Static Analysis for Dynamic Assessments - OWASP AppSecUSA 2014

Recorded at AppSecUSA 2014 in Denver Thursday, September 18 • 1:00pm - 1:45pm Static Analysis for Dynamic Assessments Today’s dynamic and static web vulnerability scanners are capable of analyzing complex web applications for security weaknesses. They automate testing of many common vulnerabilities. However, there is a gap between Static and Dynamic scanners. They find different vulnerabilities. So why aren’t dynamic testers running static tools? Typically, they don’t have so