WWT's SentinelOne (S1) Lab exists to provide a sandbox environment that can be used to evaluate the SentinelOne solution across a wide variety of endpoints, including both Windows and Unix-based operating systems. There is also an attack machine, running Kali Linux, with which to test the efficacy of these tools using benign, non-weaponized malware.
Customers have endpoint pain and are looking for solutions that defend against advanced attacks. Customers also want sophisticated visibility and threat hunting capability but solutions can’t be so hard to use they can’t source staff to operate it.
SentinelOne security software replaces or augments legacy AV by uniting endpoint protection (EPP) + detection & response (EDR) + remediation + threat hunting into a Windows, Mac, Linux single agent solution. S1 provides admins with situational awareness and context faster than others.
S1 security suite features help customers eliminate redundant endpoint agents by consolidating critical capabilities. S1 offers cloud and on-prem management and API integrations with many other vendor tools. SentinelOne helps customers change the way they manage and protect their enterprise. The S1 platform autonomously prevents, detects, responds, and hunts - in real-time. It also saves customers time so they can focus on efficiency, productivity, and progress.
You will access the environment using a Windows-based jumphost from which you can browse web consoles, open RDP/SSH sessions, etc. (see topology below).