Introducing G2.ai, the future of software buying.Try now
StackHawk
Editedit
Play Video
StackHawk
Show rating breakdown
4.6 out of 5 stars
See all 68 StackHawk reviews
Save to My Lists
Contact StackHawk

StackHawk Reviews & Product Details - Page 5

Editadmin

StackHawk Overview

Editedit
What is StackHawk?

StackHawk is a comprehensive API security solution designed to help developer & security teams identify and remediate security vulnerabilities within their code. By integrating seamlessly into the development workflow, StackHawk empowers teams to proactively address application security issues before they reach production, ensuring a more secure software delivery process. StackHawk caters to organizations that prioritize security in their applications but may lack the resources or expertise to conduct extensive security audits. The platform is particularly beneficial for DevOps teams, security engineers, and developers who are looking to incorporate security testing into their continuous integration and continuous deployment (CI/CD) pipelines. With StackHawk, users can scan their applications for security bugs, triage findings, and implement fixes efficiently, all while maintaining their development velocity. One of the key features of StackHawk is its ability to scan applications for a wide range of application security vulnerabilities, including SQL injection, cross-site scripting (XSS), and other common threats. The platform generates detailed reports that outline the vulnerabilities found, along with actionable documentation that guides developers through the remediation process. This feature not only helps in identifying issues but also educates developers on best practices for secure coding, fostering a culture of security awareness within the team. Additionally, StackHawk offers automation capabilities that allow users to integrate security scanning directly into their CI/CD pipelines. This means that security checks can be performed automatically during the development process, reducing the likelihood of vulnerabilities making it to production. By automating these scans, teams can save time and resources while ensuring that security remains a top priority throughout the software development lifecycle. Ultimately, StackHawk stands out in the API security category by providing a developer-friendly approach to security testing. Its focus on integration, ease of use, and actionable insights makes it a valuable tool for organizations looking to enhance their security posture without sacrificing development speed. By enabling teams to find and fix security bugs early in the development process, StackHawk helps organizations build more secure applications and reduce the risk of costly security breaches.

StackHawk Details
Product Website
Discussions
StackHawk Community
Languages Supported
English
Show LessShow More
Product Description

StackHawk makes it simple for developers to find, triage, and fix application security bugs. Scan your application for AppSec bugs in the code your team wrote, triage and fix with provided documentation, and automate in your pipeline to prevent future bugs from hitting prod.

Seller

StackHawk

Description

StackHawk is a leading application security company that specializes in automated security testing for developers. Their platform helps organizations identify and remediate vulnerabilities in web applications through dynamic application security testing (DAST) integrated into the development workflow. StackHawk's tools enable DevOps teams to improve security without sacrificing speed, allowing for continuous testing and deployment of secure code. For more information, visit their website at https://stackhawk.com.

Overview Provided by:
Alexa Sevilla

StackHawk Integrations

(12)
Verified by StackHawk

Recent StackHawk Reviews

Verified User
U
Verified UserSmall-Business (50 or fewer emp.)
4.0 out of 5
"Stachawk efficiently processed the data, providing insightful analytics and reports."
Stachawk efficiently performed a comprehensive security assessment, identifying potential issues such as SQL injection, XSS, and security misconfig...
Read more
Verified User
U
Verified UserMid-Market (51-1000 emp.)
4.0 out of 5
"Review"
Its scanning capabilities and easy integration into our CI/CD pipelines
Read more
David M.
DM
David M.Mid-Market (51-1000 emp.)
5.0 out of 5
"StackHawk is a great DAST security tool"
We have recently partnered with StackHawk for dynamic security code scanning and the product has been fantastic. StackHawk has many methods for per...
Read more

StackHawk Pricing

Pro
$42.00
1 Code Contributor Per Month
Enterprise
$59.00
1 Code Contributor Per Month
Custom
$0.00
1 Code Contributor Per Month
See all 3 StackHawk pricing levels

StackHawk Media

StackHawk Demo - Finding Details
Security bug finding details from a scan of your application. Bug details, fix documentation, request/response payloads, and paths where the bug was found.
StackHawk Demo - HawkAI - All Repos
API Discovery & Observability powered by HawkAI
StackHawk is the only modern API security testing tool that runs in CI/CD, enabling developers to quickly find and fix security issues before they hit production.
Play StackHawk Video
StackHawk is the only modern API security testing tool that runs in CI/CD, enabling developers to quickly find and fix security issues before they hit production.
Editedit

Official Downloads

Answer a few questions to help the StackHawk community
Have you used StackHawk before?
Yes

68 StackHawk Reviews

4.6 out of 5
The next elements are filters and will change the displayed results once they are selected.
Search reviews
Hide FiltersMore Filters
The next elements are filters and will change the displayed results once they are selected.
  • Company SizeExpand/Collapse Company Size Filter
  • User RoleExpand/Collapse User Role Filter
  • CategoryExpand/Collapse Category Filter
  • IndustryExpand/Collapse Industry Filter
  • RegionExpand/Collapse Region Filter
The next elements are filters and will change the displayed results once they are selected.
  • Sort By:
    G2 Sort
68 StackHawk Reviews
4.6 out of 5
  • Sort By:
    G2 Sort
68 StackHawk Reviews
4.6 out of 5
  • Sort By:
    G2 Sort

