A Comparative Analysis and Benchmarking of Dynamic Application Security Testing (DAST) Tools

Authors

  • Vivek Somi Technical Account Manager at Amazon Web Services, USA. Author

DOI:

https://doi.org/10.47363/JEAST/2024(6)E139

Keywords:

Web Application, Security Vulnerability, Analysis Security Testing, Static Analysis Security Testing, Dynamic Analysis Security Testing, Interactive Analysis Security Testing, Assessment Methodology, False Positive, False Negative, Tools Combination

Abstract

Cybersecurity is crucial in today's era of advanced technology, rapidly developing scientific understanding, and a completely interconnected global society to guarantee high safety in all aspects of life. Furthermore, there is an ever-increasing number of difficulties and dangers to achieving security in cyberspace. One of the most basic and essential ways to avoid cybersecurity is to conduct security testing for vulnerabilities. In order to make the most of
the potential synergies between various types of analysis tools, this paper combines static white box security analysis (SAST), dynamic black box security analysis (DAST), and interactive white box security analysis (IAST) in that order. This investigation aims to improve security vulnerability detection while decreasing false positives.

Author Biography

  • Vivek Somi, Technical Account Manager at Amazon Web Services, USA.

    Technical Account Manager at Amazon Web Services, USA.

Downloads

Published

2024-02-26

Issue

Vol. 6 No. 2 (2024): Volume 6 Issue 2

Section

Articles