# Burp Suite, Qualys WAS vs Orca Security Comparison | | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Star Rating** | 4.8 out of 5 | 4.5 out of 5 | 4.6 out of 5 | | **Total Reviews** | 129 | 20 | 264 | | **Largest Market Segment** | Mid-Market (40.0% of reviews) | Mid-Market (47.4% of reviews) | Enterprise (46.4% of reviews) | | **Entry Level Price** | $475.00 1 User Per Year | No pricing available | Contact Us | --- ## Top Pros & Cons ### Burp Suite Pros: - Ease of Use (12 reviews) - User Interface (8 reviews) Cons: - Expensive (5 reviews) - Slow Performance (5 reviews) ### Qualys WAS **Not enough data** ### Orca Security Pros: - Ease of Use (13 reviews) - Vulnerability Scanning (13 reviews) Cons: - Security Vulnerabilities (6 reviews) - Dashboard Issues (5 reviews) --- ## Ratings Comparison | Rating | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Meets Requirements** | 9.4 (105 reviews) | 9.6 (14 reviews) | 9.0 (203 reviews) | | **Ease of Use** | 8.8 (108 reviews) | 9.3 (14 reviews) | 9.1 (236 reviews) | | **Ease of Setup** | 9.3 (43 reviews) | 10.0 (5 reviews) | 9.3 (212 reviews) | | **Ease of Admin** | 9.2 (28 reviews) | 10.0 (5 reviews) | 9.0 (151 reviews) | | **Quality of Support** | 8.7 (94 reviews) | 9.3 (14 reviews) | 9.1 (198 reviews) | | **Has the product been a good partner in doing business?** | 9.7 (26 reviews) | 9.7 (5 reviews) | 9.4 (150 reviews) | | **Product Direction (% positive)** | 9.3 (104 reviews) | 10.0 (12 reviews) | 9.8 (192 reviews) | --- ## Pricing ### Burp Suite #### Entry-Level Pricing Plan: Burp Suite Professional Price: $475.00 1 User Per Year Description: Test, find and exploit vulnerabilities faster with the complete manual testing toolkit. Best for pentesters and hands-on security professionals. Key Features: - Map your entire attack surface, including hidden and dynamic content. - Intercept, inspect, and modify HTTP/S traffic in real time with Proxy. - Test protected areas and APIs including OpenAPI, GraphQL, and SOAP. [Browse all 2 editions](https://www.g2.com/products/burp-suite/pricing) #### Free Trial No ### Qualys WAS #### Entry-Level Pricing No pricing available #### Free Trial No information available ### Orca Security #### Entry-Level Pricing Plan: By Compute Asset Price: Contact Us Description: An annual Orca subscription license is priced by compute asset. This lets you embrace new technologies (such as Orca) without concern of being charged for such assets as cloud storage or databases. Key Features: - visit website for all features [Learn more about Orca Security](https://www.g2.com/products/orca-security/reviews) #### Free Trial Yes --- ## Features Comparison By Category ### Cloud Workload Protection Platforms | Product | Score | Reviews | |---|---|---| | **Burp Suite** | N/A | N/A | | **Qualys WAS** | N/A | N/A | | **Orca Security** | 8.4/10 | 98 | #### Management | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Dashboards and Reports** | Not enough data | Not enough data | 7.9 (76 reviews) | | **Workflow Management** | Not enough data | Not enough data | 7.9 (52 reviews) | | **Administration Console** | Not enough data | Not enough data | 8.3 (68 reviews) | #### Operations | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Governance** | Not enough data | Not enough data | 8.4 (52 reviews) | | **Logging and Reporting** | Not enough data | Not enough data | 8.5 (59 reviews) | | **API / Integrations** | Not enough data | Not enough data | 8.9 (66 reviews) | #### Security Controls | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Anomaly Detection** | Not enough data | Not enough data | 8.7 (56 reviews) | | **Data Loss Prevention** | Not enough data | Not enough data | 7.7 (53 reviews) | | **Security Auditing** | Not enough data | Not enough data | 9.0 (82 reviews) | | **Cloud Gap Analytics** | Not enough data | Not enough data | 8.7 (57 reviews) | ### Penetration Testing | Product | Score | Reviews | |---|---|---| | **Burp Suite** | 9.3/10 | 23 | | **Qualys WAS** | N/A | N/A | | **Orca Security** | N/A | N/A | #### Administration | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **API / Integrations** | 8.7 (18 reviews) | Not enough data | Not enough data | | **Extensibility** | 8.9 (19 reviews) | Not enough data | Not enough data | | **Reporting and Analytics** | 9.0 (19 reviews) | Not enough data | Not enough data | #### Analysis | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Issue Tracking** | 8.3 (15 reviews) | Not enough data | Not enough data | | **Reconnaissance** | 9.3 (23 reviews) | Not enough data | Not enough data | | **Vulnerability Scan** | 8.9 (23 reviews) | Not enough data | Not enough data | #### Testing | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Command-Line Tools** | 7.1 (14 reviews) | Not enough data | Not enough data | | **Manual Testing** | 9.4 (22 reviews) | Not enough data | Not enough data | | **Test Automation** | 8.1 (20 reviews) | Not enough data | Not enough data | | **Performance and Reliability** | 8.8 (22 reviews) | Not enough data | Not enough data | ### Dynamic Application Security Testing (DAST) | Product | Score | Reviews | |---|---|---| | **Burp Suite** | N/A | N/A | | **Qualys WAS** | N/A | N/A | | **Orca Security** | N/A | N/A | #### Administration | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **API / Integrations** | Not enough data | Not enough data | Not enough data | | **Extensibility** | Not enough data | Not enough data | Not enough data | #### Analysis | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Reporting and Analytics** | Not enough data | Not enough data | Not enough data | | **Issue Tracking** | Not enough data | Not enough data | Not enough data | | **Static Code Analysis** | Feature Not Available | Not enough data | Not enough data | | **Vulnerability Scan** | Not enough data | Not enough data | Not enough data | | **Code Analysis** | Feature Not Available | Not enough data | Not enough data | #### Testing | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Manual Testing** | Feature Not Available | Not enough data | Not enough data | | **Test Automation** | Not enough data | Not enough data | Not enough data | | **Compliance Testing** | Not enough data | Not enough data | Not enough data | | **Black-Box Scanning** | Not enough data | Not enough data | Not enough data | | **Detection Rate** | Not enough data | Not enough data | Not enough data | | **False Positives** | Not enough data | Not enough data | Not enough data | ### Container Security | Product | Score | Reviews | |---|---|---| | **Burp Suite** | N/A | N/A | | **Qualys WAS** | N/A | N/A | | **Orca Security** | 8.2/10 | 60 | #### Administration | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Risk Scoring** | Not enough data | Not enough data | 8.6 (59 reviews) | | **Secrets Management** | Not enough data | Not enough data | 8.0 (51 reviews) | | **Security Auditing** | Not enough data | Not enough data | 8.9 (58 reviews) | | **Configuration Management** | Not enough data | Not enough data | 8.6 (56 reviews) | #### Monitoring | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Continuous Image Assurance** | Not enough data | Not enough data | 8.4 (50 reviews) | | **Behavior Monitoring** | Not enough data | Not enough data | 7.8 (48 reviews) | | **Observability** | Not enough data | Not enough data | 8.5 (52 reviews) | #### Protection | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Dynamic Image Scanning** | Not enough data | Not enough data | 8.1 (52 reviews) | | **Runtime Protection** | Not enough data | Not enough data | 7.5 (48 reviews) | | **Workload Protection** | Not enough data | Not enough data | 7.8 (51 reviews) | | **Network Segmentation** | Not enough data | Not enough data | 7.7 (47 reviews) | ### Cloud Compliance | Product | Score | Reviews | |---|---|---| | **Burp Suite** | N/A | N/A | | **Qualys WAS** | N/A | N/A | | **Orca Security** | 8.3/10 | 119 | #### Security | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Compliance Monitoring** | Not enough data | Not enough data | 8.9 (114 reviews) | | **Anomoly Detection** | Not enough data | Not enough data | 8.0 (110 reviews) | | **Data Loss Prevention** | Not enough data | Not enough data | 7.7 (101 reviews) | | **Cloud Gap Analytics** | Not enough data | Not enough data | 8.5 (108 reviews) | #### Compliance | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Governance** | Not enough data | Not enough data | 8.8 (106 reviews) | | **Data Governance** | Not enough data | Not enough data | 8.2 (101 reviews) | | **Sensitive Data Compliance** | Not enough data | Not enough data | 8.5 (105 reviews) | #### Administration | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Policy Enforcement** | Not enough data | Not enough data | 8.3 (105 reviews) | | **Auditing** | Not enough data | Not enough data | 8.6 (109 reviews) | | **Workflow Management** | Not enough data | Not enough data | 7.9 (102 reviews) | ### Vulnerability Scanner | Product | Score | Reviews | |---|---|---| | **Burp Suite** | 8.1/10 | 78 | | **Qualys WAS** | 8.2/10 | 14 | | **Orca Security** | 7.9/10 | 123 | #### Performance | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Issue Tracking** | 8.9 (65 reviews) ✓ Verified | 8.5 (13 reviews) | 8.6 (110 reviews) | | **Detection Rate** | 8.6 (69 reviews) ✓ Verified | 9.1 (13 reviews) | 8.8 (117 reviews) | | **False Positives** | 7.1 (69 reviews) ✓ Verified | 6.2 (13 reviews) | 7.5 (118 reviews) | | **Automated Scans** | 8.6 (69 reviews) | 9.6 (13 reviews) | 9.2 (120 reviews) | #### Network | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Compliance Testing** | 7.9 (57 reviews) ✓ Verified | 8.9 (12 reviews) | 8.6 (112 reviews) | | **Perimeter Scanning** | Feature Not Available | 8.3 (12 reviews) | 8.6 (107 reviews) | | **Configuration Monitoring** | Feature Not Available | 8.2 (12 reviews) | 8.7 (112 reviews) | #### Application | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Manual Application Testing** | 9.3 (73 reviews) ✓ Verified | 7.1 (11 reviews) | 6.2 (88 reviews) | | **Static Code Analysis** | 7.6 (60 reviews) | 7.0 (11 reviews) | 6.5 (85 reviews) | | **Black Box Testing** | 9.0 (68 reviews) ✓ Verified | 8.7 (13 reviews) | 6.3 (84 reviews) | #### Agentic AI - Vulnerability Scanner | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Autonomous Task Execution** | 6.3 (5 reviews) | Not enough data | Not enough data | | **Proactive Assistance** | Feature Not Available | Not enough data | Not enough data | ### API Security | Product | Score | Reviews | |---|---|---| | **Burp Suite** | N/A | N/A | | **Qualys WAS** | N/A | N/A | | **Orca Security** | 8.1/10 | 33 | #### API Management | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **API Discovery** | Not enough data | Not enough data | 8.6 (33 reviews) | | **API Monitoring** | Not enough data | Not enough data | 8.5 (31 reviews) | | **Reporting** | Not enough data | Not enough data | 8.4 (33 reviews) | | **Change Management** | Not enough data | Not enough data | 8.1 (30 reviews) | #### Security Testing | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Compliance Monitoring** | Not enough data | Not enough data | 8.8 (30 reviews) | | **API Verification** | Not enough data | Not enough data | 7.9 (29 reviews) | | **API Testing** | Not enough data | Not enough data | 7.5 (29 reviews) | #### Security Management | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Security and Policy Enforcement** | Not enough data | Not enough data | 8.5 (29 reviews) | | **Anomoly Detection** | Not enough data | Not enough data | 8.2 (31 reviews) | | **Bot Detection** | Not enough data | Not enough data | 6.0 (29 reviews) | ### Cloud Security Posture Management (CSPM) | Product | Score | Reviews | |---|---|---| | **Burp Suite** | N/A | N/A | | **Qualys WAS** | N/A | N/A | | **Orca Security** | 8.5/10 | 119 | #### Configuration | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **DLP Configuration** | Not enough data | Not enough data | 6.8 (82 reviews) | | **Configuration Monitoring** | Not enough data | Not enough data | 8.5 (96 reviews) | | **Unified Policy Management** | Not enough data | Not enough data | 8.1 (83 reviews) | | **Adaptive Access Control** | Not enough data | Not enough data | 7.6 (84 reviews) | | **API / Integrations** | Not enough data | Not enough data | 8.5 (95 reviews) | #### Visibility | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Multicloud Visibility** | Not enough data | Not enough data | 9.0 (101 reviews) | | **Asset Discovery** | Not enough data | Not enough data | 9.3 (107 reviews) | #### Vulnerability Management | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Threat Hunting** | Not enough data | Not enough data | 8.3 (90 reviews) | | **Vulnerability Scanning** | Not enough data | Not enough data | 9.1 (108 reviews) | | **Vulnerability Intelligence** | Not enough data | Not enough data | 8.9 (95 reviews) | | **Risk-Prioritization** | Not enough data | Not enough data | 8.9 (101 reviews) | ### Cloud Infrastructure Entitlement Management (CIEM) | Product | Score | Reviews | |---|---|---| | **Burp Suite** | N/A | N/A | | **Qualys WAS** | N/A | N/A | | **Orca Security** | 8.4/10 | 31 | #### Access control - Cloud Infrastructure Entitlement Management (CIEM) | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Policy Management** | Not enough data | Not enough data | 8.9 (31 reviews) | | **Fine-Grained Access Control** | Not enough data | Not enough data | 8.4 (30 reviews) | | **Role-Based Access Control (RBAC)** | Not enough data | Not enough data | 8.3 (30 reviews) | | **AI-driven access control** | Not enough data | Not enough data | 7.6 (30 reviews) | #### Monitoring - Cloud Infrastructure Entitlement Management (CIEM) | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Monitoring** | Not enough data | Not enough data | 8.4 (31 reviews) | | **AI-based detection** | Not enough data | Not enough data | 7.5 (30 reviews) | #### Auditing - Cloud Infrastructure Entitlement Management (CIEM) | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Visibility** | Not enough data | Not enough data | 9.2 (31 reviews) | | **Compliance Reporting** | Not enough data | Not enough data | 8.8 (31 reviews) | ### Cloud-Native Application Protection Platform (CNAPP) | Product | Score | Reviews | |---|---|---| | **Burp Suite** | N/A | N/A | | **Qualys WAS** | N/A | N/A | | **Orca Security** | N/A | N/A | #### Security - Cloud-Native Application Protection Platform (CNAPP) | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Workload and container security** | Not enough data | Not enough data | Not enough data | | **Threat detection and response** | Not enough data | Not enough data | Not enough data | | **DevSecOps Integrations** | Not enough data | Not enough data | Not enough data | | **Unified Visibility** | Not enough data | Not enough data | Not enough data | #### Artificial Intelligence - Cloud-Native Application Protection Platform (CNAPP) | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Intelligent remediations and suggestions** | Not enough data | Not enough data | Not enough data | | **Risk prioritization** | Not enough data | Not enough data | Not enough data | | **Anomaly detection using machine learning** | Not enough data | Not enough data | Not enough data | #### Cloud Configuration Management - Cloud-Native Application Protection Platform (CNAPP) | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Multi-cloud visibility** | Not enough data | Not enough data | Not enough data | | **Cloud Security Posture Management (CSPM)** | Not enough data | Not enough data | Not enough data | #### Agentic AI - Cloud-Native Application Protection Platform (CNAPP) | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Autonomous