https://store-images.s-microsoft.com/image/apps.8598.f9ed4069-e7a3-464b-a851-18b9314f9103.385eefde-9cc6-4d21-a843-277808532a91.fe21bff4-7cee-4659-b716-18506b3a77a9
StackHawk
StackHawk, Inc.
StackHawk
StackHawk, Inc.
StackHawk
StackHawk, Inc.
DAST and API Testing for GitHub, Azure DevOps and Defender for Cloud
Uniquely tailored to Microsoft customers
The StackHawk platform is intricately woven into the Microsoft ecosystem, allowing developers to explore multiple paths tailored to their needs, whether orchestrating workflows through GitHub Actions or Azure DevOps. Once Microsoft Defender for API is mapped to a GitHub or Azure DevOps repo, developers simply have to turn on SARIF to take advantage of StackHawk’s advanced security tooling.
Our approach to security
StackHawk is the only dynamic application (DAST) and API security testing tool that runs in CI/CD, making API and application security testing part of software delivery. The StackHawk platform offers engineering teams the ability to find and fix application bugs at any stage of software development and gives Security teams insight into the security posture of applications and APIs being developed. The platform also contains generative AI technology that can help Security teams identify hidden APIs, providing information about what APIs exist, where they live, and who they belong to.
Defender for APIs, an offering through Defender for Cloud
StackHawk’s latest product integration with Microsoft Defender for APIs will provide application security professionals granular visibility into the security status and performance of their APIs within one unified viewpoint. With additional integrations into developer tooling, StackHawk makes it simple for teams to shift security testing left and efficiently ship secure software. The integration will enable users to aggregate API security findings and posture insights across multiple tools, providing AppSec professionals with a correlated outlook on current API security risk, offering a more integrated approach to API security. Visit our technical documentation around StackHawk and Defender for Cloud here.
Pricing Information
Pricing is available as either StackHawk Pro or StackHawk Enterprise. With both StackHawk Pro and StackHawk Enterprise, users receive unlimited scans and environments and unlimited applications.
StackHawk Pro features:
- Docker-based application security scanner
- CI/CD automation
- Historical scan data
- cURL based reproduction criteria
- REST, GraphQL & SOAP support
- StackHawk CLI
- Custom scan discovery
- Applications dashboard
- Custom test data for REST
- Custom test data for GraphQL
- HawkScan ReScan
- gRPC support
- Email and Slack based support
- Slack, Snyk, GitHub, and CodeQL integrations
StackHawk Enterprise features:
- ALL features and integrations in StackHawk Pro
- Single sign-on
- Role-based permissions
- Activity history & audit log
- Log4Shell vulnerability
- Seed paths
- API access for Scan Results
- Executive summary report
- Custom test scripts
- Team-based access
- Policy management
- Dedicated Slack based support
- Premier Zoom support
- Generic webhooks, Microsoft Teams, DefectDojo and Azure DevOps integrations
For more information, visit: https://www.stackhawk.com/pricing/
For custom pricing, EULA, or a private contract, please contact marketplace-orders@stackhawk.com, for a private offer.
Hear directly from our customers! Read G2 product reviews: https://www.g2.com/products/stackhawk/reviews
https://store-images.s-microsoft.com/image/apps.48706.f9ed4069-e7a3-464b-a851-18b9314f9103.3ef59c86-fbb3-4e60-82d3-efad1e499515.8cc655d2-7793-4f0f-ae1f-b20423d78b1a
https://store-images.s-microsoft.com/image/apps.48706.f9ed4069-e7a3-464b-a851-18b9314f9103.3ef59c86-fbb3-4e60-82d3-efad1e499515.8cc655d2-7793-4f0f-ae1f-b20423d78b1a
https://store-images.s-microsoft.com/image/apps.38782.f9ed4069-e7a3-464b-a851-18b9314f9103.385eefde-9cc6-4d21-a843-277808532a91.85021c5b-f21b-432b-a018-61f74c414238