Security scan tools, also called vulnerability scan tools, are computer programs designed to assess computer systems, applications, or networks for vulnerabilities. These tools detect weaknesses in network-based assets such as application servers, webservers, firewalls, and routers. Most security scan tools conduct both authenticated and unauthenticated scans.
Security scan tools are usually provided over the internet as a web application and are available as SaaS (Software as a Service). Security scan tools increase network security by customizing vulnerability reports, certificates, installed software, certificates, and open ports.
WhiteHat scanning tools
- Dynamic (automated) testing -Dynamic application security testing (DAST) is known as black-box testing involves using tools where the tester has no prior knowledge of the system, in order to detect possible security vulnerabilities both in the system and any underlying frameworks used.
- Static (manual) testing -Static Application Security Testing (SAST) is known as white-box testing, where the tester requires a deeper understanding of the system being tested and access to the source code at rest. SAST tools examine the source code at rest to detect and report on potential security vulnerabilities. Manual (SAST) testing is more intrusive than automated (DAST) testing and may involve adding, altering and deleting data within the application.