
Read the Docs
Get up and running in less than an hour. Build the config file and then $ docker run hawkscan to find your security bugs.
The StackHawk Difference
Whether you are implementing dynamic application security testing for the first time or are evaluating against existing systems, make sure you are using modern DAST tooling.
Feature | Legacy Vendors | |
---|---|---|
DAST SCANNER | ||
Testing Modern Applications | ||
HTML Scanning | ||
Single Page Application Scanning | ||
gRPC Scanning | ||
REST API Scanning | ||
GraphQL Scanning | ||
Authenticated Scanning | ||
Microservice Scanning | ||
CI/CD AUTOMATION | ||
CI/CD Automation for DevSecOps | ||
Integrations with CI/CD Tooling | ||
Scan Non-Publicly Available Deploys | ||
State Management of Existing Findings | ||
Configurable Pass / Fail Criteria for Pipeline | ||
TESTING EXPERIENCE | ||
Fast Triage and Fix with Developer Features | ||
Vulnerability Overviews | ||
Clear Vulnerability Fix Documentation | ||
Request / Response Finding Evidence | ||
cURL Command Reproduction Criteria | ||
Localhost Scan Support for Changes |
Application Security Testing You'll Enjoy Using.
Evaluating Dynamic Application Security Testing Tools?
Want to see automated security testing in action?