We performed a comparison between GitLab and PortSwigger Burp Suite Professional based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The initial setup of GitLab is pretty simple, with no complications."
"The solution has an established roadmap that lays out its plans for upgrades over the next two to three years."
"The most valuable features of GitLab are the review, patch repo, and plans are in YAML."
"It is very flexible and easy because you can store data on cloud."
"We use the Git repository and tagging feature. We are a product-based company and use this solution to move to a forward or backward tag."
"The solution's service delivery model is fantastic."
"GitLab's best features are maintenance, branch integration, and development infrastructure."
"CI/CD is very good. The version control system is also good. These are the two features that we use."
"The solution scans web applications and supports APIs, which are the main features I really like."
"You can download different plugins if you don't have them in the standard edition."
"The solution is stable."
"The intercepting feature is the most valuable."
"It is a time-saver application."
"The way they do the research and they keep their profile up to date is great. They identify vulnerabilities and update them immediately."
"PortSwigger Burp Suite Professional has an intercept tab that helps us to scan our APIs, set the response, and request errors."
"The feature that we have found most valuable is that it comes with pre-set configurations. They have a set of predefined options where you can pick one and start scanning. We also have the option of creating our own configurations, like how often do the applications need to be scanned."
"In the free version, when a merge request is raised, there is no way to enforce certain rules. We can't enforce that this merge request must be reviewed or approved by two or three people in the team before it is pushed to the master branch. That's why we are exploring using some agents."
"The solution does not have many built-in functions or variables so scripting is required."
"The solution could be faster."
"The pricing model of GitLab is an issue for me."
"It's more related to the supporting layer of features, such as issue management and issue tracking. We tend to always use, for example, Jira next to it. That doesn't mean that GitLab should build something similar to Jira because that will always have its place, but they could grow a bit in those kinds of supporting features. I see some, for example, covering ITSM on a DevOps team level, and that's one of the things that I and my current client would find really helpful. It's understandably not going to be their main focus and their core, and whenever you are with a company that needs a bit more advanced features on that specific topic, you're probably still going to integrate with another tool like Jira Service Management, for example. However, some basic features on things like that could be really helpful."
"I would like to see security increased in the future. A secure environment is very important."
"GitLab's UI could be improved."
"The initial setup was quite challenging because it takes some time to understand how to pull out or push the code."
"The initial setup is a bit complex."
"There could be an improvement in the API security testing. There is another tool called Postman and if we had a built-in portal similar to Postman which captures the API, we would be able to generate the API traffic. Right now we need a Postman tool and the Burp Suite for performing API tests. It would be a huge benefit to be able to do it in a single UI."
"There needs to be better documentation provided. Currently, we need to buy books, or we need to review online some use cases from other professionals who have been using the solution to find out their experience. It is not easy to find out how to properly do a security assessment."
"I am from Brazil. The currency exchange rate from a dollar to a Brazilian Real is quite steep. It is almost six to one. It would be good if it can be sold in the local currency, and its price is cheaper for us."
"The solution’s pricing could be improved."
"BurpSuite has some issues regarding authentication with OAT tokens that need to be improved."
"Sometimes the solution can run a little slow."
"The price could be better. The rest is fine."
More PortSwigger Burp Suite Professional Pricing and Cost Advice →
GitLab is ranked 7th in Application Security Tools with 70 reviews while PortSwigger Burp Suite Professional is ranked 9th in Application Security Tools with 55 reviews. GitLab is rated 8.6, while PortSwigger Burp Suite Professional is rated 8.6. The top reviewer of GitLab writes "Powerful, mature, and easy to set up and manage". On the other hand, the top reviewer of PortSwigger Burp Suite Professional writes "The solution is versatile and easy to deploy, but it needs to give more detailed security reports". GitLab is most compared with Microsoft Azure DevOps, Bamboo, AWS CodePipeline, SonarQube and Tekton, whereas PortSwigger Burp Suite Professional is most compared with OWASP Zap, Fortify WebInspect, Acunetix, HCL AppScan and Digital.ai Application Security. See our GitLab vs. PortSwigger Burp Suite Professional report.
See our list of best Application Security Tools vendors, best Application Security Testing (AST) vendors, and best Fuzz Testing Tools vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.