Practice free →
HomeSoftware TestingSoftware Testingadvanced_security_performance › Static Application Security Testing (SAST) analy…

Static Application Security Testing (SAST) analyses

AEnd user behavior in production
BSource code without executing it
CRunning application during integration
DNetwork packets between services
Answer & Solution
Correct answer: B. Source code without executing it
SAST inspects code, bytecode or binaries at rest. Tools: SonarQube, Checkmarx, Fortify, Semgrep. It finds patterns like SQL injection, hardcoded secrets, weak crypto. DAST runs against the live app.
Solve this in the app — Software Testing practice & 24k+ MCQs →
Related questions