WhiteHat Security Introduces Dynamic Single-page Application Scanning for an Automated, Seamless Customer Experience

AN JOSE, Calif.–(BUSINESS WIRE)–WhiteHat Security, the leading application security provider committed to securing digital businesses, today announced a new feature for dynamic single-page application scanning in the WhiteHat Sentinel Dynamic product. The new feature is designed to automate the scanning for, discovery and updating of webpages, links and architecture, seamlessly and without impact on the customer experience.

A single-page application (SPA) is a site that interacts with the user by dynamically rewriting the current page rather than loading entire new pages from a server. This approach avoids interruption between successive pages, making the application behave more like a desktop app than a traditional website.

AWS Builder Community Hub

Two of the most common uses are email clients and shopping cart calls, which allow the user to move between common mailboxes without changing the URL, or to add items into a shopping bag without taking the user away from their current item description page. SPA sites are great for the user experience, but they can be challenging for dynamic web scanners to fully investigate.

“Most other vendors simply provide a browser plugin, but that requires a customer to navigate their SPA site and send back scripts for coverage,” said Shivajee Samdarshi, senior vice president of Engineering at WhiteHat Security. “We give our customers back valuable time to spend on growing their businesses. Instead of elaborate tutorials to teach set-up, configuration and scanning, we offer the confidence and convenience of a fully-automated coverage scan for most SPA sites.”

A variety of tools can perform the full domain crawl or page discovery of all the links, API operations, and libraries, but using them requires significant manual effort in set up, domain discovery, form training and other scanning technician details.

Instead, WhiteHat Sentinel Dynamic now performs all these discoveries automatically, with 75-90 percent more coverage of the single-page application architecture than other non-SPA specific scanning technologies, and without the time, effort and skill of a dedicated application security engineer or tester.

The benefits of using WhiteHat Sentinel Dynamic for SPA scanning include:

  • Comprehensive coverage to reveal more findings and crawl more pages through the deepest JavaScript framework stack in the business
  • No extensive setup, so that SPAs can be scanned like most other websites without heavy user interaction
  • No impact to scan schedule because WhiteHat Sentinel Dynamic scans are ongoing and continuous, to crawl the full SPA site

Support for automated dynamic application security testing of single-page applications is a new feature that will be free of charge to all customers of the existing Sentinel Dynamic Standard and Premium Edition licenses. For more information, visit https://www.whitehatsec.com/products/dynamic-application-security-testing/.

About WhiteHat Security

WhiteHat Security has honed its 17 years of experience in the application security space to provide developers with the tools and services they need to write and deliver the most secure software at the speed of business. The award-winning WhiteHat Application Security Platform, which has been featured on the Gartner Magic Quadrant for Application Security Testing for the last five years, is empowering true DevSecOps by continuously assessing the risk for organizations’ software assets and helping them to embed security throughout–and beyond– the software life cycle (SLC). The company is based in San Jose, California, with regional offices across the U.S. and Europe. For more information on WhiteHat Security, please visit www.whitehatsec.com, and follow us on TwitterLinkedIn and Facebook.


Touchdown PR for WhiteHat Security
Emily Gallagher, 512-373 8500
[email protected]

Avatar photo

Charlene O’Hanlon

Charlene O’Hanlon is Chief Operating Officer at Techstrong Group and Editor at Large at Techstrong Media. She is an award-winning journalist serving the technology sector for 20 years as content director, executive editor and managing editor for numerous technology-focused sites including DevOps.com, CRN, The VAR Guy, ACM Queue and Channel Partners. She is also a frequent speaker at industry events and conferences.

charlene has 55 posts and counting.See all posts by charlene