Syhunt Wiki

It appears you are not logged in. Some areas of the wiki may not be visible to you until you log in. Click here to log in.

What is Syhunt?

Syhunt is a hybrid multilanguage web application security assessment suite. It allows you to scan for the most common web application flaws from a hacker's perspective. Syhunt will remotely inject data in the web applications and analyze the application response in order to determine if the application code is vulnerable to specific attacks (such as SQL Injection, XSS, and many other web application vulnerability flaws). Syhunt will also scan the application's source code, if requested, in search for security issues.

Key Technologies Supported

Which operating systems and applications are supported for scanning?
Syhunt modules are built with the flexibility to cover multiple web server platforms:

  • Any web server platform (via dynamic scanning). Syhunt scans all types of web servers, such as Unix, Linux or NT.
    • Devices such as routers and firewalls that run web sites.
  • ASP, ASP.NET, Java / JSP, Lua, Perl, PHP & Python web applications (via source code scanning)
  • Intrusion detection systems (via its IDS evasion techniques).
  • Syhunt Hardener (an assessment tool designed specifically for Apache and PHP platforms) is also available.

For more details about the supported technologies, see: Supported Technologies & Languages

Syhunt Hybrid Documentation
Syhunt ScanTools Download - Console apps
Sandcat Browser - Pen-test oriented web browser
Vulnerabilities
Page last modified on December 31, 2018, at 02:49 PM