SAST - Static Application Security Testing Home Cybersecurity Dictionary SAST - Static Application Security Testing SAST is a security solution used to uncover vulnerabilities in software during its static (not-running) state by analyzing such things as its source code, byte code or binary code. It is employed during the programming and / or testing phase of the software development lifecycle. SAST is a white box testing methodology where the software is tested from the inside-out by examining the code for conditions that indicate a vulnerability might be present. Related TermsDevOpsDevSecOpsSDLC - Software Development LifecycleDAST - Dynamic Application Security TestingSAST - Static Application Security TestingIAST - Interactive Application Security TestingShift Left Share: Seeking Clarity? View the Cybersecurity Dictionary for top terms searched by your peers. Back to the Dictionary