### Contents

- [**Articles**](#resources-articles)
- [**Discussions**](#resources-discussions)
- [**Reports**](#resources-reports)

# Dynamic Application Security Testing (DAST) Software Resources

##### Articles, Discussions, and Reports to expand your knowledge on Dynamic Application Security Testing (DAST) Software

Resource pages are designed to give you a cross-section of information we have on specific categories. You'll find [articles](#resources-articles) from our experts, [discussions](#resources-discussions) from users like you, and [reports](#resources-reports) from industry data.

[ContentsExpand/Collapse Contents](#)
- [**Articles**](#resources-articles)
- [**Discussions**](#resources-discussions)
- [**Reports**](#resources-reports)

## Dynamic Application Security Testing (DAST) Software Articles

[![Vulnerability Scanners: Types, Benefits, And Top 5 Scanners](https://learn.g2.com/hubfs/G2CM_FI719_Learn_Articles_Images_%5Bintrusion_detection%5D_V1a.png "Vulnerability Scanners: Types, Benefits, And Top 5 Scanners")](https://www.g2.com/articles/vulnerability-scanner)

[
### Vulnerability Scanners: Types, Benefits, And Top 5 Scanners
](https://www.g2.com/articles/vulnerability-scanner)
Vulnerability scanners are crucial line of defense protecting web application from the fast evolving and dangerous cyberthreats. This software assesses your network and systems for vulnerabilities and reports the risks associated with them. There are many vulnerability scanning tools available in the industry, but as every organization's need varies, so does the best choice in vulnerability scanners. 

[
 ![Sagar Joshi](/assets/transparent-ad5be28fbcd25b7b08d2cebe1d957125437fb5407d75ee717965ad22c8808791.gif "Sagar Joshi")
SJ

](https://learn.g2.com/author/sagar-joshi)

by Sagar Joshi

[![G2 Launches Interactive Application Security Testing (IAST) Software Category](https://learn.g2.com/hubfs/IAST-AC.jpg "G2 Launches Interactive Application Security Testing (IAST) Software Category")](https://www.g2.com/articles/g2-launches-interactive-application-security-testing-iast-category)

[
### G2 Launches Interactive Application Security Testing (IAST) Software Category
](https://www.g2.com/articles/g2-launches-interactive-application-security-testing-iast-category)
The DevSecOps software space continues to evolve as product development teams work to adopt “secure by default” delivery strategies. In February 2022, G2 launched its Interactive Application Security Testing (IAST) Software category to represent a key testing approach.

[
 ![Adam Crivello](/assets/transparent-ad5be28fbcd25b7b08d2cebe1d957125437fb5407d75ee717965ad22c8808791.gif "Adam Crivello")
AC

](https://learn.g2.com/author/adam-crivello)

by Adam Crivello

[![What Is DevSecOps, and How Is It Different from DevOps?](https://sell.g2.com/hubfs/ideas-whiteboard-person-working-7369.jpg "What Is DevSecOps, and How Is It Different from DevOps?")](https://www.g2.com/articles/what-is-devsecops-and-how-is-it-different-from-devops)

[
### What Is DevSecOps, and How Is It Different from DevOps?
](https://www.g2.com/articles/what-is-devsecops-and-how-is-it-different-from-devops)
The golden age of DevOps software best practices has settled upon us like a cozy blanket of consistency. Within this utopia of perfect change management and well-oiled industry standards, a natural progression toward airtight cybersecurity called DevSecOps emerged.  

[
 ![Adam Crivello](/assets/transparent-ad5be28fbcd25b7b08d2cebe1d957125437fb5407d75ee717965ad22c8808791.gif "Adam Crivello")
AC

](https://learn.g2.com/author/adam-crivello)

by Adam Crivello

[![SAST vs. DAST: Application Security Testing Explained](https://learn.g2.com/hubfs/iot-security.jpg "SAST vs. DAST: Application Security Testing Explained")](https://www.g2.com/articles/sast-vs-dast)

[
### SAST vs. DAST: Application Security Testing Explained
](https://www.g2.com/articles/sast-vs-dast)
As a result of the booming cloud application market, companies are increasingly — and rationally — concerned with the security of their applications and the data associated with them.

[
 ![Aaron Walker](/assets/transparent-ad5be28fbcd25b7b08d2cebe1d957125437fb5407d75ee717965ad22c8808791.gif "Aaron Walker")
AW

](https://learn.g2.com/author/aaron-walker)

by Aaron Walker

Show More

## Dynamic Application Security Testing (DAST) Software Discussions

0

Question on: GitLab
[Is GitLab paid?](/discussions/is-gitlab-paid)

Is GitLab paid?

Yes, Gitlab is paid as it provides the flexibility to use all the features of the GitHub and Git as well as the freedom to use your own DataBase so that you won't have to worry about the data breach from and second or third party.

Answered: Pankaj Garg on October 17, 2023

Yes but also has free versions if you want it, in cloud and also self-hosted

Answered: Braulio Ruiz on November 22, 2023

Yes, for having finer control and multiple users, you have to buy paid version. as solo developer, you can use free version.

