CompTIACompTIA
PT0-003 · Question #27
PT0-003 Question #27: Real Exam Question with Answer & Explanation
The correct answer is A: DAST. DAST (Dynamic Application Security Testing) analyzes a running application to identify vulnerable input fields such as those susceptible to XSS, SQLi, or command injection. It is the best approach for black-box testing of web applications.
Submitted by kim_seoul· Mar 6, 2026Vulnerability Discovery and Analysis
Question
A penetration tester needs to identify all vulnerable input fields on a customer website. Which of the following tools would be best suited to complete this request?
Options
- ADAST
- BSAST
- CIAST
- DSCA
Explanation
DAST (Dynamic Application Security Testing) analyzes a running application to identify vulnerable input fields such as those susceptible to XSS, SQLi, or command injection. It is the best approach for black-box testing of web applications.
Topics
#web application security#DAST#vulnerability scanning#input validation
Community Discussion
No community discussion yet for this question.