Dynamic Application Security Testing (DAST) Tools

What are Dynamic Application Security Testing (DAST) Tools?

Dynamic Application Security Testing (DAST), also known as black box testing, is a set of application security tools that enable the detection of vulnerabilities across user-facing aspects of an application. Commonly used in conjunction with SAST (Static Application Security Testing) tools, DAST enables security testing for all functionalities that are accessible to users, and those which hackers can possibly attempt to breach.

Due to only user-facing components of an application being tested, DAST can only be implemented during the latter stages of the development cycle. As a result, it is crucial to use a combination of SAST and DAST, since the former checks for vulnerabilities in source code (which can be done much earlier during the software development lifecycle).

Additionally, DAST can also be combined with IAST (Interactive Application Security Testing) tools to test individual functions on a real-time basis. Other supporting security tools for application and software development include:

Top 10 DAST Tools

Acunetix / Tenable One / Checkmarx One / Polaris / Aikido Security / Veracode / HCL AppScan / Appknox

WH Score
9.0
Acunetix

Acunetix

19reviews
Starting Price:N/A
Acunetix is an expert in delivering web application security. Passionate about making web security without compromise, Acunetix has successfully managed to gain over 3600 customers, from over 115 countries. Acunetix has also been a global leader in securing more than 800K web pages and more than 300...
WH Score
8.2
Tenable One

Tenable One

13reviews
Starting Price:N/A
Tenable is a cloud security company founded in 2002 and trusted by more than 40,000 organizations worldwide. With the rapid digital transformation and the introduction of cloud services, IoT, and mobility, almost everything is on connected devices thus increasing the cyberattack surface. And as mode...
WH Score
7.9
Checkmarx One

Checkmarx One

7reviews
Starting Price:N/A
Checkmarx One delivers a full suite of enterprise AppSec solutions, from SAST and SCA to runtime integrations, in a unified, cloud-based platform that allows enterprises to secure their applications from the first line of code to deployment in the cloud.
WH Score
7.9
Polaris

Polaris

0reviews
Starting Price:N/A
Polaris Application Security emerges as a robust and all-encompassing solution designed to protect developers against potential application vulnerabilities. Recognizing the escalating prominence of secure software development, Polaris equips developers with indispensable tools to safeguard their app...
WH Score
7.9
Aikido Security

Aikido Security

0reviews
Starting Price:$0 per user / per month
Aikido Security provides a simplified Static Application Security Testing (SAST) framework for discovering high-priority security vulnerabilities in code. With its user-friendly CI/CD and IDE connections, it reduces false warnings, allowing developers to focus on serious issues. This SAST platform a...
WH Score
7.9
Veracode

Veracode

0reviews
Starting Price:N/A
Veracode is a comprehensive Static Application Security Testing (SAST) tool that identifies and resolves vulnerabilities early in the software development life cycle. It supports over 100 languages, allowing developers to work safely and fix problems in real time while minimizing false positives. Ve...
WH Score
6.1
HCL AppScan

HCL AppScan

0reviews
Starting Price:N/A
HCL AppScan is a comprehensive Static Application Security Testing (SAST) tool that enables developers to identify and resolve vulnerabilities early in the software development lifecycle. Its scalable and efficient design allows it to easily interact with CI/CD pipelines and provides deep code analy...
WH Score
5.8
Appknox

Appknox

0reviews
Starting Price:N/A
Appknox is a powerful SAST and DAST tool that provides speedy, automated vulnerability discovery for mobile apps. Ideal for enterprises that prioritize security from the start, it quickly integrates into CI/CD pipelines and provides detailed compliance data for frameworks such as OWASP, GDPR, and HI...
The right software for your business

Get your personalized recommendations now.