StackHawk Reviews & Product Details - Page 4

StackHawk Product Details

Claimed

StackHawk is a comprehensive API security solution designed to help developer & security teams identify and remediate security vulnerabilities within their code. By integrating seamlessly into the development workflow, StackHawk empowers teams to proactively address application security issues before they reach production, ensuring a more secure software delivery process. StackHawk caters to organizations that prioritize security in their applications but may lack the resources or expertise to conduct extensive security audits. The platform is particularly beneficial for DevOps teams, security engineers, and developers who are looking to incorporate security testing into their continuous integration and continuous deployment (CI/CD) pipelines. With StackHawk, users can scan their applications for security bugs, triage findings, and implement fixes efficiently, all while maintaining their development velocity. One of the key features of StackHawk is its ability to scan applications for a wide range of application security vulnerabilities, including SQL injection, cross-site scripting (XSS), and other common threats. The platform generates detailed reports that outline the vulnerabilities found, along with actionable documentation that guides developers through the remediation process. This feature not only helps in identifying issues but also educates developers on best practices for secure coding, fostering a culture of security awareness within the team. Additionally, StackHawk offers automation capabilities that allow users to integrate security scanning directly into their CI/CD pipelines. This means that security checks can be performed automatically during the development process, reducing the likelihood of vulnerabilities making it to production. By automating these scans, teams can save time and resources while ensuring that security remains a top priority throughout the software development lifecycle. Ultimately, StackHawk stands out in the API security category by providing a developer-friendly approach to security testing. Its focus on integration, ease of use, and actionable insights makes it a valuable tool for organizations looking to enhance their security posture without sacrificing development speed. By enabling teams to find and fix security bugs early in the development process, StackHawk helps organizations build more secure applications and reduce the risk of costly security breaches.

Product Website

Seller

StackHawk

Discussions

StackHawk Community

Languages Supported

English

Product Description

StackHawk makes it simple for developers to find, triage, and fix application security bugs. Scan your application for AppSec bugs in the code your team wrote, triage and fix with provided documentation, and automate in your pipeline to prevent future bugs from hitting prod.

Overview by

Alexa Sevilla

StackHawk Integrations

(12)

Verified by StackHawk

StackHawk Media

Security bug finding details from a scan of your application. Bug details, fix documentation, request/response payloads, and paths where the bug was found.

API Discovery & Observability powered by HawkAI

StackHawk is the only modern API security testing tool that runs in CI/CD, enabling developers to quickly find and fix security issues before they hit production.

Official Downloads

(2)

edit

Business Benefits of DAST & Shifting Left

G2 reviews are authentic and verified.

Here's how.

Eran K.

Director Of Engineering

Mid-Market (51-1000 emp.)

2/24/2022

"It's a great DAST tool that easily integrates into our CI/CD pipeline"

5/5

What do you like best about StackHawk?

Stackhawk does a great job making configuring and running the scan as easy as possible by wrapping everything up to a docker container that can run both locally by developers and on CI. Review collected by and hosted on G2.com.

What do you dislike about StackHawk?

We've had to put in a little effort to get it to work with OAuth authentication, but it's much less work and more straightforward than anything else we tried. Review collected by and hosted on G2.com.

Brandon B.

Senior Product Security Engineer

Mid-Market (51-1000 emp.)

2/3/2022

"Fantastic DAST tool for integrating with your CI/CD pipeline"

5/5

What do you like best about StackHawk?

The SaaS platform makes this product easy and fast to implement and aggregate findings to make it extremely easy to view and validate findings. The ability to seamlessly run a scan that is hosted locally in docker that will give you the same results as a deployed resource. This gives developers the ability to run their scans before ever committing code. Review collected by and hosted on G2.com.

What do you dislike about StackHawk?

The scanners lacks fine-grain customization into the underlying ZAP scanner. The configurations could expose more of the underlying functionality to customize scans better. Review collected by and hosted on G2.com.

Charles E.

Sr. Full Stack Developer

Small-Business (50 or fewer emp.)

2/7/2022

"The Stackhawk Experience was impressive from the beginning to fully integrated into our CI/CD"

5/5

What do you like best about StackHawk?

The Stackhawk documentation was easy & helpful for our development team to integrate into our CI/CD. The Stackhawk team was very responsive, helpful & knowledgeable. Review collected by and hosted on G2.com.

What do you dislike about StackHawk?

No complaints. The product is producing findings with helpful remediation tips and recommendations. Review collected by and hosted on G2.com.

Verified User in Publishing

Small-Business (50 or fewer emp.)

