Shared Assessments CTPRP Exam - Topic 2 Question 1 Discussion

Actual exam question for Shared Assessments's CTPRP exam

Question #: 1
Topic #: 2

[All CTPRP Questions]

Which of the following is NOT an example of a type of application security testing?

ACookie consent scanning

BInteractive testing

CStatic testing

DDynamic testing

Show Suggested Answer

Suggested Answer: A

Application security testing (AST) is a process of finding and eliminating vulnerabilities in software applications. There are different types of AST tools that can help with this process, such as static, dynamic, and interactive testing. Static testing analyzes the source code of the application without executing it, dynamic testing simulates attacks on the running application from the outside, and interactive testing combines both static and dynamic analysis to find more vulnerabilities and provide more context. Cookie consent scanning is not a type of AST, but rather a tool that checks if a website complies with the cookie consent regulations, such as the EU General Data Protection Regulation (GDPR) or the California Consumer Privacy Act (CCPA). Cookie consent scanning does not test the security of the application, but rather the privacy and compliance of the website.Reference:

1: 10 Types of Application Security Testing Tools: When and How to Use Them

2: 5 Types of Application Security Testing You Must Know About

3: Types of Application Security Testing: Definitions and Differences

4: What is Application Security? | VMware Glossary

by Oliva at Mar 04, 2026, 07:56 AM

Limited Time Offer

25%

1 month ago

I think cookie consent scanning sounds different from the other types of testing, but I'm not entirely sure.

upvoted 0 times

...