Ask a Question
Log In / Sign Up
Choose a Product Community
AlertSite
AQTime Pro
BitBar
Collaborator
CrossBrowserTesting
Cucumber Open Source
CucumberStudio
LoadComplete
LoadNinja
QAComplete
ReadyAPI
SoapUI Open Source
Swagger Open Source
SwaggerHub
Swagger Inspector
TestComplete
TestLeft
Zephyr Scale
Zephyr Squad
Zephyr Enterprise
Resources
Ask a Question
Log In Sign Up

SoapUI disable replacing

skyr00zx
Occasional Visitor
‎10-05-2021 03:45 AM
‎10-05-2021 03:45 AM

SoapUI disable replacing

Hello 

I'm currently using SoapUI for manual security testing. I have problem with replacing by payloads in client side.

For example entities  in my request are replaced on client side. This behaviour makes impossible for me to test some security cases like billion laughs attack.

Is there option to disable that replacement?

Labels:
0 Kudos
Reply
1 REPLY 1
KarelHusa
Frequent Contributor
‎10-22-2021 08:44 AM
‎10-22-2021 08:44 AM

Re: SoapUI disable replacing

Hi @skyr00zx ,

there is no standard option to disable text evaluation in functional tests, as far as I know.

 

But for security testing (billion laughs etc.) you can use Security tests and use the prepared messages or define your own, see the picture bellow. The entities aren't evaluated there.

 

KarelHusa_0-1634917022975.png

More about security testing in SoapUI at: https://www.soapui.org/docs/security-testing/getting-started/ .

 

Best regards,

Karel

 

0 Kudos
Reply
Subscribe
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: