Static application security testing (original) (raw)
Static application security testing (SAST) is used to secure software by reviewing the source code of the software to identify sources of vulnerabilities. Although the process of statically analyzing the source code has existed as long as computers have existed, the technique spread to security in the late 90s and the first public discussion of SQL injection in 1998 when Web applications integrated new technologies like JavaScript and Flash. For the year of 2018, the Privacy Rights Clearinghouse database shows that more than 612 million records have been compromised by hacking.