We performed a comparison between GitHub and PortSwigger Burp Suite Professional based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Any complex banking can be handled very easily in GitHub. It allows us to integrate with tools like Grid, where we can merge and resolve conflicts without any hassle."
"The version control functionality for this solution has been most valuable, especially when managing projects with multiple versions."
"I'm able to access any repository that I like, whether it's public or private."
"We use GitHub as a repository."
"The initial setup was easy."
"The code versioning is excellent, and having a detailed log, including every change made to the code by every developer, is invaluable. It makes it so that if there is a bug or problem in the product channel, we can find exactly where it happened and how to fix it."
"Even if I'm not in the office, I can access and work on my code from anywhere with my account credentials."
"GitHub is the best tool for source repositories."
"The Repeater and the BApp extensions are particularly useful. Certain extensions, such as the Active Scan extensions and the Autoracer extension, are very good."
"Some of the extensions, available using Burp Extender, are also very good and we have found issues by using them."
"The solution has a limited range of functions, which is good for small companies. This is because, in small companies, websites are less complex. They also have single services which makes the solution good enough for them. However, the most advantageous aspect of the solution is its affordable price."
"PortSwigger Burp Suite does not hamper the node of the server, and it does not shut down the server if it is running."
"BurpSuite helps us to identify and fix silly mistakes that are sometimes introduced by our developers in their coding."
"The most valuable feature is the application security. It also has a reasonable price."
"The most valuable features are Burp Intruder and Burp Scanner."
"The intercepting feature is the most valuable."
"If it had all of the end-to-end integration, then we probably wouldn't have any doubts about what we have installed. However, at this point, we're still trying to figure out how to use it end-to-end."
"The solution should have less integration with the AI part, but it needs to add features with other automation tools so that it can be easily integrated."
"Our firewall was blocking cloning and downloading with SSH."
"GitHub should provide more integration in their next release, including integrating with Jenkins, CI/CD and Jira."
"It would be useful to have tutorial videos within the GitHub dashboard."
"GitHub's issue management could be improved a little from an organization standpoint. It would be helpful to have the ability to organize a work board or a backlog more comprehensively. For organizations migrating to GitHub from arbitrary systems, it's a little bit of a headache to move on to that system."
"GitHub could improve by being more user-friendly."
"If something has to be moved into approvals, and if they don't approve it in a few hours, then they should move the approval request to some other user, or they should have a way to escalate it."
"The price could be better. The rest is fine."
"We wish that the Spider feature would appear in the same shape that it does in previous versions."
"Scanning needs to be improved in enterprise and professional versions."
"It should provide a better way to integrate with Jenkins so that DAST (dynamic application security testing) can be automated."
"In the Professional version, we cannot link it with the CI/CD process."
"One thing that is not up to the mark in PortSwigger is web application testing. I found some issues with its performance and reporting. They should work on these and give us a better outcome."
"The one feature that I would like to see in Burp is active scanning of REST based web services. A lot of organizations are providing APIs to access their services to support different business models like SaaS. Scanning these APIs is still a challenge for many security product companies."
"The Auto Scanning features should be updated more frequently and should include the latest attack vectors."
More PortSwigger Burp Suite Professional Pricing and Cost Advice →
GitHub is ranked 13th in Application Security Tools with 64 reviews while PortSwigger Burp Suite Professional is ranked 9th in Application Security Tools with 55 reviews. GitHub is rated 8.6, while PortSwigger Burp Suite Professional is rated 8.6. The top reviewer of GitHub writes "Beneficial version control and continuous integration, but guides would be helpful". On the other hand, the top reviewer of PortSwigger Burp Suite Professional writes "The solution is versatile and easy to deploy, but it needs to give more detailed security reports". GitHub is most compared with Snyk, AWS CodeCommit, Bitbucket, Atlassian SourceTree and Fortify on Demand, whereas PortSwigger Burp Suite Professional is most compared with OWASP Zap, Fortify WebInspect, Acunetix, HCL AppScan and Qualys Web Application Scanning. See our GitHub vs. PortSwigger Burp Suite Professional report.
See our list of best Application Security Tools vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.