No more typing reviews! Try our Samantha, our new voice AI agent.

PortSwigger Burp Suite Enterprise Edition vs Vulcan Cyber comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 9, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Qualys TotalCloud
Sponsored
Ranking in Vulnerability Management
11th
Average Rating
8.6
Reviews Sentiment
7.3
Number of Reviews
39
Ranking in other categories
Container Security (11th), Cloud Workload Protection Platforms (CWPP) (7th), Cloud Security Posture Management (CSPM) (8th), SaaS Security Posture Management (SSPM) (1st), Cloud-Native Application Protection Platforms (CNAPP) (6th)
PortSwigger Burp Suite Ente...
Ranking in Vulnerability Management
41st
Average Rating
8.0
Reviews Sentiment
7.2
Number of Reviews
12
Ranking in other categories
Dynamic Application Security Testing (DAST) (8th)
Vulcan Cyber
Ranking in Vulnerability Management
27th
Average Rating
7.4
Reviews Sentiment
7.1
Number of Reviews
12
Ranking in other categories
Risk-Based Vulnerability Management (9th), Cloud Security Remediation (2nd)
 

Mindshare comparison

As of July 2026, in the Vulnerability Management category, the mindshare of Qualys TotalCloud is 1.1%, up from 1.0% compared to the previous year. The mindshare of PortSwigger Burp Suite Enterprise Edition is 1.1%, up from 0.9% compared to the previous year. The mindshare of Vulcan Cyber is 0.8%, up from 0.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Vulnerability Management Mindshare Distribution
ProductMindshare (%)
Qualys TotalCloud1.1%
Vulcan Cyber0.8%
PortSwigger Burp Suite Enterprise Edition1.1%
Other97.0%
Vulnerability Management
 

Featured Reviews

RO
IT Security Expert at Alior Bank S.A.
Unified risk scoring has improved our cloud visibility and simplifies remediation priorities
Qualys TotalCloud provides unified vulnerability and threat assessment across both IAS and SaaS. This solution provides a single prioritized view of risk, which helps reduce the work I would have to do. We are no longer based on CVSS; we are based on Qualys risk scoring, which is based on CVSS plus internal findings made by Qualys, and then assigns its own score. The TruRisk insight feature has found a small number of assets with high vulnerability scores, though I am cautious since some information is classified. Qualys TotalCloud has positively impacted our bank's performance, and we have definitely seen benefits after implementing this solution.
OB
Studiant at Edifixio
Enables time-saving automated scanning and brute force attacks
The most appreciated functionality of PortSwigger Burp Suite is its ability to perform brute force attacks automatically. Its automated scanning feature saves time. Additionally, using this tool provides significant security insights, making our testing process more efficient and comprehensive, leading to considerable time savings, which in turn translates to financial benefits.
Vikram Chakravarthy - PeerSpot reviewer
Cyber Security Engineer II (Vulnerability & Threat Management) at FICO
Risk-based workflows have transformed how our teams prioritize and track critical vulnerabilities
One important area for improvement could be reporting flexibility and dashboard customization, as this would need to align with specific organizational requirements. I believe it could be better. Additionally, UI simplification and more customization around workflows and reporting would further enhance the analyst experience. Improvements in executive reporting, more customizable dashboards, and deeper workflow flexibility would enhance operational usability further. Vulcan Cyber handles scalability well in our organization. It maintains stability for visibility and remediation tracking, avoiding the need for additional storage, as it is cloud-based. It scales well in our environment, even as vulnerability data and assets grow significantly.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The platform's unified view of the organization proves particularly valuable for leadership team meetings."
"In my opinion, this is the best tool."
"Vulnerability and threat detection and assessment of the criticality of the vulnerabilities exposed are most valuable."
"Its dashboards are brilliant. It provides in-depth insights."
"TotalCloud provides the easiest and the best approach for cloud infrastructure management."
"The agent and agentless scanning in TotalCloud, particularly the FlexScan method, is incredibly valuable. With traditional scanning approaches, we had to give IP ranges and whitelist IPs. All that is now simplified. FlexScan requires minimal intervention, and after configuration, it automatically collects data and performs necessary scans."
"The scalability is good as well. I would rate it ten out of ten."
"Once you have your vulnerabilities fixed and your patches pushed out using Qualys TotalCloud, then you are able to eliminate threats and cyber risk."
"The product's initial setup phase was super easy."
"Parallel scans can be done with PortSwigger Burp Suite Enterprise Edition."
"We are in the early stage of using the solution making it difficult to fully determine the best features. However, we have noticed the CMDB and device discovery features look valuable at this time."
"I like normal dynamic scanning, general web applications scanning, and vulnerability assessments."
"The most appreciated functionality of PortSwigger Burp Suite is its ability to perform brute force attacks automatically."
"The initial setup is straightforward."
"Its automated scanning feature saves time."
"The tool is loaded with many features that give us ROI."
"Now that the solution is onboarded, we are saving a lot of time. We're saving roughly four to ten hours a week."
"The automation capabilities using the Vulcan API platform or the API feature allow me to easily automate scripts and reports and schedule them."
"It has allowed us to bring together multiple sources of information from different signal sources into a single point."
"The interface of Vulcan Cyber is intuitive with a lot of information about vulnerabilities, which helps in classifying and analyzing threats. We have a good view of assets and vulnerabilities. It helps to do good threat analysis because we can see exactly what the threat is and assess it accordingly."
"Vulcan Cyber is a very good tool."
"Vulcan Cyber has had the biggest positive impact on my organization through the improvement in prioritization and remediation efficiency."
"Out of the three solutions I've used, Vulcan Cyber is the superior option."
"Vulcan enables us to automate tickets from multiple scanners. It has lots of analytics options that show us charts and allow us to view the statuses in different waves. The dashboard is nice because it's highly informative about the big picture."
 

