Skip to main content
DAST - Dynamic Application Security Testing

Dynamic Application Security Testing


DAST - Dynamic Application Security Testing

DAST is a security solution used to uncover vulnerabilities in software during its running state, including when it is actually deployed in production. 

It is a black box testing methodology where software is tested from the outside-in and attacked just as it would be by a true threat actor and simulates attacks against the application (typically web-enabled applications and services) and analyzes the application's response to determine if it is vulnerable. Minimal user interactions are required for these scans (once configured with host name, crawling parameters and authentication credentials). Unlike Static Application Security Testing tools (SAST), DAST tools do not have access to source code. DAST tools are either open source, free or commercially available, are specifically designed to find security vulnerabilities and are sometimes required to comply with various regulatory requirements.

Seeking Clarity?

View the Cybersecurity Dictionary for top terms searched by your peers.

Explore the Dictionary

Related Assets

June 07, 2018

Quick Tips for Building an Effective AppSec Program – Part 3

This is the last post in my series on creating an effective AppSec program within your organization. In my last post, we discussed the importance of t...

See Details

May 09, 2018

Application Security

Learn how Optiv can help protect your most critical enterprise applications from both internal and external threats.

See Details

May 02, 2018

Implement an Effective AppSec Program

Learn about Optiv's top ten tips for implementing an effective AppSec program.

See Details

How Can We Help?

Let us know what you need, and we will have an Optiv professional contact you shortly.

Privacy Policy

Stay in the Know

For all the latest cybersecurity and Optiv news, subscribe to our blog and connect with us on Social.


Join our Email List

We take your privacy seriously and promise never to share your email with anyone.

Stay Connected

Find cybersecurity Events in your area.