Most of the content around API testing is about functional testing or recently about API automation testing , so what about Security Testing?
We're going to use Postman and consume our existing collections.
The idea is to send the Postman requests to OWASP Zap to be able to start automated pen-testing.
Enjoy!
Links
VAmPI - The Vulnerable API
github.com/erev0s/VAmPI
Zap Proxy
www.zaproxy.org/
Stay tuned for more Postman api and OWASP Zap videos!
#api #owasp #securitytesting #postman
Негізгі бет API Security Testing With Postman & OWASP Zap - A quick walkthrough
Пікірлер: 16