Methods and means of static and dynamic code analysis




SAST, DAST, HAST, data–flow analysis, Symbolic execution


The purpose of the article is to explore the methods and tools used to analyze software code in order to identify errors and potential problems. Static and dynamic code analysis are key processes in software development, as they allow you to detect errors in the early stages of development, reduce the risk of problems later and ensure high quality of the software product. The article discusses various methods and means of static and dynamic code analysis. For each method and tool, examples of their use and advantages and disadvantages are described.

The article will be useful for software developers who want to improve the quality of their products and reduce the risk of problems. It will provide readers with an in-depth understanding of code analysis techniques and tools and help them choose the most appropriate tool for their needs.


OWASP [Електронний ресурс]. Режим доступу: //–community/controls/Static_Code_Analysis

Citeseerx[Електронний ресурс]. Режим доступу:

Techopedia [Електронний ресурс]. Режим доступу:–application–security–testing–dast

Contrast security[Електронний ресурс]. Режим доступу:–application–security–testing



How to Cite

Gapon, A., Fedorchenko, V., & Sievierinov О. (2023). Methods and means of static and dynamic code analysis. Radiotekhnika, 1(212), 7–13.