Dynamic Application Security Testing (DAST) is a procedure that actively investigates running applications with penetration tests to detect possible security vulnerabilities.
To address this growing security threat, businesses are increasingly deploying dynamic application security testing (DAST) tools as part of a more security-forward approach to web application development. DAST tools provide insight into how your web applications behave while they are in production, enabling your business to address potential vulnerabilities before a hacker uses them to stage an attack. As your web applications evolve, DAST solutions continue to scan them so that your business can promptly identify and remediate emerging issues before they develop into serious risks.
we have evaluated a few tools in 2021 against open source
vulnerable applications to determine a tool that can be integrated with release
pipelines and can be seamlessly integrated into SDLC.
These commercial tools could identify a very tiny subset of
known vulnerabilities. It cannot replace manual pen testing but can complement
pen testers. The below tables provide a high-level evaluation
summary of the tools shortlisted
