JFrog Xray vs ReversingLabs comparison

JFrog and ReversingLabs are both solutions in the Software Composition Analysis (SCA) category. JFrog is ranked #6 with an average rating of 8.0, while ReversingLabs is ranked #12 with an average rating of 10.0. Additionally, 100% of JFrog users are willing to recommend the solution, compared to 100% of ReversingLabs users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 16, 2024

ReversingLabs and JFrog Xray compete in the field of software security. JFrog Xray stands out due to its feature richness and perceived value.

Features: ReversingLabs offers comprehensive malware analysis, threat intelligence, and strong support options. JFrog Xray is valued for its integration with CI/CD pipelines, exhaustive vulnerability detection, and extensive feature set that aligns with modern DevOps practices.

Room for Improvement: ReversingLabs needs to improve its integration capabilities with other tools and could benefit from enhancements in connectivity features. JFrog Xray could improve its documentation and user guides and also work on better user support experiences.

Ease of Deployment and Customer Service: ReversingLabs is reported to have a straightforward deployment process and responsive customer service. JFrog Xray offers flexible deployment options but has some issues with customer service responsiveness.

Pricing and ROI: Both ReversingLabs and JFrog Xray have high setup costs. ReversingLabs users feel the ROI justifies the expenditure, while JFrog Xray's broader feature set provides a good return on investment.

To learn more, read our detailed JFrog Xray vs. ReversingLabs Report (Updated: November 2024).

Buyer's Guide

JFrog Xray vs. ReversingLabs

November 2024

Download the complete report

Helped 824,052 peers since 2012

Categories and Ranking

SentinelOne Singularity Clo...

Featured Reviews

Andrew W

VP - Information Technology at a financial services firm with 201-500 employees

Tells us about vulnerabilities as well as their impact and helps to focus on real issues

Looking at all the different pieces, it has got everything we need. Some of the pieces we do not even use. For example, we do not have Kubernetes Security. We are not running any K8 clusters, so it is good for us. Overall, we find the solution to be fantastic. There can be additional education components. This may not be truly fair to them because of what the product is going for, but it would be great to see additional education for compliance. It is not a criticism of the tool per se, but anything to help non-development resources understand some of the complexities of the cloud is always appreciated. Any additional educational resources are always helpful for security teams, especially those without a development background.

Read full review

Mokshi Pandita

DevOps Engineer at Rambøll Danmark A/S

An intelligent solution that prioritizes which vulnerability to target first in your project

We could create any number of repositories, but we can create only thirty projects with JFrog Xray. If I want things to work, it has to be one project and multiple repositories that belong to different real projects. So I have a limitation of thirty projects, despite being a premium customer. JFrog Xray does not have a dashboard. Although I am able to generate reports, there is no proper dashboard where I can see the total number of vulnerabilities, the total number of license issues, and how many vulnerabilities are fixed. Second, I found the shift left approach missing with JFrog Xray. JFrog Xray has integration with IDEs, but it does not tell you about the vulnerabilities until the artifact is created. However, Snyk could directly integrate with your repository and would not allow you to build unless you fix the problem.

Read full review

Jesse Harris

Principal Solutions Architect at Tanium

Comes with a large sample size and helps t stay on top of emerging threats

The solution helps to stay on top of emerging threats with easy integration with other products. ReversingLabs has a large sample size. The solution needs to improve integrations. I have been using the solution for four to five years. ReversingLabs' stability is excellent. I rate the…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The mean time to detect has been reduced."

"Cloud Native Security has helped us with our risk posture and securing our agenda. It has been tremendous in terms of supporting growth."

"We really appreciate the Slack integration. When we have an incident, we get an instant notification. We also use Joe Sandbox, which Singularity can integrate with, so we can verify if a threat is legitimate."

"It saves time, makes your environment more secure, and improves compliance. PingSafe helps with audits, ensuring that you are following best practices for cloud security. You don't need to be an expert to use it and improve your security."

"The most valuable feature of the solution is its storyline, which helps trace an event back to its source, like an email or someone clicking on a link."

