Which of the following testing is referred to as white-box testing and is used to determine the coding errors?

White-box testing is a software testing method in which the tester has full knowledge of the internal workings and structure of the application. This approach allows for a comprehensive examination of the code and design, making it particularly effective in identifying coding errors and vulnerabilities that might not be apparent from the outside.

Static Application Security Testing (SAST) falls into this category because it involves analyzing the application's source code, bytecode, or binary code without executing the program. By reviewing the underlying code, testers can pinpoint coding errors, security flaws, and compliance issues early in the development cycle. This proactive approach helps ensure that vulnerabilities are discovered and resolved before deployment, enhancing the overall security posture of the application.

In contrast, other testing methods like DAST and RASP focus on different aspects of application security, such as assessing security from an external perspective or protecting the application during runtime, rather than examining the code itself. Penetration testing, while also valuable, simulates real-world attacks to evaluate the security of the application but does not involve direct analysis of the source code in the way SAST does. Therefore, SAST is the method most closely associated with white-box testing aimed specifically at identifying coding errors.