We performed a comparison between GitLab and PortSwigger Burp Suite Professional based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."As a developer, this solution is useful as a repository holder because most of the POC projects that we have are on GitLab."
"The solution is stable."
"The dashboard and interface make it easy to use."
"The most valuable features of GitLab are the review, patch repo, and plans are in YAML."
"It is scalable."
"It is very flexible and easy because you can store data on cloud."
"The tool helps to integrate CI/CD pipeline deployments. It is very easy to learn. Its security model is good."
"We like that we can create branches and then the branches can be reviewed and you can mesh those branches back. You can independently work with your own branch, you don't need to really control the core of other people."
"PortSwigger Burp Suite Professional has an intercept tab that helps us to scan our APIs, set the response, and request errors."
"The tool provides complimentary services. It allows you to add a lot of extensions, and you can get extensions quite often. It is quite a flexible application."
"The solution scans web applications and supports APIs, which are the main features I really like."
"It helps in API testing, where manual intervention was previously necessary for each payload."
"The active scanner, which does an automated search of any web vulnerabilities."
"I personally love its capability to automatically and accurately detect vulnerabilities. So, I would say it is the Burp scanner that is THE most powerful, valuable, and an awesome feature."
"The Spider is the most useful feature. It helps to analyze the entire web application, and it finds all the passes and offers an automated identification of security issues."
"The extension that it provides with the community version for the skills mapping is excellent."
"The initial setup was quite challenging because it takes some time to understand how to pull out or push the code."
"We'd like to see better integration with the Atlassian ecosystem."
"I would like configuration of a YML file to be done via UI rather than a code file."
"The user interface could be more user-friendly. We do most of our operations through the website interface but it could be better."
"Based on what I know so far, its integration with Kubernetes is not so good. We have to develop many things to make it work. We have to acquire third-party components to work with Kubernetes."
"It would be better if there weren't any outages. There are occasions where we usually see a lot of outages using GitLab. It happens at least once a week or something like that. Whatever pipelines you're running, to check the logs, you need to have a different set of tools like Argus or something like that. If you have pipelines running on GitLab, you need a separate service deployed to view the logs, which is kind of a pain. If the logs can be used conveniently on GitLab, that would be definitely helpful. I'm not talking about the CI/CD pipelines but the back-end services and microservices deployed over GitLab. To view the logs for those microservices, you need to have separate log viewers, which is kind of a pain."
"We have only seen a couple of issues on Gitlab, which we use for building some of the applications."
"The solution could improve by providing more integration into the CI/CD pipeline, an autocomplete search tool, and more supporting documentation."
"Scanning needs to be improved in enterprise and professional versions."
"Improvement should be done as per the requirements of customers."
"There were a lot of false positives there, and we used to spend a lot of time, like, for security reasons, reproducing those bugs for the development team to fix it."
"The price could be better. The rest is fine."
"PortSwigger Burp Suite Professional could improve the static code review."
"There is a lot to this product, and it would be good if when you purchase the tool, they can provide us with a more extensive user manual."
"A lot of our interns find it difficult to get used to PortSwigger Burp's environment."
"It should provide a better way to integrate with Jenkins so that DAST (dynamic application security testing) can be automated."
More PortSwigger Burp Suite Professional Pricing and Cost Advice →
GitLab is ranked 7th in Application Security Tools with 70 reviews while PortSwigger Burp Suite Professional is ranked 9th in Application Security Tools with 57 reviews. GitLab is rated 8.6, while PortSwigger Burp Suite Professional is rated 8.6. The top reviewer of GitLab writes "Powerful, mature, and easy to set up and manage". On the other hand, the top reviewer of PortSwigger Burp Suite Professional writes "The solution is versatile and easy to deploy, but it needs to give more detailed security reports". GitLab is most compared with Microsoft Azure DevOps, Bamboo, SonarQube, AWS CodePipeline and Tekton, whereas PortSwigger Burp Suite Professional is most compared with OWASP Zap, Fortify WebInspect, Acunetix, HCL AppScan and Fortify on Demand. See our GitLab vs. PortSwigger Burp Suite Professional report.
See our list of best Application Security Tools vendors, best Static Application Security Testing (SAST) vendors, and best Fuzz Testing Tools vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.