Change starts with YOU!

The most difficult change is the change in people’s mindset, especially when they are used to perform and do the same activities for a quite long time in the same way.

People minds are usually wired to only see the value of their used traditional methods and techniques, and their daily routines. It is hard to convince them to even try to think if there is a better way to do this or that, I feel empathy with those mindsets because most of the time, this routine drags us and prevents us to pause and think about what can be improved!

We are too busy for a change
Read more

Black Box Security Testing

Black box testing is generally used when the tester has limited knowledge of the system under test or when access to source code is not available. Within the security test arena, black box testing is normally associated with activities that occur during the pre-deployment test phase (system test) or on a periodic basis after the system has been deployed.

Black box security tests are conducted to identify and resolve potential security vulnerabilities before deployment or to periodically identify and resolve security issues within deployed systems. They can also be used as a “badness-ometer” [McGraw 04] to give an organization some idea of how bad the security of their system is. From a business perspective, organizations conduct black box security tests to conform to regulatory requirements, protect confidentially and proprietary information and protect the organization’s brand and reputation.

Fortunately, a significant number of black box test tools focus on application security related issues. These tools concentrate on security-related issues including but not limited to:

Read more