DAST (dynamic application security testing) is the process of analyzing a web application through the front end to find vulnerabilities through simulated attacks. This type of approach evaluates the application from the “outside in” by attacking an application in the way a malicious user would. After a DAST scanner performs these attacks, it looks for results that are not part of the expected result set and identifies security vulnerabilities.