GitLab vs PortSwigger Burp Suite Professional comparison

Cancel
You must select at least 2 products to compare!
Comparison Buyer's Guide
Executive Summary

We performed a comparison between GitLab and PortSwigger Burp Suite Professional based on real PeerSpot user reviews.

Find out in this report how the two Application Security Testing (AST) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed GitLab vs. PortSwigger Burp Suite Professional Report (Updated: October 2022).
653,757 professionals have used our research since 2012.
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"It scales well.""CI/CD is very good. The version control system is also good. These are the two features that we use.""The stability is good.""The most important features of GitLab for us are issue management and all the CI/CD tools. Another aspect that I love about GitLab is the UI.""It's a great toolbox where the CI/CD pipeline is the fundamental component, but there are so many other features that you can pull from, which makes it a very powerful tool. My current client is using AWS, and they can, of course, use AWS CodePipeline, but GitLab is much more mature than that, and it also gives you the freedom to decide to go to another platform or have a multi-cloud strategy and things like that. That freedom for me is also very valuable.""The merging feature makes it easy later on for the deployment.""The scalability is good.""GitLab is being used as a repository for our codebase and it is a one stop DevOps tool we use in our team."

More GitLab Pros →

"The most valuable feature of PortSwigger Burp Suite Professional is the dashboard. It is very informative and you can receive all the information you need in one place. It's clear, well-defined, and organized. Anybody without any cybersecurity can use it.""The most valuable feature is Burp Collaborator.""Enables automation of different tasks such as authorization testing.""I find the attack model quite amazing, where I can write my scripts and load my scripts as well, which helps quite a bit. All the active scanning that it can do is also quite a lot helpful. It speeds up our vulnerability assessment and penetration testing. Right now, I am enjoying its in-browser, which also helps quite a bit. I'm always confused about setting up some proxy, but it really is the big solution we all want.""The automated scan is what I find most useful because a lot of customers will need it. Not every domain will be looking for complete security, they just need a stamp on the security key. For these kinds of customers, the scan works really well.""The reporting part is the most valuable. It also has very good features. We use almost all of the features for different kinds of customers and needs.""The initial setup is simple.""The solution is stable."

More PortSwigger Burp Suite Professional Pros →

Cons
"There was a problem with the build environment when we were looking at developing iOS applications. iOS build require Mac machines and there are no Mac machines provided by GitLab in their cloud. So to build for mobile iOS application, we needed to use our own Mac machine within our own infrastructure. If GitLab were to provide a feature such that an iOS application could also be built through GitLab directly, that would be great.""In the free version, when a merge request is raised, there is no way to enforce certain rules. We can't enforce that this merge request must be reviewed or approved by two or three people in the team before it is pushed to the master branch. That's why we are exploring using some agents.""GitLab's Windows version is yet not available and having this would be an improvement.""It would be really good if they integrated more features in application security.""GitLab can improve by integrating with more tools, such as servers with Docker.""I don't really like the new Kubernetes integration because it is pretty focused on the on-premise environment, but we're in a hybrid environment.""We are having a few problems integrating with Jira at the moment, which is something that our IT department is investigating.""The integration and storage capabilities could be better."

More GitLab Cons →

"The price could be better. The rest is fine.""The pricing of the solution is quite high.""It should provide a better way to integrate with Jenkins so that DAST (dynamic application security testing) can be automated.""The solution lacks sufficient stability.""One thing that is not up to the mark in PortSwigger is web application testing. I found some issues with its performance and reporting. They should work on these and give us a better outcome.""The reporting needs to be improved; it is very bad.""We'd like to have more integration potential across all versions of the product.""PortSwigger Burp Suite Professional can improve by having more features in the free version for beginners to try."

