Syhunt introduces Hybrid-Augmented Analysis, OAST & Android APK Analysis capabilities

We are proud to introduce version 6.8.1 of Syhunt and, at the same time, unveil its online Syhunt Signal service (http://signal.syhunt.com/). The Syhunt scanner integration with Syhunt Signal adds the ability to perform OAST (Out-of-Band Application Security Testing), which allows Syhunt to detect a range of otherwise invisible, high-risk out-of-band (OOB) vulnerabilities, as well as to perform Hybrid-Augmented Analysis, a combination of DAST, SAST and OAST methodologies. Using a range of OAST techniques, Syhunt 6.8.1 is also able to demonstrate data exfiltration from a vulnerable target web server. Out-of-band (OOB) vulnerabilities are usually high-risk, such as variants of OS Command Injection, SQL Injection and XXE Injection that cannot be detected by conventional DAST, making the adoption of the OAST methodology necessary.

As part of this release, we've also expanded Syhunt's MAST (Mobile Application Security Testing) capabilites with the ability to reverse engineer and scan Android Package (APK) files for OWASP Mobile Top 10 and CWE/SANS Top 25 risks.

Hybrid-Augmented Analysis & OAST

Syhunt Hybrid simulates inferential, in-band and out-of-band (OOB) attacks by using entry point and other information acquired through SAST and a combination of DAST and OAST. Syhunt's online OAST service, known as Syhunt Signal, listens to forced requests coming in from a vulnerable target web server over the course of a scan and signals back to the Syhunt scanner. Syhunt then automatically correlates the received Signal alerts with attack requests it launched and adds the identified vulnerabilities to its report and user interface. The collaboration with Syhunt Signal also allows the Syhunt scanner to automatically exfiltrate data from a vulnerable target, which gets added to the scan results. This is achieved through different techniques (environment and OS-specific).

The OAST capability is available at no additional cost to existing Syhunt Dynamic and Syhunt Hybrid customers. The new feature needs an active Internet connection to work, so that Syhunt Dynamic can communicate with Syhunt Signal.

Out-of-Band Vulnerability Checks

Syhunt 6.8.1 adds checks for the out-of-band variants of the following vulnerabilities:

• Command Execution
• Remote File Inclusion (RFI)
• Server-Side Request Forgery (SSRF)
• SQL Injection
• XML External Entity (XXE) Injection

Android APK Analysis

Syhunt 6.81 adds the ability to scan Android Package (APK) files for vulnerabilities. The new feature is available at no additional cost to existing Syhunt Mobile, Syhunt Code Plus or Syhunt Hybrid Platinum Plus customers and allows to scan an Android application for vulnerabilities without the need of having its source code files. Despite the support for APK files, it is still recommended to scan the original mobile application source code files if available, since the APK file analysis uses reverse engineering techniques.

Other Improvements

• Added the ability to scan a single source code file from the New Scan dialog.
• Fixed: some redundant reporting of remote file inclusion vulnerabilities.
• Fixed: a problem with individual source code file scan with ScanCode CLI.
• The CLI tools now highlight in red about fatal errors.

We hope you enjoy the new release!