top of page
How DAST Works
1
Discovery Phase
Tool navigates through your application automatically, identifying all entry points, forms, and input fields
2
Attack Simulation
Executes various attack patterns including SQL queries, scripts, and command injections to probe for weaknesses
3
Response Evaluation
Studies how the application reacts to malicious inputs, detecting unusual patterns and security gaps
4
Results Documentation
Produces comprehensive report with risk levels, technical details, and step-by-step remediation instructions
Vulnerability Coverage
Complete protection against OWASP Top 10 and additional security risks
CRITICAL
SQL Injection
Finds database query manipulation vulnerabilities where attackers can extract or modify your data
CRITICAL
Cross-site Scripting XSS
Locates areas where malicious scripts can be injected and executed in victim browsers
HIGH
Authentication Bypass
Uncovers weak login systems that allow unauthorized users to gain access without proper credentials
HIGH
Broken Access Control
Detects flaws where users can view or modify resources beyond their authorized permissions
HIGH
CSRF Vulnerabilities
Checks for missing protections against forced unauthorized actions by authenticated users
MEDIUM
Security Misconfiguration
Scans for incorrect settings, default passwords, and unnecessary features that create security holes
MEDIUM
Sensitive Data Exposure
Discovers unprotected transmission of passwords, credit cards, and personal information
MEDIUM
XML External Entities (XXE)
Identifies XML processor weaknesses that can expose files or enable remote code execution
LOW
Missing Security Headers
Verifies presence of important HTTP headers that defend against common browser attacks
bottom of page