SAST

E356952

SAST (Static Application Security Testing) is a security testing methodology that analyzes source code or binaries to identify vulnerabilities early in the software development lifecycle.

All labels observed (1)

Label Occurrences
SAST canonical 1

How this entity was disambiguated

Statements (48)

Predicate Object
instanceOf Security testing methodology
Static analysis technique
alignedWith Shift-left security practices
analyzes Application binaries
Application source code
benefit Compliance with security standards
Early remediation of security issues
Improved code quality
Reduced cost of fixing vulnerabilities
canProduce False positives
category Application security testing
contrastedWith Dynamic Application Security Testing
Runtime security testing
detects Authorization flaws
Cross-site scripting vulnerabilities
Data leakage issues
Hard-coded credentials
Injection vulnerabilities
Input validation issues
Insecure configuration patterns
Insecure cryptography usage
Insecure error handling
doesNotRequire Running application
focusesOn Early detection of vulnerabilities
fullForm Static Application Security Testing
goal Prevent vulnerabilities before deployment
integratesWith Build systems
CI/CD pipeline
IDE
operatesOn Static code representation
output Annotated code issues
Security findings report
purpose Identify security vulnerabilities
relatedTo DAST
IAST
SCA
requires Access to source code or bytecode
supports Multiple programming languages
supportsStandard CWE
OWASP Top 10 protections
surface form: OWASP Top 10
technique Control flow analysis
Data flow analysis
Pattern-based rule checking
Taint analysis
usedBy DevSecOps teams
Developers
Security engineers
usedIn Software development lifecycle

How these facts were elicited

Referenced by (1)

Full triples — surface form annotated when it differs from this entity's canonical label.

Checkmarx offersProduct SAST