A customer deploys an application to App Engine and needs to check for Open Web Application Security Project (OWASP) vulnerabilities.
Which service should be used to accomplish this?
Click on the arrows to vote for the correct answer
A. B. C. D.C.
https://cloud.google.com/security-scanner/The correct answer to this question is option C, Cloud Security Scanner.
Cloud Security Scanner is a web security scanner that allows customers to detect vulnerabilities in their web applications hosted on Google Cloud Platform (GCP). It can scan for common web application vulnerabilities such as cross-site scripting (XSS), SQL injection, and mixed content.
Open Web Application Security Project (OWASP) is a non-profit organization that provides a list of top web application security risks. The OWASP Top Ten list includes the most critical web application security risks and is updated regularly.
Using Cloud Security Scanner, customers can detect and prioritize these risks, as well as get actionable recommendations on how to remediate them. It's a fully managed service, which means that customers don't need to worry about configuring or managing any infrastructure.
Option A, Cloud Armor, is a DDoS protection service that uses Google's global infrastructure to protect against network and application-layer DDoS attacks. While Cloud Armor can help protect against some web application vulnerabilities, it is not designed specifically for web application scanning.
Option B, Google Cloud Audit Logs, is a service that provides logs of all the activity that occurs within a customer's GCP resources. While audit logs are important for security and compliance purposes, they do not help with web application vulnerability scanning.
Option D, Forseti Security, is an open-source security toolkit for GCP that helps customers maintain compliance and enforce security policies. While Forseti Security can help with security and compliance, it does not provide web application vulnerability scanning capabilities.