Read the Docs
Get up and running in less than an hour. Build the config file and then $ docker run hawkscan to find your security bugs.
On every new pull request, a StackHawk scan will run against your application, service, or API to find any newly introduced vulnerabilities from your code or your open source components.
If alerted of a new security finding, developers have all of the information needed at their fingertips. With clear descriptions of the vulnerability and the request/response details that triggered the finding, developers can take action now or send to an existing team backlog.
Developers can copy a cURL command to recreate the request that triggered the finding, leading them right to the bug. With links to fix documentation, remediating security bugs has never been faster.
Push an updated PR quickly with provided links to fix documentation.
Step through code with the same request and find the bug faster.
Scan every microservice on each PR and spend less time hunting when a finding is surfaced.
Your application security tooling is just another part of your engineering stack. With StackHawk, integrating AppSec into your existing workflows is easy.