IAST is designed for software development, where accurate results are needed quickly, but security expertise is scarce. According to Gartner "The goal of IAST (Interactive Application Security Testing) is fast and accurate security testing that is suitable for use in development, where minimal security expertise is present and accurate results are needed quickly.”
Contrast Assess deploys an intelligent agent that instruments the application with smart sensors to analyze code in real time from within the application.
Download this whitepaper and see how instrumentation can help analyze:
- All the code for the application
- Runtime control and data flow information
- Configuration information
- HTTP requests and responses
- Libraries, frameworks, and other components
- Backend connection information
