We performed a comparison between JFrog Xray and PortSwigger Burp Suite Enterprise Edition based on real PeerSpot user reviews.
Find out in this report how the two Vulnerability Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."I would say that this solution has helped our organization by allowing us to automate a lot of the processes."
"The most valuable feature of JFrog Xray is the display of the entire internal dependencies hierarchy."
"Good reporting functionalities."
"If multiple dependencies and vulnerabilities are found in a project, JFrog Xray is intelligent enough to tell you which vulnerability to target first."
"The solution is stable and reliable."
"JFrog Xray's reporting feature has a lot of options in it, including scanning."
"JFrog Xray shows us a list of vulnerabilities that can impact our code."
"We are in the early stage of using the solution making it difficult to fully determine the best features. However, we have noticed the CMDB and device discovery features look valuable at this time."
"The product is easy to use."
"I like normal dynamic scanning, general web applications scanning, and vulnerability assessments."
"The tool is loaded with many features that give us ROI."
"The product's initial setup phase was super easy."
"The initial setup is straightforward."
"Parallel scans can be done with PortSwigger Burp Suite Enterprise Edition."
"The most valuable features of PortSwigger Burp Suite Enterprise Edition are the vast amount of options and ease of use. They frequently improve the solution every six months to a year. Additionally, if we want any more features we can upload a custom script to meet our needs."
"Lacks deeper reporting, the ability to compare things."
"Reporting is crucial, but it is lacking in the current tool. Every organization seeks specific data points rather than general information. Therefore, we require customized reports from the Xray tool."
"Since we have been using the solution via APIs, there are some limitations in the APIs."
"The speed of JFrog Xray should improve. Other solutions have better performance."
"JFrog Xray's documentation and error logging could be improved."
"I think that the user interface should be expanded to provide customers with a better dashboard for reviewing their feedback regarding their images and the vulnerabilities that are associated with the images."
"JFrog Xray does not have a dashboard."
"The product needs to have the ability to evaluate more."
"The stability of the scans could be improved."
"There are features or functionality missing, but PortSwigger Burp Suite Enterprise Edition does try to update frequently to alleviate the shortcomings."
"The solution is a bit expensive."
"The cost per license per user could be cheaper, specifically for individual licensing."
"The implementation of the solution is quite complicated and could be easier."
"It would be better if the solution is cloud-based."
"There's definitely room for improvement. There are lots of false positives. Once I do the manual assessment, it comes as a false positive. They need to improve the Enterprise Edition, especially the part that gives false positives."
More PortSwigger Burp Suite Enterprise Edition Pricing and Cost Advice →
JFrog Xray is ranked 17th in Vulnerability Management with 7 reviews while PortSwigger Burp Suite Enterprise Edition is ranked 13th in Vulnerability Management with 8 reviews. JFrog Xray is rated 8.2, while PortSwigger Burp Suite Enterprise Edition is rated 8.0. The top reviewer of JFrog Xray writes "An intelligent solution that prioritizes which vulnerability to target first in your project". On the other hand, the top reviewer of PortSwigger Burp Suite Enterprise Edition writes " With a super easy initial setup phase, the tool also offers regular updates". JFrog Xray is most compared with Black Duck, Snyk, Mend.io, Veracode and Trivy, whereas PortSwigger Burp Suite Enterprise Edition is most compared with Acunetix, Tenable Nessus, Rapid7 Metasploit and Tenable Vulnerability Management. See our JFrog Xray vs. PortSwigger Burp Suite Enterprise Edition report.
See our list of best Vulnerability Management vendors.
We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.