Using Zap As A Dynamic Application Security Testing (DAST) Tool
Finding vulnerabilities through simulated attacks involves analyzing a web application through its front end, a method known as dynamic application security testing, or DAST. This kind of methodology attacks an application as a malevolent user would, evaluating it from the "outside in."