Security

Botium provides the option to test your chatbot against common security issues using Continuous Security Testing or by using a special Test Set that simulates common hacking techniques for chatbots exposed on websites, such as SQL Injection and XSS Injection.

  • Create Security Test

    Continuous penetration tests with predefined attacker datasets based on Open Worldwide Application Security Project (OWASP) top ten web application security risks and Zed Attack Proxy (ZAP). From a technical perspective, ZAP...

  • Setup your own ZAProxy

    ZAProxy is reachable from Botium or a running internal ZAProxy Steps: This is how you would start ZAProxy in a docker-compose file: zaproxy: container_name: zap image: owasp/zap2docker-stable:2.7.0 command: [ "zap.sh",...

  • Security Session Results

    All security session results are stored within security projects, with each project containing results for its respective tests. Recent Projects Summary Once created, all recent security projects are available to view in the Test ...

  • Security Test Sets

    This article provides useful information for creating security test sets. Custom security test sets are also available upon request from Cyara support. Read on to learn more. OWASP Top Ten The OWASP Top Ten is a list of the c...

  • Introduction to Security Testing

    This video provides an introduction to security testing using Cyara Botium. Parent topic: Security