Try our new research platform with insights from 80,000+ expert users

JFrog Xray vs SUSE NeuVector comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Sep 16, 2024
 

Categories and Ranking

SentinelOne Singularity Clo...
Sponsored
Ranking in Container Security
3rd
Average Rating
8.6
Reviews Sentiment
8.1
Number of Reviews
92
Ranking in other categories
Vulnerability Management (6th), Cloud and Data Center Security (5th), Cloud Workload Protection Platforms (CWPP) (4th), Cloud Security Posture Management (CSPM) (4th), Cloud-Native Application Protection Platforms (CNAPP) (3rd), Compliance Management (3rd)
JFrog Xray
Ranking in Container Security
19th
Average Rating
8.2
Number of Reviews
7
Ranking in other categories
Vulnerability Management (22nd), Software Composition Analysis (SCA) (6th), Software Supply Chain Security (3rd)
SUSE NeuVector
Ranking in Container Security
20th
Average Rating
7.8
Number of Reviews
7
Ranking in other categories
Cloud Workload Protection Platforms (CWPP) (17th)
 

Mindshare comparison

As of November 2024, in the Container Security category, the mindshare of SentinelOne Singularity Cloud Security is 2.0%, up from 0.8% compared to the previous year. The mindshare of JFrog Xray is 2.8%, up from 2.0% compared to the previous year. The mindshare of SUSE NeuVector is 3.2%, up from 3.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Container Security
 

Featured Reviews

Andrew W - PeerSpot reviewer
Aug 29, 2024
Tells us about vulnerabilities as well as their impact and helps to focus on real issues
Looking at all the different pieces, it has got everything we need. Some of the pieces we do not even use. For example, we do not have Kubernetes Security. We are not running any K8 clusters, so it is good for us. Overall, we find the solution to be fantastic. There can be additional education components. This may not be truly fair to them because of what the product is going for, but it would be great to see additional education for compliance. It is not a criticism of the tool per se, but anything to help non-development resources understand some of the complexities of the cloud is always appreciated. Any additional educational resources are always helpful for security teams, especially those without a development background.
Mokshi Pandita - PeerSpot reviewer
Jun 1, 2023
An intelligent solution that prioritizes which vulnerability to target first in your project
We could create any number of repositories, but we can create only thirty projects with JFrog Xray. If I want things to work, it has to be one project and multiple repositories that belong to different real projects. So I have a limitation of thirty projects, despite being a premium customer. JFrog Xray does not have a dashboard. Although I am able to generate reports, there is no proper dashboard where I can see the total number of vulnerabilities, the total number of license issues, and how many vulnerabilities are fixed. Second, I found the shift left approach missing with JFrog Xray. JFrog Xray has integration with IDEs, but it does not tell you about the vulnerabilities until the artifact is created. However, Snyk could directly integrate with your repository and would not allow you to build unless you fix the problem.
Danie Joubert - PeerSpot reviewer
Mar 22, 2023
Good value for money; great for policy management
Our model of deployment for this solution is on-premises. For people looking into this solution and trying to use it for the first time, I'd say make your life easier by using the SUSE product as well on top of your community scale stack. That makes your integration points a lot easier and smoother. I would also say during your initial setup, make sure that your clusters are already in terms of the capabilities with the version required. I would rate this solution an eight, on a scale from one to 10, with one being the worst and 10 being the best. The reason for this rating is that what they offer is solid, but they could expand their service and add more features just to make more things integrated into an enterprise itself.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We liked the search bar in PingSafe. It is a global search. We were able to get some insights from there."
"PingSafe's most valuable feature is its unified console."
"The real-time detection and response capabilities overall are great."
"PingSafe offers security solutions for both Kubernetes and CI/CD pipelines."
"PingSafe has a dashboard that can detect the criticality of a particular problem, whether it falls under critical, medium, or low vulnerability."
"We noted immediate benefits from using the solution."
"It's positively affected the communication between cloud security, application developers, and AppSec teams."
"Cloud Native Security's best feature is its ability to identify hard-coded secrets during pull request reviews."
"Good reporting functionalities."
"JFrog Xray shows us a list of vulnerabilities that can impact our code."
"JFrog Xray's reporting feature has a lot of options in it, including scanning."
"The solution is stable and reliable."
"The most valuable feature of JFrog Xray is the display of the entire internal dependencies hierarchy."
"If multiple dependencies and vulnerabilities are found in a project, JFrog Xray is intelligent enough to tell you which vulnerability to target first."
"I would say that this solution has helped our organization by allowing us to automate a lot of the processes."
"The initial setup is quite good, it's straightforward."
"The most valuable feature of SUSE NeuVector is its run-time security."
"The UI has a lot of features."
"The tool's deployment is simple. Also, I am impressed with its risk capabilities."
"The most valuable feature of SUSE NeuVector is the performance, deployment, and cost."
"When it comes to the price, we got a really good deal from the vendor instantly."
"The features of image scanning and anti-malware are really valuable."
 

Cons

"Their search feature could be better."
"The documentation that I use for the initial setup can be more detailed or written in a more user-friendly language to avoid troubles."
"There is room for improvement in the current active licensing model for PingSafe."
"If I had to pick a complaint, it would be the way the hosts are listed in the tool. You have different columns separated by endpoint name, Cloud Account, and Cloud Instances ID. I wish there was something where we could change the endpoint name and not use just the IP address. We would like to have custom names or our own names for the instances. If I had a complaint, that would be it, but so far, it meets all the needs that we have."
"The categorization of the results from the vulnerability assessment could be improved."
"We had a glitch in PingSafe where it fed us false positives in the past."
"The resolution suggestions could be better, and the compliance features could be more customizable for Indian regulations. Overall, the compliance aspects are good. It gives us a comprehensive list, and its feedback is enough to bring us into compliance with regulations, but it doesn't give us the specific objects."
"Bugs need to be disclosed quickly."
"Reporting is crucial, but it is lacking in the current tool. Every organization seeks specific data points rather than general information. Therefore, we require customized reports from the Xray tool."
"Since we have been using the solution via APIs, there are some limitations in the APIs."
"I think that the user interface should be expanded to provide customers with a better dashboard for reviewing their feedback regarding their images and the vulnerabilities that are associated with the images."
"JFrog Xray's documentation and error logging could be improved."
"JFrog Xray does not have a dashboard."
"The speed of JFrog Xray should improve. Other solutions have better performance."
"Lacks deeper reporting, the ability to compare things."
"I would say that this solution should improve monitoring and reporting. I would also like to see more integrations so that we could essentially make it a part of a developing pipeline."
"We are also working with IaaS VMS, but NeuVector doesn't support virtual machines."
"SUSE NeuVector could improve by increasing its visibility into other elements of the DevSecOps pipeline. Additionally, scanning around infrastructure would be helpful."
"The image-scanning features need improvement."
"The tool should offer seamless integration of other security tools while in a hybrid environment."
"The documentation needs to improve a bit."
"SUSE NeuVector should provide more security protection rules and better container image scanning."
 

Pricing and Cost Advice

"We found it to be fine for us. Its price was competitive. It was something we were happy with. We are not a Fortune 500 company, so I do not know how pricing scales at the top end, but for our cloud environment, it works very well."
"It was reasonable pricing for me."
"Singularity Cloud Workload Security's licensing and price were cheaper than the other solutions we looked at."
"Pricing is based on modules, which was ideal for us."
"PingSafe is affordable."
"The licensing is easy to understand and implement, with some flexibility to accommodate dynamic environments."
"We have an enterprise license. It is affordable. I'm not sure, but I think we pay 150,000 rupees per month."
"PingSafe's pricing is good because it provides us with a solution."
Information not available
"The solution's pricing could be better. The cost of a subscription is calculated on the basis of work."
"The price of SUSE NeuVector is low. There is an additional cost for support."
"SUSE NeuVector is an open-source solution."
"Licensing fees are paid yearly."
report
Use our free recommendation engine to learn which Container Security solutions are best for your needs.
814,649 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
19%
Financial Services Firm
16%
Manufacturing Company
10%
Insurance Company
5%
Financial Services Firm
24%
Manufacturing Company
15%
Computer Software Company
13%
Government
5%
Computer Software Company
18%
Financial Services Firm
14%
Manufacturing Company
11%
Government
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about PingSafe?
The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...
What is your experience regarding pricing and costs for PingSafe?
I am personally not taking care of the pricing part, but when we moved from CrowdStrike to Singularity Cloud Native S...
What needs improvement with PingSafe?
They can provide some kind of alert when a new type of risk is there. There can be a specific type of alert showing t...
What do you like most about JFrog Xray?
JFrog Xray shows us a list of vulnerabilities that can impact our code.
What needs improvement with JFrog Xray?
There is a tool called DefectDojo for reporting. Reporting is crucial, but it is lacking in the current tool. Every o...
What is your primary use case for JFrog Xray?
We use this solution to identify vulnerabilities in the dependency file. We have the Artifactory package which integr...
What do you like most about NeuVector?
The most valuable feature of SUSE NeuVector is its run-time security.
What is your experience regarding pricing and costs for NeuVector?
SUSE NeuVector is an open-source solution. You have to pay for the support.
What needs improvement with NeuVector?
SUSE NeuVector should provide more security protection rules and better container image scanning.
 

Also Known As

PingSafe
JFrog Security Essentials
NeuVector
 

Overview

 

Sample Customers

Information Not Available
google, amazon, cisco, netflix, oracle, vmware, facebook
Figo, Clear Review, Arvato Bertelsmann, Experian, Chime
Find out what your peers are saying about JFrog Xray vs. SUSE NeuVector and other solutions. Updated: October 2024.
814,649 professionals have used our research since 2012.