Application security testing (AST) is a process of finding and eliminating vulnerabilities in software applications. There are different types of AST tools that can help with this process, such as static, dynamic, and interactive testing. Static testing analyzes the source code of the application without executing it, dynamic testing simulates attacks on the running application from the outside, and interactive testing combines both static and dynamic analysis to find more vulnerabilities and provide more context. Cookie consent scanning is not a type of AST, but rather a tool that checks if a website complies with the cookie consent regulations, such as the EU General Data Protection Regulation (GDPR) or the California Consumer Privacy Act (CCPA). Cookie consent scanning does not test the security of the application, but rather the privacy and compliance of the website.Reference:

1: 10 Types of Application Security Testing Tools: When and How to Use Them

2: 5 Types of Application Security Testing You Must Know About

3: Types of Application Security Testing: Definitions and Differences

4: What is Application Security? | VMware Glossary