SoftwareTestPilot

Advanced – Security Testing

IAST (Interactive Application Security Testing) – ISTQB Definition

Last Updated: July 12, 2026 · SoftwareTestPilot QA Team

Official ISTQB Definition

A hybrid security testing approach that instruments the running application to observe behavior during functional tests and detect vulnerabilities.

In simple words

A middle ground between SAST and DAST that watches the app from inside as tests run.

Exam tip

IAST tools sit inside the app runtime and correlate code with observed traffic.

Related terms

Practice this term in the ISTQB Mock Test

40 CTFL v4.0 questions, 60-minute timer, instant scoring and chapter-wise breakdown.

Practice in Mock Test