Dynamic application security testing (DAST) is the procedure of finding vulnerabilities in web applications during its production phase. It involves both automated and manual testing techniques to find weak points that hackers could exploit for their gain.
Since it is a black-box testing approach (with no info about the application’s code or infrastructure), the tester behaves like a real hacker to find where the security flaws lie. The testers test for common application and API vulnerabilities that could lead to cyberattacks.