StackHawk Pros and Cons

How are these determined?Information
Pros and Cons are compiled from review feedback and grouped into themes to provide an easy-to-understand summary of user reviews.
Pros
Cons
G2 reviews are authentic and verified.
Here's how.
Ali A.
AA
Software Engineer
Small-Business(50 or fewer emp.)
More Options
Validated Reviewer
Verified Current User
Review source: Organic
What do you like best about StackHawk?

Easy to integrate, unlimited scans and applications allowed in the plan, performs well, dockerized Review collected by and hosted on G2.com.

What do you dislike about StackHawk?

I wish there were more visibility into the types of rules or inputs that the scanner is using under the hood Review collected by and hosted on G2.com.

What problems is StackHawk solving and how is that benefiting you?

It's already revealed a few defects in APIs, and is integrated into SDLC process Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Verified User in Computer Software
UC
Small-Business(50 or fewer emp.)
More Options
Validated Reviewer
Review source: Organic
What do you like best about StackHawk?

The integration with my application was seamless. I just had to deploy a docker and run it, and the stat scanner reported the vulnerabilities almost instantly. Review collected by and hosted on G2.com.

What do you dislike about StackHawk?

StackHawk can improve the description of the vulnerabilities slightly to debug the issue faster. Stackhawk can give more examples for fixing security issues reported. Review collected by and hosted on G2.com.

Recommendations to others considering StackHawk:

Go ahead and use this product to get your applications tested for security vulnerabilities. Using StackHawk saves a lot of time and effort. Review collected by and hosted on G2.com.

What problems is StackHawk solving and how is that benefiting you?

I am trying to find security flaws in my application using StackHawk so that when I go into deployment, I don't get hacked. StackHawk benefitted me immensely by making the process seamless. Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Matt M.
MM
Senior Product Security Engineer
Small-Business(50 or fewer emp.)
More Options
Validated Reviewer
Verified Current User
Review source: Organic
What do you like best about StackHawk?

Slick CICD integration for a known scanning tool Review collected by and hosted on G2.com.

What do you dislike about StackHawk?

The core scanner is zap, without additional checks or enhancements. Review collected by and hosted on G2.com.

What problems is StackHawk solving and how is that benefiting you?

Automating our CICD pipeline for DAST with decent jira integration Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Lokesh V.
LV
Quality Analyst
Small-Business(50 or fewer emp.)
More Options
Validated Reviewer
Review source: Organic
What do you like best about StackHawk?

As we progress towards the future, Modern problems require modern solutions! StackHack is the perfect go-ahead for your business needs! Review collected by and hosted on G2.com.

What do you dislike about StackHawk?

The frequent updates with new technologies, but it's good to have the updates to stay ourselves protected! Review collected by and hosted on G2.com.

What problems is StackHawk solving and how is that benefiting you?

The frequent updates with new technologies, but it's good to have the updates to stay ourselves protected! Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Christopher D.
CD
VP Engineering
Small-Business(50 or fewer emp.)
More Options
Validated Reviewer
Verified Current User
Review source: Organic
What do you like best about StackHawk?

We've had nothing but a great experience working with the StackHawk team and their security automation tool. Our team operates in a continuous delivery environment, with several concurrent branches and environments at any given time. We release code several times per day, and StackHawk is able to provide us real-time scans of all of our branches, environments, and production deploys without any additional developer effort beyond initial setup. Review collected by and hosted on G2.com.

What do you dislike about StackHawk?

We had some initial issues with getting the scans to work with our GraphQL endpoints, but we were able to work closely with the StackHawk team, and this has since become a non-issue. I'm not aware of many other dynamic security testing providers that have such robust GraphQL support. Kudos to the StackHawk team for leaning in and delivering an excellent solution for GraphQL security testing. Review collected by and hosted on G2.com.

Recommendations to others considering StackHawk:

Setup a shared Slack channel, and you will receive answers to your questions blazingly fast! Review collected by and hosted on G2.com.

What problems is StackHawk solving and how is that benefiting you?

Automated dynamic security testing helps us build a more secure platform, as well as gives our customers confidence that we take security seriously and partner with the best providers. Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Verified User in Information Technology and Services
AI
Mid-Market(51-1000 emp.)
More Options
Validated Reviewer
Verified Current User
Review source: Organic
What do you like best about StackHawk?

-Very strong CI/CD integration

-Augmented security detections to ZAP

-A slick, fast UI

-Supportive staff when we have questions Review collected by and hosted on G2.com.

What do you dislike about StackHawk?

-Needs more augmented detection to discover real risks

-Needs ability for custom detections/plugins

-More customization on findings and options for suppression

-Faster scans! Review collected by and hosted on G2.com.