"There's real-time threat detection. It can show threats and find issues based on their severity and helps us with real-time monitoring."

"We liked the search bar in PingSafe. It is a global search. We were able to get some insights from there."

"Atlas security graph is pretty cool. It maps out relationships between components on AWS, like load balancers and servers. This helps visualize potential attack paths and even suggests attack paths a malicious actor might take."

More SentinelOne Singularity Cloud Security pros

"The most valuable features of JFrog Xray are its curation capabilities, its native integration with Artifactory, scanning for vulnerabilities, and license compliance features."

"The solution is stable and reliable."

"The most valuable features of JFrog Xray are its curation capabilities, its native integration with Artifactory, scanning for vulnerabilities, and license compliance features."

"I would say that this solution has helped our organization by allowing us to automate a lot of the processes."

"The most valuable feature of JFrog Xray is the display of the entire internal dependencies hierarchy."

"If multiple dependencies and vulnerabilities are found in a project, JFrog Xray is intelligent enough to tell you which vulnerability to target first."

"JFrog Xray shows us a list of vulnerabilities that can impact our code."

"Good reporting functionalities."

More JFrog Xray pros

"As far as static analysis information is concerned, we use most of the information that is available in order to determine whether or not we might be dealing with a malware variant. This includes information that is related to Java rules. This is also related to malware families indicated or specific malicious software variants that are labeled by name."

"ReversingLabs has a large sample size."

"It offers reports on a great many more file types than the other analysis solutions we have. It can give us a more in-depth analysis and better reporting on a larger number of file types. It also gives us a more comprehensive score on a number of things as well, and that's why we're using it as a front-end filter. It gives us more information... It's valuable because of its depth of information, as well as the breadth it gives us. There aren't a lot of tools that cover all of the different file types."

"The automated static analysis of malware is the most valuable feature. Its detection abilities are very good. It hits all of the different platforms out there, platforms that see the items in the wild."

"As far as the malware repository is concerned, it's extensive. It's a good source for finding samples, where we are unable to find them on other channels or by leveraging other sources."

Cons

"They can work on policies based on different compliance standards."

"It does not bring much threat intel from the outside world. All it does is scan. If it can also correlate things, it will be better."

"The alerting system of the product is an area that I look at and sometimes get confused about. I feel the alerting feature needs improvement."

"The area of improvement is the cost, which is high compared to other traditional endpoint protections."

"While SentinelOne Singularity Cloud Security offers robust protection, its cost could be a barrier for some users."

"The integration with Oracle has room for improvement."

"There can be a specific type of alert showing that a new type of risk has been identified."

"The main area for improvement I want to see is for the platform to become less resource-intensive. Right now, it can slow down processes on the machine, and it would be a massive improvement if it were more lightweight than it currently is."

More SentinelOne Singularity Cloud Security cons

"Reporting is crucial, but it is lacking in the current tool. Every organization seeks specific data points rather than general information. Therefore, we require customized reports from the Xray tool."

"JFrog Xray's documentation and error logging could be improved."

"I think that the user interface should be expanded to provide customers with a better dashboard for reviewing their feedback regarding their images and the vulnerabilities that are associated with the images."

"Lacks deeper reporting, the ability to compare things."

"The speed of JFrog Xray should improve. Other solutions have better performance."

"The out-of-the-box PostgreSQL provided is not stable, which is why we are considering enterprise support."

"X-ray needs improvement in supporting more than one database, as it currently only supports PostgreSQL."

"JFrog Xray does not have a dashboard."

More JFrog Xray cons

"I would like to see if we could do a little bit more of bulk uploading of hash sets. Right now, I can only do them individually."

"The solution needs to improve integrations."

"While the company is very helpful, it would be very much appreciated to have extensive proof of concept scripts for the different APIs available, though not for all the APIs that we have purchased. Respective scripts are available, but those scripts which are available are typically not of very high quality."

"The product support could be better at times. Sometimes, the resources that they provide could be of higher quality."

