Skip to main content

Test Plans

Autogenerated Test Plans are tailor-made for each API (and it's associated endpoints).

API Security Test Plan

Test Plans can be generated for APIs present in either the Application or Service (API Catalog) groupings.

A Test Plan is structured as show below.

A Test plan is comprised of Test Suites. A Test Suite is focussed on a single API endpoint, and comprises of a set of Test Cases.

A Test Case has a singular objective, and tests the specific API endpoint for a specific vulnerability. For example, test the API endpoint for a SSRF vulnerability, or an authorization bypass vulnerability.