feat: IAST

[abdennour]

Interactive application security testing working at the runtime behavior of the application. The more your application is receiving traffics, the more IAST detects issues. It's active verification and sensitive-data tracking for web-based applications. If you have IAST, most probably you could ignore the old generation which is DAST.

[sottlmarek]

Thank you Abdennour for your contribution. DAST and IAST are just different methods for Appsec testing and verification they are not generations of testing. This Library focuses currently only on open-source projects and open-source knowledge. I will contact you in in future when there will be an extension for commercial projects as I plan some updates. Seeker is Synopsis commercial tool.

[abdennour]

Totally clear!

[cmacbrady]

I too was curious if IAST was being explored and if the wider community was aware of OSS options. Thanks @sottlmarek for orchestrating this collection, super helpful.