4.6 out of 5 (27 Ratings)

26 Verified Reviews


Great vendor; easy to work with, strong customer focus, and quick to return value.

Great easy to work with vendor with strong focus on customer success.


Excellent and Versatile Functionality and Amazing Customer Service

The vendor has great. They are an excellent provider of a a SAAS based solution for Application Security.


Much cheaper and easier than funding an FTE for WebAppSec testing.

They are pretty responsive and I don't have to worry about keeping a WebAppSec pro on staff.


WhiteHat provides incredible customer service and great subject matter!

Very reliable, strong customer commitment, quick to respond.


Implementation and ongoing maintenance was easy and met our needs.

Whitehat has consistently delivered the security testing required. When problems are discovered, they are addressed. Sometimes resolution of issues can take quite some time, during periods of expansion, this was especially evident.


Great technical support services, reporting features and great sales reps-always available

Information is readily available on the web interface and easily understandable. Support is always top notch.


Reports real security concerns; Filters out the noise.

WhiteHat Sentinel provides us with continuous application security scanning services that bring validated security issues to our attention. They provide a 'human' touch that other providers simply did not have. The join automated testing with manual review to only show us what we need to be looking at. They get rid of a lot of 'noise' for us. What hasn't worked well is their detection abilities for web frameworks such as Wordpress. They would benefit from being able to fingerprint web frameworks and plugins and report vulnerabilities based on what has been detected as being deployed.


Good service providing effective analysis; very easy to set up and maintain

The original onboarding process was handled very efficiently by WhiteHat and they explained in an appropriate level of detail how the service worked and how to use the portal. The service has been effective in identifying areas within our application where we have had issues we needed to address. Support has been good and on-boarding of subsequent extensions to our original scope has been handled well.


Up and down struggles, dedicated to improvements

There have been significant struggles at the company. During this, they have tried to maintain continuity, but the direction and stability has been rocky. We opt to stay with WH because we now have an established longish-term relationship and dedicated account persons are making serious efforts to keep us happy. One of the biggest issues we've had is the flexibility of the DAST to be customized for our specific needs. Self-servicing is not a strong point, but WH is certainly giving it a try to improve. Another has been the high turnover rate which has effected But it is worth reiterating that WH is seriously making the effort to maintain relationships by customizing as many solution points as possible.

Sentinel, Sentinel Source

WhiteHat in a contractor-centric enviornment

WhiteHat has been a good partner. They have always put resources when needed at our disposal, and continue to remain engaged in our code security efforts. Their static analysis tool has come very far from when I first reviewed it, and I consider it to be on par with other SaaS based static tools (to be fair, the very best results come from a fully tuned, on-premises tool). They do tend to push for more enhanced scanning levels, which of course comes with a cost increase, but they do not question a decision once made, and fully support the process. The technical resources they have put forth are always on point. They're good at what they do, or at a minimum, very well prepared. Integration is easy as they have a pretty well-featured API. We are able to automatically dump vulnerabilities to our tool of choice, which is important as we work in a very contractor-centric environment (on the development side). On the sales/renewal side, they work well with our processes, always putting needed resources at our disposal. We always work together at that time to ensure that our renewal is correctly sized to cover our existing needs and cover us for the future. We don't have much "waste" (unneeded scans) with our purchase, and much of this is due to the hard work WhiteHat puts into it along with our teams. I would like to collect better metrics. Their built-in reports are good, but I'd like to be able to dump everything into a single file and manipulate it myself which is sometimes cumbersome.