Web service scanning

Critical tests:

  • API authentication/authorisation

  • Input validation

  • Rate limiting

  • Data exposure

Tools:

  • Postman + Newman

  • OWASP ZAP

  • Burp Suite


Last update: 2025-06-07 06:04