This DAST platform simulates real-world attacks on running applications to find vulnerabilities in web apps and APIs. It includes FAST (Functional Application Security Testing), horizontal scaling with Kubernetes, HAR-based workflow scanning, OAST detection (e.g., Log4Shell), SPA crawling, and client-side SCA with SBOM output. Pages 1–3 detail API scanning for GraphQL, gRPC, SOAP, Postman, and Swagger; authentication support; redundant page detection; deduplication; and ScanCentral DAST for enterprise-level orchestration. It integrates with DevOps pipelines using REST APIs and accelerates remediation through code-level insights and fix validation.

Join for free to read