Scan single page applications (SPAs)
Single page applications are a recent web innovation that has made it possible to provide end users with snappy, responsive experiences without slow 和 annoying page reloads. Despite their increased presence on the web, many legacy application scanners have difficulty crawling these types of web apps, since they don't utilize a traditional HTML sitemap. InsightAppSec has been designed to automatically crawl 和 attack SPAs, providing coverage where other solutions can't.
评估现代web应用程序
Web applications have come a long way from the static HTML 和 Perl scripts that drove version 1.网络的0. Web apps today are built with modern Javascript frameworks, REST APIs, 和 microservices. But getting reliable results from a DAST scan of modern web apps shouldn't be (but often is) a challenge. InsightAppSec provides support 和 coverage of modern web technologies to save security 和 DevOps teams time 和 resources normally spent training 和 tuning scans—right out of the box.
扩大覆盖范围
Modern web applications today are complex, 和 not all can be comprehensively scanned without some configuration. For example, application areas behind multi-step login sequences that include a CAPTCHA challenge. 出于这个原因, InsightAppSec supports multiple means to enhance coverage programmatically, 通过记录的宏, Selenium测试脚本, Swagger REST API定义, 还有交通记录. With the flexibility provided by these options, InsightAppSec ensures your scans generate accurate results.
跟上现代网络的步伐
Web technologies continue to evolve at a high velocity. Thus, your DAST solution should be architected to be future-proof. InsightAppSec's Universal Translator logically separates the crawl 和 attack engines used in a DAST scan, allowing for easy 和 frequent updates to one engine—such as new attacks 和 new input types—without breaking functionality in the other.
