Press Releases

WhiteHat Security Recognized Once Again as a Leader in Gartner Magic Quadrant for Application Security Testing


The WhiteHat Sentinel Platform Secures Applications at Every Stage of the SDLC with Unparalleled Accuracy and Expert Guidance      

Santa Clara, Calif., March 2, 2017 – WhiteHat Security, the only application security provider that combines the best of technology and human intelligence, has once again been positioned by Gartner, Inc. in the ‘Leader’ quadrant of the 2017 Magic Quadrant for Application Security Testing (AST).[1] This is the fourth such report, and WhiteHat Security has been included in the upper right quadrant of this Magic Quadrant since its inception.

According to the Gartner Magic Quadrant report, “Leaders in the AST market demonstrate breadth and depth of AST products and services. Leaders should provide mature, reputable SAST, DAST and, desirably, IAST techniques in their solutions. Leaders also should provide organizations with AST-as-a-service delivery models for testing, or with a choice of a tool and AST as a service, and an enterprise-class reporting framework supporting multiple users, groups and roles, ideally via a single management console.”

“Companies are embarking on rapid digital transformation to compete and grow in the Digital Economy, but it’s also increasing their cybersecurity risk because the applications at the front lines of a digital company are the most common way ‘in’ for attackers,” said Craig Hinkley, CEO, WhiteHat Security. “Our platform, WhiteHat Sentinel, works in concert with the security experts in our Threat Research Center to secure digital business by seamlessly covering the entire SDLC. We’re very proud to have been named a Leader for the fourth consecutive time since this Gartner Magic Quadrant was introduced, and we’re committed to remaining a vital resource to everyone in the ‘DevSecOps’ realm responsible for developing and maintaining secure applications.”

WhiteHat Sentinel is a Software-as-a-Service (SaaS) platform that enables organizations to quickly deploy a scalable application security program across the entire software development lifecycle. WhiteHat Sentinel Dynamic for DAST enables unlimited, continuous and concurrent assessments of web applications. WhiteHat Sentinel Source for SAST scans both source and binary code and covers a broad array of programming languages. Plug-ins and integrations with the tools developers depend on, as well as features including Directed Remediation and the ability to “Ask a Question” of a TRC engineer all from within the IDE, make Sentinel Source easy for developers to access and use to secure apps in development. WhiteHat also provides a mobile application security solution, WhiteHat Sentinel Mobile, and Computer-Based Training (CBT) for developers.

The WhiteHat Sentinel product family comes complete with the expertise of the Threat Research Center (TRC), one of the largest teams of application security engineers on the planet. These experts are an integral part of the WhiteHat Sentinel platform, delivering near zero false positives in their results, and–through the “Ask a Question” feature embedded in the platform—remediation guidance that eases and time and challenge related to fixing vulnerabilities.

WhiteHat Security also uniquely offers the WhiteHat Security Index™ (WSI), which provides a comprehensive and comparative risk score for understanding the overall security posture of your web sites; and the Peer Benchmarking dashboard, which compares the health of your web applications to industry and global averages.

Today, WhiteHat also announced an Application Security Training and Certification program for developers. The goal of this new program is to cultivate the new generation of DevSecOps practitioners and practices that are securing the apps at the heart of the digital business.

About the Magic Quadrant 

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

Gartner Peer Insights reviews constitute the subjective opinions of individual end-users based on their own experiences, and do not represent the views of Gartner or its affiliates.


About WhiteHat Security

WhiteHat Security has been in the business of securing web applications for 15 years. Combining advanced technology with the expertise of its global Threat Research Center (TRC) team, WhiteHat delivers application security solutions that reduce risk, reduce cost and accelerate the deployment of secure applications and web sites. The company’s flagship product, WhiteHat Sentinel, is a software-as-a-service platform providing dynamic application security testing (DAST), static application security testing (SAST), and mobile application security assessments. The company is headquartered in Santa Clara, Calif., with regional offices across the U.S. and Europe. For more information on WhiteHat Security, please visit, and follow us on Twitter, LinkedIn and Facebook.

Press Contact

De Orchis

(617) 897-8259

[email protected]

[1] Gartner, Inc., “Magic Quadrant for Application Security Testing” by Dionisio Zumerle, Ayal Tirosh, February 28, 2017.