More PortSwigger Burp Suite Professional Cons →

Pricing and Cost Advice
  • "The price is okay."
  • "It seems reasonable. Our IT team manages the licenses."
  • "Its price is fine. It is on the cheaper side and not expensive. You have to pay additionally for GitLab CI/CD minutes. Initially, we used the free version. When we ran out of GitLab minutes, we migrated to the paid version."
  • "It is very expensive. We can't bear it now, and we have to find another solution. We have a yearly subscription in which we can increase the number of licenses, but we have to pay at the end of the year."
  • "I don't mind the price because I use the free version."
  • "We are using its free version, and we are evaluating its Premium version. Its Ultimate version is very expensive."
  • "The price of GitLab could be better, it is expensive."
  • "I'm not aware of the licensing costs because those were covered by the customer."
  • More GitLab Pricing and Cost Advice →

  • "It has a yearly license. I am satisfied with its price."
  • "We are using the community version, which is free."
  • "It is expensive for us in Brazil because the currency exchange rate from a dollar to a Brazilian Real is quite steep."
  • "The price for the solution is expensive and could be cheaper. We pay an annual license and our team has several of them."
  • "It's a lower priced tool that we can rely on with good standard mechanisms."
  • "This solution requires a license. It is expensive but you receive a lot of functionality for the price."
  • "The solution used to be expensive. However, they have reduced the price to approximately $400.00 which is reasonable."
  • "For a country such as Sri Lanka, the pricing is not reasonable."
  • More PortSwigger Burp Suite Professional Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Application Security Testing (AST) solutions are best for your needs.
    653,757 professionals have used our research since 2012.
    Questions from the Community
    Top Answer:Their CI/CD engine is very mature. It's very comprehensive and flexible, and compared to other projects, I believe that GitLab is number one right now from that perspective.
    Top Answer:They have had a Kubernetes integration built in, but they recently announced that in Version 16 they're going to strip out the legacy Kubernetes integration, and then introduce a new way of doing the… more »
    Top Answer:OWASP Zap and PortSwigger Burp Suite Pro have many similar features. OWASP Zap has web application scanning available with basic security vulnerabilities while Burp Suite Pro has it available with… more »
    Top Answer:The most valuable feature of PortSwigger Burp Suite Professional is the dashboard. It is very informative and you can receive all the information you need in one place. It's clear, well-defined, and… more »
    Top Answer:The licensing cost depends on the number of users. One person can use the tool on a single laptop that can be shared between multiple users under a single license. We have around 15 users. We pay an… more »
    Ranking
    Views
    21,087
    Comparisons
    18,078
    Reviews
    41
    Average Words per Review
    377
    Rating
    8.6
    Views
    19,910
    Comparisons
    15,180
    Reviews
    17
    Average Words per Review
    465
    Rating
    8.7
    Comparisons
    Also Known As
    Burp
    Learn More
    Overview

    GitLab is an open-source code repository and application code development platform that aims to simplify the process of software development through to the eventual product release and upgrade. It contains all of the tools that developers need to take control of every stage of the software development process. GitLab makes it easy for teams to create checklists that they can follow when they begin to write the code and do other tasks that are critical to the success of their project. GitLab also enables organizations to automate the shipping of software code to those servers that they need to get to without requiring human intervention.

    GitLab Benefits

    Some of the ways that organizations can benefit by deploying GitLab include:

    • Easy solution configuration. GitLab does not require organizations to devote significant time and other resources to bringing it online. It can be quickly installed by a business’s IT team to any device or cloud that is most convenient for them. IT teams can install it using either GUI installer or a command line installer, depending on what is more convenient for them.
    • Source code storage and management security. Developers can use GitLab to control who is able to access the source code that they are working on and manage the security of the location where the code is being stored. Gitlab makes it so that users get to decide the privacy status of their code and storage. This keeps unauthorized individuals from gaining access to their sensitive and proprietary code.
    • DevOps feedback. GitLab gives users the ability to learn from what they are doing and improve their DevOps practices. It will assign to their DevOps pipeline scores that can enable them to see where they might be lacking and do better.

