ExamTopics Logo
Mail Us[email protected]
Menu
Isc Discussions
exam questions

Exam CCSP All Questions

View all questions & answers for the CCSP exam
Go to Exam

Exam CCSP topic 1 question 382 discussion

Actual exam question from ISC's CCSP
Question #: 382
Topic #: 1
[All CCSP Questions]

Different security testing methodologies offer different strategies and approaches to testing systems, requiring security personnel to determine the best type to use for their specific circumstances.
What does dynamic application security testing (DAST) NOT entail that SAST does?

  • A. Discovery
  • B. Knowledge of the system
  • C. Scanning
  • D. Probing
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by akg001 at May 22, 2022, 1:55 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
MaciekMT
1 month, 3 weeks ago
Selected Answer: B
Dynamic Application Security Testing (DAST) is a black-box testing methodology, meaning it tests applications without prior knowledge of the system’s internal structure or source code. In contrast, Static Application Security Testing (SAST) is a white-box approach that requires knowledge of the system, such as access to source code, architecture, and design documentation. Why Not the Others? A. Discovery → DAST involves discovery of vulnerabilities while the application is running, analyzing how it responds to real-world attacks. C. Scanning → Both SAST and DAST perform scanning, but DAST focuses on scanning an active, running application. D. Probing → DAST probes applications dynamically by injecting malicious inputs to identify vulnerabilities like SQL injection or XSS.
upvoted 1 times
...
akg001
4 months, 4 weeks ago
Selected Answer: B
B. Knowledge of the system
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago