SlideShare a Scribd company logo

Postman & API Testing by Amber Race

Postman, profile picture
Postman

The document discusses exploring APIs using Postman. It recommends testing APIs without a pre-set script through exploratory testing. It provides tips for using Postman to import APIs from Chrome or Swagger and test parameters, outputs, interoperability, security, exceptions, and data of public APIs. The document includes resources for further API and Postman learning.

Software
Related topics:
API Testing Overview
1 of 23
Downloaded 55 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
Postman & API Testing Amber Race Senior SDET at Big Fish Games Up Next
EXPLORING YOUR APIS WITH POSTMAN
 
 Amber Race (@ambertests)
 Senior SDET, Big Fish Games
Get Yer Samples! All code shown in this talk is available on my Github! https://github.com/ ambertests/explore-with- postman
Explorator y Testing Testing without a pre-set script or set of test steps.
Amber Race - @ambertests https://krebsonsecurity.com/2018/05/tracking-firm-locationsmart-leaked-location-data-for-customers-of- all-major-u-s-mobile-carriers-in-real-time-via-its-web-site/ TESTING A PUBLICLY FACING API THROUGH YOUR UI IS NOT ENOUGH!!!!!
Getting the Goods
Import From Chrome
Import From Swagger
Amber Race - @ambertests Service Test Strategy P – Parameters O – Output I – Interop S – Security E – Error Handling D – Data
Amber Race - @ambertests PARAMETERS
 
 • The client is always wrong • Boundaries • Business rules
Postman & API Testing by Amber Race
Amber Race - @ambertests OUTPUT • Status codes • Headers • Logging
Logging and Status Codes
Amber Race - @ambertests INTEROP • Clients • Dependencies
Postman & API Testing by Amber Race
Amber Race - @ambertests SECURITY • Authentication and spoofing • Exposed data • SQL Injection • “Hidden” apis
Postman & API Testing by Amber Race
Amber Race - @ambertests EXCEPTIONS • No unhandled exceptions • Error info, but not too much
Postman & API Testing by Amber Race
Amber Race - @ambertests DATA • Updates and replication • Unicode • Caching
Postman & API Testing by Amber Race
Amber Race - @ambertests More Resources ■ Restful-Booker: https://restful- booker.herokuapp.com/ ■ Danny Dainton’s Postman Tips: https://github.com/DannyDainton/All- Things-Postman ■ Postman Blog: http:// blog.getpostman.com/ ■ Big List of Naughty Strings: https:// github.com/minimaxir/big-list-of-naughty- strings ■ Workshop Materials: https:// github.com/ambertests/explore-with- postman
Amber Race - @ambertests Thank you for attending! ■ Email: amber.race @outlook.co m ■ LinkedIn: https:// www.linkedin.c om/in/amber- race-tests ■ Twitter: @ambertest s

More Related Content

PDF
An Introduction To Automated API Testing
Sauce Labs
 
PDF
Postman
Igor Shubovych
 
PPTX
Api testing
HamzaMajid13
 
PDF
API Testing: The heart of functional testing" with Bj Rollison
TEST Huddle
 
PDF
POST/CON 2019 Workshop: Testing, Automated Testing, and Reporting APIs with P...
Postman
 
PDF
Postman: An Introduction for Developers
Postman
 
PPTX
RESTful API Testing using Postman, Newman, and Jenkins
QASymphony
 
PDF
Postman: An Introduction for Testers
Postman
 
An Introduction To Automated API Testing
Sauce Labs
 
Postman
Igor Shubovych
 
Api testing
HamzaMajid13
 
API Testing: The heart of functional testing" with Bj Rollison
TEST Huddle
 
POST/CON 2019 Workshop: Testing, Automated Testing, and Reporting APIs with P...
Postman
 
Postman: An Introduction for Developers
Postman
 
RESTful API Testing using Postman, Newman, and Jenkins
QASymphony
 
Postman: An Introduction for Testers
Postman
 

What's hot (20)

ODP
Accelerate Quality with Postman - Basics
Knoldus Inc.
 
PDF
API Testing
Bikash Sharma
 
PPTX
Api Testing
Vishwanath KC
 
PPTX
Test Design and Automation for REST API
Ivan Katunou
 
PDF
Postman Webinar: Postman 101
Nikita Sharma
 
PDF
How to Automate API Testing
Bruno Pedro
 
PPTX
Api testing
Keshav Kashyap
 
PDF
API Testing. Streamline your testing process.
Andrey Oleynik
 
PPTX
Belajar Postman test runner
Fachrul Choliluddin
 
PDF
Using Postman to Automate API On-Boarding
Postman
 
PPTX
API Testing for everyone.pptx
Pricilla Bilavendran
 
PPSX
API Test Automation
SQALab
 
PDF
Postman Webinar: “Continuous Testing with Postman”
Postman
 
PDF
API TESTING
Sijan Bhandari
 
PPT
Postman.ppt
ParrotBAD
 
PPTX
Postman Introduction
Rahul Agarwal
 
PPTX
B4USolution_API-Testing
b4usolution .
 
