DAST refers to “Dynamic Application Security Testing”, and it is performed by searching vulnerabilities in dynamic environments such as url end points or servers that allow an http/ssl connection.

Currently, the scanner has the following two modules to perform these checks:

This module checks URL environments to perform an http request, looking for misconfigured headers, content or dns records.

This module checks URL environments and performs and ssl connection to check for vulnerabilities regarding encryption and authentication.