Vulnerability Analysis Using The Interactive Application Security Testing (IAST) Approach For Government X Website Applications

“…Interactive Application Security Testing (IAST) is an automated vulnerability detection tool. Setiawan et al [31] implemented an IAST approach and tested their approach on a government website and found 249 vulnerabilities covering all the categories of the OWASP Top Ten (2017). However, their approach does not accurately represent the approaches employed by commercially available IAST tools for vulnerability detection.…”

Comparing Effectiveness and Efficiency of Interactive Application Security Testing (Iast) and Runtime Application Self-Protection (Rasp) Tools in A Large Java-Based System

“…Interactive Application Security Testing (IAST) is an automated vulnerability detection tool. Setiawan et al [31] implemented an IAST approach and tested their approach on a government website and found 249 vulnerabilities covering all the categories of the OWASP Top Ten (2017). However, their approach does not accurately represent the approaches employed by commercially available IAST tools for vulnerability detection.…”

Comparing Effectiveness and Efficiency of Interactive Application Security Testing (Iast) and Runtime Application Self-Protection (Rasp) Tools in A Large Java-Based System

Security Testing for Web Applications: A Systematic Literature Review

OWASP-Based Assessment of Web Application Security