A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos engineering testing and stateful, Swagger fuzzing.
This makes it so that developers can add their own headers and parameters to fuzzing requests, in case the Swagger spec is intentionally incomplete (some more details are available on internal Slack).
TODO: Actually provide an interface for developers to create hooks.
I also moved a bunch of the fuzzing code to its own function to try to reduce nesting.
This makes it so that developers can add their own headers and parameters to fuzzing requests, in case the Swagger spec is intentionally incomplete (some more details are available on internal Slack).
TODO: Actually provide an interface for developers to create hooks.
I also moved a bunch of the fuzzing code to its own function to try to reduce nesting.