Optiv Cybersecurity Dictionary

What is SAST - Static Application Security Testing?

Static application security testing (SAST) is a security solution used to uncover vulnerabilities in software during its static (not-running) state by analyzing such things as its source code, byte code or binary code.


It's employed during the programming and/or testing phase of the software development lifecycle. SAST is a white-box testing methodology where the software is tested from the inside-out by examining the code for conditions that indicate a vulnerability might be present.

Contact Us