How We Audited a High-Traffic WordPress Enterprise Stack on AWS and Mitigated SQL Injection (SQLi) in customized checkout queries
Initial Stack Assessment and Threat Modeling Our engagement began with a deep dive into a high-traffic WordPress enterprise deployment hosted on AWS. The stack comprised EC2 instances for web servers, an RDS Aurora PostgreSQL instance for the database, ElastiCache for Redis, CloudFront for CDN, and an ALB for load balancing. The primary concern was a […]