Anonymous UserProduct Manager - Technical at a tech services company
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"The licensing fees for this solution are pretty expensive for what it does, but there is no alternative."
"Our licensing costs are about $40,000 a year."
Earn 20 points
Clair is an open source project for the static analysis of vulnerabilities in appc and docker containers.
Vulnerability data is continuously imported from a known set of sources and correlated with the indexed contents of container images in order to produce lists of vulnerabilities that threaten a container. When vulnerability data changes upstream, the previous state and new state of the vulnerability along with the images they affect can be sent via webhook to a configured endpoint. All major components can be customized programmatically at compile-time without forking the project.
Even when you understand security, it is difficult to create secure applications, especially when working under the pressures so common in today’s enterprise. The NGINX Web Application Firewall (WAF) protects applications against sophisticated Layer 7 attacks that might otherwise lead to systems being taken over by attackers, loss of sensitive data, and downtime. The NGINX WAF is based on the widely used ModSecurity open source software.
CoreOS Clair is ranked 15th in Container Security while NGINX App Protect is ranked 6th in Container Security with 3 reviews. CoreOS Clair is rated 0.0, while NGINX App Protect is rated 8.0. On the other hand, the top reviewer of NGINX App Protect writes "A stable system with good security and load balancing". CoreOS Clair is most compared with Snyk, Aqua Security, Prisma Cloud by Palo Alto Networks, Tenable.io Container Security and Sysdig Secure, whereas NGINX App Protect is most compared with AWS WAF, Microsoft Azure Application Gateway, F5 Advanced WAF, Azure Front Door and Fortinet FortiWeb.
See our list of best Container Security vendors.
We monitor all Container Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.