Qualys Expands Web App Scanning with Postman Collections Support
Qualys Web Application Scanning (WAS) has expanded its capabilities by adding support for Postman Collections. This new feature allows customers to configure API scans using Postman Collections, enhancing the scanning process.
Postman Collections are files that group related requests (API endpoints) together, offering a structured way to test REST APIs. They support variables defined at different levels: Collection, Environment, and Global. This enables dynamic API testing.
Until now, Qualys WAS offered two methods for setting up API scanning: proxy capture and Swagger/OpenAPI file methods. However, Postman Collections provide better vulnerability testing and can describe requests in a functional workflow, ensuring tests are performed in the correct order and accepted by the server. They also provide valid values for all query parameters and request body parameters, ensuring server-side data validation is passed.
With the addition of Postman Collection support, Qualys WAS customers can now configure API scans using Postman Collections. This new method allows for more comprehensive and dynamic API scanning, improving the overall security assessment process.
Read also:
- Development of Restaurant Apps: Expenses and Essential Elements
- European transportation's sustainability and competitiveness rely on a "green industrial agreement" that serves the interests of both corporations and residents, as discussed in an Editorial from August 2024.
- Karyn Coates Named ASI's Executive Director for LogoMall, Affiliate Relations, and Membership Information
- Meta's Hyperspace enables the scanning of the physical world and its transformation into the Metaverse, while offering innovative AI tools for users to create anything they desire.
