StackHawk provides an automated, continuous DAST service for GitHub repositories and applications using the open source tool OWASP ZAP . The company was founded by two former Veracode engineers who saw a need to make DAST more accessible for development teams.
The Problem with Static Application Security Testing (SAST)
Static analysis tools like Veracode , WhiteSource , or Snyk are great at finding known vulnerabilities in your code, but they can only examine what you give them: your compiled binaries
https://t.co/2utcj5IXdB