search

Run Pynt in Postman

Run Pynt's Postman collection effortlessly! Explore our onboarding guide to learn how to execute the Pynt collection within Postman, ensuring a smooth integration of Pynt's API security features with

circle-check

πŸš€ Quick Start: The easiest way to begin running Pynt in Postman is by using the Pynt Postman Wizardarrow-up-right, which guides you through the integration step-by-step.

Running the Pynt collection in Postman is a straightforward process that allows you to perform comprehensive API security testing. This guide will walk you through the steps to execute a Pynt collection, helping you identify vulnerabilities and assess the security posture of your APIs.

hashtag
Configure Pynt Collection

circle-info

πŸ’‘ Postman API Key and Collection Setup: Configuring the Pynt collection with the Postman API key and the reference collection name/ID is necessary for Pynt to access your Postman workspace and generate security tests. The API key grants permission for Pynt to interact with your collections, and the collection name/ID ensures that Pynt applies the security tests to the correct API set.

Fill in the required parameters in Pynt's collection:

  • API-KEY: Enter your Postman API key under the 'Current Value' column. Generate a key if necessary at Postman API Keysarrow-up-right.

  • port: The port number used in the Docker run command (default: 5001).

  • YOUR-COLLECTION: The functional test collection name or UID (UID is preferred).

  • scanId: Output variable (ignore).

circle-info

πŸ’‘ Reference App: Pynt provides a vulnerable app example called 'goat', which you can fork from the Pynt public workspacearrow-up-right for testing purposes.

hashtag
Running the Collection

  • After filling in the parameters, click 'Save'.

  • If you modify your test collection, re-run the Pynt collection.

  • To test another collection, update the YOUR-COLLECTION variable and re-run the Pynt collection.

circle-exclamation

⚠️ Tip: Ensure you use the correct API key and accurate collection name or ID to avoid issues while running the collection.

Image 1 - Generate / Copy API Key if forgotten
Image 2 - Enter 'Pynt' collection parameters
Image 3 - Run the 'Pynt' collection to generate full OWASP-10 API-security tests for your collection
circle-info

πŸ’‘ Pynt for Postman Troubleshooting: For problems with Pynt’s Postman integration, check the Pynt for Postman Troubleshooting Guidearrow-up-right for step-by-step troubleshooting assistance.

circle-info

πŸ’‘ Still Need Help? For any questions or troubleshooting, reach out to the Pynt Community Supportarrow-up-right.

PreviousRun Pynt ContainerNextView Scan Results in Postman

Last updated