#dast articles | Hashnode

RRayhanrayhan-engineering.hashnode.devJun 4 · 7 min read

Advanced Security Testing in SIBANGKU: Finding CSV Formula Injection Before It Reached Users

Unit tests are good at checking whether internal logic behaves correctly. But not every risk in a web application is visible from ordinary unit tests. In the SIBANGKU project, I learned this through t

0

MGMarios Grivasdefprotocol.hashnode.devMay 26 · 6 min read

Reverse Engineering the Gov.gr Wallet: How a Hardcoded API Key Exposed Millions of Citizens

When it comes to government-backed digital transformation, the gov.gr wallet has been one of Greece's flagship projects, allowing citizens to carry their IDs, driver's licenses, and other official doc

0

SASolomon Achugwohsecuredtips.hashnode.devMay 23 · 5 min read

Integrating Burp Suite with Claude for Security Testing

Application security testing is changing fast. Security engineers are no longer confined to manually reviewing requests, replaying traffic, or crafting repetitive payloads from scratch. With the emerg

0

SCSourav Chakrabortydevsecopssourav.hashnode.devApr 19 · 6 min read

From Code to Runtime: Closing the AppSec Gap with WAF + DevSecOps

Modern software ships fast. Security incidents ship faster. With cloud‑native apps, microservices, and open‑source everywhere, application security can no longer be an afterthought. That’s where SCA

0

TITech Insights Hubtopperblog.hashnode.devFeb 12 · 8 min read

Security Scanning: SAST and DAST

Why Traditional Security Scanning Fails Modern Teams The security landscape in 2025 differs fundamentally from even three years ago. Cloud-native applications built on Kubernetes span multiple regions and availability zones. Serverless functions exec...

0

AKAditya Khadangaadityakhadanga.hashnode.devFeb 6 · 16 min read

How to Integrate SAST, SCA, DAST Tools into GitLab's CI/CD for Enhanced Security

Basic security terms for the course SAST, SCA, DAST, IAST SAST: Static Application Security Testing (Code review for your own code)-> white box testing SCA: Software Composition Analysis (Background check of external libraries you use) DAST: Dynam...

0

PSPrateek Shettyprateeks007.hashnode.devNov 30, 2025 · 12 min read

Building a Security Assessment Architecture That Actually Works

TL;DR: Scanners that run automatically, findings that aggregate in one place, reports that don't make stakeholders' eyes glaze over. For small-to-medium engineering teams who need real security without hiring a dedicated AppSec team. Security scanne...

0

JMJames Millerjamesmiller459.hashnode.devNov 26, 2025 · 7 min read

Role of DAST in API Security: Challenges and Solutions

APIs have become the core of modern products. They power web apps, connect microservices, and move sensitive data across systems. But as API usage grows, so do the risks. Recent industry reports show API-driven attacks rising faster than traditional ...

0

CSCode Skycodesky.cloudhero.inOct 3, 2025 · 3 min read

Breaking the Build to Save the App: A Story of SAST & DAST in Azure DevOps

It was a late Friday evening when the DevOps team at a fintech startup got an urgent message from the security team: “We’ve found hard-coded secrets in production code. Immediate remediation required.” The room went silent. The developers knew what...

0

QTQualysec Technologiesqualysectechnologies.hashnode.devSep 22, 2025 · 2 min read

What is Dynamic Application Security Testing (DAST) ?

Dynamic application security testing (DAST) is the procedure of finding vulnerabilities in web applications during its production phase. It involves both automated and manual testing techniques to find weak points that hackers could exploit for their...

0

#dast

Search Hashnode