Syhunt Hybrid


Get in-depth vulnerability assessment results

Syhunt Hybrid combines comprehensive static and dynamic security scans to detect vulnerabilities like XSS, File Inclusion, SQL Injection, Command Execution and many more.

With Syhunt's unique gray box/hybrid scanning capability the information acquired during source code scans is automatically used to create and enhance dynamic scans. All entry points are covered generating detailed information about the security level of your web applications.

View Datasheet

1.000+80+
Vulnerability ChecksVulnerability Categories Covered (View All)

Dynamic Scanner

Syhunt dynamically injects data in web applications and analyzes the application response in order to determine if the application code is vulnerable, automating the web application security testing and proactively guarding your organization's Web infrastructure against several kinds of web application security threats.

Learn more

Source Code Scanner

Designed to scan web applications for various types of issues, such as Cross-Site Scripting (XSS), File Inclusion, SQL Injection, Command Execution and weak validation, the Code scanner is a perfect complement to the already extensive set of remote scanning capabilities available in the Dynamic scanner.

Learn more

Easy to use tools

Syhunt Hybrid follows simple GUI standards, prioritizing easy of use and automation and thus requiring minimal to none user intervention before or during scans in spite of a large number of customization options.

Console & Lua Integration

Syhunt's console utilities and Lua API allows the Hybrid suite to be integrated in a variety of environments through the use of scripts. Today any environment that can execute Lua can load and execute Syhunt as a module.

Adaptative Checks

Syhunt Hybrid checks can adapt to a large number of environments, such as different OSes (Unix/Win), web servers, databases (MySQL, Oracle, SQL Server, etc), client-side and server-side scripting languages.

Check today for all kinds of vulnerabilities

Syhunt Hybrid includes checks for an extremely wide array of different web application security threats, including:

CheckCWE
SQL Injection (Error & Blind)89
Local File Inclusion98
Remote File Inclusion98
Command Execution78
Cross-Site Scripting (XSS)79
NoSQL Injection 
Unvalidated Redirects601
Arbitrary File Manipulation73
CRLF Injection93
Directory Traversal22
HTTP Response Splitting113
Old/Backup Files530
Path Disclosure211
Server-Side JavaScript Injection 
Web-Based Backdoors 

View All Checks

Compliance Auditing

Syhunt Hybrid helps organizations address the most pressing compliance issues such as:

Learn more


When we tried the software on an online web app, it performed quite well; it managed to detect several vulnerabilities

PCQuest Magazine

Tools like Syhunt make an application's vulnerability much simpler to detect, no longer requiring a “hacker” level skill set.

SC Magazine

More Quotes


Syhunt Hybrid runs under any modern Windows version from Windows XP through 10 (Specs)