Global sensitive information tokens are plain strings or regular expressions matching content that can potentially entail security vulnerabilities. They are used in the Sensitive Information Exposure assertion in ReadyAPI Test security tests.
To access the global sensitive information tokes:
Click on the ReadyAPI toolbar.
Select Global Sensitive Information Tokens in the left part of the ReadyAPI Preferences window.
Use the toolbar for configuration:
|Add a new token.|
|Move a token up.|
|Move a token down.|
|Sort tokens in the alphabetical order.|
|Clear the list of added tokens.|
|Load existing properties from a file. Use the option to create missing properties in the specified file or delete properties that are not included in the file.|
|Saves the created property to the specified file.|
|Remove a token.|
The global sensitive information tokens are listed in a table that has the following columns:
|Token||Either a plain string or a tilde followed by a regular expression.|
A token’s description. It will appear in the Security Log if the corresponding token is found.
Sensitive Information Exposure Assertion
Analyzing Test Results