CompTIA Security+ (SY0-601) — Question 173
Which of the following would be used to find the MOST common web-application vulnerabilities?
Answer options
- A. OWASP
- B. MITRE ATT&CK
- C. Cyber Kill Chain
- D. SDLC
Correct answer: A
Explanation
OWASP is specifically focused on web application security and provides a list of the most common vulnerabilities found in web applications, known as the OWASP Top Ten. MITRE ATT&CK, the Cyber Kill Chain, and SDLC are frameworks and methodologies related to broader cybersecurity practices and do not specifically target web application vulnerabilities.