Olivia
Online
StackHawk
@StackHawk
StackHawk makes it simple for developers to find, triage, and fix application security bugs. AppSec Closer to the Keyboard than Ever Before.
🦅 Kaakaww!
Denver, CO
Joined July 2019
625 Following
1.1K Followers
1.4K Posts
Pinned Tweet
The 2026 AppSec reality:
87% adopted AI coding assistants, but 50% spend 40%+ of their time just triaging alerts.
73% can't confidently answer board questions about risk posture.
Learn more: https://t.co/jUNcJWuBoG
Download the guide: https://t.co/qVpwRi8OcG
Read what we learned from this success story: https://t.co/y6DkwX5q6O
One security engineer rolled out DAST to 40+ dev teams in two quarters.
The verdict: the problem was never technical. It was a project management problem.
Read the full story: https://t.co/ZlnLPiW7MH
Bay Area AppSec, we'll be at the SF Secure Software and AppSec Summit on May 14 in Palo Alto.
Learn more: https://t.co/Its8s5nmhi
Who to follow
AI Security Engineers
@aiseceng
Advancing AI security by uniting innovators, researchers, builders, and defenders to share insights on securing AI-powered and agentic applications.
Socket
@SocketSecurity
Socket is the #1 software supply chain security platform. Next-gen SCA + SBOM + 0-day prevention. LOVED BY DEVELOPERS. 👀 @npm_malware
Michael Skelton
@codingo_
VP of Operations @bugcrowd, Hacking Content @ https://t.co/Ov3ZXfNg5P tools @ https://t.co/4X3ot71JLf @SecTalks_GC & @BSidesGC co-organiser
StackHawk is now a @Wiz_io Integration Partner!
StackHawk’s pre-production DAST findings flow directly into the Wiz Security Graph, where they are correlated with the cloud infrastructure context Wiz maintains.
Application and cloud risk in one place.
https://t.co/J2jcVjznGm
Every DAST vendor supports OAuth2, Jira, and OWASP Top 10.
That's not an evaluation.
Download our new DAST RFP template with 75+ criteria, the ones that actually separate tools.
🔗 https://t.co/nmft5rp7eo
Security can't keep being the blocker.
Joe Sullivan says the number one trait for the next gen security team is curiosity.
@sgerlach's anti-pattern: needs procedures. Stays in the box.
@StackHawk
It reads your repo. It doesn't send requests to your running app. That's not a gap that better models will eventually close. It's a category difference.
Read the full blog here: https://t.co/CV90D22yt5
OpenAI launched Codex Security in March. Real results. Previously unknown vulns in OpenSSH and Chromium. Most coverage stopped there.
Runtime testing is the check that closes the gap. StackHawk scans the running app in CI, feeds findings back to the agent as prompts, and you rescan to confirm the fix. All inside the same IDE.
Full walkthrough: https://t.co/8EHiQtqWH9
Copilot's coding agent learned from public codebases — including the ones with SQL injection sitting in them, weak auth that nobody caught, secrets committed by accident. It doesn't apply a security lens. It applies the patterns it saw most often.
MCP servers connect to production: your DBs, internal APIs, real services. Most ship with zero security testing.
StackHawk now scans remote MCP servers. Add a config block, run HawkScan, findings map to specific tools, not raw protocol calls.
https://t.co/5dPiPsW7C7
Read the full breakdown here: https://t.co/UpDQ4HBDTR
Cybersecurity stocks dropped for Claude Code Security. Rallied for Project Glasswing.
Same category. Very different reactions.
The difference isn't capability. It's that code analysis still doesn't send requests to your running app.
Full breakdown 👇
AI pen testing isn't replacing DAST.
It's replacing the $40k manual pentest you run twice a year.
Different cadence, different scope, different job.
Read the full breakdown of DAST vs. AI pentesting: https://t.co/3cUcOD8q78
StackHawk will be at @owasp SnowFROC '26 on April 16–17.
400 practitioners. Two days of talks and hands-on training.
If you're going and want to talk about how AppSec programs actually keep up with AI development velocity, come find us🦅
https://t.co/UW4uOgp5Fj
That's a wrap on RSAC 2026.
It was a packed week of dinners, workshops, and incredible conversations with the AppSec community.
Big thanks to our partners, customers, and friends for making it one to remember.
Check out Payton O'Neal’s full recap: https://t.co/YF0uiducoQ
StackHawk is heading to @owasp BASC 2026 in Cambridge 🦅
April 11 at the Boston Marriott. We'll be there talking about how teams are running DAST and API security testing in CI/CD.
Come find us!
🔗https://t.co/LZCBUWkVMq
AI-generated code is changing where application security teams need to focus.
At RSAC 2026, @ashimmy spoke with @StackHawk co-founders @joniklippert and @sgerlach about how the AppSec bottleneck has shifted from finding vulnerabilities to fixing them fast enough to keep pace with modern development. As code volume grows, the discussion centered on why auto-remediation inside the IDE is becoming increasingly important.
They also explored how agentic testing can help engineering teams verify and remediate flaws without slowing the CI/CD pipeline.
▶️ Watch the full discussion: https://t.co/d0SGWcSmLx
#AppSec #AI #DevSecOps #SecureCoding #CI_CD
On the night before SnowFROC 🏔️
We're joining @semgrep, @SheHacksPurple, and OWASP for a panel on AI agents in AppSec.
Register here: https://t.co/ZPn41HSRbd
@StackHawk's Scott Gerlach and @semgrep's Kyle Northcutt got into a room at #RSAC2026 and talked about code velocity, vibe coders, AI budgets, and why sitting on the bench isn't an option anymore.
Watch the full video here: https://t.co/8T23A1Hsle
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers