Beginners Guide to
Application Security

Beginners Guide to
Application Security

SAST vs DAST

SAST vs DAST

Why SAST?

  • Better ROI since DAST works only after a build is reached.
  • Wider Coverage. DAST can’t find non-reflective flaws (XSS).
  • More effective in Agile, DevOps and CICD scenarios.
  • Helps automate the security process and create a secure SDLC.
  • Uses the only advantage the org has over hackers – access to source code.

Why DAST?

  • Detects runtime issues.
  • Does not require access to source code (good for 3rd party app testing).

Additional Reading:

The following two tabs change content below.

Dina Shkolnik

Latest posts by Dina Shkolnik (see all)

Interested in trying CxSAST on your own code? You can now use Checkmarx's solution to scan uncompiled / unbuilt source code in 18 coding and scripting languages and identify the vulnerable lines of code. CxSAST will even find the best-fix locations for you and suggest the best remediation techniques. Sign up for your FREE trial now.

Checkmarx is now offering you the opportunity to see how CxSAST identifies application-layer vulnerabilities in real-time. Our in-house security experts will run the scan and demonstrate how the solution's queries can be tweaked as per your specific needs and requirements. Fill in your details and we'll schedule a FREE live demo with you.