SOOS DAST No Limit Web App and API Scanner
SOOS DAST integrates into your build pipeline and consolidates DAST test results with SCA vulnerability scans in a single powerful web dashboard.
Take a tour
Award winning fast, accurate, and scalable application security tools.
You name it, we integrate with it.
Automate Dynamic Application Security Testing (DAST) in your CI/CD pipeline and Issue Management Tools.
Get startedSee our DAST tool in action
A rich feature set for our DAST tool
Scan Web Apps or APIs
Scan web apps and APIs defined by OpenAPI, SOAP, or GraphQL including just in time generation of OAuth tokens
Domain Scanning
No DAST domain scanning limits
Concurrent Scans
No limits on concurrent DAST scans or tool seats
Scan Coverages
SQL Injection, Broken Auth, Sensitive Data Exposure, Security Misconfigs, Cross Site Scripting, Insecure Deserialization, Component Vulns, Missing Security Headers & more
Issue Management
Issue manager support. Push issues to GitHub’s Security Panel (Jira and GitHub Issues)
ZAP vs SOOS DAST
SOOS DAST makes it easy to extend the power of ZAP to continuously test your web app and monitor for potential exploit paths.
Feature
HTML App DAST Tests
Single Page App DAST Tests
Incorporates Industry-Standard Open Source ZAP Scanner
Just in Time Generation of OAuth Tokens
Includes Leading SCA Vulnerability Scanner (>12 languages/packages)
REST API & SOAP Testing
GraphQL Testing
Vulnerability Scans for Known CVEs in OSS Packages
Open Source License Management
Integration Helpers for Leading CI/CD Systems
Fix Management with GitHub Issues or Jira
Auto Scanning on Build/Branch Changes
Script Configurations
Vulnerability Remediation Management and Triage Documentation
Full Scan History
Push Scan Results to GitHub Security Panel
SARIF Output Support
RKVST SBOM Hub Integration
Easy Branch Setup and Configurations
OpenAPI Integration for API Testing
Robust Scan Information Pushed to Build Output
Role-Based Dashboard for Engineering/Legal/Security Viewers
Support
Easy Setup
We support major programming languages
Java
Python
Ruby
.NET
JavaScript
PHP
Gradle
Rust
Dart
Homebrew
Elixir
Erlang
Golang
C++