Statements (29)
Predicate | Object |
---|---|
gptkbp:instanceOf |
security testing methodology
|
gptkbp:analyzes |
application behavior during runtime
|
gptkbp:canAutomate |
true
|
gptkbp:category |
application security
penetration testing vulnerability assessment |
gptkbp:compatibleWith |
access to source code
|
gptkbp:contrastsWith |
gptkb:SAST
|
gptkbp:detects |
gptkb:cross-site_scripting
SQL injection authentication issues authorization issues security misconfigurations |
gptkbp:focusesOn |
external interfaces
|
https://www.w3.org/2000/01/rdf-schema#label |
DAST
|
gptkbp:limitation |
cannot analyze source code
may generate false positives may miss vulnerabilities not exposed during runtime |
gptkbp:relatedTo |
gptkb:IAST
gptkb:OWASP gptkb:SAST penetration testing |
gptkbp:standsFor |
gptkb:Dynamic_Application_Security_Testing
|
gptkbp:usedBy |
developers
security professionals QA teams |
gptkbp:usedFor |
identifying security vulnerabilities in running applications
|
gptkbp:bfsParent |
gptkb:SAST
|
gptkbp:bfsLayer |
5
|