WebSafe Shield is dedicated to helping you keep your site as secure as possible. Below provides a high-level overview of how WebSafe Shield conducts its security vulnerability assessments. WebSafe Shield utilizes a variety of tools and follows industry standards such as OSSTMM and the OWASP testing guide to verify the validity of the vulnerabilities identified on the hosts or within the web applications. The below provides a very high level glimpse at our process.
| |
| |
 |
|
|
| |
 |
 |
| |
WebSafe Shield scans a system to discover which ports are open. |
|
| |
| |
| |
 |
|
| |
 |
| |
Once the open ports are identified, we query each port to determine more information about the service associated with that port. We determine which service is running through a variety of methods, including checking the banner information as well as potentially trying to interact with the service. |
|
| |
| |
| |
 |
|
| |
 |
| |
Once a service is identified, we utilize a growing database of over 25,000 security vulnerability checks to determine if security vulnerabilities exist. Coupled with additional testing software, we are able to utilize over 31,000 vulnerability checks. |
|
| |
| |
| |
 |
|
| |
 |
| |
Reporting. We review the results to eliminate any potential false-positives, and advise you on what security vulnerabilities, if any, were discovered. We will provide guidance on your options on how to address these security vulnerabilities. |
| |
| |
| |
| |
|
|