2/9/2022

"StackHawk for simplified security scans"

5/5

What do you like best about StackHawk?

StackHawk is very simple to set up and use, whether using the standard method of a Docker image or the new CLI tool. Either can easily be integrated with your choice of CI/CD system to automate the process for each developer's commits. We've found the resulting reports are easy to understand for both developers and management. In particular, we like the ability to replicate each test with the cURL command provided in the report. Support and sales have gone above and beyond in getting us set up. Review collected by and hosted on G2.com.

What do you dislike about StackHawk?

We haven't yet found anything we dislike about StackHawk. For our small business, it's been an ideal fit so far. Review collected by and hosted on G2.com.

Recommendations to others considering StackHawk:

I would recommend signing up for a free trial and testing it for yourself. StackHawk was simple to setup so it won't take much time to discover if it will meet your needs. Review collected by and hosted on G2.com.

What problems is StackHawk solving and how is that benefiting you?

We needed a quick security scan solution to help win a new account. StackHawk allowed us to close the deal while providing us with a solid on-going solution to find and fix security issues much earlier in our development cycle. Review collected by and hosted on G2.com.

Jonatas W.

Cloud Security Analyst

Small-Business (50 or fewer emp.)

2/12/2022

"StackHawk proves to be an interesting tool in secure development pipelines."

4/5

What do you like best about StackHawk?

I like the ease of onboarding new applications. It is easy and practical, enhancing the security user experience in the application development cycle. Additionally, the application utilizes native API development configurations through OpenAPI files. Review collected by and hosted on G2.com.

What do you dislike about StackHawk?

It still seems too simplistic for the level expected in corporate environments. There is a lack of a way to manage multiple projects, but I believe it will be implemented in future releases. Review collected by and hosted on G2.com.

Alexander S.

VP of Engineering & Technology

Small-Business (50 or fewer emp.)

2/19/2022

"Shift Left on Security with Stackhawk"

4.5/5

What do you like best about StackHawk?

Stackhawk is extremely simple to set up. The user interface, documentation, and examples really pave the way for a successful implementation. Review collected by and hosted on G2.com.

What do you dislike about StackHawk?

I don't have anything to list as a dislike at the moment. Everything is working as expected. Review collected by and hosted on G2.com.

Evelyn S.

Software Engineer

Small-Business (50 or fewer emp.)

2/22/2022

"Easy to use"

5/5

What do you like best about StackHawk?

The app is really easy to use and setup. Running scans is pretty simple and easy to check out your security issues Review collected by and hosted on G2.com.

What do you dislike about StackHawk?

Honestly from using it for a few weeks already, I have nothing I dislike Review collected by and hosted on G2.com.

Verified User in Transportation/Trucking/Railroad

Enterprise (> 1000 emp.)

2/11/2022

"A great dynamic company that is promising and a maverick in the world of DAST platforms"

5/5

What do you like best about StackHawk?

DAST tools have always been crude and traditional in the last decade. StackHawk brings a unique approach to DAST that is truly modern, easy to use and set up, and developer-friendly. Review collected by and hosted on G2.com.

What do you dislike about StackHawk?

There's nothing I dislike about StackHawk specifically, but there's room for improvement on their solution. Review collected by and hosted on G2.com.

Recommendations to others considering StackHawk:

If Shift-Left and DevSecOps is your strategy and goal, StackHawk is the right DAST tool for you Review collected by and hosted on G2.com.

What problems is StackHawk solving and how is that benefiting you?

Licensing models from other DAST companies does not provide flexibility and most of the time, cost-prohivitive. StackHawk's pricing are reasonable and allows our business to scale keeping our application security budget sustainable. Review collected by and hosted on G2.com.

Verified User in Computer & Network Security

Small-Business (50 or fewer emp.)

2/17/2022

"A good DAST Tool, easy to integrate in your CI pipeline"

4.5/5

What do you like best about StackHawk?

- A good knowledgeable and strong support and account team.

- Easy to integrate with the existing CI pipeline.

- Did a good job of reducing our vulnerabilities.

- A great UI to review. Review collected by and hosted on G2.com.

What do you dislike about StackHawk?

- Needs better notification and improvements to the notifications.

- Alternate alerting system.

- Needs more product lines to make this a single use tool. Review collected by and hosted on G2.com.

Verified User in Computer Software

Small-Business (50 or fewer emp.)

3/30/2022

"Attended a workshop at Devops.js"

4/5

What do you like best about StackHawk?

How easy it was to set up, and while I may not need something so complete at the moment it's definitely something I would use with bigger projects. Review collected by and hosted on G2.com.