A security scan is the process of using automated tools to identify security flaws and possible exploitable vulnerabilities on a target. For example you can use the automated WordPress scanner WPScan to scan your WordPress to find security weaknesses on your WordPress. There are several different types of scanning technologies, and the most popular ones are black box and white box scanning. The difference between the two is the approach. In black box scanning the scanner is used to attack the target WordPress from the outside, while in white box scanning the scanner would have access to the code and the internal components of the target, such as a source code analyzer.