Task Execution** | Not enough data | Not enough data | Not enough data | | **Adaptive Learning** | Not enough data | Not enough data | Not enough data | ### AI Security Posture Management (AI-SPM) Tools | Product | Score | Reviews | |---|---|---| | **Burp Suite** | N/A | N/A | | **Qualys WAS** | N/A | N/A | | **Orca Security** | N/A | N/A | #### Functionality - AI Security Posture Management (AI-SPM) Tools | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Security Ecosystem Integration** | Not enough data | Not enough data | Not enough data | | **AI Asset Discovery** | Not enough data | Not enough data | Not enough data | | **Adaptive Policy Updates** | Not enough data | Not enough data | Not enough data | | **Access and Permissions Monitoring** | Not enough data | Not enough data | Not enough data | | **Policy Enforcement** | Not enough data | Not enough data | Not enough data | #### Risk Assessment - AI Security Posture Management (AI-SPM) Tools | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **AI Risk Assessment** | Not enough data | Not enough data | Not enough data | | **AI Asset Posture Scoring** | Not enough data | Not enough data | Not enough data | #### Governance & Compliance - AI Security Posture Management (AI-SPM) Tools | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **AI‑Generated Content Controls** | Not enough data | Not enough data | Not enough data | | **Audit Trails** | Not enough data | Not enough data | Not enough data | ### Cloud Security | Product | Score | Reviews | |---|---|---| | **Burp Suite** | N/A | N/A | | **Qualys WAS** | N/A | N/A | | **Orca Security** | N/A | N/A | #### Cloud Visibility | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Data Discovery** | Not enough data | Not enough data | Not enough data | | **Cloud Registry** | Not enough data | Not enough data | Not enough data | | **Cloud Gap Analytics** | Not enough data | Not enough data | Not enough data | #### Security | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Data Security** | Not enough data | Not enough data | Not enough data | | **Data loss Prevention** | Not enough data | Not enough data | Not enough data | | **Security Auditing** | Not enough data | Not enough data | Not enough data | #### Identity | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **SSO** | Not enough data | Not enough data | Not enough data | | **Governance** | Not enough data | Not enough data | Not enough data | | **User Analytics** | Not enough data | Not enough data | Not enough data | ### Cloud Detection and Response (CDR) | Product | Score | Reviews | |---|---|---| | **Burp Suite** | N/A | N/A | | **Qualys WAS** | N/A | N/A | | **Orca Security** | N/A | N/A | #### Agentic AI - Cloud Detection and Response (CDR) | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Autonomous Task Execution** | Not enough data | Not enough data | Not enough data | | **Proactive Assistance** | Not enough data | Not enough data | Not enough data | | **Decision Making** | Not enough data | Not enough data | Not enough data | #### Services - Cloud Detection and Response (CDR) | Feature | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Managed Services** | Not enough data | Not enough data | Not enough data | --- ## Categories **Shared Categories (1):** [Vulnerability Scanner Software](https://www.g2.com/categories/vulnerability-scanner) **Unique to Burp Suite (2):** [Dynamic Application Security Testing (DAST) Software](https://www.g2.com/categories/dynamic-application-security-testing-dast), [Penetration Testing Tools](https://www.g2.com/categories/penetration-testing-tools) **Unique to Orca Security (9):** [Cloud-Native Application Protection Platform (CNAPP)](https://www.g2.com/categories/cloud-native-application-protection-platform-cnapp), [Cloud Security Posture Management (CSPM) Software](https://www.g2.com/categories/cloud-security-posture-management-cspm), [Cloud