OAST vulnerabilities do not reflect back to WebInspect, making them difficult to detect with traditional DAST scanning. The Fortify OAST server provides DNS service for the detection of out-of-band attack vulnerabilities. You configure and use the server with a desktop version of WebInspect or with WebInspect on Docker. This course teaches implementing and using the desktop version of WebInspect to discover the Log4Shell attack.
CyberRes Community Manager
If you find this post useful, give it a ‘Like’ or use ‘Verify Answer’