D487 Questions and Correct Answers/ Latest Update / Already Graded

abstract syntax tree (AST) Ans: the basis for software metrics and issues to be generated at a later stage active scanner Ans: modifies the hypertext transfer protocol secure (HTTPS) inputs and analyzes the response to identify vulnerabilities Application Security Ans: the process of finding, fixing, and preventing security vulnerabilities at the application level benchmarks Ans: tests used to compare estimates to actual results code review Ans: a process done to identify security vulnerabilities during software development control flow analysis Ans: the mechanism used to step through logical conditions in the code data flow analysis Ans: the mechanism used to trace data from the points of input to the points of output Design and Development (A4) phase 2 | Page Ans: the fourth phase of the security development life cycle, in which you will build onto the proper process of security testing and continue to analyze necessities at the security level documentation Ans: details and guides that are necessary to support the ongoing use of the software dynamic analysis Ans: application security testing to identify vulnerabilities within a product application exploratory test Ans: done by the development tester to continually assess the quality of his or her work Open Source Security Testing Methodology Manual Ans: a manual that provides templates and standards used when developing a test strategy OWASP Zed Attack Proxy