# DefectDojo vs Snyk Comparison | | DefectDojo | Snyk | |---|---|---| | **Star Rating** | 4.6 out of 5 | 4.5 out of 5 | | **Total Reviews** | 11 | 132 | | **Largest Market Segment** | Mid-Market (63.6% of reviews) | Mid-Market (45.4% of reviews) | | **Entry Level Price** | No pricing available | Free | --- ## Top Pros & Cons ### DefectDojo **Not enough data** ### Snyk Pros: - Vulnerability Detection (3 reviews) - Vulnerability Identification (3 reviews) Cons: - False Positives (2 reviews) - Poor Interface Design (2 reviews) --- ## Ratings Comparison | Rating | DefectDojo | Snyk | |---|---|---| | **Meets Requirements** | 9.1 (11 reviews) | 8.7 (94 reviews) | | **Ease of Use** | 8.8 (11 reviews) | 8.8 (95 reviews) | | **Ease of Setup** | 9.2 (8 reviews) | 9.1 (58 reviews) | | **Ease of Admin** | 9.8 (8 reviews) | 8.9 (51 reviews) | | **Quality of Support** | 8.5 (10 reviews) | 8.7 (79 reviews) | | **Has the product been a good partner in doing business?** | 9.3 (7 reviews) | 8.8 (48 reviews) | | **Product Direction (% positive)** | 6.8 (11 reviews) | 8.8 (84 reviews) | --- ## Pricing ### DefectDojo #### Entry-Level Pricing No pricing available #### Free Trial No information available ### Snyk #### Entry-Level Pricing Plan: FREE - Limited Tests, Unlimited Developers Price: Free Description: For individual developers and small teams looking to secure while they build. Unlimited Developers. Key Features: - 200 Open Source tests per month - 100 Container tests per month - 300 IaC tests per month [Browse all 3 editions](https://www.g2.com/products/snyk/pricing) #### Free Trial No --- ## Features Comparison By Category ### Static Application Security Testing (SAST) | Product | Score | Reviews | |---|---|---| | **DefectDojo** | N/A | N/A | | **Snyk** | 7.8/10 | 25 | #### Administration | Feature | DefectDojo | Snyk | |---|---|---| | **API / Integrations** | Not enough data | 8.6 (22 reviews) | | **Extensibility** | Not enough data | 8.1 (18 reviews) | #### Analysis | Feature | DefectDojo | Snyk | |---|---|---| | **Reporting and Analytics** | Not enough data | 8.5 (23 reviews) | | **Issue Tracking** | Not enough data | 8.3 (22 reviews) | | **Static Code Analysis** | Not enough data | 8.7 (24 reviews) | | **Code Analysis** | Not enough data | 8.9 (21 reviews) | #### Testing | Feature | DefectDojo | Snyk | |---|---|---| | **Command-Line Tools** | Not enough data | 7.8 (18 reviews) | | **Manual Testing** | Not enough data | 6.5 (14 reviews) | | **Test Automation** | Not enough data | 7.8 (19 reviews) | | **Compliance Testing** | Not enough data | 8.1 (15 reviews) | | **Black-Box Scanning** | Not enough data | 6.2 (13 reviews) | | **Detection Rate** | Not enough data | 7.5 (19 reviews) | | **False Positives** | Not enough data | 6.4 (17 reviews) | #### Agentic AI - Static Application Security Testing (SAST) | Feature | DefectDojo | Snyk | |---|---|---| | **Autonomous Task Execution** | Not enough data | Not enough data | ### Container Security | Product | Score | Reviews | |---|---|---| | **DefectDojo** | N/A | N/A | | **Snyk** | 7.5/10 | 32 | #### Administration | Feature | DefectDojo | Snyk | |---|---|---| | **Risk Scoring** | Not enough data | 8.4 (29 reviews) | | **Secrets Management** | Not enough data | Feature Not Available | | **Security Auditing** | Not enough data | 7.9 (26 reviews) | | **Configuration Management** | Not enough data | 7.5 (19 reviews) | #### Monitoring | Feature | DefectDojo | Snyk | |---|---|---| | **Continuous Image Assurance** | Not enough data | 8.0 (17 reviews) | | **Behavior Monitoring** | Not enough data | 6.5 (13 reviews) | | **Observability** | Not enough data | 7.1 (15 reviews) | #### Protection | Feature | DefectDojo | Snyk | |---|---|---| | **Dynamic Image Scanning** | Not enough data | 7.4 (16 reviews) | | **Runtime Protection** | Not enough data | 7.5 (17 reviews) | | **Workload Protection** | Not enough data | 7.4 (14 reviews) | | **Network Segmentation** | Not enough data | 6.9 (12 reviews) | ### Vulnerability Scanner | Product | Score | Reviews | |---|---|---| | **DefectDojo** | 8.0/10 | 8 | | **Snyk** | 8.1/10 | 43 | #### Performance | Feature | DefectDojo | Snyk | |---|---|---| | **Issue Tracking** | 9.2 (8 reviews) | 8.5 (36 reviews) | | **Detection Rate** | 8.5 (8 reviews) | 8.5 (40 reviews) | | **False Positives** | 7.7 (5 reviews) | 6.7 (32 reviews) | | **Automated Scans** | 6.9 (6 reviews) | 9.1 (41 reviews) | #### Network | Feature | DefectDojo | Snyk | |---|---|---| | **Compliance Testing** | 7.6 (7 reviews) | 8.1 (25 reviews) | | **Perimeter Scanning** | 7.8 (6 reviews) | 7.9 (19 reviews) | | **Configuration Monitoring** | 8.3 (6 reviews) | 8.2 (20 reviews) | #### Application | Feature | DefectDojo | Snyk | |---|---|---| | **Manual Application Testing** | 8.6 (6 reviews) | 7.8 (17 reviews) | | **Static Code Analysis** | 7.8 (6 reviews) | 8.5 (34 reviews) | | **Black Box Testing** | 7.5 (6 reviews) | 7.4 (13 reviews) | #### Agentic AI - Vulnerability Scanner | Feature | DefectDojo | Snyk | |---|---|---| | **Autonomous Task Execution** | Not enough data | Not enough data | | **Proactive Assistance** | Not enough data | Not enough data | ### Software Composition Analysis | Product | Score | Reviews | |---|---|---| | **DefectDojo** | N/A | N/A | | **Snyk** | 8.4/10 | 37 | #### Functionality - Software Composition Analysis | Feature | DefectDojo | Snyk | |---|---|---| | **Language Support** | Not enough data | 8.1 (24 reviews) | | **Integration** | Not enough data | 8.7 (30 reviews) | | **Transparency** | Not enough data | 8.3 (31 reviews) | #### Effectiveness - Software Composition Analysis | Feature | DefectDojo | Snyk | |---|---|---| | **Remediation Suggestions** | Not enough data | 8.3 (32 reviews) | | **Continuous Monitoring** | Not enough data | 8.7 (30 reviews) | | **Thorough Detection** | Not enough data | 8.2 (32 reviews) | ### Software Supply Chain Security Tools | Product | Score | Reviews | |---|---|---| | **DefectDojo** | N/A | N/A | | **Snyk** | N/A | N/A | #### Security | Feature | DefectDojo | Snyk | |---|---|---| | **Tampering** | Not enough data | Not enough data | | **Malicious Code** | Not enough data | Not enough data | | **Verification** | Not enough data | Not enough data | | **Security Risks** | Not enough data | Not enough data | #### Tracking | Feature | DefectDojo | Snyk | |---|---|---| | **Bill of Materials** | Not enough data | Not enough data | | **Audit Trails** | Not enough data | Not enough data | | **Monitoring** | Not enough data | Not enough data | ### Software Bill of Materials (SBOM) | Product | Score | Reviews | |---|---|---| | **DefectDojo** | N/A | N/A | | **Snyk** | N/A | N/A | #### Functionality - Software Bill of Materials (SBOM) | Feature | DefectDojo | Snyk | |---|---|---| | **Format Support** | Not enough data | Not enough data | | **Annotations** | Not enough data | Not enough data | | **Attestation** | Not enough data | Not enough data | #### Management - Software Bill of Materials (SBOM) | Feature | DefectDojo | Snyk | |---|---|---| | **Monitoring** | Not enough data | Not enough data | | **Dashboards** | Not enough data | Not enough data | | **User Provisioning** | Not enough data | Not enough data | ### AI AppSec Assistants | Product | Score | Reviews | |---|---|---| | **DefectDojo** | N/A | N/A | | **Snyk** | N/A | N/A | #### Performance - AI AppSec Assistants | Feature | DefectDojo | Snyk | |---|---|---| | **Remediation** | Not enough data | Not enough data | | **Real-time Vulnerability Detection** | Not enough data | Not enough data | | **Accuracy** | Not enough data | Not enough data | #### Integration - AI AppSec Assistants | Feature | DefectDojo | Snyk | |---|---|---| | **Stack Integration** | Not enough data | Not enough data | | **Workflow Integration** | Not enough data | Not enough data | | **Codebase Contextual Awareness** | Not enough data | Not enough data | --- ## Categories **Shared Categories (1):** [Vulnerability Scanner Software](https://www.g2.com/categories/vulnerability-scanner) **Unique to