We performed a comparison between GitHub and Qualys Web Application Scanning based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."GitHub is pure or open-source; you can access it anywhere. You can have a lot of collateral information. You can make the changes and do the reviews from one place."
"A great feature is being able to have different repositories and different kinds of projects in a single solution at a single time. It's just a click away."
"I'm able to access any repository that I like, whether it's public or private."
"The solution can scale."
"I have found GitHub stable."
"There are no issues. It's simple, easy, and fully compatible from my perspective with Git."
"I like the CI/CD features."
"We've found the technical support to be very helpful."
"The vulnerability management feature is a strong one. And also the patch management feature."
"Qualys' process of updating signatures is something we really appreciate, and it's way ahead of its industry peers."
"It works with many different products."
"Licensing is the most valuable. Qualys provides the best licensing for companies. It is the best product for the development purposes of web applications. The product has a lot of integrations."
"We can do scanning and submit reports straight to the customers when there are new vulnerabilities, then tell them whether they are affected or not."
"By using QualysGuard, we are able to finish external scans with assured results in half the time."
"The most valuable feature of Qualys Web Application Scanning is the effective scanning that can be done."
"Qualys WAS' most valuable features are the navigation flow of the UI and the option for a different layer of security (identification and operation through email and mobile)."
"The solution's cost is high and should be reduced."
"Could be more user friendly."
"GitHub could have better integration or capability with other solutions."
"While using the solution when merging two code branches the code becomes a bit messy. This should be improved in the future."
"The GUI design is poor, so I exclusively use the CLI, which is much easier to use and understand. It would be great to see the GUI updated to be more user-friendly."
"Our firewall was blocking cloning and downloading with SSH."
"The project management sector really needs some improvement for GitHub. I don't know if GitHub made sense for me as a project manager."
"GitHub could add some more security features."
"The virus code updates are not frequent enough."
"The pricing does not seem to be competitive."
"The GUI could be a little less complicated as it opens a lot of new windows for creating search lists, templates, reports, or for scanning purposes."
"The product should allow users to upload their payloads."
"The UI is not user-friendly and you don't have a yearly reporting facility where you can slice and dice in different jobs."
"Deployment can be complicated."
"There should be better visibility into the application."
"Sometimes the response time is low because the handshake fails, and then you have to re-login and start again."
More Qualys Web Application Scanning Pricing and Cost Advice →
GitHub is ranked 12th in Application Security Tools with 72 reviews while Qualys Web Application Scanning is ranked 18th in Application Security Tools with 31 reviews. GitHub is rated 8.6, while Qualys Web Application Scanning is rated 7.8. The top reviewer of GitHub writes "Beneficial version control and continuous integration, but guides would be helpful". On the other hand, the top reviewer of Qualys Web Application Scanning writes "A stable solution that can be used for infrastructure vulnerability scanning and web application scanning". GitHub is most compared with Snyk, AWS CodeCommit, Bitbucket, Fortify on Demand and Surround SCM, whereas Qualys Web Application Scanning is most compared with OWASP Zap, Veracode, SonarQube, PortSwigger Burp Suite Professional and Fortify WebInspect. See our GitHub vs. Qualys Web Application Scanning report.
See our list of best Application Security Tools vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.