Cons

"The cost of Qualys TotalCloud is high and could be more competitive."
"The vulnerability part is good, but the policy compliance module needs improvement because it involves a lot of manual work. Specifically, the remediation part of the controls requires enhancements."
"It has been working very well, but it would be helpful if the dashboard could generate reports tailored to specific compliance needs. For example, in India, we have to comply with RBI and SEBI guidelines. It w"
"In a future release, I suggest that zero-day vulnerabilities should be predicted in advance using AI technologies. The system is not 100% secure yet, so proactive threat hunting could be enhanced to be more proactive than the current system."
"From a downside perspective, the UI is not user-friendly and feels dated compared to other tools like Prisma Cloud."
"I sometimes have difficulty detecting or uninstalling certain versions of applications, which I have to do manually."
"Qualys TotalCloud needs to improve its accuracy for non-Windows operating systems."
"Regarding technical support from Qualys, they respond, but the response time can be too long. Sometimes we need to wait weeks for solutions to simple questions."
"There are features or functionality missing, but PortSwigger Burp Suite Enterprise Edition does try to update frequently to alleviate the shortcomings."
"Scalability could be better."
"From my personal experience, the solution's performance could be improved."
"It would be better if the solution is cloud-based."
"The stability of the scans could be improved."
"There's definitely room for improvement. There are lots of false positives. Once I do the manual assessment, it comes as a false positive. They need to improve the Enterprise Edition, especially the part that gives false positives."
"The solution is a bit expensive."
"The product needs to have the ability to evaluate more."
"There are several areas needing improvement. The product helps, but the reporting relies heavily on Power BI. It is limited to graphical views and requires additional filtering, posing operational challenges."
"An important area is performance and speed, as Vulcan Cyber often lacks speed when exporting reports."
"The performance is bad. The query and the UI are always slow, and it's quite frustrating. Vulcan is trying to solve this with a newer design. The dashboard is also crowded. It pulls in all this raw information that you need to filter. Vulcan has filtering capabilities, but they're hard to manage. The labels aren't very clear, so you need to do things by trial and error. It's not as easy as other tools we've been using."
"Initially, when onboarding Vulcan Cyber, the setup and configuration was more complex than expected with a user-friendly approach. This aspect can be enhanced."
"The fact that we cannot use it for our reporting leads me to rate it three out of ten."
"If there was a way for me to connect to the vendor directly from the application, it would be helpful."
"We wish we had more insights into how they weigh the risks associated with the threat intel."
"Their support is good, but there are some flaws as well."
 

