• ::  Contact a Representative  ::  Information Center   ::  Contact WhiteHat  ::

• Home
• Sentinel Services
•    Benefits
•    Features
•    Selection Guidelines
•    Sentinel Premium Edition
•    Sentinel Standard Edition
•    Demonstration
•    How Sentinel Works
•    PCI Compliance
•    Sentinel for QA
•    WAF Integration
• Education Services
• Events & Webinars
• In the News
• Resources
• Real-World Solutions
• Partners
• Support
• About WhiteHat

WhiteHat Sentinel Benefits ::

Find and Fix Vulnerabilities, Protect Your Websites ::
Worried about the OWASP Top Ten vulnerabilities or the WASC Threat Classification? Scanners alone cannot identify every vulnerability defined by these standards. WhiteHat Sentinel is the only solution that assesses the 24 classes of vulnerabilities identified by the Web Application Security Consortium, which include both technical and business logic vulnerabilities.

And, WhiteHat Sentinel’s Service Oriented Architecture (SOA) was built to assess hundreds, even thousands of the largest and most complex websites simultaneously. This scalability of both the methodology and the technology enables WhiteHat to streamline the process of website security and also enables rapid identification of new threats so you stay on top of the latest attack vectors.

Virtually Eliminate False Positives ::
No busy security team has time to deal with false positives. That’s why the WhiteHat Security Operations Team verifies the results. You see only real, actionable vulnerabilities, saving time and money.

WhiteHat’s patent-pending “Inspector” technology also allows WhiteHat to build a knowledgebase that looks at defect patterns and immediately applies new discoveries from one site to the benefit of all WhiteHat customers.

Closed-Looped System ::
Integration between Web application scanners and WAFs has been attempted before without success. The primary reason for its failure was due to the number of scanner false positives that would overwhelm WAFs. No fully automated tool is capable of the level of accuracy to safely create WAF rules. These implementations not only slowed down a WAF’s performance, but also blocked other business critical traffic from accessing a website. The fix was too broad and couldn’t distinguish good traffic from bad, rendering it ineffective and potentially dangerous.

Now WhiteHat Sentinel can directly configure policies on a WAF to protect against vulnerability exploits (e.g., cross-site scripting, SQL injection) that were found during the scanning process.  Normally, this would be a two step process: (1) identify vulnerabilities using WhiteHat Sentinel and (2) create highly-targeted policies on WAF.  This makes the process simpler for the end user — find the problem, then fix the problem with the click of a button.  This integration makes “virtual patching” a reality.

Total Control ::
No one knows your needs better than you; so, WhiteHat Sentinel runs on your schedule, not ours. Scans can be manually or automatically scheduled to run daily, weekly, or as often as your websites change. Whenever you want it, WhiteHat Sentinel provides comprehensive assessments of your websites, plus prioritization recommendations based on threat and severity levels, to arm you with the knowledge needed to secure them.

And, with the WhiteHat Sentinel fast and easy “one-click” vulnerability retesting, you can be secure in confirming your vulnerability remediation was successful.

Unlimited Assessments, Any Time Your Websites Change ::
With WhiteHat Sentinel, you pay a single annual fee and assess your applications as often as you like. WhiteHat Sentinel does all the work. And, the more applications you assess with WhiteHat Sentinel, the lower the annual cost per application. High-volume e-commerce sites may have weekly code changes, while others change monthly. WhiteHat Sentinel gives you the flexibility to assess your sites your way.

The tests that we employ are non-destructive (for example, in SQL Injection) and won’t bring down your website. Other solutions might simply generate an error and try to “drop” your production server. The WhiteHat approach is to find the issue in a safe, non-destructive fashion, and then alert you to it. If you have questions regarding severity or scope (e.g., yes, it is possible to drop your database) WhiteHat can address those after the issue has been reported.

Simplified Management ::
Say goodbye to cumbersome software installation and configuration. Initial vulnerability assessments can often be up-and-running in a matter of hours. With WhiteHat Sentinel’s Web interface, you can access vulnerability data, schedule scans or print reports at any time from any location. No outlays for software, hardware or pricey consultants to run the scanner and interpret results. With WhiteHat Sentinel, website security is simplified.

Another practical consideration is that the Sentinel scanning tool runs “single-threaded” at a maximum of three requests per second. It intentionally doesn’t download images, resulting in less “traffic” than a regular user browsing the website. Many scanning tools have been known to fire off hundreds or thousands of requests that could easily bring down a server. WhiteHat Sentinel was built specifically to run in both development and production environments. That’s why the WhiteHat approach is to run “low and slow.”

WhiteHat Sentinel also provides a Web services API to directly integrate Sentinel vulnerability data with industry-standard bug tracking systems or SIMs, allowing you to remain within your established system framework.

Finally, WhiteHat maps to Payment Card Industry (PCI) vulnerability severity levels for simplified customer reporting.

• :: 2008 © Copyright WhiteHat Security, Inc.  ::  408.343.8300   ::   3003 Bunker Hill Lane, Santa Clara, CA 95054   ::   Contact the Webmaster