In web application scanning, static analysis refers to scanning:
A . the system for vulnerabilities before installing the application.
B . the compiled code of the application to detect possible issues.
C . an application that is installed and active on a system.
D . an application that is installed on a system that is assigned a static IP.
Answer: B
Explanation:
This type of analysis is performed before the application is installed and active on a system, and it involves examining the code without actually executing it in order to identify potential vulnerabilities or security risks.
As per CYSA+ 002 Study Guide: Static analysis is conducted by reviewing the code for an application. Static analysis does not run the program; instead, it focuses on understanding how the program is written and what the code is intended to do.
Static analysis refers to scanning the source code or the compiled code of an application without executing it, to identify potential vulnerabilities, errors, or bugs. Static analysis can help improve the quality and security of the code before it is deployed or run4
Reference: 4 What Is Static Analysis? | Veracode
Latest CS0-002 Dumps Valid Version with 220 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund