DAST tests an application for security vulnerabilities by monitoring and probing an application while it is actually running – thus the dynamic test. DAST starts from inputs and is a black-box or external view. This gives is a very realistic view of application behavior, but is difficult to be completely thorough. Penetration testing or pen-test is a common form of DAST.
