Explore StackHawk
Watch a Demo
Getting Started
StackHawk API
Integrations
Authentication
Maturity Model
Blog
Ship Secure GraphQL with StackHawk
Active GraphQL Security Testing
Test for vulnerabilities in your GraphQL API with StackHawk’s automated security testing. StackHawk runs active tests to surface potential security issues
- Simple scans with introspection endpoint
- Test for OWASP Top 10 vulnerabilities
- Trusted open source ZAP customized for GraphQL
- User friendly GraphQL outputs
Automated Testing in CI/CD
Run automated security tests against your GraphQL API in CI/CD. With StackHawk, you can ensure that you catch vulnerabilities before they hit production.
- CI/CD integrations for easy automation
- Docker based scanner for ephemeral testing
- Fast scan performance
- Microservice & API testing
Fast Tests and Fixes with Federated Scanning
Improve scan times and time to fix by scanning smaller increments of change. Testing federated GraphQL is simple with StackHawk.
- Simple scanning of federated services
- Lightning fast API security testing
- YAML overlays for scalable config
- Test smaller change units for easier fixes
Self-Service Triage and Fix
Investigating and fixing identified security issues is simple with StackHawk. From overviews ro documentation to cURL recreation, developers are equipped to self-service application security.
- Vulnerabilities overviews and fix documentation
- Request and response for all findings
- cURL command generator to reproduce issues
- Run scans locally to validate fixes
Get Hands-on Experience.
Give Us a Test Drive!
We know you might want to test drive a full version of security software before you talk to us. So, Get It On!