    GitLab Features

    • Secret detection customization. Users can set GitLab to scan for sensitive data that might have accidentally been stored with the source code under development. Users can set custom parameters and discover at-risk data before it can be leaked.
    • Custom notifications. This feature makes it easy for developers to keep track of the changes that are being applied to their projects. They can set GitLab so that it sends them a notification when changes are made. These notifications can be customized to meet the developer's specific needs.
    • Built-in CI/CD capabilities. Users are able to build, test, and deploy their software without turning to outside integrations. The CI/CD automation is built-in so that all of these functions can be easily automated as necessary.

    Reviews from Real Users

    GitLab is a solution that stands out when compared to many of its competitors. Two major advantages it offers are the overall completeness of the solution and the way that it enables application developers to work on various parts of a given project simultaneously.

    Kulbhushan M., co-founder and technical architect at Think NYX Technologies LLP, writes, “The SaaS setup is impressive, and it has DAST solutions. It also has dependency check and scanning mechanisms. If we were using other solutions, they would have to be configured, and we would have to set them to us as a third party, but GitLab is straightforward. GitLab is a single solution that helps us do everything we need.”

    Zeeshan R., a software engineer at OZ, writes, “The best thing is that as the developers work on separate tasks, all of the code goes there and the other team members don't have to wait on each other to finish. We can all work on our code in tandem.”

    Burp Suite Professional, by PortSwigger, is the world’s leading toolkit for web security testing. Over 52,000 users worldwide, across all industries and organization sizes, trust Burp Suite Professional to find more vulnerabilities, faster. With expertly-engineered manual and automated tooling, you're able to test smarter - not harder.

    PortSwigger is the web security company that is enabling the world to secure the web. Over 50,000 security engineers rely on our software and expertise to secure their world.

    Offer
    Learn more about GitLab
    Learn more about PortSwigger Burp Suite Professional
    Sample Customers
    Siemens, University of Washington, Equinix, Paessler AG, CNCF, Ticketmaster, CERN, Vaadin
    Google, Amazon, NASA, FedEx, P&G, Salesforce
    Top Industries
    REVIEWERS
    Computer Software Company23%
    Retailer14%
    Financial Services Firm14%
    Manufacturing Company14%
    VISITORS READING REVIEWS
    Computer Software Company18%
    Comms Service Provider13%
    Financial Services Firm11%
    Government9%
    REVIEWERS
    Manufacturing Company30%
    Financial Services Firm25%
    University10%
    Comms Service Provider10%
    VISITORS READING REVIEWS
    Computer Software Company22%
    Comms Service Provider19%
    Government8%
    Financial Services Firm7%
    Company Size
    REVIEWERS
    Small Business48%
    Midsize Enterprise8%
    Large Enterprise44%
    VISITORS READING REVIEWS
    Small Business19%
    Midsize Enterprise14%
    Large Enterprise67%
    REVIEWERS
    Small Business18%
    Midsize Enterprise18%
    Large Enterprise65%
    VISITORS READING REVIEWS
    Small Business21%
    Midsize Enterprise16%
    Large Enterprise63%
    Buyer's Guide
    GitLab vs. PortSwigger Burp Suite Professional
    October 2022
    Find out what your peers are saying about GitLab vs. PortSwigger Burp Suite Professional and other solutions. Updated: October 2022.
    653,757 professionals have used our research since 2012.

    GitLab is ranked 3rd in Application Security Testing (AST) with 47 reviews while PortSwigger Burp Suite Professional is ranked 4th in Application Security Testing (AST) with 17 reviews. GitLab is rated 8.6, while PortSwigger Burp Suite Professional is rated 8.8. The top reviewer of GitLab writes "Powerful, mature, and easy to set up and manage". On the other hand, the top reviewer of PortSwigger Burp Suite Professional writes "Best for manual penetration testing, a great user interface, and offers good scanning capabilities". GitLab is most compared with Microsoft Azure DevOps, TeamCity, Tekton, AWS CodePipeline and Sonatype Nexus Lifecycle, whereas PortSwigger Burp Suite Professional is most compared with OWASP Zap, Fortify WebInspect, Acunetix, Veracode and Rapid7 AppSpider. See our GitLab vs. PortSwigger Burp Suite Professional report.

    See our list of best Application Security Testing (AST) vendors.

    We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.