Certified Cloud Security Professional – CCSP – Question193

What does static application security testing (SAST) offer as a tool to the testers?

A. Production system scanning
B. Injection attempts
C. Source code access
D. Live testing

Correct Answer: C

Explanation:

Explanation: Static application security testing (SAST) is conducted with knowledge of the system, including source code, and is done against offline systems.