exam questions

Exam CAS-004 All Questions

View all questions & answers for the CAS-004 exam

Exam CAS-004 topic 1 question 576 discussion

Actual exam question from CompTIA's CAS-004
Question #: 576
Topic #: 1
[All CAS-004 Questions]

A security analyst is assessing a new application written in Java. The security analyst must determine which vulnerabilities exist during runtime. Which of the following would provide the most exhaustive list of vulnerabilities while meeting the objective?

  • A. Input validation
  • B. Dynamic analysis
  • C. Side-channel analysis
  • D. Fuzz testing
  • E. Static analysis
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Steel16
6 days, 20 hours ago
Selected Answer: B
o Dynamic analysis involves running the application in a controlled environment while monitoring its behavior to identify potential vulnerabilities. This allows the security analyst to see how the application interacts with various inputs and data, revealing issues that might not be apparent through static analysis (examining the source code without running it).
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago