DAST is dynamic application security testing while SAST is static application security testing.
DAST tests from the outside. Think pen testing, etc. SAST is inside testing, stuff like HP Fortify scans and that ilk. DAST is also referred to as black box and SAST white box. See: this
No comments:
Post a Comment