Scan your web apps with


Find SQL Injection, XSS and over 80 other types of vulnerability.

Syhunt Sandcat


Easily audit & inspect web apps

Syhunt Sandcat brings unique features that are useful for pen-testers and web developers by combining the speed and power of Chromium with the simplicity and extensibility of Lua.

Star


Live HTTP Headers

Sandcat Browser features a built-in live headers with a dedicated cache per tab and previewing capabilities for the most common web file formats. This includes CSS, Flash, HTML, common image formats (bmp, gif, ico, jpg, png and svg), JavaScript, JSON, text and XML.

Console

Sandcat comes with an extensible command line console that allows you to easily run custom commands and scripts in a loaded page. New commands can be added using the Lua language.

Learn more

Pen-Tester Tools

Sandcat comes with a multitude of pen-test oriented extensions. This includes a Fuzzer, a Script Runner, HTTP & XHR Editors, Request Loader, Request Replay capabilities and more.

Learn more


“A penetration-oriented browser with plenty of advanced functionality already built in .. it’s all very easy to use: there’s something here for every level of user.”

Softwarecrew