I have to test API application which has REST interface only over HTTPS.
is WAS scan the best way or there are tools/method that need to be used.
We are targeting an announcement and REST support for Q1. We apologize for the delay, but in order to make this work accurately and effectively it has taken more time than originally anticipated to get to Production. We appreciate your patience.
Roadmap for REST support is currently still be evaluated and worked on. This is tentatively being targeted for Q1/Q2 2016.
Documentation of WAS scanning of Web Services which also references REST based API scanning can be found here WAS Security Testing of Web Services .
Also, the correct and more accurate targeted timeline for the availability of this feature has shifted toward Q4 2016 as of right now.
Has the REST based API scanning feature been released yet?
Retrieving data ...