Table 2. Important characteristics of selected tools.
| No. | Tool | Approach | Interface | Report | Est. time | Language |
|---|---|---|---|---|---|---|
| 1 | Yasca | SAST | CLI | Yes | 5 min | PHP, Java, C/C++, |
| Python, JS, Perl, NET | ||||||
| 2 | Progpilot | SAST | CLI | No | 15 min | PHP |
| 3 | Snyk | SAST | CLI | No | 10 min | PHP, Java, Golang, |
| Python, JS, Swift, NET | ||||||
| 4 | SonarQube | SAST | GUI | Yes | 10 min | PHP, C/C++, Python, |
| C#, NET, Java, JS, | ||||||
| Kotlin, Ruby, Swift | ||||||
| 5 | OWASP ZAP | DAST | GUI | Yes | 1 h | – |
| 6 | Wapiti | DAST | CLI | Yes | 10 min | – |
| 7 | Vega | DAST | GUI | No | 6 h | – |
| 8 | Iron WASP | DAST | GUI | Yes | 6 h | – |
| 9 | Burp suite | DAST | GUI | Yes | 6 h | – |