Pricing and Cost Advice

"Its price seems higher compared to other tools, but it is worth it. If they could adjust the pricing and make it comparable with other tools, that would be great."
"Qualys TotalCloud is cost-efficient and was selected for its value compared to other products."
"Qualys TotalCloud is expensive."
"Qualys TotalCloud offers good pricing that is affordable and competitive with the market. Our partnership also provides us with additional benefits."
"Qualys TotalCloud is expensive, but it offers a premier solution with no headaches."
"Qualys TotalCloud offers cost-effective licensing flexibility."
"The pricing for TotalCloud is attractive and competitive in the market. Given the features, especially the dashboard, I have no concerns regarding pricing."
"I am not sure about the pricing. From what I understand, it is a bit on the higher side, but I do not have the exact numbers."
"PortSwigger Burp Suite Enterprise Edition is expensive compared to other solutions."
"The tool's pricing is reasonable and costs around 400 dollars per year."
"Although the solution can be a bit expensive for small companies, its pricing is fairly reasonable for its capabilities."
"For Professional, it's about $400 per year."
"PortSwigger Burp Suite Enterprise Edition is neither a cheap nor an expensive product. PortSwigger Burp Suite Enterprise Edition is a good tool for companies."
"Its pricing is quite fair compared to what is out there in the market, especially compared to the tool from Microsoft. It is a SaaS platform that has an annual cost, so it is something that is already used by many companies. It is quite affordable."
"Our leadership knows better about the pricing. As per my knowledge, which might not be accurate, its price can come down."
report
Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
17%
Financial Services Firm
14%
Construction Company
8%
Comms Service Provider
7%
Financial Services Firm
19%
Computer Software Company
7%
Construction Company
6%
Manufacturing Company
6%
Computer Software Company
22%
Manufacturing Company
8%
Construction Company
8%
Financial Services Firm
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise4
Large Enterprise29
By reviewers
Company SizeCount
Small Business5
Midsize Enterprise2
Large Enterprise7
By reviewers
Company SizeCount
Small Business1
Large Enterprise11
 

Questions from the Community

What needs improvement with Qualys TotalCloud?
Areas that need improvement in every solution include the remediation part. The remediation steps should be simple en...
What is your primary use case for Qualys TotalCloud?
Our use case involves the assets that we have under cloud, the assets exposed to the internet, and the internal appli...
What is your experience regarding pricing and costs for PortSwigger Burp Suite Enterprise Edition?
I am using the Community Edition, which is free, however, I understand there might be extra expenses for additional f...
What needs improvement with PortSwigger Burp Suite Enterprise Edition?
It would be beneficial if Burp Suite provided predefined payloads for each attack category, such as SQL injection and...
What is your primary use case for PortSwigger Burp Suite Enterprise Edition?
I work with security testing tools for SaaS, focusing on static application security testing and using tools like Bur...
What is your experience regarding pricing and costs for Vulcan Cyber?
My experience with pricing, setup cost, and licensing for Vulcan Cyber indicates that pricing typically depends on th...
What needs improvement with Vulcan Cyber?
One important area for improvement could be reporting flexibility and dashboard customization, as this would need to ...
What is your primary use case for Vulcan Cyber?
My main use case for Vulcan Cyber involves vulnerability prioritization and tracking remediation, including exposure ...
 

Also Known As

Qualys TotalCloud with FlexScan
No data available
No data available
 

Interactive Demo

Demo not available
Demo not available
 

Overview

 

Sample Customers

Information Not Available
Nasa, Disney, Dow Jones, Iberia Bank, IBM, Ernest and Young, Apple, Ryanair, Thyssenkrupp, Delivery Hero
Stitch Fix, Mandiant, Wealthsimple, Entrust, Anaplan, Deloitte, Origami Risk, Verana Health
Find out what your peers are saying about PortSwigger Burp Suite Enterprise Edition vs. Vulcan Cyber and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.