Whitehat

Overview

JupiterOne provides a managed integration with Whitehat. The integration connects directly to Whitehat APIs to obtain account metadata and analyze resource relationships. Customers authorize access by creating an API key in their target Whitehat account and providing that credential to JupiterOne.

Integration Instance Configuration

The integration is triggered by an event containing the information for a specific integration instance.

To obtain the API token for a Whitehat account, sign in to Sentinel. Click the “My Profile” button in the top right and then “API Key”. Enter the account password and copy the displayed API Key.

Entities

The following entity resources are ingested when the integration runs:

Whitehat Entity Resource _type : _class of the Entity
Account whitehat_account : Account
Scan Type whitehat_scan : Service
CVE cve : Vulnerability
Vulnerability whitehat_vulnerability : Vulnerability
Finding whitehat_finding : Finding

Relationships

The following relationships are created/mapped:

Intra-Instance

From Type To
whitehat_account HAS whitehat_scan
whitehat_scan IDENTIFIED whitehat_vulnerability
whitehat_vulnerability EXPLOITS cwe
whitehat_finding IS whitehat_vulnerability

Extra-Instance / Mapped

From Type To
CodeRepo/Project/Application HAS/HAD whitehat_finding
Note: This is mapped automatically only when the name of the Whitehat Application the finding belongs to matches the name of a CodeRepo/Project/Application in JupiterOne.