Step CIFuzz Testing
Fuzz Testing is a type of testing, that involves providing unexpected or invalid input to an API in order to test its robustness and identify any potential vulnerabilities
The goal of API fuzz testing is to simulate attacks on the API in order to uncover any security weaknesses that may exist
You can utilise the templating functionality combined with naughtystring filter to replace a placeholder value with a "naughty" string
INFO
The values are provided by Big List of Naughty Strings
Example: Fuzz-Testing a form
yaml
version: "1.1"
name: Form Submission
tests:
example:
steps:
- name: Submit a form
http:
url: https://httpbin.org/post
method: POST
formData:
email: ${{ | naughtystring }}
check:
status: 200