"We would really like further integration with our threat intelligence platform, which is called ThreatConnect. We would also really like further integrations with an endpoint protection product we use called Tanium. The reason I mentioned both of these is that ReversingLabs claims to have extensive integrations with both of them, but they did not work for us."

Pricing and Cost Advice

"Singularity Cloud Security by SentinelOne is cost-efficient."

"As a partner, we receive a discount on the licenses."

"We have an enterprise license. It is affordable. I'm not sure, but I think we pay 150,000 rupees per month."

"I am not involved in the pricing, but it is cost-effective."

"The licensing is easy to understand and implement, with some flexibility to accommodate dynamic environments."

"It's a fair price for what you get. We are happy with the price as it stands."

"PingSafe is cost-effective for the amount of infrastructure we have. It's reasonable for what they offer compared to our previous solution. It's at least 25 percent to 30 percent less."

"The cost for PingSafe is average when compared to other CSPM tools."

More SentinelOne Singularity Cloud Security pricing and cost advice

Information not available

"We have a yearly contract based on the number of queries and malicious programs which can be processed."

"Currently, the license number of lookups that we purchased has not been reached yet, because the integration has only recently been completed. However, our usage is expected and planned to increase over the next couple of months."

See which vendors are best for you

Use our free recommendation engine to learn which Software Composition Analysis (SCA) solutions are best for your needs.

See recommendations

824,052 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

19%

Financial Services Firm

15%

Manufacturing Company

Government

Financial Services Firm

25%

Manufacturing Company

14%

Computer Software Company

12%

Government

Computer Software Company

17%

Financial Services Firm

16%

Insurance Company

Educational Organization

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about PingSafe?

The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...

See all answers

What is your experience regarding pricing and costs for PingSafe?

The pricing is somewhat high compared to other market tools. This cost can be particularly prohibitive for small busi...

See all answers

What needs improvement with PingSafe?

To enhance the notification system's efficiency, resolved issues should be promptly removed from the portal. Currentl...

See all answers

What do you like most about JFrog Xray?

JFrog Xray shows us a list of vulnerabilities that can impact our code.

See all answers

What needs improvement with JFrog Xray?

X-ray needs improvement in supporting more than one database, as it currently only supports PostgreSQL. More support ...

See all answers

What is your primary use case for JFrog Xray?

Our primary use case for X-ray includes multiple activities such as security and vulnerability scanning. We already u...

See all answers

What do you like most about ReversingLabs?

ReversingLabs has a large sample size.

See all answers

What needs improvement with ReversingLabs?

The solution needs to improve integrations.

See all answers

What advice do you have for others considering ReversingLabs?

I rate the product a ten out of ten.

