Current Release: Sandcat 4.0 - Search:

Home

Customer Login
Sandcat®

Features
Upgrade to PRO
Download
Sandcat for PHP
Sandcat Hardener
New in 4.0

Gelo
NmapW
Other Tools

About Us
Company Info
Contact Us

Sandcat /

Upgrade to Pro

Overview

Sandcat Pro includes the ability to generate reports
and countless other advanced features

Sandcat Pro is designed for the ever-increasing needs of professional pen-testers.

Sandcat Pro can help you automate web application security testing and proactively guard your organization's Web infrastructure against several kinds of web application security threats.

Sandcat Pro Hybrid (a more advanced edition of Sandcat Pro) integrates Sandcat for PHP and is able to scan the application's source code first, then try to remotely confirm flaws (XSS, File Inclusion, SQL Injection, Command Execution, etc)

Order a Pro license today and hunt down your vulnerabilities.

Pro Features

The Pro version of Sandcat includes all the standard features plus:

  • Graphical User Interface -- Two different graphical user interfaces.
  • Full SandcatCS -- Full version of the Sandcat Console application
  • Session Resume Support -- Ability to stop and later resume a scan session. It works for all scan methods and target options.
  • Full Vulnerability Info -- Full vulnerability information and references - CVE, NVD, CWE, Bugtraq & OSVDB
  • Enhanced Settings Management -- Ability to import and export settings
  • Reporting Feature -- Ability to generate reports and export data -- HTML, PDF, XML, Text, CSV, RTF, XLS & DOC
  • Built-In SSL Feature -- Ability to scan SSL-enabled web servers
  • Autoupdates -- Ability to automatically upgrade to the latest components and databases (Requires Internet connection)
  • Multiple Instance Support -- Ability to run Sandcat in multiple windows
  • Email Alert Feature -- Ability to automatically email reports after a scan is completed
  • Sandcat Newsletter -- Our newsletter help keep you informed about the latest updates of Sandcat
  • Permission to use Sandcat in VA / pen-testing services*
  • 24/7 Technical Support

(*) Premium license option only

Testimonials

Customer Testimonials

"Having being in contact with them over the past 4 years we must say that Syhunt's dedication to research and development, and their customer service department's fantastic responsive and personal customer support has really paid off."
Wipul Jayawickrama, Managing Director, Infoshield Consulting, Australia

"Tools like XSS Proxy Tool, Syhunt's SandCat, and RSnakes XSS Cheat Sheet now make an application's vulnerability to XSS much simpler detect and to exploit, no longer requiring a "hacker" level skill set."
Courtlend Little, service and solutions architect, Solutionary, Inc., United States, in an article in the SC Magazine

"Solutionary constantly evaluates application and network scanning tools for use in our best-of-breed assessment approach. Sandcat consistently makes our list as one of the most effective and valuable tools on the market today."
Matt McDermott, Security Engineer II, Solutionary, Inc., United States

"We use a numbers of different security tools and techniques, including commercially available software and open sources tools. The major tools that are being used are eEye, ISS and Syhunt products as well as other products that meet the latest technology and security standards and have been approved by governmental institutions. Using a combination of these tools and techniques we are able to identify known security problems in our customer's networks."
Stealth-ISS

"As an information security professional, I'm always testing out new products to automate daily repetitive and otherwise time consuming manual tasks, and when performing web application security assessments, there is nothing more intuitive, efficient and flexible than Sandcat.

With a low level of false positives and an objective approach, Sandcat has been able to identify a wide variety of threats, such as web server configuration weaknesses, susceptibility to denial-of-service attacks, and ranging to many serious application vulnerabilities such as SQL Injection and Cross Site Scripting (XSS).

In my experience, Sandcat has proven its effectiveness to simulate numerous attack scenarios. It is a great product with an exceptional support team, which I recommend to organizations of any size."
Renato Andalik, Security Expert and CSO, Ertech Systems, Brazil

"The Sandcat Scanner incorporates very advanced techniques and features to prevent false positives and they work extremely well. This really helps to weed out the cluter and identify the real security vulnerabilities."
Paul Woroshow, Vice-President, Expert Systems Resources, Inc., Canada

"The Sandcat suite is a complete solution for performing website baseline assessments. It provides an easy to use interface and effective reporting to security staff members. Its use can be a great time saver and dramatically increase the overall security posture of an organization's web presence."
Brent Huston, CEO, MicroSolved, Inc., United States

"Sandcat is the most comprehensive web server scanning tool that I have come across. When I need to scan web servers I use Sandcat because Nessus and other tools just don't have the depth of vulnerability database that Sandcat has."
Stuart Unsworth, Security Expert, Verizon Business, Australia

Reviews

"A robust, filter-evasion capable web application scanning tool. The newly added features have made this tool a must in the security side of web based application exploitation. This tool will help to identify problems before attackers can find them and exploit them."
Astalavista

"Syhunt's Sandcat Suite is a relative newcomer to the web application security scanning market. It takes the classic "bruce-force" approach of security scanners, providing a large database of "known-file" and "known-vulnerable-web-app" signature checks. It also features the ability to perform custom fault-injection tests. We liked the GUI and the simplicity of Sandcat's user model. We had a very positive experience working with the product's development team"
Web Hacking Exposed

"One modest-priced and nicely featured solution SMBs must consider is Syhunt's Sandcat suite. This security software suite includes a security hardening tool, a vulnerability scanner, data mining and log analysis tools, and more. Together, they offer the SMB something affordable and admirably functional."
Dave Piscitello, President, Core Competence Inc., United States

"The Sandcat suite brings industrial strength web security within the reach of even modest sized companies."
Ian Richards, Editor, TechSupportAlert, Australia

Screenshots


Sandcat Pro Interface

Response Tab

Response Tab

Checks Sidebar

With a low level of false positives and an objective approach, Sandcat has been able to identify a wide variety of threats.

Renato Andalik
Security Expert and CSO, Ertech Systems, Brazil

Follow Renato Andalik on

Edit - History -
Print - Search - Legal Notices - Privacy - Advisories - Links
© 2003 - 2010 Syhunt Cyber-Security Company. All rights reserved. Page last updated on July 21, 2010, at 02:33 PM EST