
Read the Docs
Get up and running in less than an hour. Build the config file and then $ docker run hawkscan to find your security bugs.
Automate application and API security testing in CI/CD workflows
Test early, test often, and deliver secure applications
Application security at the speed of DevOps
Ship secure APIs with automated testing in CI/CD
Scale application security through engineering
Testing for OWASP top 10, automated in CI/CD
Check for GraphQL vulnerabilities on every pull request
Keep your gRPC services secure with automated security testing
Learn how to start scanning your application or API
Explore the StackHawk API and start integrating today
Integrate with the most popular developer tools
Identify, investigate, and triage security bugs in one place
Effectively scan authenticated routes and API endpoints in your application
Kaakaww!! Meet the our Hawksome team and check out our job board
See StackHawk in flight
Gain AppSec insights from expert articles and fix guides
Get up and running with StackHawk CLI and HawkScan in minutes
Catch up on the latest news in the Nest
Get paid to resolve bugs and improve ZAP
The StackHawk Difference
Whether you are implementing dynamic application security testing for the first time or are evaluating against existing systems, make sure you are using modern DAST tooling.
Feature | Legacy Vendors | |
---|---|---|
DAST SCANNER | ||
Testing Modern Applications | ||
HTML Scanning | ||
Single Page Application Scanning | ||
gRPC Scanning | ||
REST API Scanning | ||
GraphQL Scanning | ||
Authenticated Scanning | ||
Microservice Scanning | ||
CI/CD AUTOMATION | ||
CI/CD Automation for DevSecOps | ||
Integrations with CI/CD Tooling | ||
Scan Non-Publicly Available Deploys | ||
State Management of Existing Findings | ||
Configurable Pass / Fail Criteria for Pipeline | ||
TESTING EXPERIENCE | ||
Fast Triage and Fix with Developer Features | ||
Vulnerability Overviews | ||
Clear Vulnerability Fix Documentation | ||
Request / Response Finding Evidence | ||
cURL Command Reproduction Criteria | ||
Localhost Scan Support for Changes |
Application Security Testing You'll Enjoy Using.
Evaluating Dynamic Application Security Testing Tools?
Want to see automated security testing in action?