JFrog Xray vs Skybox Security Suite comparison

JFrog and Skybox Security are both solutions in the Vulnerability Management category. JFrog is ranked #22 with an average rating of 8.2, while Skybox Security is ranked #28 with an average rating of 7.0. JFrog holds a 1.0% mindshare in VM, compared to Skybox Security’s 0.5% mindshare. Additionally, 100% of JFrog users are willing to recommend the solution, compared to 82% of Skybox Security users who would recommend it.

JFrog Xray

Read 7 JFrog Xray reviews

623 Views
450 Comparison Views

100% willing to recommend

Skybox Security Suite

Read 35 Skybox Security Suite reviews

711 Views
502 Comparison Views

82% willing to recommend

JFrog Xray

Skybox Security Suite

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 9, 2024

Skybox Security Suite and JFrog Xray compete in the network security and software composition analysis sectors. Skybox leads with advanced threat intelligence and remediation capabilities, while JFrog Xray is distinctive for comprehensive artifact scanning.

Features: Skybox Security Suite includes advanced threat intelligence, network modeling, and attack surface analysis, enabling proactive vulnerability management. JFrog Xray provides deep scanning of binaries and Docker images, focusing on detailed software artifact security. The primary distinction is Skybox's broad network protection versus JFrog's detailed artifact scanning.

Room for Improvement: Skybox could enhance integration capabilities and offer more scalable pricing options. It could also focus on improving its self-service resources. JFrog Xray could benefit from more personalized customer support options and enhancing its threat intelligence features. Streamlining its deployment process could further strengthen JFrog's offering.

Ease of Deployment and Customer Service: Skybox offers flexible deployment options and responsive customer support, contributing to successful implementation. JFrog Xray provides streamlined integration processes and extensive documentation, which aids in self-service. While Skybox provides personalized support, JFrog offers a comprehensive resource base for users.

Pricing and ROI: Skybox Security Suite has higher upfront costs, offset by strong ROI through comprehensive capabilities and threat prevention. JFrog Xray presents competitive pricing with scalable plans, offering balanced ROI due to its integration strengths. Skybox's premium investment is justified by expansive network features, contrasting with JFrog's scalable model and robust scanning.

To learn more, read our detailed JFrog Xray vs. Skybox Security Suite Report (Updated: October 2024).

Buyer's Guide

JFrog Xray vs. Skybox Security Suite

October 2024

Download the complete report

Helped 814,528 peers since 2012

Categories and Ranking

JFrog Xray

Ranking in Vulnerability Management

22nd

Average Rating

8.2

Number of Reviews

Ranking in other categories

Container Security (19th), Software Composition Analysis (SCA) (6th), Software Supply Chain Security (3rd)

Skybox Security Suite

Ranking in Vulnerability Management

28th

Average Rating

7.6

Number of Reviews

Ranking in other categories

Firewall Security Management (6th)

Mindshare comparison

As of November 2024, in the Vulnerability Management category, the mindshare of JFrog Xray is 1.0%, up from 0.1% compared to the previous year. The mindshare of Skybox Security Suite is 0.5%, down from 0.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Vulnerability Management

Featured Reviews

Mokshi Pandita

DevOps Engineer at Rambøll Danmark A/S

Jun 1, 2023

An intelligent solution that prioritizes which vulnerability to target first in your project

We could create any number of repositories, but we can create only thirty projects with JFrog Xray. If I want things to work, it has to be one project and multiple repositories that belong to different real projects. So I have a limitation of thirty projects, despite being a premium customer. JFrog Xray does not have a dashboard. Although I am able to generate reports, there is no proper dashboard where I can see the total number of vulnerabilities, the total number of license issues, and how many vulnerabilities are fixed. Second, I found the shift left approach missing with JFrog Xray. JFrog Xray has integration with IDEs, but it does not tell you about the vulnerabilities until the artifact is created. However, Snyk could directly integrate with your repository and would not allow you to build unless you fix the problem.

Read full review

NenadMijatovic

Director of Sales at S4E Serbia

Feb 8, 2024

Efficient in vulnerability management, stable and easy to use

Vulnerability management is the most valuable feature because it lets you focus on the most critical vulnerabilities. That's the important thing. Here in Serbia, there are not so many companies that have too many firewalls inside one company. So, they usually don't buy this model for Firewall Assurance unless there is some compliance. So you can prove that your firewalls are compliant. So, that model is not so important here in Serbia. It's for bigger companies. So, they usually buy network assurance to build the model of the network and vulnerability management to focus on the most important vulnerabilities. Moreover, Skybox can collect data for many vendors. From the endpoint protection vendors to the network equipment vendors to other security vendors. So, it supports more than one hundred vendors to collect data from them.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"JFrog Xray's reporting feature has a lot of options in it, including scanning."

