方法证据记录
Dynamic Application Security Testing
Dynamic Application Security Testing (DAST) is a security analysis technique that tests a running application by sending various inputs and observing responses to identify vulnerabilities and security flaws. Developed in the 2000s as a complement to static analysis, DAST exercises the application at runtime, finding vulnerabilities that only manifest during execution such as authentication bypass, insecure redirects, and logic flaws. DAST is commonly used for web application testing and is considered a black-box testing approach since the tester requires no knowledge of internal code structure.
源记录
引文逐字复制自方法源记录。这些引文不代表任何层级的验证。
Dynamic Application Security Testing (DAST)
分类方法记录 · ml-model / cryptography
- Kals, S., Kirda, E., Kruegel, C., & Jovanovic, N. (2006). Secubat: A web vulnerability scanner. In Proceedings of the 15th International Conference on World Wide Web (WWW 2006), pp. 247-256. · DOI 10.1145/1135777.1135817
- McAllister, S., & Kirda, E. (2008). Vulnerability scanning web applications. In Web Application Security, pp. 201-230. · URL
精选声明
声明已持久化到证据分类账中,每个声明都有自己的评估。
尚无精选声明
当分类账中没有声明时,此视图不会自行创建声明评估。
相关方法
从方法图中生成,显示为机器建议的关系 — 不推断任何证据声明。