PDF
Driving Pipeline Automation With Newman and the Postman API
Postman
 
PDF
Reasons To Automate API Testing Process
QASource
 
PPTX
Api Testing
Vishwanath KC
 
Accelerate Quality with Postman - Basics
Knoldus Inc.
 
API Testing
Bikash Sharma
 
Api Testing
Vishwanath KC
 
Test Design and Automation for REST API
Ivan Katunou
 
Postman Webinar: Postman 101
Nikita Sharma
 
How to Automate API Testing
Bruno Pedro
 
Api testing
Keshav Kashyap
 
API Testing. Streamline your testing process.
Andrey Oleynik
 
Belajar Postman test runner
Fachrul Choliluddin
 
Using Postman to Automate API On-Boarding
Postman
 
API Testing for everyone.pptx
Pricilla Bilavendran
 
API Test Automation
SQALab
 
Postman Webinar: “Continuous Testing with Postman”
Postman
 
API TESTING
Sijan Bhandari
 
Postman.ppt
ParrotBAD
 
Postman Introduction
Rahul Agarwal
 
B4USolution_API-Testing
b4usolution .
 
Driving Pipeline Automation With Newman and the Postman API
Postman
 
Reasons To Automate API Testing Process
QASource
 
Api Testing
Vishwanath KC
 
Ad

Similar to Postman & API Testing by Amber Race (20)

PPTX
Exploring your APIs with Postman
Amber Race
 
PDF
Eradicate Flaky Tests
Anand Bagmar
 
PPTX
Super powered API testing
postmanclient
 
PDF
Eradicate Flaky Tests - AppiumConf 2021
Anand Bagmar
 
PDF
AI assisted testing using postman and openAI.pdf
sivaganeshsivakumar1
 
PDF
Behavior Driven Development, Ruby Style
Bozhidar Batsov
 
PPTX
Expanding Your .NET Testing Toolbox - GLUG NET
Matt Eland
 
PDF
Smoke Tests @ DevOps-Hamburg 06.02.2017
tech.kartenmacherei
 
PDF
Selenium 2 - PyCon 2011
hugs
 
PPTX
Reducing Bugs With Static Code Analysis php tek 2025
Scott Keck-Warren
 
PPTX
Android application analyzer
Sanjay Gondaliya
 
PPTX
Agile roundabout 2017 01 - keeping your ci-cd system as fast as it needs to be
Abraham Marin-Perez
 
PPTX
2024-11-28 - Mastering Logic Apps Workflows.pptx
Pascal van der Heiden
 
PPTX
QA or the Highway 2022.pptx
Perfecto Mobile
 
PDF
Write Antifragile & Domain-Driven tests with ”Outside-in diamond” ◆ TDD
Thomas Pierrain
 
PDF
RESTFul API Design and Documentation - an Introduction
Miredot
 
PPT
Sauce Labs Beta Program Overview
Al Sargent
 
KEY
Socket applications
João Moura
 
PDF
Serverless in production, an experience report (linuxing in london)
Yan Cui
 
PPTX
Олексій Павленко. CONTRACT PROTECTION ON THE FRONTEND SIDE: HOW TO ORGANIZE R...
OdessaJS Conf
 
Exploring your APIs with Postman
Amber Race
 
Eradicate Flaky Tests
Anand Bagmar
 
Super powered API testing
postmanclient
 
Eradicate Flaky Tests - AppiumConf 2021
Anand Bagmar
 
AI assisted testing using postman and openAI.pdf
sivaganeshsivakumar1
 
Behavior Driven Development, Ruby Style
Bozhidar Batsov
 
Expanding Your .NET Testing Toolbox - GLUG NET
Matt Eland
 
Smoke Tests @ DevOps-Hamburg 06.02.2017
tech.kartenmacherei
 
Selenium 2 - PyCon 2011
hugs
 
Reducing Bugs With Static Code Analysis php tek 2025
Scott Keck-Warren
 
Android application analyzer
Sanjay Gondaliya
 
Agile roundabout 2017 01 - keeping your ci-cd system as fast as it needs to be
Abraham Marin-Perez
 
2024-11-28 - Mastering Logic Apps Workflows.pptx
Pascal van der Heiden
 
QA or the Highway 2022.pptx
Perfecto Mobile
 
Write Antifragile & Domain-Driven tests with ”Outside-in diamond” ◆ TDD
Thomas Pierrain
 
RESTFul API Design and Documentation - an Introduction
Miredot
 
Sauce Labs Beta Program Overview
Al Sargent
 
Socket applications
João Moura
 
Serverless in production, an experience report (linuxing in london)
Yan Cui
 
Олексій Павленко. CONTRACT PROTECTION ON THE FRONTEND SIDE: HOW TO ORGANIZE R...
OdessaJS Conf
 
Ad

More from Postman (20)

PDF
Advanced AI and Documentation Techniques
Postman
 
PDF
WeTestAthens: Postman's AI & Automation Techniques
Postman
 
PDF
Elevating Developer Experiences with AI-Powered API Testing & Documentation
Postman
 
PDF
Discovering Public APIs and Public API Network with Postman
Postman
 
PDF
Optimizing Teamwork: Harnessing Collections & Workspaces for Collaboration
Postman
 
PDF
API testing Beyond the Basics AI & Automation Techniques
Postman
 
PDF
Not Your Grandma’s Rate Limiting (slides)
Postman
 
PDF
Five Ways to Automate API Testing with Postman
Postman
 
PDF
How to Scale APIs-as-Product for Future Success
Postman
 
PPTX
Revolutionizing API Development: Collaborative Workflows with Postman
Postman
 
PDF
Everything You Always Wanted to Know About AsyncAPI
Postman
 
PDF
Elevating Event-Driven World: A Deep Dive into AsyncAPI v3
Postman
 
PDF
Five Things You SHOULD Know About Postman
Postman
 
PDF
Integration-, Snapshot- and Performance-Testing APIs
Postman
 
PDF
How ChatGPT led OpenAPI's Recent Spike in Popularity
Postman
 
PDF
Exploring Postman’s VS Code Extension
Postman
 
PDF
2023 State of the API Report: Key Findings and Trends
Postman
 
PDF
Nordic- APIOps is here What will you build in an API First World
Postman
 
PDF
Testing and Developing gRPC APIs
Postman
 
PDF
Testing and Developing GraphQL APIs
Postman
 
Advanced AI and Documentation Techniques
Postman
 
WeTestAthens: Postman's AI & Automation Techniques
Postman
 
Elevating Developer Experiences with AI-Powered API Testing & Documentation
Postman
 
Discovering Public APIs and Public API Network with Postman
Postman
 
Optimizing Teamwork: Harnessing Collections & Workspaces for Collaboration
Postman
 
API testing Beyond the Basics AI & Automation Techniques
Postman
 
Not Your Grandma’s Rate Limiting (slides)
Postman
 
Five Ways to Automate API Testing with Postman
Postman
 
How to Scale APIs-as-Product for Future Success
Postman
 
Revolutionizing API Development: Collaborative Workflows with Postman
Postman
 
Everything You Always Wanted to Know About AsyncAPI
Postman
 
Elevating Event-Driven World: A Deep Dive into AsyncAPI v3
Postman
 
Five Things You SHOULD Know About Postman
Postman
 
Integration-, Snapshot- and Performance-Testing APIs
Postman
 
How ChatGPT led OpenAPI's Recent Spike in Popularity
Postman
 
Exploring Postman’s VS Code Extension
Postman
 
2023 State of the API Report: Key Findings and Trends
Postman
 
Nordic- APIOps is here What will you build in an API First World
Postman
 
Testing and Developing gRPC APIs
Postman
 
Testing and Developing GraphQL APIs
Postman
 

Recently uploaded (20)

PDF
EN-Survey-Report-SAP-LeanIX-EA-Insights-2025.pdf
deepakkhaitan3
 
PPTX
L1 - Introduction to python Backend.pptx
MoizAhmed480282
 
PDF
Download FL Studio Crack Latest version 2025 ?
ghrom2211g
 
PDF
Internet Downloader Manager (IDM) Crack 6.42 Build 42 Updates Latest 2025
itskinga12
 
PPTX
Embracing Complexity in Serverless! GOTO Serverless Bengaluru
SheenBrisals
 
PDF
Digital Systems & Binary Numbers (comprehensive )
fyfhqfhtv2
 
PDF
Product Update: Alluxio AI 3.7 Now with Sub-Millisecond Latency
Alluxio, Inc.
 
PPTX
Oracle Fusion HCM Cloud Demo for Beginners
DharanOracleerp
 
PDF
Tally Prime Crack Download New Version 5.1 [2025] (License Key Free
itskinga12
 
PPTX
Computer Software and OS of computer science of grade 11.pptx
GauravDahal9
 
PDF
T3DD25 TYPO3 Content Blocks - Deep Dive by André Kraus
Andre Kraus
 
PPTX
Oracle E-Business Suite: A Comprehensive Guide for Modern Enterprises
Conacent Consulting
 
PPTX
AMADEUS TRAVEL AGENT SOFTWARE | AMADEUS TICKETING SYSTEM
philipnathen82
 
PPTX
Agentic AI Use Case- Contract Lifecycle Management (CLM).pptx
mhxyzzp
 
PDF
iTop VPN 6.5.0 Crack + License Key 2025 (Premium Version)
youngle786g
 
PPTX
Advanced SystemCare Ultimate Crack + Portable (2025)
adanataj41
 
PPTX
Transform Your Business with a Software ERP System
Canada Software Company
 
PDF
Wondershare Filmora 15 Crack With Activation Key [2025
ghrom2211g
 
PDF
Odoo Companies in India – Driving Business Transformation.pdf
azhuhardeen1968
 
PPTX
Agentic AI : A Practical Guide. Undersating, Implementing and Scaling Autono...
IT IDOL Technologies
 
EN-Survey-Report-SAP-LeanIX-EA-Insights-2025.pdf
deepakkhaitan3
 
L1 - Introduction to python Backend.pptx
MoizAhmed480282
 
Download FL Studio Crack Latest version 2025 ?
ghrom2211g
 
Internet Downloader Manager (IDM) Crack 6.42 Build 42 Updates Latest 2025
itskinga12
 
Embracing Complexity in Serverless! GOTO Serverless Bengaluru
SheenBrisals
 
Digital Systems & Binary Numbers (comprehensive )
fyfhqfhtv2
 
Product Update: Alluxio AI 3.7 Now with Sub-Millisecond Latency
Alluxio, Inc.
 
Oracle Fusion HCM Cloud Demo for Beginners
DharanOracleerp
 
Tally Prime Crack Download New Version 5.1 [2025] (License Key Free
itskinga12
 
Computer Software and OS of computer science of grade 11.pptx
GauravDahal9
 
T3DD25 TYPO3 Content Blocks - Deep Dive by André Kraus
Andre Kraus
 
Oracle E-Business Suite: A Comprehensive Guide for Modern Enterprises
Conacent Consulting
 
AMADEUS TRAVEL AGENT SOFTWARE | AMADEUS TICKETING SYSTEM
philipnathen82
 
Agentic AI Use Case- Contract Lifecycle Management (CLM).pptx
mhxyzzp
 
iTop VPN 6.5.0 Crack + License Key 2025 (Premium Version)
youngle786g
 
Advanced SystemCare Ultimate Crack + Portable (2025)
adanataj41
 
Transform Your Business with a Software ERP System
Canada Software Company
 
Wondershare Filmora 15 Crack With Activation Key [2025
ghrom2211g
 
Odoo Companies in India – Driving Business Transformation.pdf
azhuhardeen1968
 
Agentic AI : A Practical Guide. Undersating, Implementing and Scaling Autono...
IT IDOL Technologies
 

Postman & API Testing by Amber Race

  • 1. Postman & API Testing Amber Race Senior SDET at Big Fish Games Up Next
  • 2. EXPLORING YOUR APIS WITH POSTMAN
 
 Amber Race (@ambertests)
 Senior SDET, Big Fish Games
  • 3. Get Yer Samples! All code shown in this talk is available on my Github! https://github.com/ ambertests/explore-with- postman
  • 4. Explorator y Testing Testing without a pre-set script or set of test steps.
  • 5. Amber Race - @ambertests https://krebsonsecurity.com/2018/05/tracking-firm-locationsmart-leaked-location-data-for-customers-of- all-major-u-s-mobile-carriers-in-real-time-via-its-web-site/ TESTING A PUBLICLY FACING API THROUGH YOUR UI IS NOT ENOUGH!!!!!
  • 9. Amber Race - @ambertests Service Test Strategy P – Parameters O – Output I – Interop S – Security E – Error Handling D – Data
  • 10. Amber Race - @ambertests PARAMETERS
 
 • The client is always wrong • Boundaries • Business rules
  • 12. Amber Race - @ambertests OUTPUT • Status codes • Headers • Logging
  • 14. Amber Race - @ambertests INTEROP • Clients • Dependencies
  • 16. Amber Race - @ambertests SECURITY • Authentication and spoofing • Exposed data • SQL Injection • “Hidden” apis
  • 18. Amber Race - @ambertests EXCEPTIONS • No unhandled exceptions • Error info, but not too much
  • 20. Amber Race - @ambertests DATA • Updates and replication • Unicode • Caching
  • 22. Amber Race - @ambertests More Resources ■ Restful-Booker: https://restful- booker.herokuapp.com/ ■ Danny Dainton’s Postman Tips: https://github.com/DannyDainton/All- Things-Postman ■ Postman Blog: http:// blog.getpostman.com/ ■ Big List of Naughty Strings: https:// github.com/minimaxir/big-list-of-naughty- strings ■ Workshop Materials: https:// github.com/ambertests/explore-with- postman
  • 23. Amber Race - @ambertests Thank you for attending! ■ Email: amber.race @outlook.co m ■ LinkedIn: https:// www.linkedin.c om/in/amber- race-tests ■ Twitter: @ambertest s