Explanation:
Penetration testing is a part of Dynamic Application Security Testing (DAST). DAST is a web application security test that finds security issues in the running application by seeing how the application responds to specially crafted requests. This aligns with the principles of the Microsoft Cloud Adoption Framework for Azure.
Ultimate access to all questions.
No comments yet.
To implement continuous integration and continuous deployment (CI/CD) workflows for deploying applications to Azure, you are utilizing Azure Pipelines with Azure Repos. As part of the security measures, you need to incorporate dynamic application security testing (DAST) in line with the principles outlined in the Microsoft Cloud Adoption Framework for Azure. What specific elements should you include in your DAST recommendations?
A
unit testing
B
penetration testing
C
dependency checks
D
threat modeling