Vulnerability assessment vendor Tenable has announced it has added web application and API scanning to Tenable Nessus Expert, new features that provide vulnerability scanning for modern web applications and APIs. These dynamic application security testing (DAST) features enable security practitioners to proactively identify and assess web applications and APIs for known vulnerabilities. This includes OWASP Top 10 vulnerabilities in custom application code and known vulnerabilities found in third-party components.
The company says that Nessus Expert spans traditional IT assets and the dynamic modern attack surface, including the external attack surface, cloud infrastructure and now, web applications and APIs.