"The most valuable feature of JFrog Xray is the display of the entire internal dependencies hierarchy."

"Good reporting functionalities."

"The solution is stable and reliable."

"I would say that this solution has helped our organization by allowing us to automate a lot of the processes."

"JFrog Xray shows us a list of vulnerabilities that can impact our code."

"If multiple dependencies and vulnerabilities are found in a project, JFrog Xray is intelligent enough to tell you which vulnerability to target first."

"The solution offers very nice dashboards and they've recently added a very good Java-based web interface."

"We are currently working on rule review and compliance. The logging features are good."

"Skybox allows organizations to reprioritize the vulnerability they attempt to patch and mitigate, based on the contextual awareness of the network."

"We use Network Assurance for network visualisation and troubleshooting."

"It shows me a client's or an organization's entire network. I can see everything."

"The most valuable features of Skybox Security Suite are all the modules that are provided, such as vulnerability assessments and network, and firewall assessments."

"The performance could be good because we chose it at the time, but it is too complex for us to appreciate its performance because we lack the necessary skills."

"It's given us more visibility in terms of what are the kinds of configurations that are on these devices, and how many of these are stale rules. So it's helped greatly in terms of cleaning up of rules, for sure. And it has definitely given us a more secure way of backing up the configuration on these devices."

More Skybox Security Suite pros

Cons

"Lacks deeper reporting, the ability to compare things."

"Since we have been using the solution via APIs, there are some limitations in the APIs."

"JFrog Xray's documentation and error logging could be improved."

"JFrog Xray does not have a dashboard."

"Reporting is crucial, but it is lacking in the current tool. Every organization seeks specific data points rather than general information. Therefore, we require customized reports from the Xray tool."

"I think that the user interface should be expanded to provide customers with a better dashboard for reviewing their feedback regarding their images and the vulnerabilities that are associated with the images."

"The speed of JFrog Xray should improve. Other solutions have better performance."

"The solution does not support certain devices or vendors in some regions or countries due to regulations."

"Skybox Security Suite's attack surface management feature needs improvement."

"The tool does not offer options for customization."

"Skybox Security Suite can improve the change management module. It is the one part of the tool that is used with the firewall devices and you have a change management module that is used to record changes of all firewalls in the company. It's not compatible with all brands, this is where they can improve the solution."

"The price is costly, and I hope they can reduce the cost."

"Modifications and the deletion of existing policies are currently unavailable."

"The only place where Skybox has room for improvement, and they're working on releasing this, it's just a slow-go, is the UI. The user interface has historically been via a locally installed thick client. They are moving to a web-based console and it's slowly coming out."

"There is room for improvement in pricing. It would be better, especially if a customer bought all four modules."

More Skybox Security Suite cons

Pricing and Cost Advice

Information not available

"The software is expensive. I rate its pricing an eight out of ten."

"I would rate the tool's pricing an eight out of ten."

"Currently, the licensing costs me about $300 USD for the year. This is a huge amount for my environment."

"Skybox comes with extra licenses and has a change management license. The licenses are expensive, but they come with extra value."

"I think for the cost, what we got definitely is worth it. The only caution I would give is that whenever you license for Firewall Assurance at the same time, for some weird reason, you have to get one Network Assurance license, just to manage one firewall. That's a little bit of overkill. But otherwise, in general, the pricing is fairly okay."

"With licensing, the number of network nodes becomes very expensive to the point where you have to rationalize if the tools are warranted anymore."

"The product's pricing is excellent value. In terms of licensing, make sure you understand your network components, all your hops through your network, thoroughly, before you decide on the total cost. If you want to do point-to-point flow analysis and such, you need to have the configuration of all the devices in between point A and point B. A lot of people don't realize all their network components until they start using this product."

"Pricing is on the higher side. In terms of licensing, you should buy the complete suite rather than buying only the Change Manager. I think Change Manager with Vulnerability Control is something that would be interesting to look at."

More Skybox Security Suite pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.

See recommendations

814,528 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

24%

Manufacturing Company

15%

Computer Software Company

13%

Government

Computer Software Company

18%

Financial Services Firm

16%

Manufacturing Company

10%

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about JFrog Xray?

