We performed a comparison between GitLab and PortSwigger Burp Suite Professional based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable features of GitLab are the CI/CD pipeline and code management."
"It is very flexible and easy because you can store data on cloud."
"I have found the most valuable feature is security control. I also like the branching and cloning software."
"GitLab is a solution for source code management, container registry, pipelines, testing, and deployment."
"We have seen a couple of merge requests or pull requests raised in GitLab. I see the interface, the way it shows the difference between the two source codes, that it is easy for anyone to do the review and then accept the request; the pull request is the valuable feature."
"It speeds up our development, it's faster, safer, and more convenient."
"As a developer, this solution is useful as a repository holder because most of the POC projects that we have are on GitLab."
"The initial setup of GitLab is pretty simple, with no complications."
"It helps in API testing, where manual intervention was previously necessary for each payload."
"The tool provides complimentary services. It allows you to add a lot of extensions, and you can get extensions quite often. It is quite a flexible application."
"The initial setup is simple."
"You can scan any number of applications and it updates its database."
"PortSwigger Burp Suite Professional is one of the best user-friendly solutions for getting the proxy set up."
"It is useful for scanning and tracing activities."
"We are mostly using it for scanning the entire website. So, we basically create a script with the entire website and then run it for different injections."
"The most valuable feature of PortSwigger Burp Suite Professional is the advanced features, user-friendly interface, and integration with other tools."
"It would be really good if they integrated more features in application security."
"It's more related to the supporting layer of features, such as issue management and issue tracking. We tend to always use, for example, Jira next to it. That doesn't mean that GitLab should build something similar to Jira because that will always have its place, but they could grow a bit in those kinds of supporting features. I see some, for example, covering ITSM on a DevOps team level, and that's one of the things that I and my current client would find really helpful. It's understandably not going to be their main focus and their core, and whenever you are with a company that needs a bit more advanced features on that specific topic, you're probably still going to integrate with another tool like Jira Service Management, for example. However, some basic features on things like that could be really helpful."
"Reporting could be improved."
"As a partner, sometimes it's difficult to get support. They have a really complicated procedure for their support."
"We'd always like to see better pricing on the product."
"The price of GitLab could improve, it is high."
"There is a need to improve or adopt AI into the ecosystem like a co-pilot, which Microsoft has done with GitHub."
"Their RBAC is role-based access, which is fine but not very good."
"As with most automated security tools, too many false positives."
"One thing that is not up to the mark in PortSwigger is web application testing. I found some issues with its performance and reporting. They should work on these and give us a better outcome."
"Scanning needs to be improved in enterprise and professional versions."
"There needs to be better documentation provided. Currently, we need to buy books, or we need to review online some use cases from other professionals who have been using the solution to find out their experience. It is not easy to find out how to properly do a security assessment."
"You can have many false positives in Burp Suite. It depends on the scale of the penetration testing."
"The Burp Collaborator needs improvement. There also needs to be improved integration."
"One area that can be improved, when compared to alternative tools, is that they could provide different reporting options and in different formats like PDF or something like that."
"The Initial setup is a bit complex."
More PortSwigger Burp Suite Professional Pricing and Cost Advice →
GitLab is ranked 6th in Application Security Tools with 70 reviews while PortSwigger Burp Suite Professional is ranked 10th in Application Security Tools with 57 reviews. GitLab is rated 8.6, while PortSwigger Burp Suite Professional is rated 8.6. The top reviewer of GitLab writes "Powerful, mature, and easy to set up and manage". On the other hand, the top reviewer of PortSwigger Burp Suite Professional writes "The solution is versatile and easy to deploy, but it needs to give more detailed security reports". GitLab is most compared with Microsoft Azure DevOps, SonarQube, Bamboo, AWS CodePipeline and Tekton, whereas PortSwigger Burp Suite Professional is most compared with OWASP Zap, Fortify WebInspect, Acunetix, HCL AppScan and Digital.ai Application Security. See our GitLab vs. PortSwigger Burp Suite Professional report.
See our list of best Application Security Tools vendors, best Static Application Security Testing (SAST) vendors, and best Fuzz Testing Tools vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.