Snyk (6):** [Software Composition Analysis Tools](https://www.g2.com/categories/software-composition-analysis), [Software Supply Chain Security Solutions](https://www.g2.com/categories/software-supply-chain-security-tools), [AI AppSec Assistants](https://www.g2.com/categories/ai-appsec-assistants), [Container Security Tools](https://www.g2.com/categories/container-security-tools), [Static Application Security Testing (SAST) Software](https://www.g2.com/categories/static-application-security-testing-sast), [Software Bill of Materials (SBOM) Software](https://www.g2.com/categories/software-bill-of-materials-sbom) --- ## Reviewer Demographics ### By Company Size | Segment | DefectDojo | Snyk | |---|---|---| | **Small-Business** | 36.4% | 35.4% | | **Mid-Market** | 63.6% | 45.4% | | **Enterprise** | 0% | 19.2% | ### By Industry #### DefectDojo - **Computer & Network Security:** 63.6% - **Information Technology and Services:** 27.3% - **Staffing and Recruiting:** 9.1% #### Snyk - **Computer Software:** 22.3% - **Information Technology and Services:** 20.8% - **Computer & Network Security:** 9.2% - **Hospital & Health Care:** 5.4% - **Financial Services:** 5.4% - **Telecommunications:** 3.1% - **Banking:** 3.1% - **Education Management:** 2.3% - **Internet:** 2.3% - **Retail:** 1.5% - **Other:** 24.6% --- ## Alternatives ### Alternatives to DefectDojo - [Tenable Nessus](https://www.g2.com/products/tenable-nessus/reviews) — 4.5/5 stars (301 reviews) - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) — 4.7/5 stars (787 reviews) - [Red Hat Ansible Automation Platform](https://www.g2.com/products/red-hat-ansible-automation-platform/reviews) — 4.6/5 stars (377 reviews) - [Orca Security](https://www.g2.com/products/orca-security/reviews) — 4.6/5 stars (254 reviews) - [Gearset DevOps](https://www.g2.com/products/gearset-devops/reviews) — 4.7/5 stars (292 reviews) - [Harness Platform](https://www.g2.com/products/harness-platform/reviews) — 4.6/5 stars (281 reviews) - [Qualys VMDR](https://www.g2.com/products/qualys-vmdr/reviews) — 4.4/5 stars (167 reviews) - [Tenable Security Center](https://www.g2.com/products/tenable-security-center/reviews) — 4.6/5 stars (83 reviews) - [Intruder](https://www.g2.com/products/intruder/reviews) — 4.8/5 stars (206 reviews) - [SentinelOne Singularity Endpoint](https://www.g2.com/products/sentinelone-singularity-endpoint/reviews) — 4.7/5 stars (201 reviews) ### Alternatives to Snyk - [Aikido Security](https://www.g2.com/products/aikido-security/reviews) — 4.6/5 stars (141 reviews) - [Mend.io](https://www.g2.com/products/mend-io/reviews) — 4.3/5 stars (112 reviews) - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) — 4.7/5 stars (787 reviews) - [SonarQube](https://www.g2.com/products/sonarqube/reviews) — 4.4/5 stars (141 reviews) - [Semgrep](https://www.g2.com/products/semgrep/reviews) — 4.6/5 stars (55 reviews) - [Veracode Application Security Platform](https://www.g2.com/products/veracode-application-security-platform/reviews) — 3.8/5 stars (25 reviews) - [GitLab](https://www.g2.com/products/gitlab/reviews) — 4.5/5 stars (890 reviews) - [GitHub](https://www.g2.com/products/github/reviews) — 4.7/5 stars (2346 reviews) - [SOOS](https://www.g2.com/products/soos/reviews) — 4.6/5 stars (42 reviews) - [FortiCNAPP](https://www.g2.com/products/forticnapp/reviews) — 4.4/5 stars (386 reviews) --- ## Top Discussions ### DefectDojo No discussions available for this product. ### Snyk - Title: [What is Snyk scanning?](https://www.g2.com/discussions/what-is-snyk-scanning) — 2 comments, 2 upvotes > **Top comment:** "Codebase and open source libraries" - Title: [Is Snyk a SaaS?](https://www.g2.com/discussions/is-snyk-a-saas) — 2 comments > **Top comment:** "No" - Title: [How good is Snyk?](https://www.g2.com/discussions/how-good-is-snyk) — 2 comments > **Top comment:** "very. it's basically like dependabot, but more fleshed out" --- **Source:** [G2.com](https://www.g2.com) | [Comparison Page](https://www.g2.com/compare/defectdojo-vs-snyk)