• Support   |   Contact a Representative   |   Contact WhiteHat

• Website Risk Management
  • Asset Identification
  • Vulnerability Management
  • Reporting/Communication
  • Protection
• Sentinel Services
  • Cost-effective Solution
  • Benefits
  • Core Features
  • Selection Guidelines
  • Sentinel Premium Edition
  • Sentinel Standard Edition
  • Sentinel Baseline Edition
  • Sentinel for QA
  • PCI Compliance
  • Integration – via XML API
  • Certification Program
  • How Sentinel Works
  • WAF Integration
• Support Plus
  • Gold Service Level
  • Silver Service Level
  • Standard Service Level
  • Service Levels
• Education Services
  • Guidelines
  • Intro to Web App Security
  • Secure Coding for Java
  • .NET
• Events & News
  • News Coverage
  • Press Releases
  • Interviews
  • Awards
• Resources
  • Whitepapers
  • Webinars & Presentations
  • Jeremiah Grossman Blog
  • Website Statistics Report
  • Website Security Glossary
• Partners
  • Strategic Partners
  • Partner Application Form
  • Partner Portal Login
• About WhiteHat
  • Leadership Team
  • Board of Directors
  • Careers
  • Contact Us
  • Support

• Sentinel Services
• Cost-effective Solution
• Benefits
• Core Features
• Unique Methodology
• Selection Guidelines
• Sentinel Premium Edition
• Sentinel Standard Edition
• Sentinel Baseline Edition
• Sentinel for QA
• PCI Compliance
• Integration – via XML API
• Certification Program
• How Sentinel Works
• WAF Integration

WhiteHat Sentinel Service

WhiteHat Security is the leading provider of website security solutions that protect critical data, ensure compliance and narrow the window of risk. WhiteHat Sentinel is the most accurate, complete and cost-effective website vulnerability management solution available. It delivers the flexibility, simplicity and manageability that organizations need to take control of website security and prevent Web attacks. WhiteHat Sentinel is built on a Software-as-a-Service (SaaS) platform designed from the ground up to scale massively, support the largest enterprises and offer the most compelling business efficiencies, lowering your overall cost of ownership.

WhiteHat Sentinel is a subscription-based service assuring complete website vulnerability management. Unlike traditional website scanning software or consultants, WhiteHat Sentinel is the only solution to combine highly advanced proprietary scanning technology with custom testing by a team of leading website security professionals.

Cost-effective Website Vulnerability Management

As organizations struggle to maintain a strong security posture with shrinking resources, WhiteHat Sentinel has become the solution of choice for total website security at any budget level. The entire Sentinel product family is subscription-based. So, no matter how often you run your application assessments, whether it’s once a week or once a month, your costs remain the same. You have a highly competitive and predictable cost structure, simplifying your budgeting process.

Expert Verification of All Vulnerabilities

WhiteHat Sentinel applies expert knowledge derived from thousands of comprehensive website vulnerability assessments conducted since 2001. The WhiteHat Sentinel vulnerability database combines knowledge of over 26 million vulnerability patterns, both actual and false positives, with proprietary algorithms to distinguish which vulnerabilities detected are real and exploitable in your unique software.

All vulnerabilities reported by WhiteHat Sentinel are found using proprietary vulnerability tests and verified by WhiteHat Security Operations. This combination of automated scanning technology with expert Web security analysis virtually eliminates false positives, ensuring you only receive actionable vulnerability information. The quality and accuracy of this data enable you to act with confidence and assurance that these issues are real when communicating them to business owners and developers.

Vulnerability Research

As new attacks are discovered WhiteHat Security Operations immediately creates and tunes new scan tests that are applied across the entire WhiteHat Sentinel customer base. This ensures you benefit from the latest and greatest data about the vulnerability posture of your websites.

Timely

WhiteHat Sentinel was specifically designed to excel in rapidly-changing threat environments and dramatically narrow the window of risk by providing assessments on your schedule.  Whether it’s a quarterly compliance audit, new product roll-out, or weekly business-as-usual site updates, WhiteHat Sentinel can begin assessing your websites at the touch of a button. 

Complete

WhiteHat Sentinel conducts a comprehensive assessment of your websites for the full range of possible threats. Whether it’s a business-critical customer service site, or sites with compliance requirements, there’s a Sentinel solution for you.

Business Logic Testing – With WhiteHat Sentinel Premium Edition (PE)

WhiteHat Sentinel is unique in mapping out and testing custom business logic and application workflows, paying particular attention to privileges between roles and users. This type of testing is virtually impossible to automate without human context and understanding of your unique application. 

WhiteHat Security Operations Team map out your application, users, roles, and custom business workflow. Sentinel can then properly test your application for expected business behavior and understand the context of the results. Example application behavior that would be unexpected and unwanted by the business include:

• Can a guest user access administrative functionality, like ‘create new admin’?
• Can Rob view Sally's checking account, or use her coupon codes? 
• Can a customer modify the cost of an item during checkout?

The WhiteHat Security Operations will work with you to ensure that the business logic vulnerabilities that Sentinel identifies are real and the intentions and risks associated with those vulnerabilities are understood by you.

Scalable

Sentinel was built to scale to assess hundreds, even thousands of the largest and most complex websites simultaneously. This scalability of both the methodology and the technology enables WhiteHat to streamline the process of website security. WhiteHat Sentinel was built specifically to run in both QA/development and production environments to ensure maximum coverage with no performance impact. And, WhiteHat Sentinel exceeds PCI 6.6 and 11.3.2 requirements for Web application scanning.

Simplified Management

WhiteHat Sentinel is turnkey – no hardware or scanning software to install requiring time-intensive configuration and management. WhiteHat Sentinel provides a comprehensive assessment, plus prioritization recommendations based on threat and severity levels, to better arm security professionals with the knowledge needed to secure an organization’s data. WhiteHat Sentinel also provides a Web services API to directly integrate Sentinel vulnerability data with industry-standard bug tracking systems, or SIMs or other systems allowing you to work within your existing framework. With WhiteHat, you focus on the most important aspect of website security – fixing vulnerabilities and limiting risk.

WAF Integration

WhiteHat has partnered with leading Web Application Firewall (WAF) vendors to quickly and safely close the loop between vulnerability detection and mitigation. WhiteHat Sentinel’s highly-targeted and pinpoint accurate rules can be narrowly applied to a WAF, efficiently block attacks and buying time to fix specific security problems properly in the application.  NO other website security solution can offer this additional layer of protection.