11 Dynamic Application Security Testing (DAST)

Dynamic application security testing (DAST) is a type of security testing that assesses the security of web applications by analyzing them while they are running. This approach evaluates the application from the outside in, simulating real-world attacks and identifying vulnerabilities that can be exploited by hackers.

DAST works by sending malicious input to an application and observing how the application responds. This can include sending invalid data to input fields, attempting to bypass authentication mechanisms, and trying to access sensitive data without proper authorization. The tool then analyzes the responses to identify any vulnerabilities or weaknesses in the application’s security.

Get Implementing DevSecOps Practices now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Implementing DevSecOps Practices by Vandana Verma Sehgal

11

Dynamic Application Security Testing (DAST)

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly