CDPSE · Question #380
Which of the following is the BEST way to identify vulnerabilities in an organization's web application that processes personal data?
The correct answer is B. Conduct dynamic application security testing (DAST).. Dynamic Application Security Testing (DAST) is the best method for identifying vulnerabilities in a running web application because it simulates real-world attacks against the live application without requiring access to source code. This reveals exploitable runtime vulnerabiliti
Question
Which of the following is the BEST way to identify vulnerabilities in an organization's web application that processes personal data?
Options
- AImplement a web application firewall (WAF).
- BConduct dynamic application security testing (DAST).
- CHire a third party to perform blue team exercises.
- DConduct static application security testing (SAST).
How the community answered
(28 responses)- A4% (1)
- B71% (20)
- C18% (5)
- D7% (2)
Explanation
Dynamic Application Security Testing (DAST) is the best method for identifying vulnerabilities in a running web application because it simulates real-world attacks against the live application without requiring access to source code. This reveals exploitable runtime vulnerabilities such as injection flaws, authentication weaknesses, and misconfigurations that affect actual data processing. A WAF (A) is a preventive control, not a vulnerability identification tool. Blue team exercises (C) are defensive and detection-focused, not designed to surface application vulnerabilities. SAST (D) analyzes source code and can miss runtime or configuration-based vulnerabilities that DAST would catch.
Topics
Community Discussion
No community discussion yet for this question.