Continuous Dynamic (DAST): Dynamic Application Security Testing

Baseline Edition (BE) is a basic un-configured scan, designed to assess web applications that do not contain forms, like brochure-ware. This is the core Continuous Dynamic offering, including automated scanning and vulnerability verification, and is ideal for identifying your sites and determining the degree of protection that is appropriate for each. Continuous Dynamic BE includes identification of technical vulnerabilities, verification of vulnerabilities to eliminate false positives, access to the Black Duck Threat Research Center for support, and unlimited retesting to ensure your remediation strategies are effective.

Standard Edition (SE) includes all the features described under Continuous Dynamic BE. In addition, Continuous Dynamic SE is a configured scan, designed to provide assessment for permanent web applications that use forms or authentication but that do not require the in-depth business logic testing provided by Continuous Dynamic PE.

Premium Edition (PE) includes all the features described under Continuous Dynamic BE and SE. In addition, Continuous Dynamic PE includes business logic testing by our TRC engineers, and is designed to assess more complex, high-priority, or mission-critical web applications, including those using multi-step, form-based processes and authentication and those that require both technical and business logic testing.

For more detail on the Dynamic service, please see Continuous Dynamic - Service Definition