# Surface Monitoring (DAST)

> Surface Monitoring is dynamic testing that probes live web apps and APIs from the outside, the way an attacker would.

Source: https://fmcybersecurity.com/en/products/aikido/surface-monitoring-dast/
Locale: English
Other locale: https://fmcybersecurity.com/products/aikido/surface-monitoring-dast/

Surface Monitoring tests applications while they are running, from the outside in. It looks for weaknesses that show up only in a live, deployed app.

## What it is

This is dynamic application security testing, often called DAST. It sends requests to live web apps and APIs and watches how they respond. By testing from the outside, it sees the application much as an attacker would.

## Key capabilities

- Probes live web apps and APIs from the outside.
- Tests running applications, not just source code.
- Detects weaknesses that appear in deployed systems.
- Reports issues found during dynamic testing.

## Who it's for

It suits teams that want to test applications after they are deployed. It helps developers and security staff catch issues that static checks miss. It fits public-facing web apps and APIs.

---

For the full documentation index, see https://fmcybersecurity.com/llms.txt
For the complete corpus as a single document, see https://fmcybersecurity.com/llms-full.txt