Rapid7 AppSpider vs. StackHawk

Rapid7 AppSpider

Rapid7 AppSpider

6 Reviews and Ratings

StackHawk

1 Reviews and Ratings

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
Rapid7 AppSpider	Score 8.6 out of 10	N/A	AppSpider, from Boston-based Rapid7, is an application security and testing offering based on technology acquired from NT OBJECTives (their similarly named software NTOSpider, acquired with the company during April, 2015).	$2,000 Per Application
StackHawk	Score 10.0 out of 10	N/A	StackHawk is a solution designed to make it simple for developers to find, triage, and fix application security bugs, from the company of the same name headquartered in Denver. Scan an application for AppSec bugs in the code, triage and fix with provided documentation, and automate in the development pipeline to prevent future bugs from hitting production.	$42 per month per developer

Pricing

Rapid7 AppSpider

StackHawk

Editions & Modules

InsightAppSec: $2,000.00
Per Application

Pro: $42
per month per developer
Enterprise: $60
per month per developer

Offerings

Pricing Offerings
Rapid7 AppSpider	StackHawk
Free Trial
No	Yes
Free/Freemium Version
No	Yes
Premium Consulting/Integration Services
No	No

Entry-level Setup Fee

No setup fee

No setup fee

Additional Details

—

*5 Developer Minimum

More Pricing Information

Community Pulse
	Rapid7 AppSpider	StackHawk
Top Pros	Pro Single page Pro Web applications	No answers on this topic
Top Cons	Minus Rest api	No answers on this topic

Best Alternatives
	Rapid7 AppSpider	StackHawk
Small Businesses	GitLab Score 8.9 out of 10	GitLab Score 8.9 out of 10
Medium-sized Companies	GitLab Score 8.9 out of 10	GitLab Score 8.9 out of 10
Enterprises	GitLab Score 8.9 out of 10	GitLab Score 8.9 out of 10
All Alternatives	View all alternatives	View all alternatives

User Ratings
	Rapid7 AppSpider	StackHawk
Likelihood to Recommend	8.0 (2 ratings)	- (0 ratings)

User Testimonials
	Rapid7 AppSpider	StackHawk
Likelihood to Recommend	Rapid7 Rapid7 AppSpider could be your default DAST (Dynamic Application Security Testing), it covers the OWASP top 10 for web and APIs. Great tools, with a very nice and understandable report and analytics, work excellent for one-shot or continuous monitoring of your web assets. Also has a fair amount of integrations with other popular tools. Incentivized Randy Varela Offensive Security Engineer Lead Read full review	StackHawk No answers on this topic
Pros	Rapid7 Does a great job scanning Single Page Apps as well as APIs etc. We use this weekly and have faced no scan errors due to process failures or accidentally DoSing etc. Incentivized Verified User Anonymous Read full review	StackHawk No answers on this topic
Cons	Rapid7 Scan might be slow compared to other tools. Not a lot of training on the vendor side. Incentivized Randy Varela Offensive Security Engineer Lead Read full review	StackHawk No answers on this topic
Alternatives Considered	Rapid7 BurpSuite isn't a competitor necessarily but still for the price of a few hundred dollars per user it is a great tool, however, AppSpider blew it out of the water with its accuracy in terms of vulnerabilities reported as well as other aspects such as UI, customer support etc. Incentivized Verified User Anonymous Read full review	StackHawk No answers on this topic
Return on Investment	Rapid7 Great ROI for consultant projects. Incentivized Randy Varela Offensive Security Engineer Lead Read full review	StackHawk No answers on this topic
ScreenShots