Category: Ask a Security Pro

Ask a Security Professional: Black Box vs. White Box Series – Part Two: White Box Testing

Part Two: White Box Testing

In case you missed it, we spoke about Black Box testing in the last part of this series. Today, I’m going to go over Black Box testing’s counterpart, White Box testing. In terms of WordPress website security, White Box testing is the practice of testing the code running behind the scenes from the inside-out. Internal testing can be accomplished through use of various tools to seek out any vulnerabilities that may exist. White Box testing is typically executed in the form of Static Application Security Testing (SAST).

Read More

Ask a Security Professional: Firewall Series – Part Two: Web Application Firewalls

Part Two: Firewalls -> Web Application Firewalls (WAF)

Every website uses web applications, some more intricate than others. More and more website owners are turning to robust web applications like WordPress to build and manage their  websites. In fact, over a quarter of all websites on the internet use WordPress as a platform, and nearly half of the web is estimated to utilize some kind of content management system.

Read More

Ask a Security Professional: ‘Black Box’ vs ‘White Box’ Series — Part One: Black Box Testing

Black Box vs White Box: What’s the difference?

If you’re a developer, you may already be familiar with the concepts of “Black Box” and “White Box” testing as it pertains to the development life cycle of your software. It’s a simple concept, really. In software development, Black Box Testing is the testing of the design and/or structure of a piece of software by a party that is not familiar with the inner-workings of said software. Conversely, White Box Testing in software development means having a party that is typically familiar with the inner-workings of the software and the intended behavior of the software run the same sorts of tests.

Read More

Ask a Security Professional: Firewall Series – Part One: Network Firewalls

One question that SiteLock encounters quite often is “Why do I need a firewall when my host has one?” If you haven’t spent a good portion of your life researching firewalls, it’s easy to understand why you’d ask. Most website hosting companies utilize what is generally referred to as a Network Firewall, which is fundamentally different from, but equally as important as, a Web Application Firewall (WAF) like SiteLock® TrueShield. As a WordPress website owner, it is imperative to understand the roles that each plays in your website’s security.

In Part One below, we’re covering Network Firewalls.

Read More

Page 3 of 3

Powered by WordPress & Theme by Anders Norén