Simple, continuous and fully automated application security testing.

Pricing: Free
Visit website

What is RapiDAST?

Empower your security strategy with RapiDAST, a dynamic scanning framework utilizing the OWASP ZAP Proxy. Achieve continuous, proactive, and fully automated web app and API security testing for comprehensive vulnerability identification.

RapiDAST is a framework for continuous, proactive and fully automated dynamic scanning against web apps/API.Its core engine is OWASP ZAP Proxy.

Rapid DAST is an open source security testing tool that automates the process of DAST(Dynamic Application Security Testing) security testing and streamlines the integration of security into your development workflow.

It is designed to help Developers and/or QA engineers rapidly and effectively identify low-hanging security vulnerabilities in your applications, ideally in CI/CD pipelines. This will help your organization to move towards DevSecOps with the shift-left approach.

How does RapiDAST enhance dynamic scanning for web apps/APIs?

RapiDAST, built on the OWASP ZAP Proxy, offers a framework for continuous, proactive, and fully automated dynamic scanning against web apps and APIs. Its robust core engine ensures thorough vulnerability identification, contributing to heightened security in an ever-evolving digital landscape.

Key Features:

  • Ease of use and simple automation of HTTP/API scanning, fully working in CLI with a yaml configuration, taking advantage of ZAP
  • Ability to run automated DAST scanning to suit various users' needs via custom container images
  • HTML, JSON and XML report generation
  • Integration with reporting solutions such as OWASP DefectDojo

More tools in Security Testing

Cherrybomb logo


Security Testing

A CLI tool that helps you avoid undefined user behaviour by validating your API specifications.

Burp Suite Logger++ logo

Burp Suite Logger++

Security Testing

Advanced Logging for Burp Suite.


Postman Security Test Generator

Security Testing

Execute role based security tests on APIs