Coverity vs PortSwigger Burp Suite Professional comparison

Black Duck and PortSwigger are both solutions in the Static Application Security Testing (SAST) category. Black Duck is ranked #4 with an average rating of 7.9, while PortSwigger is ranked #6 with an average rating of 8.8. Black Duck holds a 8.4% mindshare in SAST, compared to PortSwigger’s 2.0% mindshare. Additionally, 88% of Black Duck users are willing to recommend the solution, compared to 98% of PortSwigger users who would recommend it.

Coverity

Read 41 Coverity reviews

14,372 Views
9,729 Comparison Views

88% willing to recommend

PortSwigger Burp Suite Prof...

Read 61 PortSwigger Burp Suite Professional reviews

5,414 Views
3,512 Comparison Views

98% willing to recommend

Coverity

PortSwigger Burp Suite Prof...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 8, 2024

PortSwigger Burp Suite Professional and Coverity compete in the application security category. Coverity seems to have the upper hand due to its comprehensive features despite a higher price point.

Features:PortSwigger Burp Suite Professional is valued for active scanning, web application vulnerability detection, and penetration testing capabilities. Coverity offers strong code analysis features, integration capabilities within development environments, and an automated solution approach.

Room for Improvement:PortSwigger Burp Suite needs better scalability, improved performance under large workloads, and more efficient processing speeds. Coverity could improve customization options, speed during large codebase analysis, and provide more flexibility.

Ease of Deployment and Customer Service:PortSwigger Burp Suite Professional is noted for straightforward deployment and responsive customer support. Coverity's deployment can be complex due to integration options, but its customer service is recognized for professionalism and expertise.

Pricing and ROI:PortSwigger Burp Suite Professional is recognized for cost-effectiveness and quick ROI, appealing to small to midsize organizations. Coverity is more expensive; however, it offers long-term ROI through its comprehensive static analysis capabilities, justifying the cost with benefits over time.

To learn more, read our detailed Coverity vs. PortSwigger Burp Suite Professional Report (Updated: October 2024).

Buyer's Guide

Coverity vs. PortSwigger Burp Suite Professional

October 2024

Download the complete report

Helped 816,406 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Customer Service

Sentiment score

7.0

Coverity's customer service is generally responsive and professional, but some users encounter communication delays and inconsistent expertise.

No sentiment score available

PortSwigger Burp Suite Professional's support is efficient, with praised documentation and forums, despite occasional delays in direct assistance.

No quotes available

For more quotes and insights, download the Coverity report

The technical support from PortSwigger is excellent.

Gintaras-Navickas

Cyber security manager at a tech services company with 11-50 employees

For more quotes and insights, download the PortSwigger Burp Suite Professional report

Room For Improvement

Sentiment score

3.7

Coverity users seek improved UI, better IDE integrations, reduced false positives, expanded language support, and enhanced reporting features.

Sentiment score

5.1

Users seek improvements in Burp Suite: false positives, CI/CD integration, UI, API testing, cost, documentation, stability, authentication.

The Coverity license fee is very high, making it tricky for individual developers.

Jaile Sebes

Senior Software Architect at Siemens Industry

For more quotes and insights, download the Coverity report

No quotes available

For more quotes and insights, download the PortSwigger Burp Suite Professional report

Scalability Issues

Sentiment score

7.1

Coverity is praised for scalability, although some face cost issues; it efficiently serves both small and large organizations.

Sentiment score

7.4

PortSwigger Burp Suite Professional is scalable across projects but requires individual licenses and has limited automation and reporting.

No quotes available

For more quotes and insights, download the Coverity report

No quotes available

For more quotes and insights, download the PortSwigger Burp Suite Professional report

Setup Cost

Sentiment score

3.0

Coverity's pricing is perceived as expensive and complex, despite providing multi-language access without code limitations.

No sentiment score available

PortSwigger Burp Suite Professional offers competitive pricing and value, with licensing options and a free community version available.

Coverity is considered expensive compared to other tools like SonarQube, which is much cheaper.

Jaile Sebes

Senior Software Architect at Siemens Industry

For more quotes and insights, download the Coverity report

No quotes available

For more quotes and insights, download the PortSwigger Burp Suite Professional report

Stability Issues

Sentiment score

8.5

Coverity is praised for its stability and reliability, with users rating its performance highly and noting minimal configurations needed.

Sentiment score

8.6

PortSwigger Burp Suite Professional is generally stable, excelling in proxy tasks despite occasional minor issues and update-related instabilities.

No quotes available

For more quotes and insights, download the Coverity report

No quotes available

For more quotes and insights, download the PortSwigger Burp Suite Professional report

Valuable Features

Sentiment score

8.2

Coverity enhances code quality with low false positives, security analysis, customizable options, and seamless integration into development workflows.

Sentiment score

8.3

PortSwigger Burp Suite Professional is a user-friendly, cost-effective tool for penetration testing with powerful features and continuous updates.

The most valuable feature of Coverity is its interprocedural analysis.

Jaile Sebes

Senior Software Architect at Siemens Industry

For more quotes and insights, download the Coverity report

The most valuable feature of Burp Suite Professional is its ability to schedule tasks for scanning websites.

Gintaras-Navickas

Cyber security manager at a tech services company with 11-50 employees

For more quotes and insights, download the PortSwigger Burp Suite Professional report

Categories and Ranking

Coverity

Ranking in Static Application Security Testing (SAST)

4th

Average Rating

7.8

Reviews Sentiment

6.5

Number of Reviews

Ranking in other categories

No ranking in other categories

PortSwigger Burp Suite Prof...

