FAST automatically transforms existing functional tests into security tests in CI/CD. A FAST proxy (Docker container) is used to capture requests as baselines. It then creates and runs a multitude of security checks for every build.
Use OWASP Top 10 defaults or specify your own testing policies, like types of parameters to test, payloads, or fuzzer settings.
Report vulnerabilities and anomalies to the CI pipeline and ticketing system.
Test APIs (JSON- or XML/SOAP-based)
Test both legacy and modern web applications
Identify OWASP Top 10 issues like XXE, SQLi, RCE, XSS
Leverage pre-defined tests, fuzzer, or create custom checks
Maintain session context
Define and detect anomalies and vulnerabilities
Define, start, and stop tests via FAST API
Integrations and Automation
FAST is different from other testing tools.
Most testing software is developed to be manually used. FAST is developed for automation. Everything you need to run is doable through the API.
Easily integrate FAST with any CI tools already in action:
Wallarm security platform automates application protection and security testing. Hundreds of customers already rely on Wallarm to secure websites, microservices and APIs running on private and public clouds. Wallarm AI enables application-specific dynamic WAF rules, proactively tests for vulnerabilities, and creates feedback loop to improve detection accuracy.