2013

2017 | 2016 | 2015 | 2014 | 2013 | 2012 | Archive

December 17, 2013

Syhunt Dynamic 5.0 released with superior spidering and more - Last week we announced the release of Syhunt Code 5.0. Today we want to announce another great news for our application security testing product family. We are very proud to release Syhunt Dynamic 5.0. The new release of our web application security scanner comes with a greatly improved spider and browser emulator. In our tests, Syhunt Dynamic 5.0 was able to achieve near-100 percent WAVSEP WIVET 3 coverage - WIVET is an open source benchmarking project that aims to statistically analyze web link extractors and adopted as an extension to the WAVSEP - The Web Application Vulnerability Scanner Evaluation Project. The same WIVET version released by last year's WAVSEP benchmark was used in our internal benchmarking.

Leaving the previous Syhunt Sandcat Scanner Pro generation way behind when it comes to link extraction, Syhunt Dynamic 5.0 was able to achieve 94% WIVET coverage, the same high level of coverage achieved by other commercial tools such as HP WebInspect, Acunetix, IBM AppScan & Netsparker, which were able to achieve 94%, 92% and 91% respectively in last year's WAVSEP benchmark.

The higher rate means that Syhunt Dynamic's enhanced crawler is better equipped for handling malformed HTML and additional kinds of relative links, finding certain patterns in HTML comments, and has been fine-tuned for a variety of browser emulation tasks, such as JavaScript execution and DOM emulation, user interaction simulation, session and cookie handling, code analysis, and more. Combined with the already high rates of vulnerability detection that the previous generation offered, the enhancements make Syhunt Dynamic 5.0 even more well-suited for performing professional web application vulnerability assessments.

Over the past months, we've also put a lot of effort into refactoring the scan engine, the same way we did with the new version of Syhunt Code. Both Syhunt Dynamic and Syhunt Code 5.0 now also come with a new, easy-to-use, multi-tabbed user interface that can launch parallel scans. Both products are tightly integrated and have a multi-process architecture. The new version is currently undergoing tests by the WAVSEP project for their 2014 edition. As soon as the findings are out, we'll link them here.

Update (January 5, 2014): It has been officially announced by the WAVSEP project that Syhunt, HP WebInspect and NTO currently lead its 2014 WIVET score chart with 94% coverage.

Learn more about the Syhunt Dynamic functionalities here.

Syhunt Dynamic 5.0 is available free of charge to all Syhunt Dynamic and Hybrid users.

See also: Syhunt Dynamic tops recent benchmark charts with 100% SQL Injection and XSS detection rates

December 11, 2013

Syhunt Code 5.0 released with UX, accuracy enhancements - Today we unveil the 5.0 version of Syhunt Code. The new release of our source code security scanner provides customers with significantly enhanced detection accuracy for spotting multiple classes of web application security vulnerabilities.

In this release, we put a lot of effort into refactoring the scan engine and increasing its accuracy. We've been working hard to make sure that the vulnerability assessment products we deliver can achieve the highest detection rates. At the same time, we wanted to deliver a better experience, so we've created a brand new user interface. Syhunt Code 5.0 comes with a new, easy-to-use, multi-tabbed user interface that can launch parallel scans. Syhunt Code 5.0 uses a multi-process architecture, which means all running tasks are isolated from each other.

Over the years Syhunt has assembled an extensive collection of checks aimed at detecting web application security issues, making Syhunt Code the ideal solution for dealing with the issues plaguing today's modern web applications.

Learn more about the Syhunt Code functionalities here.

Syhunt Code 5.0 is available free of charge to all Syhunt Code and Hybrid users.

August 27, 2013

Sandcat Browser 4.1 released, introduces QuickInject - It is with great pleasure that we announce the release of the 4.1 version of the Syhunt Sandcat Browser. This release introduces QuickInject, an extensive toolkit for manual web application security assessment, and also includes a number of other enhancements. Learn more about the new release here.

May 30, 2013

Sandcat Browser 4.0 released, new tools added for pen-testers - We are pleased to announce the release of the 4.0 version of the Syhunt Sandcat Browser. Sandcat 4 comes with a revamped and enhanced Live Headers, an enhanced version of the Sandcat Console, preview extensions for the most common web file formats. It also adds a Lua Console and a JavaScript Console, the ability to save the full request details of captured requests, to launch Lua-based tasks in isolated processes, and more.

Get the new release here. Read more about the new features here.