We performed a comparison between GitHub and Qualys Web Application Scanning based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."A great feature is being able to have different repositories and different kinds of projects in a single solution at a single time. It's just a click away."
"GitHub provides good time reduction and this is what I value the most."
"The control is the most valuable feature as developers can work on a single code."
"GitHub provides the SFH key to protect our passwords and connection."
"There are no issues. It's simple, easy, and fully compatible from my perspective with Git."
"The most valuable feature of GitHub is version control and continuous integration."
"GitHub allows us the option to push files from a non-UA method or directly upload files from the UA. You can integrate GitHub with Jenkins to do CI/CD."
"This solution is just easy to use."
"QualysGuard web-based scanner is very useful for performing external penetration and PCI scans from remote locations."
"Qualys WAS' most valuable features are the navigation flow of the UI and the option for a different layer of security (identification and operation through email and mobile)."
"The Qualys Web Application Scanning solution offers a single comprehensive console and consolidated reporting, covering all aspects from on-prem to cloud and compliance, etcetera."
"It is easy to use."
"With our vulnerabilities under control, it's putting our services in compliance and minimizing our risk for exposure."
"We can do scanning and submit reports straight to the customers when there are new vulnerabilities, then tell them whether they are affected or not."
"It is a good product for website penetration testing to detect vulnerabilities."
"The simplicity of exporting reports and the simplicity and clarity of the reports included with the product are good."
"This solution could be improved by offering crowd sourced support where we could ask questions to other users."
"GitHub could add some more security features."
"If you are uploading or cloning a large file, with more than 25 megs, it's pretty slow."
"The onboarding process could be simplified."
"If it had all of the end-to-end integration, then we probably wouldn't have any doubts about what we have installed. However, at this point, we're still trying to figure out how to use it end-to-end."
"They're improving the work items to track the progress of the team, but in my experience, Azure DevOps is better in this functionality. GitHub needs to improve the form to track the progress of the work done by a team."
"As of now, if I would like to learn about GitHub or its features, I would have to look on YouTube. It would be nice if they were able to send out a newsletter with explanations of new features that they are offering and what features are available."
"Github needs more storage."
"The support could be faster."
"There should be better visibility into the application."
"There should be better visibility into the application."
"The area of false positives could be improved. There are quite a number of false positives as compared to other solutions. They could probably fine tune the algorithm to be able to reduce the number of false positives being detected."
"We procured around 110 licenses for Web Application Scanning, but we have issues running concurrent scans. I don't currently have the option to trigger scans for all 100-plus websites. The default limit is around 10 conference scans. It's not very scalable, to be honest, because of the limitation that they put on concurrent scans."
"Deployment can be complicated."
"In certain cases, this product does have false positives, which the company should work on."
"The scanner reports a lot of false positives, which is something that needs to be improved."
More Qualys Web Application Scanning Pricing and Cost Advice →
GitHub is ranked 10th in Application Security Tools with 64 reviews while Qualys Web Application Scanning is ranked 19th in Application Security Tools with 31 reviews. GitHub is rated 8.6, while Qualys Web Application Scanning is rated 7.8. The top reviewer of GitHub writes "Beneficial version control and continuous integration, but guides would be helpful". On the other hand, the top reviewer of Qualys Web Application Scanning writes "A stable solution that can be used for infrastructure vulnerability scanning and web application scanning". GitHub is most compared with Snyk, AWS CodeCommit, Atlassian SourceTree, Bitbucket and Sonatype Repository Firewall, whereas Qualys Web Application Scanning is most compared with OWASP Zap, Veracode, SonarQube, PortSwigger Burp Suite Professional and Fortify WebInspect. See our GitHub vs. Qualys Web Application Scanning report.
See our list of best Application Security Tools vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.