Onapsis Security Platform (OSP) delivers a near real-time preventative, detective and corrective approach for securing SAP systems and applications whether deployed on-premise, or in a private, public or hybrid cloud environment.

 

Sample Customers

Information Not Available
Sony, US Army, Westinghouse, AXA. Galicia, Daimler, Roche, Levi's, Siemens, ABB, KPMG, Mercardo Libre, Verizon, Bacardi, Adgas, Sicpa, Whirlpool, Leaseplan
Buyer's Guide
Application Security Tools
July 2024
Download Free Report
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Application Security Tools. Updated: July 2024.
DOWNLOAD NOW
793,295 professionals have used our research since 2012.
See our list of best Application Security Tools vendors.

We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.