In this module, we review tools and processes for discovering vulnerabilities in runtime web applications. DAST is a run-time checker for security problems. Fuzzers find implementation flaws you have not considered. Explore the uses of DAST tools, the DAST tool workflow for a developer, and the available DAST/Fuzz offerings. You may have these tools, but not understand how they work or what they do.