ReadyAPI includes sample projects that show how to test your service against a variety of attacks.
The changes you make to sample projects cannot be saved. This means that if you change a sample project, you have to save it as a new one. The original file will remain unchanged.
Location
The sample projects for security testing are available in the <ReadyAPI>/tutorials/security folder:
| • Windows: | <Program Files>/SmartBear/ReadyAPI-3-56-0/tutorials/security↑ Program Files or Program Files (x86) |
| • Linux: | /home/<user-name>/SmartBear/ReadyAPI-3-56-0/tutorials/security |
| • MacOS: | /Applications/ReadyAPI-3-56-0.app/Contents/java/app/tutorials/security |
How to open a sample project
From the main menu
Select File > Import Project from the main menu, and then choose a sample project file in the subsequent dialog:
ReadyAPI project files have the .xml extension.
From the dashboard
Find the project you need in the Sample Projects section:
Click the image to enlarge it.
| Tip: | By default, this section displays all the sample projects in ReadyAPI. Click  and select Test Projects to limit the options to functional tests, security tests and Online Service examples. |
About security testing samples
| Sample | Description |
|---|---|
| Security Sample |
Contains a variety of security tests that are run against the attached virtual service. Find a link to this project on the Dashboard. |
| XPath Injection | Modifies the request to the attached virtual service to try and cause it to malfunction due to errors in how XML is parsed. |
| Fuzzing Scan | Sends a lot of requests with random data to the attached virtual service to see how it reacts. |
| SQL Injection | Tries to attack the underlying SQL database by modifying the requests to the service. |