Syhunt License Options
The Syhunt scanner comes in many editions, each targeted at a different set of needs. All licenses include 1 seat and 1 to 3 years of technical support, upgrades and vulnerability updates, two (2) web interface users and support for a specific number of scripting languages already included.
| Product Name | Product Code | Types of Testing | No. of Targets |
| Syhunt Hybrid Infinity Universal | HYB-INF-UNI |       | ∞ Unlimited targets with: All Languages Included |
| Syhunt Hybrid Infinity | HYB-INF-CNL | | ∞ Unlimited targets with: CI/CD integration |
| Syhunt Hybrid Platinum Plus | HYB-PLS-UNL | | Unlimited targets |
| Syhunt Hybrid Platinum | HYB-PLA-UNL | | Unlimited targets |
| Syhunt Dynamic Infinity | DYN-INF-CNL | | ∞ Unlimited targets with: CI/CD integration |
| Syhunt Dynamic Plus | DYN-PLS-UNL | | Unlimited targets |
| Syhunt Dynamic Augmented | DYN-AUG-UNL | | Unlimited targets |
| Syhunt Code Infinity Universal | COD-INF-UNI | | ∞ Unlimited targets with: with: CI/CD integration All Languages Included |
| Syhunt Code Infinity | COD-INF-CNL | | ∞ Unlimited targets with: with CI/CD integration |
| Syhunt Code Plus | COD-PLS-UNL | | Unlimited targets |
| Syhunt Code (Web) | COD-WEB-UNL | | Unlimited targets |
| Syhunt Mobile Infinity Essentials | COD-MOB-CNL | | ∞ Unlimited targets with: CI/CD integration Essential Android/iOS Languages Included |
| Syhunt Mobile | COD-MOB-UNL | | Unlimited targets |
Syhunt Hybrid Infinity Universal
Combines comprehensive static and dynamic security scans to detect vulnerabilities like XSS, File Inclusion, SQL Injection, Command Execution and many more, including inferential, in-band and out-of-band attacks through Hybrid-Augmented Analysis (HAST).
| Product Name | Syhunt Hybrid Infinity Universal |
| SKU/Product Code | HYB-INF-UNI |
| Types of Testing | DAST, OAST, SAST, FAST & MAST |
| No. of Targets | Unlimited targets |
| CI/CD Integration | Yes |
| Language Support | Web - PHP, classic ASP, ASP.NET, Java, Kotlin, Node.js, Lua, Perl, Python & Ruby Mobile - Java, Kotlin, Swift, Objective-C, C, C+, Object Pascal (Delphi) & Node.js |
| Product Datasheet | Product Brief |
Syhunt Hybrid Infinity
Combines comprehensive static and dynamic security scans to detect vulnerabilities like XSS, File Inclusion, SQL Injection, Command Execution and many more, including inferential, in-band and out-of-band attacks through Hybrid-Augmented Analysis (HAST). This license covers a single supported programming language and allows to scan unlimited targets, which can be scanned for an unlimited number of times. Coverage for additional programming languages can be ordered separately.
| Product Name | Syhunt Hybrid Infinity |
| SKU/Product Code | HYB-INF-CNL |
| Types of Testing | DAST, OAST, SAST, FAST & MAST |
| No. of Targets | Unlimited targets |
| CI/CD Integration | Yes |
| Language Support | A single language included (must select from the list of supported backend languages). Additional languages can be ordered separately |
| Product Datasheet | Product Brief |
Syhunt Dynamic Infinity
Comes with a wide array of features to detect and help you fix your web application security vulnerabilities with minimal effort. Tests the web application response to thousands of different web attacks often carried by real-world adversaries, including inferential, in-band and out-of-band attacks through Augmented Dynamic Analysis (OAST). This license covers a single supported programming language and allows to scan unlimited targets, which can be scanned for an unlimited number of times. Coverage for additional programming languages can be ordered separately.
| Product Name | Syhunt Dynamic Infinity |
| SKU/Product Code | DYN-INF-CNL |
| Types of Testing | DAST & OAST |
| No. of Targets | Unlimited |
| CI/CD Integration | Yes |
| Language Support | A single language included (must select from the list of supported backend languages). Additional languages can be ordered separately |
| Product Datasheet | Product Brief |
Syhunt Code Infinity Universal
Enables developers and QA (Quality Assurance) testers to automatically scan any kind of mobile or web application source code for potential security vulnerabilities. This license covers a single supported programming language and allows to scan unlimited targets, which can be scanned for an unlimited number of times. Coverage for additional programming languages can be ordered separately.
| Product Name | Syhunt Code Infinity Universal |
| SKU/Product Code | COD-INF-UNI |
| Types of Testing | SAST & MAST |
| No. of Targets | Unlimited |
| CI/CD Integration | Yes |
| Language Support | Web - PHP, classic ASP, ASP.NET, Java, Kotlin, Node.js, Lua, Perl, Python & Ruby Mobile - Java, Kotlin, Swift, Objective-C, C, C+, Object Pascal (Delphi) & Node.js |
| Product Datasheet | Product Brief |
Syhunt Code Infinity
Enables developers and QA (Quality Assurance) testers to automatically scan any kind of mobile or web application source code for potential security vulnerabilities. This license covers a single supported programming language and allows to scan unlimited targets, which can be scanned for an unlimited number of times. Coverage for additional programming languages can be ordered separately.
