Revision as of 13:45, 4 November 2007 edit NEUrOO (talk \| contribs) 68 edits →Definition ← Previous edit		Revision as of 13:46, 4 November 2007 edit undo NEUrOO (talk \| contribs) 68 edits →Definition Next edit →
Line 2: == Definition == :A web [[application security]] scanner is software which communicates with a web application through the web front-end and identifies potential security weaknesses in the web application.<ref>~~WASC~~http:/~~WASSEC Technical draft~~/www.myappsecurity.com/wassec/index.php5?title=Technicaldraft</ref> These tools work as [[black-box]] tester; meaning that, unlike source code scanners, they don't access the source code and then, need to detect the [[Vulnerability_%28computing%29\|vulnerabilities]] by performing attacks.

Dynamic application security testing: Difference between revisions