We performed a comparison between GitLab and Qualys Web Application Scanning based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The solution's most valuable feature is that it is compatible with GitHub. The product's integration capabilities are sufficient for our small company of 35 people."
"It scales well."
"GitLab integrates well with other platforms."
"I have found the most valuable feature is security control. I also like the branching and cloning software."
"For us, Gitlab's most valuable feature is the integration with Cypress. We're using Cypress as an automation tool, so we're using GitLab as a tool for running in parallel."
"Key features allow creation of well-presented Wiki that includes ideas, development, and domains."
"We have seen a couple of merge requests or pull requests raised in GitLab. I see the interface, the way it shows the difference between the two source codes, that it is easy for anyone to do the review and then accept the request; the pull request is the valuable feature."
"Of all available products, it was the easiest to use and easy to install."
"The most valuable feature is that we are able to scan the services and put credentials like a user ID password. We can verify the vulnerability level."
"Its most valuable features are patch management, vulnerability management, and PCI compliance."
"The most valuable feature of Qualys Web Application Scanning is the effective scanning that can be done."
"Qualys WAS' most valuable features are the navigation flow of the UI and the option for a different layer of security (identification and operation through email and mobile)."
"The product prevents possible vulnerabilities in our network."
"It is easy to use."
"It works with many different products."
"Qualys Web Application Scanning has multiple features like threat protection and container security scanning in one box."
"It is a little complex to set up the pipelines within the solution."
"We have only seen a couple of issues on Gitlab, which we use for building some of the applications."
"We are having a few problems integrating with Jira at the moment, which is something that our IT department is investigating."
"The solution should be more cloud-native and have more cloud-native capabilities and features."
"We do face issues in our company when we run out of disk space."
"As a partner, sometimes it's difficult to get support. They have a really complicated procedure for their support."
"There was a problem with the build environment when we were looking at developing iOS applications. iOS build require Mac machines and there are no Mac machines provided by GitLab in their cloud. So to build for mobile iOS application, we needed to use our own Mac machine within our own infrastructure. If GitLab were to provide a feature such that an iOS application could also be built through GitLab directly, that would be great."
"The documentation could be improved to help newcomers better understand things like creating new branches."
"The pricing does not seem to be competitive."
"The virus code updates are not frequent enough."
"The support could be faster."
"In terms of the Policy Compliance model which they currently have, not all the platforms are being covered. If they could improve on the Policy Compliance model, since there are policies which are benchmarked against it, this will be helpful for us."
"The area of false positives could be improved. There are quite a number of false positives as compared to other solutions. They could probably fine tune the algorithm to be able to reduce the number of false positives being detected."
"There's a distinction between internal and external scanning processes that could be streamlined. Currently, for internal scanning, specific configurations and scanner appliances need to be deployed within the network, which differs from the simpler setup for external scans. This dual process complicates the setup for comprehensive scanning coverage."
"There should be better visibility into the application."
"The solution needs to adjust its pricing. They should make it more affordable."
More Qualys Web Application Scanning Pricing and Cost Advice →
GitLab is ranked 7th in Application Security Tools with 70 reviews while Qualys Web Application Scanning is ranked 19th in Application Security Tools with 31 reviews. GitLab is rated 8.6, while Qualys Web Application Scanning is rated 7.8. The top reviewer of GitLab writes "Powerful, mature, and easy to set up and manage". On the other hand, the top reviewer of Qualys Web Application Scanning writes "A stable solution that can be used for infrastructure vulnerability scanning and web application scanning". GitLab is most compared with Microsoft Azure DevOps, Bamboo, AWS CodePipeline, SonarQube and Tekton, whereas Qualys Web Application Scanning is most compared with OWASP Zap, Veracode, SonarQube, PortSwigger Burp Suite Professional and Rapid7 AppSpider. See our GitLab vs. Qualys Web Application Scanning report.
See our list of best Application Security Tools vendors and best Application Security Testing (AST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.