Compliance Software](https://www.g2.com/categories/cloud-compliance), [Container Security Tools](https://www.g2.com/categories/container-security-tools), [Cloud Workload Protection Platforms](https://www.g2.com/categories/cloud-workload-protection-platforms), [API Security Tools](https://www.g2.com/categories/api-security), [Cloud Infrastructure Entitlement Management (CIEM) Software](https://www.g2.com/categories/cloud-infrastructure-entitlement-management-ciem), [Cloud Detection and Response (CDR) Software](https://www.g2.com/categories/cloud-detection-and-response-cdr), [AI Security Posture Management (AI-SPM) Tools Software](https://www.g2.com/categories/ai-security-posture-management-ai-spm-tools) --- ## Reviewer Demographics ### By Company Size | Segment | Burp Suite | Qualys WAS | Orca Security | |---|---|---|---| | **Small-Business** | 31.2% | 21.1% | 10.6% | | **Mid-Market** | 40.0% | 47.4% | 43.0% | | **Enterprise** | 28.8% | 31.6% | 46.4% | ### By Industry #### Burp Suite - **Information Technology and Services:** 28.8% - **Computer & Network Security:** 27.2% - **Computer Software:** 15.2% - **Financial Services:** 4.8% - **Retail:** 3.2% - **Electrical/Electronic Manufacturing:** 2.4% - **Education Management:** 2.4% - **Telecommunications:** 1.6% - **Medical Practice:** 1.6% - **Management Consulting:** 1.6% - **Other:** 11.2% #### Qualys WAS - **Information Technology and Services:** 31.6% - **Computer Software:** 31.6% - **Computer & Network Security:** 21.1% - **Outsourcing/Offshoring:** 5.3% - **Internet:** 5.3% - **Financial Services:** 5.3% #### Orca Security - **Information Technology and Services:** 16.3% - **Computer Software:** 12.5% - **Financial Services:** 8.4% - **Computer & Network Security:** 5.7% - **Marketing and Advertising:** 5.3% - **Hospital & Health Care:** 4.6% - **Insurance:** 4.2% - **Retail:** 3.0% - **Education Management:** 3.0% - **Automotive:** 2.7% - **Other:** 34.2% --- ## Alternatives ### Alternatives to Burp Suite - [Intruder](https://www.g2.com/products/intruder/reviews) — 4.8/5 stars (206 reviews) - [Acunetix by Invicti](https://www.g2.com/products/acunetix-by-invicti/reviews) — 4.1/5 stars (105 reviews) - [Invicti (formerly Netsparker)](https://www.g2.com/products/invicti-formerly-netsparker/reviews) — 4.6/5 stars (69 reviews) - [Veracode Application Security Platform](https://www.g2.com/products/veracode-application-security-platform/reviews) — 3.8/5 stars (25 reviews) - [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) — 4.5/5 stars (301 reviews) - [Detectify](https://www.g2.com/products/detectify/reviews) — 4.5/5 stars (51 reviews) - [Pentest-Tools.com](https://www.g2.com/products/pentest-tools-com/reviews) — 4.8/5 stars (100 reviews) - [Tenable Vulnerability Management](https://www.g2.com/products/tenable-vulnerability-management/reviews) — 4.5/5 stars (122 reviews) - [GitLab](https://www.g2.com/products/gitlab/reviews) — 4.5/5 stars (891 reviews) - [HCL AppScan](https://www.g2.com/products/hcl-appscan/reviews) — 4.1/5 stars (76 reviews) ### Alternatives to Qualys WAS - [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) — 4.5/5 stars (301 reviews) - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) — 4.7/5 stars (793 reviews) - [Red Hat Ansible Automation Platform](https://www.g2.com/products/red-hat-ansible-automation-platform/reviews) — 4.6/5 stars (377 reviews) - [Invicti (formerly Netsparker)](https://www.g2.com/products/invicti-formerly-netsparker/reviews) — 4.6/5 stars (69 reviews) - [Gearset DevOps](https://www.g2.com/products/gearset-devops/reviews) — 4.7/5 stars (292 reviews) - [Intruder](https://www.g2.com/products/intruder/reviews) — 4.8/5 stars (206 reviews) - [Harness Platform](https://www.g2.com/products/harness-platform/reviews) — 4.6/5 stars (281 reviews) - [Pentest-Tools.com](https://www.g2.com/products/pentest-tools-com/reviews) — 4.8/5 stars (100 reviews) - [Acunetix by