Run Pynt in Postman

Run Pynt's Postman collection effortlessly! Explore our onboarding guide to learn how to execute the Pynt collection within Postman, ensuring a smooth integration of Pynt's API security features with

🚀 Quick Start: The easiest way to begin running Pynt in Postman is by using the Pynt Postman Wizard, which guides you through the integration step-by-step.

Running the Pynt collection in Postman is a straightforward process that allows you to perform comprehensive API security testing. This guide will walk you through the steps to execute a Pynt collection, helping you identify vulnerabilities and assess the security posture of your APIs.

Configure Pynt Collection

💡 Postman API Key and Collection Setup: Configuring the Pynt collection with the Postman API key and the reference collection name/ID is necessary for Pynt to access your Postman workspace and generate security tests. The API key grants permission for Pynt to interact with your collections, and the collection name/ID ensures that Pynt applies the security tests to the correct API set.

Fill in the required parameters in Pynt's collection:

  • API-KEY: Enter your Postman API key under the 'Current Value' column. Generate a key if necessary at Postman API Keys.

  • port: The port number used in the Docker run command (default: 5001).

  • YOUR-COLLECTION: The functional test collection name or UID (UID is preferred).

  • scanId: Output variable (ignore).

💡 Reference App: Pynt provides a vulnerable app example called 'goat', which you can fork from the Pynt public workspace for testing purposes.

Running the Collection

  • After filling in the parameters, click 'Save'.

  • If you modify your test collection, re-run the Pynt collection.

  • To test another collection, update the YOUR-COLLECTION variable and re-run the Pynt collection.

⚠️ Tip: Ensure you use the correct API key and accurate collection name or ID to avoid issues while running the collection.

Image 1 - Generate / Copy API Key if forgotten
Image 2 - Enter 'Pynt' collection parameters
Image 3 - Run the 'Pynt' collection to generate full OWASP-10 API-security tests for your collection

💡 Pynt for Postman Troubleshooting: For problems with Pynt’s Postman integration, check the Pynt for Postman Troubleshooting Guide for step-by-step troubleshooting assistance.

💡 Still Need Help? For any questions or troubleshooting, reach out to the Pynt Community Support.

PreviousRun Pynt ContainerNextView Scan Results in Postman

Last updated