A customer deploys an application to App Engine and needs to check for Open Web Application Security Project (OWASP) vulnerabilities. Which service should be used to accomplish this?
Answer is (C).
Web Security Scanner supports categories in the OWASP Top Ten, a document that ranks and provides remediation guidance for the top 10 most critical web application security risks, as determined by the Open Web Application Security Project (OWASP).
https://cloud.google.com/security-command-center/docs/concepts-web-security-scanner-overview#detectors_and_compliance
Security Scanner is the correct answer however it's now part of "Security Command Center". So technically it should say "Security Command Center" however "C" is the closest option.
This is called DAST (Dynamic Application Security Testing) through tools such as BurpSuite,ZAP in normal non-cloud deployments but the same has been done through web security scanner in GCP hence my answer is C
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Tabayashi
Highly Voted 2 years, 6 months agotia_gll
Most Recent 6 months, 2 weeks ago[Removed]
1 year, 3 months agoGCP72
2 years, 2 months agoPopeyeTheSailorMan
2 years, 3 months ago