Hi. I just need a little help. I got confused between web application scanning tool and dynamic application security testing tool. Do they have the same purpose? What we actually need is a tool that is capable of scanning engine-driven web applications. It should effectively perform crawling SOAP/WSDL, SOAP/WCF, REST/WADL, XML, JSON. I wonder if DAST has this features too.
All I know is about a web app scanning tool. The latter could secure web applications by crawling and testing to identify vulnerabilities. If I'm right with what I know, you will need a web application scanner.