Answered: Sourabh Girdhar on October 25, 2023

Yes, It is paid but you can use its free service also.

Answered: Anurag Kushwaha on October 17, 2023

Comment deleted by user.

Answered: Diaa Nagib on April 20, 2023

Yes, by corporate users.

Answered: Roke Beedell on August 28, 2023

[See more answers (5)](javascript:void(0);)

[Your answer](/discussions/is-gitlab-paid/comments/new?remote=true)

0

Question on: GitLab
[Good source of template for CI/CD pipeline](/discussions/good-source-of-template-for-ci-cd-pipeline)

A good source of community curated CI/CD templates will be a good source of implementing all best practices.

CI/CD templates incorporate your favorite programming language or framework into this YAML file. Instead of building pipelines from scratch, CI/CD templates simplify the process by having parameters already built-in. 

Answered: Sapana Pal on July 24, 2022

[Your answer](/discussions/good-source-of-template-for-ci-cd-pipeline/comments/new?remote=true)

0

[Top-rated DAST platforms for enterprise applications?](/discussions/top-rated-dast-platforms-for-enterprise-applications)

Hey everyone,

I’ve been helping a few enterprise security teams evaluate [**DAST (Dynamic Application Security Testing)**](https://www.g2.com/categories/dynamic-application-security-testing-dast)[**platforms**](https://www.g2.com/categories/dynamic-application-security-testing-dast) that can scale across large, complex environments — from web apps to APIs and multi-cloud systems. I pulled data from G2’s latest **Enterprise DAST Software Grid** to see which platforms enterprise users rate highest for scalability, automation, and continuous security integration.

Here’s what stood out (based on G2 Grid order):

- **Tenable Nessus** – the clear enterprise leader; trusted for deep vulnerability coverage, reliable scanning at scale, and seamless integrations across hybrid and on-prem environments.
- **Bright Security** – a top high performer with strong satisfaction scores; well-suited for cloud-native testing and continuous scanning in enterprise CI/CD workflows.
- **Invicti (formerly Netsparker)** – established enterprise solution known for scalable scanning, automation, and proof-based vulnerability validation to minimize false positives.
- **HCL AppScan** – strong contender for large enterprises; offers combined DAST, SAST, and IAST capabilities with extensive reporting and compliance features.
- **GitLab** – integrates DAST directly into CI/CD pipelines; a good fit for enterprises already leveraging GitLab’s broader DevSecOps ecosystem.

I based this on **G2 satisfaction, market presence, and overall G2 score** , highlighting tools consistently chosen by enterprise security teams for scalability and integration depth.

Also seeing **StackHawk** and **Contrast Security** mentioned frequently for modern, API-focused enterprise setups — anyone here using those?

For enterprise teams running large-scale security programs — which DAST tools have scaled best across multiple applications and CI/CD pipelines?

Answered: Soundarya Jayaraman on October 28, 2025

[Your answer](/discussions/top-rated-dast-platforms-for-enterprise-applications/comments/new?remote=true)

- ‹ Prev‹ Prev
- 1
- [2](/categories/dynamic-application-security-testing-dast/resources?discussions_page=2)
- [3](/categories/dynamic-application-security-testing-dast/resources?discussions_page=3)
- [4](/categories/dynamic-application-security-testing-dast/resources?discussions_page=4)
- [5](/categories/dynamic-application-security-testing-dast/resources?discussions_page=5)
- …
- [13](/categories/dynamic-application-security-testing-dast/resources?discussions_page=13)
- [14](/categories/dynamic-application-security-testing-dast/resources?discussions_page=14)
- [Next ›Next ›](/categories/dynamic-application-security-testing-dast/resources?discussions_page=2)

## Dynamic Application Security Testing (DAST) Software Reports

Mid-Market Grid® Report for Dynamic Application Security Testing (DAST)

Summer 2026

G2 Report: Grid® Report

Grid® Report for Dynamic Application Security Testing (DAST)

Summer 2026

G2 Report: Grid® Report

Enterprise Grid® Report for Dynamic Application Security Testing (DAST)

Summer 2026

G2 Report: Grid® Report

Momentum Grid® Report for Dynamic Application Security Testing (DAST)

Summer 2026

G2 Report: Momentum Grid® Report

Small-Business Grid® Report for Dynamic Application Security Testing (DAST)

Summer 2026

G2 Report: Grid® Report

Enterprise Grid® Report for Dynamic Application Security Testing (DAST)

Spring 2026

G2 Report: Grid® Report

Small-Business Grid® Report for Dynamic Application Security Testing (DAST)

Spring 2026

G2 Report: Grid® Report

Mid-Market Grid® Report for Dynamic Application Security Testing (DAST)

Spring 2026

G2 Report: Grid® Report

Grid® Report for Dynamic Application Security Testing (DAST)

Spring 2026

G2 Report: Grid® Report

Momentum Grid® Report for Dynamic Application Security Testing (DAST)

Spring 2026

G2 Report: Momentum Grid® Report