What problems is StackHawk solving and how is that benefiting you?

-Finding "real" problems through run-time scans

-CI/CD integration for low/no touch scans for developers Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Patrick R.
PR
Security Engineer
Enterprise(> 1000 emp.)
More Options
Validated Reviewer
Review source: Organic
What do you like best about StackHawk?

Good tool for Dynamic App Scanning. Can greatly help with the Vulnerablity identification and remediation process Review collected by and hosted on G2.com.

What do you dislike about StackHawk?

Does not seem to be a way to scan multipage/multisite applications or Mobile. Review collected by and hosted on G2.com.

What problems is StackHawk solving and how is that benefiting you?

We are not currently implementing the product fully, just demo and poc phase. Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
Jon C.
JC
CTO
Small-Business(50 or fewer emp.)
More Options
Validated Reviewer
Verified Current User
Review source: Organic
What do you like best about StackHawk?

Incredibly easy to integrate into our CI/CD pipeline using their provided Docker image and detailed guides.

It produces detailed yet easy-to-read reports that are suitable for sharing with stakeholders. StackHawk has helped increase stakeholder confidence in platform security.

It has helped us make automated security testing one of the first things we do when spinning up a new project. StackHawk has helped us stay on top of issues early in the development process.

The team is incredibly supportive and helpful if you run into any issues. Review collected by and hosted on G2.com.

What do you dislike about StackHawk?

I wish there was a more automated flow for retrieving oauth credentials for your api/site when running tests, it is a bit manual at the moment. Review collected by and hosted on G2.com.

What problems is StackHawk solving and how is that benefiting you?

StackHawk allows us to continuously test our code as part of our CI/CD workflow. Whenever a developer pushes up code, StackHawk runs against it and sends a report of any security issues it found.

As an engineering lead, I can share the reports with other stakeholders, executives, and board members to communicate that we are identifying security issues proactively and addressing them before they become a problem. StackHawk has increased the confidence of everyone in our security practices. Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
IS
Senior DevOps Engineer
Mid-Market(51-1000 emp.)
More Options
Validated Reviewer
Verified Current User
Review source: Organic
What do you like best about StackHawk?

In matters of minutes, one can set up and run a full scan against a web application. The intuitive and well-documented steps about how to integrate Stackhawk into the development lifecycle(build workflows, notifications) enabled us to get straight to what matters, which is the scan results.

Stackhawk's support was really helpful when needed. Review collected by and hosted on G2.com.

What do you dislike about StackHawk?

Some dashboard items could be improved, such as an option to export scan results to pdf and/or other formats; the scan page could be a bit less populated.

Also, a pay per scan plan would be well appreciated. Review collected by and hosted on G2.com.

Recommendations to others considering StackHawk:

Stackhawk tool is easy to use, can be easily integrated into the development lifecycle, and can enable teams to have better visibility over possible security issues in their web applications. Review collected by and hosted on G2.com.

What problems is StackHawk solving and how is that benefiting you?

We need to make sure that the applications we make available to our customers comply with the most common web application security standards. Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link
JR
CTO
Small-Business(50 or fewer emp.)
More Options
Validated Reviewer
Verified Current User
Review source: Organic
What do you like best about StackHawk?

- StackHawk is easy to take in to use

- Built on the ZAP scanner, and they support its development as well

- You can run it in different environments with Docker

- Produces clear reports on the findings, and you can manage them with the UI so that false positives don't show up on every scan Review collected by and hosted on G2.com.

What do you dislike about StackHawk?

I don't have anything to complain about. Their support solved all the problems we had during the onboarding process. Maybe it would be beneficial to have an even more detailed log on the scanner's action to debug issues. Review collected by and hosted on G2.com.

What problems is StackHawk solving and how is that benefiting you?

We use it to catch security problems automatically during the development process and use the results it generates when we plan for security audits. Review collected by and hosted on G2.com.

Show More
Show Less
Helpful?
Share
Admin Approval Link

StackHawk Comparisons

Compare GitLab vs. StackHawk
Compare GitLab vs. StackHawk
StackHawkVSGitLab
Compare Snyk vs. StackHawk
Compare Snyk vs. StackHawk
StackHawkVSSnyk
Compare Intruder vs. StackHawk
Compare Intruder vs. StackHawk
StackHawkVSIntruder
Compare StackHawk ratings to similar products

Top Rated StackHawk Alternatives

GitLab
(835)
4.5 out of 5
Intruder
(182)
4.8 out of 5
Wiz
(702)
4.7 out of 5
See all StackHawk Alternatives

Explore More

Which pricing software do large enterprises use
What's the best influencer marketing platform for mobile users
Best VDR software for mergers and acquisitions
Best expense management platform for growing companies
What's the best digital signage provider
What's the best ERP software for service-based business
Top cloud content solutions for improving team productivity
Top rated DXP software for enhancing customer engagement
Pros and Cons Details
StackHawk
Contact StackHawk