Exam CS0-002 topic 1 question 347 discussion

Regression testing is used for updates to a finished application to ensure it does not break anything that was previously functional and this application seems to still be in development. Dynamic analysis should be the correct choice here.

ChatGPT: The method that best describes an end-to-end vulnerability assessment for an application is: C. Dynamic analysis Dynamic analysis involves assessing an application while it's running or in a runtime environment. It typically includes various testing techniques like penetration testing, automated scanning, and real-time monitoring of the application to identify vulnerabilities and security issues. This approach allows for a comprehensive assessment of the application's security posture, simulating real-world attack scenarios and finding issues that might not be apparent in static analysis alone.

On exam

Regression testing is a software testing practice that ensures an application still functions as expected after any code changes, updates, or improvements. Which would fall into the Security Analyst remit

"Once the patching is finished, it’s important for regression testing to be conducted. There are no new tests, only a recheck of what was discovered in the original penetration test." source: https://cyrex.tech/security-explained-regression-testing/

Regression testing is simply a quick and thorough check of your system after patching is finished. Typical routine of cybersecurity if you have PT and VM tests and then patching any vulnerabilities discovered.

Answer C

Shouldn't be A?