Test Suite:
HTTP2 Server Test SuiteDirection:
ServerHypertext Transfer Protocol 2 (HTTP2) is an application-level protocol for distributed, collaborative, hypermedia information systems. This test suite can be used to test HTTP2 Server implementations for security flaws and robustness problems. HTTP2 is successor of HTTP. HTTP2 has similar headers like in HTTP/1.1 but headers have binary packing and values can be Huffman encoded. Biggest changes in HTTP2 compared to HTTP/1.1 is that protocol is binary instead of ASCII and supports multiple streams.
Used specifications
Hypertext Transfer Protocol -- HTTP/1.1
HTTP Authentication: Basic and Digest Access Authentication
Uniform Resource Identifier (URI): Generic Syntax
Internet Message Format
Tags for Identifying Languages
PATCH Method for HTTP
Character Set and Language Encoding for Hypertext Transfer Protocol (HTTP) Header Field Parameters
HTTP State Management Mechanism
Use of the Content-Disposition Header Field in the Hypertext Transfer Protocol (HTTP)
HTTP Strict Transport Security (HSTS)
Representing IPv6 Zone Identifiers in Address Literals and Uniform Resource Identifiers
Hypertext Transfer Protocol (HTTP/1.1): Message Syntax and Routing
Hypertext Transfer Protocol (HTTP/1.1): Semantics and Content
Hypertext Transfer Protocol (HTTP/1.1): Conditional Requests
Hypertext Transfer Protocol (HTTP/1.1): Caching
Hypertext Transfer Protocol (HTTP/1.1): Range Requests
Hypertext Transfer Protocol (HTTP/1.1): Authentication
Hypertext Transfer Protocol Version 2 (HTTP/22)
HPACK: Header Compression for HTTP/2
draft-xie-bidirectional-messaging-02
Tool-specific information
Information leakage
Remote execution
Test tool general features
- Fully automated black-box negative testing
- Ready-made test cases
- Written in Java(tm)
- GUI command line remote interface modes
- Instrumentation (health-check) capability
- Support and maintenance
- Comprehensive user documentation
- Results reporting and analysis