Syhunt has been a key tool in performing vulnerability scanning on our web applications and APIs, both in terms of efficiency and accuracy. We recently expanded our use of Syhunt to include direct scans of our source code repositories, allowing development to identify security opportunities before releasing new versions. This integration strengthens our secure development workflow, facilitating the identification and mitigation of vulnerabilities early in the software lifecycle.

Alberto Bustamante, Sales Manager, Cybersofb, Mexico

We made the decision to purchase the Syhunt tool due to the high level of detail in the reports presented during the testing that we carried out. Technically it is a tool that meets our needs and commercially we had a very good and flexible negotiation. We have a volume of scans in the CromiWAF operation and Syhunt was able to deliver.

Felipe Manso, CEO, CromiWAF, Brazil

We have been using Syhunt for a couple of years now during different penetration tests. It has discovered a number of SQL injections and XSS vulnerabilities we would have missed if tested by hand. One of the best ways of using Syhunt is by combining the source code analysis with the dynamic scanner to quickly zoom in on the real issues. Support by Syhunt has been outstanding, quick to reply and resolve questions.

Arthur Donkers, Managing Director, Cyberlink Security, Ireland

With an objective approach, Syhunt has been able to identify a wide variety of threats, such as web server configuration weaknesses, susceptibility to denial-of-service attacks, and ranging to many serious application vulnerabilities such as SQL Injection and Cross Site Scripting (XSS). In my experience, Syhunt has proven its effectiveness to simulate numerous attack scenarios. It is a great product with an exceptional support team. more

Renato Andalik, Security Expert and CSO, Ertech Systems, Brazil

We have used Syhunt for years because it`s been the best web app security assessment tool out there. Rapidly updated to cover new vulnerabilities as they arise and very easy to use. more

Robert Davies, CEO, Stealth-ISS, United States

Solutionary constantly evaluates application and network scanning tools for use in our best-of-breed assessment approach. Syhunt consistently makes our list as one of the most effective and valuable tools on the market today.

Matt McDermott, Security Engineer II, Solutionary, Inc., United States

Wolverhampton City Council has used the Syhunt products for a number of years. We find them extremely thorough in comparison to other scanning tools and they form an essential part of our testing process.

Dave Woodcock, Security Team Leader, Wolverhampton City Council, United Kingdom

Having being in contact with them over the past 4 years we must say that Syhunt´s dedication to research and development, and their customer service department´s fantastic responsive and personal customer support has really paid off.

Wipul Jayawickrama, Managing Director, Infoshield Consulting, Australia

The Syhunt suite is a complete solution for performing website baseline assessments. It provides an easy to use interface and effective reporting to security staff members. Its use can be a great time saver and dramatically increase the overall security posture of an organization´s web presence.

Brent Huston, CEO, MicroSolved, Inc., United States

Syhunt Dynamic is the most comprehensive web server scanning tool that I have come across. When I need to scan web servers I use Syhunt because Nessus and other tools just don´t have the depth of vulnerability database that Syhunt has.

Stuart Unsworth, Security Expert, Verizon Business, Australia

Faster, more resilient against unusual web servers, and excellent control over resource utilisation

David Wray, Managing Director of Sec-Tec, Ltd., United Kingdom

The Syhunt Scanner incorporates very advanced techniques and features to prevent false positives and they work extremely well. This really helps to weed out the clutter and identify the real security vulnerabilities.

Paul Woroshow, Vice-President, Expert Systems Resources, Inc., Canada

We have identified significant vulnerabilities in each of the popular content managers we reviewed [using Syhunt Code for PHP]. Several of the products were found to have various types of injection vulnerabilities (SQL/command/etc.), arbitrary file disclosure and access issues and tons of cross-site scripting (XSS) problems.

Brent Huston, CEO, MicroSolved, Inc., United States

We have been using Syhunt for years and over that time it has proven to be a powerful application analysis tool, covering all steps of the secure development process, as well as easy usability and support

Fernando Malta, CISO - Chief Information Security Officer, Sinqia, Brazil

Amazing. It can essentially enter a begin URL and get nitty-gritty defenselessness data.

Bala Kandaswamy, CEO, Contus, India

We use Syhunt on almost a daily basis. It is an amazing tool to work with. Pretty fast and very accurate.

PenTestIT

It has been really rewarding to see this application... many possibilities offered by this notepad turned into a small Swiss army knife for Ethical Hacking.

Pablo González Pérez, Security Researcher, ElevenPaths

HuntPad is similar to CyberChef from GCHQ, but less emphasis on text formats of structured data & PublicKey+symmetric cryptography-not dis`ing cause a non-web approach is needed for websec testing.

Derek Callaway, IOActive, Cybersecurity Consultant

For me personally the Sandcat Browser has replaced several separate programs. Very convenient - everything is at hand and in one window. Plus, I`m very impressed with the ability to use Lua scripts - with them you can create amazing things and automate routine tasks without great effort.

Yandex Security, Russia

A great addition to the Syhunt suite and it makes web application auditing and debugging really easy.

Paul Woroshow, Vice-President, Expert Systems Resources, Inc., Canada

For many people who don´t want to become security specialists configuring an application to run securely is often a daunting task. By automatically analyzing Apache and PHP installations, and giving expert advice, the Syhunt Harden software allows common people to secure their Apache installations without spending more time on the task than necessary.

Ivan Ristic, Developer of ModSecurity, founder of Thinking Stone, and member of the Web Application Security Consortium, OASIS, and the PHP Security Consortium, United Kingdom

Tools like Syhunt make an application's vulnerability much simpler to detect, no longer requiring a “hacker” level skill set.

SC Magazine

We liked the GUI and the simplicity of Syhunt‘s user model. We had a very positive experience working with the product‘s development team

Web Hacking Exposed