We performed a comparison between GitHub and Qualys Web Application Scanning based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The initial setup was straightforward."
"We use GitHub instead of our regular shared drive. It offers instant access to shared folders as well as good security."
"I use this solution to store my code in a repository so we can manage version control which is useful."
"GitHub is pure or open-source; you can access it anywhere. You can have a lot of collateral information. You can make the changes and do the reviews from one place."
"The most valuable feature of GitHub is version control and continuous integration."
"The solution is scalable."
"The most valuable features are GitHub are the standard features, they are very useful."
"The Projects Tab, which shows you the todo list and the progress for projects, is very helpful."
"It works with many different products."
"Its most valuable features are patch management, vulnerability management, and PCI compliance."
"Qualys WAS' most valuable features are the navigation flow of the UI and the option for a different layer of security (identification and operation through email and mobile)."
"The vulnerability management feature is a strong one. And also the patch management feature."
"QualysGuard web-based scanner is very useful for performing external penetration and PCI scans from remote locations."
"Qualys Web Application Scanning has multiple features like threat protection and container security scanning in one box."
"This product is designed for easy scalability and can easily scale up without major challenges."
"It is a cloud-based solution, so it is easy to scale."
"As of now, if I would like to learn about GitHub or its features, I would have to look on YouTube. It would be nice if they were able to send out a newsletter with explanations of new features that they are offering and what features are available."
"Scalability is an area with a shortcoming, because of which it has room for improvement."
"While using the solution when merging two code branches the code becomes a bit messy. This should be improved in the future."
"The development team pushes the code into a repository, and the CI/CD pipeline will perform the build. We need open-source libraries to perform the builds. It would be helpful to have the ability to link to open-source libraries like npm libraries. I don't know if GitHub Actions provides this. I would like to see that in GitHub Actions if they don't."
"There is a bit of a learning curve."
"The project management sector really needs some improvement for GitHub. I don't know if GitHub made sense for me as a project manager."
"GitHub's issue management could be improved a little from an organization standpoint. It would be helpful to have the ability to organize a work board or a backlog more comprehensively. For organizations migrating to GitHub from arbitrary systems, it's a little bit of a headache to move on to that system."
"We would like this solution to have a more user-friendly interface."
"The UI is not user-friendly and you don't have a yearly reporting facility where you can slice and dice in different jobs."
"The pricing does not seem to be competitive."
"In certain cases, this product does have false positives, which the company should work on."
"The software’s pricing could be improved."
"The GUI could be a little less complicated as it opens a lot of new windows for creating search lists, templates, reports, or for scanning purposes."
"We procured around 110 licenses for Web Application Scanning, but we have issues running concurrent scans. I don't currently have the option to trigger scans for all 100-plus websites. The default limit is around 10 conference scans. It's not very scalable, to be honest, because of the limitation that they put on concurrent scans."
"Qualys Web Application Scanning is very complex to use, and its graphical interface is not very user-friendly."
"The support could be faster."
More Qualys Web Application Scanning Pricing and Cost Advice →
GitHub is ranked 13th in Application Security Tools with 64 reviews while Qualys Web Application Scanning is ranked 19th in Application Security Tools with 31 reviews. GitHub is rated 8.6, while Qualys Web Application Scanning is rated 7.8. The top reviewer of GitHub writes "Beneficial version control and continuous integration, but guides would be helpful". On the other hand, the top reviewer of Qualys Web Application Scanning writes "A stable solution that can be used for infrastructure vulnerability scanning and web application scanning". GitHub is most compared with Snyk, AWS CodeCommit, Bitbucket, Atlassian SourceTree and Surround SCM, whereas Qualys Web Application Scanning is most compared with OWASP Zap, Veracode, SonarQube, PortSwigger Burp Suite Professional and Fortify WebInspect. See our GitHub vs. Qualys Web Application Scanning report.
See our list of best Application Security Tools vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.