Which description best matches automated testing in web application security testing?

Automated testing in web application security testing means using tools and scripts to run tests automatically, without manual steps, to quickly identify vulnerabilities, misconfigurations, and insecure patterns across the application. This approach can perform broad checks—such as input fuzzing, vulnerability scans, and security policy verifications—across many pages and parameters, and it can generate reports to prioritize remediation. The described option directly captures this broad, automated approach to testing the security of a web app. Web shells are attacker tools used to maintain access; manual testing relies on a tester performing steps without automation, and static testing (SAST) is a specific automated analysis of source code rather than the broader, runtime-focused automation described here.