Test Plans are tailor-made for each API (and it's associated endpoints).
Test Plans can be generated for APIs present in either the
Service (API Catalog) groupings.
A Test Plan is structured as show below.
A Test plan is comprised of
Test Suites. A Test Suite is focussed on a single API endpoint, and comprises of a set of
Test Case has a singular objective, and tests the specific API endpoint for a specific vulnerability. For example, test the API endpoint for a SSRF vulnerability, or an authorization bypass vulnerability.