Static and Dynamic Application Security Testing (SAST/DAST)

5 minutes 5 Questions

Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) are automated security testing methodologies employed throughout the SDLC to identify vulnerabilities and potential threats in source code, compiled binaries, or running applications. SAST involves scanning t…

Test mode:

Exam (Timed)

Practice (With explanations)

Start practice test

Question 1

A company reviews their application's code for security vulnerabilities. During the review process, they discover that sensitive information is hardcoded in the source code. What type of security testing can be used to identify this issue?

Stress testing SAST DAST Penetration testing

Correct Answer: SAST

SAST (Static Application Security Testing) is focused on analyzing source code and can identify hardcoded sensitive information, while the other testing methods do not analyze code.

Question 2

A security team wants to perform vulnerability analysis during the SDLC. Which of the following testing methodologies ensures comprehensive coverage for both static code and runtime security assessment?

Rely on DAST only Rely on SAST only Conduct manual penetration testing Combine SAST and DAST

Correct Answer: Combine SAST and DAST

Combining SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing) offers comprehensive coverage of the application's security. SAST helps identify code vulnerabilities, while DAST finds vulnerabilities in the running application and its environment.

Question 3

A company wants to improve their web application security process by using both SAST and DAST tools. Which option below best represents the main benefits of using both tools together?

SAST can discover code vulnerabilities, while DAST can discover runtime vulnerabilities, therefore improving overall vulnerability detection Both tools can detect vulnerabilities in third-party libraries Both tools focus on finding the same vulnerabilities, so using both increases the reliability of the results SAST tools provide suggestions for improving code quality, while DAST tools improve code performance

Correct Answer: SAST can discover code vulnerabilities, while DAST can discover runtime vulnerabilities, therefore improving overall vulnerability detection

By adopting a combined approach that uses both SAST and DAST, organizations can improve vulnerability detection by addressing code vulnerabilities and runtime environment issues. This provides a more comprehensive security testing process and helps ensure better overall security for the application.

🎓 Unlock Premium Access

CISSP + ALL Certifications

More Static and Dynamic Application Security Testing (SAST/DAST) questions

17 questions (total)

Start 17 question test

Static and Dynamic Application Security Testing (SAST/DAST)

Guide on Static and Dynamic Application Security Testing (SAST/DAST)

CISSP - Static and Dynamic Application Security Testing (SAST/DAST) Example Questions

Question 1

Question 2

Question 3

🎓 Unlock Premium Access