Synopsys has unveiled Synopsys fAST Dynamic, a fresh addition to its dynamic application security testing (DAST) solutions within the Synopsys Polaris Software Integrity Platform®. This offering empowers development, security, and DevOps teams to swiftly detect and address security flaws in contemporary web applications while maintaining development momentum. Boasting streamlined onboarding and setup, intelligent attack execution, and a cutting-edge analysis engine tailored for DevSecOps workflows, fAST Dynamic marks a significant advancement in security testing capabilities.
Synopsys fAST Dynamic, built on the innovative scanning technology acquired from WhiteHat Security, complements the fAST Static and fAST SCA capabilities introduced on the Polaris platform in 2023. Together, they enable development and security teams to address vulnerabilities in proprietary source code, open source dependencies, and application behavior through a fully integrated application security testing solution. Underpinned by modern cloud architecture and scalable multi-tenant SaaS delivery, Polaris makes it easy for developers to onboard and start scanning in minutes while enabling security teams to track testing activities and manage risk across thousands of applications.
“Dynamic analysis is an essential technology for securing modern web applications, but legacy DAST tools can be too slow and difficult to use in fast-paced development environments,” said Jason Schmitt, general manager of the Synopsys Software Integrity Group. “With fAST Dynamic, we have evolved the powerful and accurate scanning technology from Whitehat Security to create a solution designed for the speed of modern development. Synopsys fAST Dynamic enables DevOps teams to scan their applications quickly and accurately, eliminating time-consuming configuration and triage efforts often required with legacy tools. With the addition of fAST Dynamic, Polaris customers can orchestrate rapid static, SCA, and dynamic scans through a unified SaaS platform, enabling them to simplify and accelerate their DevSecOps workflows.”
Synopsys fAST Dynamic is uniquely designed to support rapid DevSecOps workflows with features that include:
- Simplified Onboarding and Configuration: fAST Dynamic allows users to initiate scans in seconds with a few simple steps, removing the need for intricate configuration settings or extensive technical security knowledge. Scans can be triggered from the user interface or the Polaris API. This capability makes dynamic testing accessible to various teams, including developers and DevOps engineers.
- Smart Attack Execution: fAST Dynamic leverages its deep understanding of modern frameworks and technologies to intelligently navigate and analyze web applications, ensuring comprehensive test coverage. This advanced capability allows for a seamless testing experience that requires minimal user input and no specialized expertise, setting a new standard in detecting vulnerabilities with unmatched accuracy and efficiency.
- Innovative Analysis Engine: fAST Dynamic is optimized to efficiently target critical and high-impact vulnerabilities. It delivers fast and accurate scan results while minimizing false positives and unnecessary noise. Due to its analysis engine’s speed and accuracy, development and DevOps teams can integrate fAST Dynamic directly into their automated CI/CD pipelines.
Synopsys fAST Dynamic will be generally available on the Polaris platform in April and can be purchased as a stand-alone offering or with fAST Static and fAST SCA.
For more information, visit www.synopsys.com/polaris or read the blog post.