My Application is single page application. It has following modules.. Add User, Edit User, Delete User, Settings. etc.,
I have collected all the url's in the HTTP history using Burp Proxy.
I wanted to do Scan, SQL Injection, XSS for the modules that i pointed out.
1) First i wanted to make sure that is it worth to do scanning as html and js files are there in the client side and all the logic is in Webapi..
2) How to maintain a HTTP session across all the modules?
3) Can I run automatically sequential wise like how soap UI works?