Chapter 13: Security and Performance Tests

In Chapter 11, Testing APIs with Postman, and Chapter 12, Static Code Analysis with SonarQube, we talked about test automation with API tests with Postman and static code analysis with SonarQube, respectively.

In this chapter, we will discuss how to carry out security and penetration tests on a web application using the ZAP tool based on the OWASP recommendations. Then, we will add to our Postman skills so that we can perform performance tests on APIs.

We will be covering the following topics:

Applying web security and penetration testing with ZAP
Running performance tests with Postman

Technical requirements

To use ZAP, we need to install the Java Runtime Environment (JRE), which is available at ...

Get Learning DevOps - Second Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Learning DevOps - Second Edition by Mikael Krief

Chapter 13: Security and Performance Tests

Technical requirements

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly