User Guide¶
Welcome to the SentriKat User Guide. This section covers day-to-day usage of the platform.
Overview¶
SentriKat provides a focused approach to vulnerability management:
- Dashboard - At-a-glance view of your security posture
- Products - Manage your software inventory
- Vulnerabilities - Track and acknowledge CVEs
- Compliance Reports - NIS2 Article 21, CISA BOD 22-01, executive PDFs
- Alerts & Issue Trackers - Email, webhooks, Jira/GitHub/GitLab/YouTrack
Quick Navigation¶
-
Dashboard
Understand your vulnerability landscape at a glance.
-
Products
Add, edit, and manage your software inventory.
-
Vulnerabilities
Review, acknowledge, and track vulnerability remediation.
-
Compliance Reports
NIS2 Article 21, CISA BOD 22-01, executive PDFs, CSV/Excel export.
-
Alerts & Issue Trackers
Email, webhooks, and Jira/GitHub/GitLab/YouTrack integration.
Workflow Overview¶
graph LR
A[Import Products] --> B[KEV Sync]
B --> C[Vulnerability Matches]
C --> D{Review}
D -->|Patch| E[Acknowledge]
D -->|Accept Risk| E
D -->|Snooze| F[Remind Later]
F --> DKey Concepts¶
CISA KEV¶
The Known Exploited Vulnerabilities Catalog is maintained by CISA and contains vulnerabilities that:
- Have a CVE ID
- Have active exploitation in the wild
- Have clear remediation guidance
Priority Levels¶
SentriKat assigns priority based on:
| Priority | Criteria |
|---|---|
| Critical | Ransomware indicator OR due in ≤7 days |
| High | CVSS ≥ 9.0 OR due in ≤30 days |
| Medium | CVSS ≥ 7.0 |
| Low | All other KEV entries |
Match Confidence¶
When matching products to vulnerabilities:
| Level | Method | Description |
|---|---|---|
| High | CPE | Exact CPE identifier match |
| Medium | Vendor+Product | Name-based matching |
| Low | Keyword | Partial text matching |