• Home
• Services
  • Features
  • Benefits
  • Selection Guidelines
  • Demonstration
  • How Sentinel Works
  • Sentinel for QA
  • WhiteHat Sentinel
• Partners
  • Benefits
  • Partners
• Resources
  • Events & Webinars
  • Grossman Blog
  • News
  • Newsletters
  • Presentations & Videos
  • Stats Report
  • Trade Media
  • Whitepapers
• About Us
  • Management
  • Board
  • Careers
  • Contact us

WhiteHat Sentinel – Benefits

Find Vulnerabilities, Protect Your Websites
Worried about the OWASP Top Ten vulnerabilities or the WASC Threat Classification? Scanners alone cannot identify every vulnerability defined by these standards. WhiteHat Sentinel is the only solution that assesses the 24 classes of vulnerabilities identified by the Web Application Security Consortium, which include both technical and business logic vulnerabilities.
And, WhiteHat Sentinel’s Service Oriented Architecture (SOA) was built to assess hundreds, even thousands of the largest and most complex websites simultaneously. This scalability of both the methodology and the technology enables WhiteHat to streamline the process of website vulnerability management and also enables rapid identification of new threats so you stay on top of the latest attack vectors.

Virtually Eliminate False Positives
No busy security team has time to deal with false positives. That’s why the WhiteHat Security Operations Team verifies the results. You see only real, actionable vulnerabilities, saving time and money.

WhiteHat’s patent-pending “Inspector” technology also allows WhiteHat to build a knowledgebase that looks at defect patterns and immediately applies new discoveries from one site to the benefit of all WhiteHat customers.

Total Control
No one knows your needs better than you; so, WhiteHat Sentinel runs on your schedule, not ours. Scans can be manually or automatically scheduled to run daily, weekly, or as often as your websites change. Whenever you want it, WhiteHat Sentinel provides comprehensive assessments of your websites, plus prioritization recommendations based on threat and severity levels, to arm you with the knowledge needed to secure them.

And, with the WhiteHat Sentinel fast and easy “one-click” vulnerability retesting, you can be secure in confirming your vulnerability remediation was successful.

Unlimited Assessments, Any Time Your Websites Change
With WhiteHat Sentinel, you pay a single annual fee and assess your applications as often as you like. WhiteHat Sentinel does all the work. And, the more applications you assess with WhiteHat Sentinel, the lower the annual cost per application. High-volume e-commerce sites may have weekly code changes, while others change monthly. WhiteHat Sentinel gives you the flexibility to assess your sites your way.

The tests that we employ are non-destructive (for example, in SQL Injection) and won’t bring down your website. Other solutions might simply generate an error and try to “drop” your production server. The WhiteHat approach is to find the issue in a safe, non-destructive fashion, and then alert you to it. If you have questions regarding severity or scope (e.g., yes, it is possible to drop your database) WhiteHat can address those after the issue has been reported.

Simplified Management
Say goodbye to cumbersome software installation and configuration. Initial vulnerability assessments can often be up-and-running in a matter of hours. With WhiteHat Sentinel’s Web interface, you can access vulnerability data, schedule scans or print reports at any time from any location. No outlays for software, hardware or pricey consultants to run the scanner and interpret results. With WhiteHat Sentinel, website security is simplified.

Another practical consideration is that the Sentinel scanning tool runs “single-threaded” at a maximum of three requests per second. It intentionally doesn’t download images, resulting in less “traffic” than a regular user browsing the website. Many scanning tools have been known to fire off hundreds or thousands of requests that could easily bring down a server. WhiteHat Sentinel was built specifically to run in both development and production environments. That’s why the WhiteHat approach is to run “low and slow.”

WhiteHat Sentinel also provides a Web services API to directly integrate Sentinel vulnerability data with industry-standard bug tracking systems or SIMs, allowing you to remain within your established system framework.

Finally, WhiteHat maps to Payment Card Industry (PCI) vulnerability severity levels for simplified customer reporting.

Download the WhiteHat Sentinel datasheet – High Res Zipped PDF (1.8 MB)
Download the WhiteHat Sentinel datasheet – PDF (340 KB)

Home
Services
:: Benefits   
   Features
   Selection Guidelines
   Demonstration
   How Sentinel Works
   Sentinel for QA
   WhiteHat Sentinel
Partners
Resources
About Us