JFrog Xray shows us a list of vulnerabilities that can impact our code.

See all answers

What needs improvement with JFrog Xray?

There is a tool called DefectDojo for reporting. Reporting is crucial, but it is lacking in the current tool. Every organization seeks specific data points rather than general information. Therefor...

See all answers

What is your primary use case for JFrog Xray?

We use this solution to identify vulnerabilities in the dependency file. We have the Artifactory package which integrates with Xray-like plugins. We can automatically plug this tool into Xray to co...

See all answers

What do you like most about Skybox Security Suite?

Overall, the tool has helped us reduce risks. If any step is missing, it's easier for my team or engineers to identify it. The tool provides accurate recommendations based on the data. Its integrat...

See all answers

What is your experience regarding pricing and costs for Skybox Security Suite?

Skybox Security Suite has indeed helped us reduce costs. The prices of AlgoSec and Skybox Security Suite are approximately 50 percent different. The tool may require special vendor support from abr...

See all answers

What needs improvement with Skybox Security Suite?

There is room for improvement in the product's user interface. It could be more user-friendly.

See all answers

Comparisons

Black Duck vs JFrog Xray

Compared 22% of the time

Trivy vs JFrog Xray

Compared 12% of the time

Veracode vs JFrog Xray

Compared 7% of the time

Snyk vs JFrog Xray

Compared 7% of the time

Mend.io vs JFrog Xray

Compared 6% of the time

More JFrog Xray Competitors

AlgoSec vs Skybox Security Suite

Compared 31% of the time

Tufin Orchestration Suite vs Skybox Security Suite

Compared 28% of the time

FireMon Security Manager vs Skybox Security Suite

Compared 14% of the time

RedSeal vs Skybox Security Suite

Compared 5% of the time

Palo Alto Networks Panorama vs Skybox Security Suite

Compared 4% of the time

More Skybox Security Suite Competitors

Product Reports

Buyer's Guide

JFrog Xray

October 2024

Download JFrog Xray product report

Buyer's Guide

Skybox Security Suite

October 2024

Download Skybox Security Suite product report

Also Known As

JFrog Security Essentials

No data available

Learn More

JFrog

Skybox Security

Overview

JFrog is on a mission to enable continuous updates through Liquid Software, empowering developers to code high-quality applications that securely flow to end-users with zero downtime. The world’s top brands such as Amazon, Facebook, Google, Netflix, Uber, VMware, and Spotify are among the 4500 companies that already depend on JFrog to manage binaries for their mission-critical applications. JFrog is a privately-held, global company, and is a proud sponsor of the Cloud Native Computing Foundation [CNCF].

If you are a team player and you care and you play to WIN, we have just the job you're looking for.

As we say at JFrog: "Once You Leap Forward You Won't Go Back!"

The Skybox Security Suite platform combines firewall and network device data with vulnerability and threat intelligence, prioritizing security issues in the context of your unique environment. Powerful attack vector analytics reduce response times and risks, bringing firewall, vulnerability and threat management processes for complex networks under control.

Firewall Assurance brings all firewalls into one normalized view, continuously monitoring policy compliance, optimizing firewall rulesets and finding attack vectors that others miss. Skybox covers the most comprehensive list of firewall vendors, complex rulesets, even virtual and cloud-based firewalls. With proven scalability in 1,500+ firewall deployments, Firewall Assurance keeps rules optimized and ensures changes don’t introduce new risk.

Gain total visibility of the vulnerabilities in your attack surface without waiting for a scan. Leverage Skybox Research Lab's vulnerability and threat intelligence, and automatically correlate it to your unique environment. With network modeling and advanced simulations, pinpoint exposed vulnerabilities and other attack vectors. And use context to prioritize vulnerabilities in terms of actual risk and respond to threats with accuracy and efficiency.

For more information or to view a demo, visit www.skyboxsecurity.com.

Sample Customers

google, amazon, cisco, netflix, oracle, vmware, facebook

ADP, Blue Cross Blue Shield, BT, USAID, Delta Dental, EDF Energy, EMC, HSBC, Johnson & Johnson

Buyer's Guide

JFrog Xray vs. Skybox Security Suite

October 2024

Free Report: JFrog Xray vs. Skybox Security Suite

Find out what your peers are saying about JFrog Xray vs. Skybox Security Suite and other solutions. Updated: October 2024.

DOWNLOAD NOW

814,528 professionals have used our research since 2012.

See our JFrog Xray vs. Skybox Security Suite report.

See our list of best Vulnerability Management vendors.

We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.