Ranking in Static Application Security Testing (SAST)

6th

Average Rating

8.6

Reviews Sentiment

7.5

Number of Reviews

Ranking in other categories

Application Security Tools (8th), Fuzz Testing Tools (1st)

Mindshare comparison

As of November 2024, in the Static Application Security Testing (SAST) category, the mindshare of Coverity is 8.4%, up from 7.2% compared to the previous year. The mindshare of PortSwigger Burp Suite Professional is 2.0%, down from 3.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Static Application Security Testing (SAST)

Featured Reviews

Md. Shahriar Hussain

Cyber Security Chartered Engineer at Banglalink

Offers impressive reporting features with user-friendliness and high scalability

The solution can be easily setup but requires heavy integration due to the multiple types of port and programming languages involved. Comparing the resource requirements of the solution I would say it can be installed effortlessly. I would rate the initial setup an eight out of ten. A professional needs some pre-acquired knowledge to manage Coverity's deployment process, but the local solution partners provide support well enough for trouble-free deployment. The overall deployment process of Coverity took around two and a half hours in our organization. The deployment duration depends upon the operating system and resources including high-end RAM and CPU processors.

Read full review

Anton Krivonosov

Application Security Architect at Kuehne & Nagel Inc.

A special tool for penetration testers or security specialists to conduct security assessments

We use the solution for security assessments. It's a special tool for penetration testers or security specialists PortSwigger Burp Suite Professional is a standard tool in the security industry. It's a stable solution that has many features. You can download different plugins if you don't have…

Read full review

See which vendors are best for you

Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.

See recommendations

816,406 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Manufacturing Company

32%

Computer Software Company

15%

Financial Services Firm

Government

Computer Software Company

17%

Financial Services Firm

12%

Government

11%

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

How would you decide between Coverity and Sonarqube?

We researched Coverity, but in the end, we chose SonarQube. SonarQube is a tool for reviewing code quality and security. It helps to guide our development teams during code reviews by providing rem...

See all answers

What do you like most about Coverity?

The solution has improved our code quality and security very well.

See all answers

What is your experience regarding pricing and costs for Coverity?

We do it yearly.

See all answers

Is OWASP Zap better than PortSwigger Burp Suite Pro?

OWASP Zap and PortSwigger Burp Suite Pro have many similar features. OWASP Zap has web application scanning available with basic security vulnerabilities while Burp Suite Pro has it available with ...

See all answers

What do you like most about PortSwigger Burp Suite Professional?

The solution helped us discover vulnerabilities in our applications.

See all answers

What is your experience regarding pricing and costs for PortSwigger Burp Suite Professional?

I would rate the pricing a six out of ten. It's not as flexible here as it might be in European or American markets.

See all answers

Comparisons

SonarQube Server (formerly SonarQube) vs Coverity

Compared 54% of the time

Klocwork vs Coverity

Compared 7% of the time

Fortify on Demand vs Coverity

Compared 7% of the time

Checkmarx One vs Coverity

Compared 6% of the time

Veracode vs Coverity

Compared 5% of the time

More Coverity Competitors

Acunetix vs PortSwigger Burp Suite Professional

Compared 18% of the time

Fortify WebInspect vs PortSwigger Burp Suite Professional

Compared 14% of the time

OWASP Zap vs PortSwigger Burp Suite Professional

Compared 11% of the time

HCL AppScan vs PortSwigger Burp Suite Professional

Compared 8% of the time

SonarQube Server (formerly SonarQube) vs PortSwigger Burp Suite Professional

Compared 8% of the time

More PortSwigger Burp Suite Professional Competitors

Product Reports

Buyer's Guide

Coverity

November 2024

Download Coverity product report

Buyer's Guide

PortSwigger Burp Suite Professional

November 2024

PortSwigger Burp Suite Professional report

Download PortSwigger Burp Suite Professional product report

Also Known As

Synopsys Static Analysis

Burp

Learn More

Black Duck

PortSwigger

Overview

Coverity gives you the speed, ease of use, accuracy, industry standards compliance, and scalability that you need to develop high-quality, secure applications. Coverity identifies critical software quality defects and security vulnerabilities in code as it’s written, early in the development process, when it’s least costly and easiest to fix. With the Code Sight integrated development environment (IDE) plugin, developers get accurate analysis in seconds in their IDE as they code. Precise actionable remediation advice and context-specific eLearning help your developers understand how to fix their prioritized issues quickly, without having to become security experts.

Coverity seamlessly integrates automated security testing into your CI/CD pipelines and supports your existing development tools and workflows. Choose where and how to do your development: on-premises or in the cloud with the Polaris Software Integrity Platform (SaaS), a highly scalable, cloud-based application security platform. Coverity supports more than 20 languages and 200 frameworks and templates.

Burp Suite Professional, by PortSwigger, is the world’s leading toolkit for web security testing. Over 52,000 users worldwide, across all industries and organization sizes, trust Burp Suite Professional to find more vulnerabilities, faster. With expertly-engineered manual and automated tooling, you're able to test smarter - not harder.

PortSwigger is the web security company that is enabling the world to secure the web. Over 50,000 security engineers rely on our software and expertise to secure their world.

Sample Customers

SAP, Mega International, Thales Alenia Space

Google, Amazon, NASA, FedEx, P&G, Salesforce

Buyer's Guide

Coverity vs. PortSwigger Burp Suite Professional

October 2024

Free Report: Coverity vs. PortSwigger Burp Suite Professional

Find out what your peers are saying about Coverity vs. PortSwigger Burp Suite Professional and other solutions. Updated: October 2024.

DOWNLOAD NOW

816,406 professionals have used our research since 2012.

See our Coverity vs. PortSwigger Burp Suite Professional report.

See our list of best Static Application Security Testing (SAST) vendors.

We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.