How to perform malicious attachment security scan using SOAP UI opensource?

Question

nmrao · Answer

What type of attachment does your service consumes?Couple of inputs:File with non-compliant format.Denial of service using very large file.

akshay03 · Answer

Answers to your question:-1)The file I am trying to attach is in XML and text format.2)File size I tried with 300bytes, 500bytes, 900bytes. It still isn't accepting it.&nbsp;&nbsp;I am trying to perform malicious attachment scan to sample WSDL.I tried it as per the tutorial provided on the below link:-https://www.soapui.org/security-testing/security-scans/malicious-attachment.html&nbsp;It displays an existing attachment in the image. My sample wsdl does not has one. I created a sample malicious java script code and saved in a text file.&nbsp;Whenever I try to generate it using the second tab...it displays 'No attachment in the test step message'.I tried to find out an option to add an attachment but din't get it. I came across a option 'Copy Attachments' in the 'Add request to test case' option but it is greyed out.Is it possible to perform malicious security scan in the opensource SOAP UI.&nbsp;Please refer the attached images.Awaiting your reply...

Forum Discussion

How to perform malicious attachment security scan using SOAP UI opensource?

2 Replies

Related Content

“SoapUI 5.6.0 Installer.app can’t be opened because Apple cannot check it for malicious software"

Post attachments

REST Attachments: Not able to attach svg file in query

Log test step response and assertions in SoapUI OpenSource

Attach printscreen to Log.Checkpoint

Recent Discussions

SoapUI OSS apidocs are outdated in April 2024

log4j1.x vulnerability

How to upload a file via SOAP, as an attachment using python zeep

Soapui 5.7.1 dependency : thoughtworks:xstream:jar:1.4.20

How to configure Swagger in Paas to use it in Oracle APEX instance.