Invicti](https://www.g2.com/products/acunetix-by-invicti/reviews) — 4.1/5 stars (105 reviews) - [APPCHECK](https://www.g2.com/products/appcheck/reviews) — 4.6/5 stars (67 reviews) ### Alternatives to Orca Security - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) — 4.7/5 stars (793 reviews) - [Microsoft Defender for Cloud](https://www.g2.com/products/microsoft-defender-for-cloud/reviews) — 4.4/5 stars (309 reviews) - [FortiCNAPP](https://www.g2.com/products/forticnapp/reviews) — 4.4/5 stars (386 reviews) - [Cortex Cloud](https://www.g2.com/products/cortex-cloud/reviews) — 4.1/5 stars (112 reviews) - [Sysdig Secure](https://www.g2.com/products/sysdig-sysdig-secure/reviews) — 4.8/5 stars (111 reviews) - [CrowdStrike Falcon Cloud Security](https://www.g2.com/products/crowdstrike-falcon-cloud-security/reviews) — 4.6/5 stars (86 reviews) - [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) — 4.5/5 stars (301 reviews) - [Vanta](https://www.g2.com/products/vanta/reviews) — 4.6/5 stars (2447 reviews) - [Scrut Automation](https://www.g2.com/products/scrut-automation/reviews) — 4.9/5 stars (1300 reviews) - [Drata](https://www.g2.com/products/drata/reviews) — 4.7/5 stars (1160 reviews) --- ## Top Discussions ### Burp Suite - Title: [Is BurpSuite free?](https://www.g2.com/discussions/is-burpsuite-free) — 2 comments > **Top comment:** "You can have Burpsuite for free as the community edition however there will be certain features which cannot be used in the community edition. To get full..." - Title: [How do i intercept network that i am connected to?](https://www.g2.com/discussions/12021-how-do-i-intercept-network-that-i-am-connected-to) — 2 comments, 1 upvote > **Top comment:** "Check wether the network ip is accessable with the browser. If yes then you can use the same steps as you are using to intersept web applications." - Title: [What is Burp Suite Professional?](https://www.g2.com/discussions/what-is-burp-suite-professional) — 1 comment > **Top comment:** "Burp Suite professional is a security testing tool. Security testing professional or penetration testing professional use this tool for find security..." - Title: [What is BurpSuite used for?](https://www.g2.com/discussions/what-is-burpsuite-used-for) — 1 comment > **Top comment:** "To identify vulnerability" - Title: [You're go to extenion in Burp?](https://www.g2.com/discussions/you-re-go-to-extenion-in-burp) — 1 comment, 1 upvote > **Top comment:** "Intruder, XSSValidator, Sequencer, Encoder, Decoder" ### Qualys WAS - Title: [What are the typical features offered by vulnerability scanner?](https://www.g2.com/discussions/what-are-the-typical-features-offered-by-vulnerability-scanner) — 1 comment > **Top comment:** "Vulnerability scanners are essential tools for identifying and mitigating security risks in computer systems and networks. They offer a range of features to..." ### Orca Security - Title: [Where is Orca security based?](https://www.g2.com/discussions/where-is-orca-security-based) — 2 comments > **Top comment:** "Orca Security is based in Los Angeles, California, United States." - Title: [How much does Orca security cost?](https://www.g2.com/discussions/how-much-does-orca-security-cost) — 1 comment > **Top comment:** "$6500 per 50 workloads per year" - Title: [What is ORCA platform?](https://www.g2.com/discussions/what-is-orca-platform) — 1 comment > **Top comment:** "SIEM tool for hunting threats, outdated oackages, overpowerful permissions, expired certificates. Mainly for AWS services" - Title: [What does Orca Security do?](https://www.g2.com/discussions/what-does-orca-security-do) — 1 comment *(includes official response)* > **Top comment:** "Orca Security is a leader in CNAPP innovation (Cloud Native Application Protection Platform) for workload and data protection, cloud security posture..." --- **Source:** [G2.com](https://www.g2.com) | [Comparison Page](https://www.g2.com/compare/burp-suite-vs-qualys-was-vs-orca-security)