An autonomous, AI-driven stress testing suite that parses API specs and dynamically generates edge-case payloads to find bottlenecks.
Founding Engineer project targeting high concurrency, real-time sync, or custom system designs.
Standard API load testing tools (like JMeter or k6) rely on static request payloads. They measure performance but completely miss logical bugs, unhandled exceptions, and security vulnerabilities that only occur with complex, malformed inputs or specific state sequences.
Writing test scripts for every endpoint, query parameter, and payload schema in a large-scale application is incredibly tedious and frequently becomes outdated as APIs evolve.
I am currently designing and prototyping BreakMyAPI, an autonomous agent that reads Swagger/OpenAPI specifications and dynamically attacks REST endpoints:
A primary engineering challenge is preventing the agent from triggering destructive cascade failures in test environments (e.g. deleting all reference records in a database in step 1, which invalidates all subsequent read/write tests).
The roadmap features a State Dependency Graph. The testing agent maps routes based on HTTP methods (e.g. POST before PUT, and DELETE strictly at the end of a session flow) and utilizes database transactions that automatically rollback at the end of each test thread.
We are also designing a feedback loop that evaluates API responses (like 500 Internal Server Errors) and instructs the agent to narrow down the fuzzing payload on that specific path to pinpoint the code-level unhandled exception.
Screenshots, dashboard metrics, and recorded event videos proving the system running in real-time.

BreakMyAPI interactive OpenAPI endpoint parser and stress dashboard.