Sign in
Sign in
or
Create a new account
Categories
Your Saved List Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

StackHawk

StackHawk, Inc. | 1

Reviews from AWS Marketplace

0 AWS reviews
  • 5 star
    0
  • 4 star
    0
  • 3 star
    0
  • 2 star
    0
  • 1 star
    0

External reviews

57 reviews
from G2

External reviews are not included in the AWS star rating for the product.

    Information Technology and Services

Fantastic DAST product for the container world

  • July 16, 2024
  • Review verified by G2

What do you like best about the product?
Central management platform - StackHawk's SaaS management platform significantly simplifies the management of our applications. It provides an intuitive workflow for issue triage and remediation, making it easier for our team to identify, prioritize, and address security vulnerabilities efficiently.

Container-first orientation - the container-first approach of StackHawk's scanners provides unparalleled flexibility and ease of integration within our workflows. Given our unique requirements and constraints, this architecture enables us to build custom scanning workflows easily with our own scaffolding with more powerful configuration than any other DAST scanner we've tested. This flexibility not only meets our current needs but also positions us well for future integration with developer-centric processes.

Customer support - StackHawk's customer success team has been exceptional in guiding us towards effective use of their product. They keep us engaged with regular updates and news, and they are incredibly responsive to our questions, feature requests, and bug reports. Their proactive support has been instrumental in maximizing the value we derive from StackHawk.

Engaging brand identity - on a personal note, I greatly appreciate StackHawk's creative bird-themed branding. Their attention to detail in maintaining a cohesive and engaging brand identity, even in their internal libraries, adds a touch of personality and fun to our interactions with the tool.
What do you dislike about the product?
The most difficult part of working with StackHawk is the code-oriented nature of scripting, especially for application authentication. Many scanners use passive proxy mechanisms to capture authentication traffic, which makes it easy to get up and running rapidly with authenticated scanning. StackHawk does not offer this, opting instead for more powerful customization via their scripting engine. This may not be for everyone.
What problems is the product solving and how is that benefiting you?
We were able to meet our compliance requirements using other tooling, but StackHawk enabled us to implement headless, authenticated DAST in a fully-automated fashion so we no longer have to spend the time to execute scans manually. This was the main problem that drove us to StackHawk in the first place - but with some creativity, we are now planning for what we call the "ultimate shift left" for DAST, putting DAST directly in the hands of developers, in a controlled fashion. The automation, and subsequently putting the tool in the hands of developers, allows us to scale the application security program beyond just the application security team so that we achieve the coverage that we need.

    Computer Software

Positive product experience with helpful resources.

  • July 01, 2024
  • Review verified by G2

What do you like best about the product?
It's very fast to setup and get integrated. It has great configuration support and additional options.
What do you dislike about the product?
A downside to StackHawk is it's inability to create API endpoint collections automatically. At the time of this review it is not a function, or atleast a public one.
What problems is the product solving and how is that benefiting you?
StackHawk helps us identify vulnerabilities in API services and code - closer to the developer and less removed.

    Todd L.

Great tool with excellent service

  • November 09, 2023
  • Review verified by G2

What do you like best about the product?
Stackhawk has been fantastic in each aspect. It's simple to get working in a variety of platforms including Jenkins and GitHub actions. The documentation is easy to following and get working. When I ran into some issues and questions with scans the support was fast and thourough. I like that I can separate my scans by products/teams and adjust the tech stack per service. Moving scans into CI and integrating with GitHub for pull requests has been a huge shift in development.
What do you dislike about the product?
The only downside I can think of is when using Jenkins the containers it pulls down and reporting it does for a scan soaks up a bunch of disk on my Jenkins nodes and I end up having to do docker cleanup.
What problems is the product solving and how is that benefiting you?
Ease of configuration per microservice and getting our scans in the faces of developers further up the pipeline before code vulnerabilities are merged.

    Financial Services

Overall a decent front end to ZAP scanning

  • November 08, 2023
  • Review provided by G2

What do you like best about the product?
Relatively easy to use once initial setup is done. Easy to add in automation. Decent interface. Customer support was very helpful.
What do you dislike about the product?
Not quite intuitive setup, so a bit of a learning curve. Hard to manage vulnerabilities from a perspective of seeing how to manually reproduce and also to mark as false positive. No ability to mark application types and have custom severity on certain vulns based on that. eg XSS in website is more serious than in a json api.
What problems is the product solving and how is that benefiting you?
We needed to scan our APIs daily to pick up any low hanging fruit and make sure it gets remediated immediately

    Lake S.

Stackhawk has been a great tool to implement inside of our CI/CD pipeline for DAST scanning.

  • November 08, 2023
  • Review provided by G2

What do you like best about the product?
The flexability of delpoyment is great when deploying rapidly.
What do you dislike about the product?
There is not much training offered to get started with the tool.
What problems is the product solving and how is that benefiting you?
It is solving our need to actively scan our in house developed applications and microservices.

    Insurance

Great SaaS-first DAST product

  • November 08, 2023
  • Review verified by G2

What do you like best about the product?
StackHawk was built with a SaaS first mindset, unlike many of the competing products in the space, which made it a perfect fit for our needs. It has just the right number of features and does what it does very well.

We've been able to automate much of our interaction with the product through the robust APIs provided out of the box. Integrations are easy and straight forward. As a result, we're able to scan our products for vulnerabilities on every build as well as via continuous scanning from our CI/CD tooling.

I love the Slack-based customer support. As an early customer, we've been able to participate in beta and even pre-release design and have a great relationship with the StackHawk team.
What do you dislike about the product?
We've struggled with some of our larger APIs not completing scans in a timely manner. The StackHawk support team has been great about helping us solve for it.
What problems is the product solving and how is that benefiting you?
We've shifted our security to the left and StackHawk helped us do that in an easy, automated way. We're able to scan our internet-facing solutions early and often to ensure we're not introducing vulnerabilities in our products.

    ☁️ ⚡️ Sunil B.

StackHawk - A wonderful security testing tool

  • August 08, 2023
  • Review verified by G2

What do you like best about the product?
StackHawk is a wonderful security testing tool. It is easy to use and nice User interface.
What do you dislike about the product?
I have not got any issues from StackHawk to this date.
What problems is the product solving and how is that benefiting you?
StackHawk is solving our several problems and it is benefiting us a lot at this time. We fixed several vulnerabilities with stackhawk if any security issue affect our data.

    Carlos N.

Reliable solution

  • August 04, 2023
  • Review provided by G2

What do you like best about the product?
The price range is optimal, suitable for the organization size
What do you dislike about the product?
I don't think there are any major downsize
What problems is the product solving and how is that benefiting you?
Helping to find vulnerabilities, reducing the time every task takes

    Annmarie G.

Amazing

  • August 03, 2023
  • Review provided by G2

What do you like best about the product?
StackHawk is a super effective product for the company. It saves us money AND makes our processes more efficient.
What do you dislike about the product?
Nothing. I love StackHawk and what it does.
What problems is the product solving and how is that benefiting you?
StackHawk helps us with API Security.

    Retail

Good to have, in case it finds something in the future, but don't expect miracles

  • July 20, 2023
  • Review provided by G2

What do you like best about the product?
Can find the most common vulnerabilities in common web applications. Easy to use and nice UI.
What do you dislike about the product?
It comes nowhere near close to a real pen-testing, and it doesn't find many vulnerabilities in GraphQL.
What problems is the product solving and how is that benefiting you?
Having a DAST tool.

showing 1 - 10