Sentry
DARK ROCK LABS
SENTRY v3.1 — CYBER RESILIENCE PLATFORM

The operating system for cyber resilience.

Sentry unifies cybersecurity assessment, incident command, playbooks, tabletop exercises, forensics, and stakeholder communication into a single workspace built for the way security teams actually operate.

Sign in to Sentry →Talk to us
18
INTEGRATED MODULES
14
IR PLAYBOOKS
NIST CSF 2.0
ASSESSMENT FRAMEWORK
Single pane
OF GLASS
Capabilities

Everything an IR team needs in one workspace.

Sentry replaces the patchwork of spreadsheets, runbooks, ticket queues, and chat threads that most security teams cobble together during a real incident.

NIST CSF 2.0 Assessment

Run guided maturity assessments across all six CSF 2.0 functions. Generate professional reports with category and subcategory scoring, gap analysis, and prioritized recommendations.

Incident Commander

Real-time incident command with SLA tickers, IOC tracking, parent/child tickets, attorney-client privilege markers, and automatic phase progression across the IR lifecycle.

Playbooks & Tabletop

14 incident response playbooks mapped to IR phases. Run live tabletop exercises with threat profiles, objective scorecards, AAR findings, and exportable Light TTX summaries.

Forensics Vault

Evidence vault with SHA-256 hashing, chain-of-custody tracking, and role-based access control. Every file action is logged for the report record.

Stakeholders & Access

Maintain core, extended, and external IR contacts. Assign roles with least-privilege RBAC and stakeholder group permissions for every module.

Communications

Notification service with CONFIDENTIAL and PRIVILEGED headers, templated stakeholder updates, and automatic capture into the incident timeline.

How it works

Assess. Prepare. Respond.

Sentry is structured around the actual lifecycle of cyber resilience — not around audit checkboxes.

STEP 01

Assess

Onboard the organization, profile the tech stack, and run a NIST CSF 2.0 maturity assessment. Sentry generates a prioritized recommendation set and a board-ready report.

STEP 02

Prepare

Build IR plans, assign stakeholders, configure 14 ready-to-run playbooks, and stress-test readiness with tabletop exercises. Findings convert directly into tasks and policies.

STEP 03

Respond

When an incident hits, the Commander runs the lifecycle live — phase tracking, IOCs, evidence chain-of-custody, stakeholder comms, and an auditable timeline are captured automatically.

Modules

Eighteen modules. One workspace.

Click any module to see what it does for your team — with hero callouts and the screenshot from the live product.