CCSP CISSP DAST SAST Questions

Рет қаралды 6,343

Prabh Nair

Күн бұрын

Пікірлер: 12

@Faraz-p5w 4 ай бұрын

Good One.Thank's Prabh.

@AbhayAR Жыл бұрын

Hi Prabh I need your advice. I want to import the scan report of SAST, DAST, SCA into a common tool so that I can visit a single dashboard. Any tools you can suggest. Thanks

@zaheen1474 2 жыл бұрын

Thank you for the clarifications.

@kuberalagh5836 Жыл бұрын

thank you for creating the content

@madhavik4616 Жыл бұрын

thank you

@robm9663 2 жыл бұрын

Hello Prabh. I have a question. The first questions talk about using a RASP to detect active breaches. However the question at 8:05 you state "you never do the testing in the production environment". These answers/explanations seem to conflict. How can it detect an active breach if it's not running in a production environment?

@PrabhNair1 2 жыл бұрын

When we bought RASP one challenge will be there that in production application. Will Impact performance from that point of view I explain but compare with integration performance issue will still manage

@robm9663 2 жыл бұрын

@@PrabhNair1 Thanks, but I had difficulty following that explanation. Can you elaborate? I was under the impression that RASP is to be used in production environments.

@PrabhNair1 2 жыл бұрын

@@robm9663 we can use RASP from development to implementation phase

@PrabhNair1 2 жыл бұрын

Developers can implement RASP in a couple of ways. They can access the technology through function calls included in an app's source code, or they can take a completed app and put it in a wrapper that allows the app to be secured with a single button push. The first approach is more precise because developers can make specific decisions about what they want protected in the app, such as logins, database queries, and administrative functions.

@robm9663 2 жыл бұрын

@@PrabhNair1 Thank you!