• Support   |   Contact a Representative   |   Contact WhiteHat

• Website Risk Management
  • Asset Identification
  • Vulnerability Management
  • Reporting/Communication
  • Protection
• Sentinel Services
  • Cost-effective Solution
  • Benefits
  • Core Features
  • Selection Guidelines
  • Sentinel Premium Edition
  • Sentinel Standard Edition
  • Sentinel Baseline Edition
  • Sentinel for QA
  • PCI Compliance
  • Integration – via XML API
  • Certification Program
  • How Sentinel Works
  • WAF Integration
• Support Plus
  • Gold Service Level
  • Silver Service Level
  • Standard Service Level
  • Service Levels
• Education Services
  • Guidelines
  • Intro to Web App Security
  • Secure Coding for Java
  • .NET
• Events & News
  • News Coverage
  • Press Releases
  • Interviews
  • Awards
• Resources
  • Whitepapers
  • Webinars & Presentations
  • Jeremiah Grossman Blog
  • Website Statistics Report
  • Website Security Glossary
• Partners
  • Strategic Partners
  • Partner Application Form
  • Partner Portal Login
• About WhiteHat Security
  • Leadership Team
  • Board of Directors
  • Careers
  • Contact Us
  • Support

• Website Risk Management
• Asset Identification
• Vulnerability Management
• Reporting / Communication
• Protection

Protection – Control Over Your Website Security

The Protection phase recognizes four different ways to manage website vulnerabilities:  developer-driven remediation, improved security education and training, virtual patching via WAFs, and the creation of ultra-targeted Snort rules to reliably detect application layer attacks.

Open Source Intrusion Prevention Systems (IPS) Integration – Snort Integration

WhiteHat Sentinel is the first website vulnerability management solution to integrate verified website vulnerability data with Snort, thereby extending IPS from the network space to include websites, the foremost target for the enterprising hacker. As a result, users can fine-tune Snort alerts and correlate findings to reduce noise and allow security teams to focus on real issues.

Now, WhiteHat Sentinel customers can use Sentinel vulnerability data to create ultra-targeted Snort rules, expanding the capability of an IPS to reliably detect application layer attacks. This new level of intelligence enables security professionals to increase their visibility into verified real-time threats. With Snort deployed at 80 percent of Fortune 100 companies and 42 percent of the Global 500, this advancement will have a significant impact on enterprise website security. Prior to the WhiteHat Sentinel / Snort integration, security professionals were forced to sift through reams of Web server logs to retrieve the same information that is now seamlessly generated and validated by WhiteHat Sentinel. With false positives eliminated, security teams can be confident that an alert signifies a real problem.

Developer Remediation

By providing developers with accurate and actionable website vulnerability reports and education, developers become willing teammates in the website risk management challenge. WhiteHat Sentinel’s Web-based reporting provides granular customized reports, with:

• Detailed vulnerability descriptions
• “Retest now” functionality to immediately confirm effective vulnerability remediation
• Trend reporting across enterprise/websites
• Web services API for data export to bug-tracking systems or SIMs

Security Education and Training

WhiteHat Security Education Services provides the up-to-date knowledge and skills required to understand and deliver meaningful security measures.

Because WhiteHat Sentinel is continuously assessing hundreds of production Web applications on a weekly basis – finding and analyzing vulnerabilities within such a broad and deep collection of real-world Web applications – our understanding of website risk management is unmatched. As a result, our courses for both developers and security professionals incorporate the enormous wealth of experience from WhiteHat Security's core business.

WAF Integration – Virtual Patching

Integration of a WAF with WhiteHat Sentinel detects and defends website vulnerabilities much more efficiently, and resolves the disconnect between compliance intentions and actual security. With virtual patching, the entire industry reaches a new level of website protection, with extreme accuracy and efficiency – delivering rapid identification and immediate repair of vulnerabilities. 

Now, customers can use WhiteHat Sentinel vulnerability data to create ultra-targeted Snort rules, expanding the capability of an IPS to reliably detect application layer attacks. This new level of intelligence enables security professionals to increase their visibility into verified real-time threats. With Snort deployed at 80 percent of Fortune 100 companies and 42 percent of the Global 500, this advancement will have a significant impact on enterprise website security.