See all answers

Comparisons

Wiz vs SentinelOne Singularity Cloud Security

Compared 31% of the time

Prisma Cloud by Palo Alto Networks vs SentinelOne Singularity Cloud Security

Compared 23% of the time

AWS GuardDuty vs SentinelOne Singularity Cloud Security

Compared 8% of the time

Orca Security vs SentinelOne Singularity Cloud Security

Compared 6% of the time

Microsoft Defender for Cloud vs SentinelOne Singularity Cloud Security

Compared 6% of the time

More SentinelOne Singularity Cloud Security Competitors

Black Duck vs JFrog Xray

Compared 19% of the time

Trivy vs JFrog Xray

Compared 14% of the time

Veracode vs JFrog Xray

Compared 7% of the time

Snyk vs JFrog Xray

Compared 6% of the time

Prisma Cloud by Palo Alto Networks vs JFrog Xray

Compared 6% of the time

More JFrog Xray Competitors

VirusTotal vs ReversingLabs

Compared 27% of the time

CrowdStrike Falcon vs ReversingLabs

Compared 14% of the time

Black Duck vs ReversingLabs

Compared 12% of the time

Snyk vs ReversingLabs

Compared 7% of the time

Wiz vs ReversingLabs

Compared 7% of the time

More ReversingLabs Competitors

Product Reports

Buyer's Guide

SentinelOne Singularity Cloud Security

October 2024

SentinelOne Singularity Cloud Security report

Download SentinelOne Singularity Cloud Security product report

Buyer's Guide

JFrog Xray

December 2024

Download JFrog Xray product report

Buyer's Guide

ReversingLabs

December 2024

Download ReversingLabs product report

Also Known As

PingSafe

JFrog Security Essentials

ReversingLabs Titanium, ReversingLabs secure.software

Learn More

SentinelOne

JFrog

ReversingLabs

Overview

SentinelOne Singularity Cloud Security protects cloud workloads, offering advanced threat detection and automated response. It integrates seamlessly with cloud environments and secures containerized applications and virtual machines against vulnerabilities.

SentinelOne Singularity Cloud Security is renowned for its efficiency in mitigating threats in real-time. The platform integrates effortlessly with existing cloud environments, ensuring robust cloud security management with minimal manual intervention. Securing containerized applications and virtual machines, it excels in threat intelligence and endpoint protection. However, improvements are needed in performance during high workload periods, and more integrations with third-party tools and better documentation would be beneficial. Users often find the installation process complex, support response times slow, and the dashboard's navigation unintuitive.

What are the key features of SentinelOne Singularity Cloud Security?

Real-time Threat Detection: Identifies and mitigates threats as they occur.
Automated Response: Automatically responds to threats to minimize impact.
Ease of Deployment: Simple setup process with scalable options.
Machine Learning Insights: AI-driven insights enhance threat prevention.
Seamless Integration: Integrates with cloud environments for unified security management.

What are the primary benefits or ROI to expect from SentinelOne Singularity Cloud Security?

Enhanced Threat Mitigation: Improved security against real-time threats.
Reduced Manual Intervention: Automated processes save time and resources.
Scalability: Easily adapts to growing security requirements.
Centralized Management: Manage security across platforms from a single console.
Advanced Threat Intelligence: Provides in-depth analysis and protection.

In specific industries, SentinelOne Singularity Cloud Security is implemented to safeguard critical data and infrastructure. Organizations in finance, healthcare, and technology depend on its real-time threat detection and automated response to protect sensitive information. Its ability to secure containerized applications and virtual machines is particularly valuable in dynamic environments where rapid scaling is necessary.

JFrog is on a mission to enable continuous updates through Liquid Software, empowering developers to code high-quality applications that securely flow to end-users with zero downtime. The world’s top brands such as Amazon, Facebook, Google, Netflix, Uber, VMware, and Spotify are among the 4500 companies that already depend on JFrog to manage binaries for their mission-critical applications. JFrog is a privately-held, global company, and is a proud sponsor of the Cloud Native Computing Foundation [CNCF].

If you are a team player and you care and you play to WIN, we have just the job you're looking for.

As we say at JFrog: "Once You Leap Forward You Won't Go Back!"

ReversingLabs is the trusted authority in software and file security. We provide the modern cybersecurity platform to verify and deliver safe binaries. Trusted by the Fortune 500 and leading cybersecurity vendors, the ReversingLabs Titanium Platform® powers the software supply chain and file security insights, tracking over 35 billion files daily with the ability to deconstruct full software binaries in seconds to minutes. Only ReversingLabs provides that final exam to determine whether a single file or full software binary presents a risk to your organization and your customers.

RL - Trust Delivered.

https://www.reversinglabs.com

Sample Customers

Information Not Available

google, amazon, cisco, netflix, oracle, vmware, facebook

Financial services, healthcare, government, manufacturing, oil & gas, telecommunications, information technology

Buyer's Guide

JFrog Xray vs. ReversingLabs

November 2024

Free Report: JFrog Xray vs. ReversingLabs

Find out what your peers are saying about JFrog Xray vs. ReversingLabs and other solutions. Updated: November 2024.

DOWNLOAD NOW

824,052 professionals have used our research since 2012.

See our JFrog Xray vs. ReversingLabs report.

See our list of best Software Composition Analysis (SCA) vendors, best Container Security vendors, and best Software Supply Chain Security vendors.

We monitor all Software Composition Analysis (SCA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.