# Best DAST solutions for cloud-native applications?

<p class="elv-tracking-normal elv-text-default elv-font-figtree elv-text-base elv-leading-base elv-font-normal" elv="true">Hey everyone,</p><p class="elv-tracking-normal elv-text-default elv-font-figtree elv-text-base elv-leading-base elv-font-normal" elv="true">I’ve been helping a few DevSecOps teams evaluate <strong>DAST (Dynamic Application Security Testing) tools designed for cloud-native applications</strong> — microservices, APIs, containers, serverless. I looked through G2’s DAST category and review data, plus vendor features, to identify which platforms perform strongly in modern cloud/native stacks.</p><p class="elv-tracking-normal elv-text-default elv-font-figtree elv-text-base elv-leading-base elv-font-normal" elv="true">Here’s what stood out (based on G2 Grid order):</p><ul>
<li>
<a class="a a--md" elv="true" href="https://www.g2.com/products/tenable-nessus/reviews"><strong>Tenable Nessus</strong></a><strong>:</strong> the category leader; great for vulnerability scanning across cloud workloads, containers, and dynamic app environments.</li>
<li>
<a class="a a--md" elv="true" href="https://www.g2.com/products/jit/reviews"><strong>Jit</strong></a><strong>: </strong>built for DevSecOps workflows; integrates directly into CI/CD pipelines for automated runtime and API testing in cloud-native stacks.</li>
<li>
<a class="a a--md" elv="true" href="https://www.g2.com/products/aikido-security/reviews"><strong>Aikido Security</strong></a><strong>:</strong> strong for modern app architectures; automates scanning across cloud deployments with simple setup and actionable reporting.</li>
<li>
<a class="a a--md" elv="true" href="https://www.g2.com/products/akto/reviews"><strong>Akto</strong></a><strong>:</strong> API-first DAST designed for microservices and distributed systems; ideal for testing cloud-based REST and GraphQL endpoints.</li>
<li>
<a class="a a--md" elv="true" href="https://www.g2.com/products/astra-pentest/reviews"><strong>Astra Pentest</strong></a><strong>: </strong>combines automated DAST with manual testing for hybrid and multi-cloud environments; solid for ongoing app security validation.</li>
</ul><p class="elv-tracking-normal elv-text-default elv-font-figtree elv-text-base elv-leading-base elv-font-normal" elv="true">I based this on <strong>G2 satisfaction and feature-level data</strong>, plus user reviews focused on cloud-native coverage, automation depth, and integration flexibility. Anyone here using these tools? Can you share your experience? </p>

##### Post Metadata
- Posted at: 6 months ago
- Author title: SaaS and Software Research
- Net upvotes: 1


## Comments
### Comment 1

&lt;p&gt;Which DAST tools have actually handled your cloud-native workloads well — especially for scanning APIs, containers, or microservices without breaking the pipeline?&lt;/p&gt;

##### Comment Metadata
- Posted at: 6 months ago
- Author title: SaaS and Software Research





## Related discussions
- [How well does Trello scale into a larger team?](https://www.g2.com/discussions/1-how-well-does-trello-scale-into-a-larger-team)
  - Posted at: almost 13 years ago
  - Comments: 6
- [Can we please add a new section](https://www.g2.com/discussions/2-can-we-please-add-a-new-section)
  - Posted at: almost 13 years ago
  - Comments: 0
- [Quantifiable benefits from implementing your CRM](https://www.g2.com/discussions/quantifiable-benefits-from-implementing-your-crm)
  - Posted at: almost 13 years ago
  - Comments: 4