TrustRadius

GoCD vs. Metasploit

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
GoCD
Score 8.0 out of 10
N/A
GoCD, from ThoughtWorks in Chicago, is an application lifecycle management and development tool.N/A
Metasploit
Score 9.0 out of 10
N/A
Metasploit is open source network security software described by Rapid7 as the world’s most used penetration testing framework, designed to help security teams do more than just verify vulnerabilities, manage security assessments, and improve security awareness.N/A
Pricing
GoCDMetasploit
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
GoCDMetasploit
Free Trial
NoNo
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional Details
More Pricing Information
Community Pulse
GoCDMetasploit
Best Alternatives
GoCDMetasploit
Small Businesses
GitLab
GitLab
Score 8.8 out of 10

No answers on this topic

Medium-sized Companies
GitLab
GitLab
Score 8.8 out of 10
Veracode
Veracode
Score 8.8 out of 10
Enterprises
GitLab
GitLab
Score 8.8 out of 10
Veracode
Veracode
Score 8.8 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
GoCDMetasploit
Likelihood to Recommend
9.0
(2 ratings)
10.0
(5 ratings)
Support Rating
-
(0 ratings)
7.0
(1 ratings)
User Testimonials
GoCDMetasploit
Likelihood to Recommend
ThoughtWorks
Previously, our team used Jenkins. However, since it's a shared deployment resource we don't have admin access. We tried GoCD as it's open source and we really like. We set up our deployment pipeline to run whenever codes are merged to master, run the unit test and revert back if it doesn't pass. Once it's deployed to the staging environment, we can simply do 1-click to deploy the appropriate version to production. We use this to deploy to an on-prem server and also AWS. Some deployment pipelines use custom Powershell script for.Net application, some others use Bash script to execute the docker push and cloud formation template to build elastic beanstalk.
Dicky Leonardo | TrustRadius Reviewer
Dicky Leonardo
Senior Engineer
Read full review
Rapid7
It is easy to use with sufficient documentation on how to use the tools for end users or newbies. Experienced testers will find it easy to customise and configure the test cases. Just wished that I could have taken up a course on using this tool in my study days so that I could had explored more and improved my familiarity with the tool, unlike when working where access and time to explore the other features of the tool is limited
Verified User
Anonymous
Read full review
Pros
ThoughtWorks
  • Pipeline-as-Code works really well. All our pipelines are defined in yml files, which are checked into SCM.
  • The ability to link multiple pipelines together is really cool. Later pipelines can declare a dependency to pick up the build artifacts of earlier ones.
  • Agents definition is really great. We can define multiple different kinds of environments to best suit our diverse build systems.
Tung Vu | TrustRadius Reviewer
Tung Vu
Senior Software Engineer
Read full review
Rapid7
  • Easy to use.
  • Many exploits available.
  • Multi-platform.
Omar Israel Sánchez Monroy | TrustRadius Reviewer
Omar Israel Sánchez Monroy
Auditor de Seguridad de la Información
Read full review
Cons
ThoughtWorks
  • UI can be improved
  • Location for settings can be re-arranged
  • API for setting up pipeline
Dicky Leonardo | TrustRadius Reviewer
Dicky Leonardo
Senior Engineer
Read full review
Rapid7
  • More robust menus
  • Better plugin inter-operation
Alan Matson, CCNA:S, MCP | TrustRadius Reviewer
Alan Matson, CCNA:S, MCP
Senior Network Security Engineer
Read full review
Support Rating
ThoughtWorks
No answers on this topic
Rapid7
We don't use it.
Omar Israel Sánchez Monroy | TrustRadius Reviewer
Omar Israel Sánchez Monroy
Auditor de Seguridad de la Información
Read full review
Alternatives Considered
ThoughtWorks
GoCD is easier to setup, but harder to customize at runtime. There's no way to trigger a pipeline with custom parameters.
Jenkins is more flexible at runtime. You can define multiple user-provided parameters so when user needs to trigger a build, there's a form for him/her to input the parameters.
Tung Vu | TrustRadius Reviewer
Tung Vu
Senior Software Engineer
Read full review
Rapid7
Metasploit is the most well-known tool in the average pen tester's toolkit. It's hard to compare to its neighbor's due to its size and following.
Verified User
Anonymous
Read full review
Return on Investment
ThoughtWorks
  • ROI has been good since it's open source
  • Settings.xml need to be backed up periodically. It contains all the settings for your pipelines! We accidentally deleted before and we have to restore and re-create several missing pipelines
  • More straight forward use of API and allows filtering e.g., pull all pipelines triggered after this date
Dicky Leonardo | TrustRadius Reviewer
Dicky Leonardo
Senior Engineer
Read full review
Rapid7
  • Positive: Improves efficiency of our network penetration testing operations.
  • Positive: Allows for collaboration and information sharing during a penetration test.
Verified User
Anonymous
Read full review
ScreenShots