| Product Name | Syhunt Code Infinity |
| SKU/Product Code | COD-INF-CNL |
| Types of Testing | SAST & MAST |
| No. of Targets | Unlimited |
| CI/CD Integration | Yes |
| Language Support | A single language included (must select from the list of supported backend languages). Additional languages can be ordered separately |
| Product Datasheet | Product Brief |
Mobile Infinity Essentials
Enables publishers, developers and QA testers to automatically scan Android and iOS mobile apps for the OWASP Mobile Top 10 and other vulnerabilities. Find the vulnerable portions of the code in minutes and patch them before making app updates available to users. This license covers four (4) essential mobile programming language and allows to scan unlimited targets, which can be scanned for an unlimited number of times. Coverage for additional mobile programming languages can be ordered separately.
| Product Name | Mobile Infinity Essentials |
| SKU/Product Code | COD-MOB-CNL |
| Types of Testing | MAST |
| No. of Targets | Unlimited |
| CI/CD Integration | Yes |
| Language Support | Four (4) languages included (Java, Kotlin, Swift & ObjectiveC). Additional mobile languages can be ordered separately |
| Product Datasheet | Product Brief |
Syhunt Hybrid Platinum Plus
Allows to scan both web applications and mobile applications for vulnerabilities. Combines comprehensive static and dynamic security scans to detect vulnerabilities like XSS, File Inclusion, SQL Injection, Command Execution and many more, including inferential, in-band and out-of-band attacks through Hybrid-Augmented Analysis (HAST). This license covers a single supported programming language and allows to scan unlimited targets, which can be scanned for an unlimited number of times. Coverage for additional programming languages can be ordered separately.
| Product Name | Syhunt Hybrid Platinum Plus |
| SKU/Product Code | HYB-PLS-UNL |
| Types of Testing | DAST, OAST, SAST & MAST |
| No. of Targets | Unlimited |
| CI/CD Integration | No |
| Language Support | A single language included (must select from the list of supported backend languages). Additional languages can be ordered separately |
| Product Datasheet | Product Brief |
Syhunt Hybrid Platinum
Combines comprehensive static and dynamic security scans to detect vulnerabilities like XSS, File Inclusion, SQL Injection, Command Execution and many more, including inferential, in-band and out-of-band attacks through Hybrid-Augmented Analysis (HAST). This license covers a single supported programming language and allows to scan unlimited targets, which can be scanned for an unlimited number of times. Coverage for additional programming languages can be ordered separately.
| Product Name | Syhunt Hybrid Platinum |
| SKU/Product Code | HYB-PLA-UNL |
| Types of Testing | DAST, OAST & SAST |
| No. of Targets | Unlimited |
| CI/CD Integration | No |
| Language Support | A single language included (must select from the list of supported backend languages). Additional languages can be ordered separately |
| Product Datasheet | Product Brief (Platinum & Standard) |
Syhunt Dynamic Plus
Comes with a wide array of features to detect and help you fix your web application security vulnerabilities with minimal effort. Tests the web application response to thousands of different web attacks often carried by real-world adversaries, including inferential, in-band and out-of-band attacks through Augmented Dynamic Analysis (OAST). This license covers a single supported programming language and allows to scan unlimited targets, which can be scanned for an unlimited number of times. Coverage for additional programming languages can be ordered separately.
| Product Name | Syhunt Dynamic Plus |
| SKU/Product Code | DYN-PLS-UNL |
| Types of Testing | DAST, OAST & FAST |
| No. of Targets | Unlimited |
| CI/CD Integration | No |
| Language Support | A single language included (must select from the list of supported backend languages). Additional languages can be ordered separately |
| Product Datasheet | Product Brief |
Syhunt Dynamic Augmented
Comes with a wide array of features to detect and help you fix your web application security vulnerabilities with minimal effort. Tests the web application response to thousands of different web attacks often carried by real-world adversaries, including inferential, in-band and out-of-band attacks through Augmented Dynamic Analysis (OAST). This license covers a single supported programming language and allows to scan unlimited targets, which can be scanned for an unlimited number of times. Coverage for additional programming languages can be ordered separately.
| Product Name | Syhunt Dynamic Augmented |
| SKU/Product Code | DYN-AUG-UNL |
| Types of Testing | DAST & OAST |
| No. of Targets | Unlimited |
| CI/CD Integration | No |
| Language Support | A single language included (must select from the list of supported backend languages). Additional languages can be ordered separately |
| Product Datasheet | Product Brief |
Syhunt Code Plus
Enables developers and QA (Quality Assurance) testers to automatically scan any kind of mobile or web application source code for potential security vulnerabilities. This license covers a single supported programming language and allows to scan unlimited targets, which can be scanned for an unlimited number of times. Coverage for additional programming languages can be ordered separately.
| Product Name | Syhunt Code Plus |
| SKU/Product Code | COD-PLS-UNL |
| Types of Testing | SAST & MAST |
| No. of Targets | Unlimited |
| CI/CD Integration | No |
| Language Support | A single language included (must select from the list of supported backend languages). Additional languages can be ordered separately |
| Product Datasheet | Product Brief |
Syhunt Code (Web)
Enables web developers and QA (Quality Assurance) testers to automatically scan any kind of web application source code for potential security vulnerabilities This license covers a single supported programming language and allows to scan unlimited targets, which can be scanned for an unlimited number of times. Coverage for additional programming languages can be ordered separately.
| Product Name | Syhunt Code (Web) |
| SKU/Product Code | COD-WEB-UNL |
| Types of Testing | SAST |
| No. of Targets | Unlimited |
| CI/CD Integration | No |
| Language Support | A single language included (must select from the list of supported backend languages). Additional languages can be ordered separately |
| Product Datasheet | Datasheet |
Syhunt Mobile
Enables publishers, developers and QA testers to automatically scan Android and iOS mobile apps for the OWASP Mobile Top 10 and other vulnerabilities. Find the vulnerable portions of the code in minutes and patch them before making app updates available to users. This license covers a single supported programming language and allows to scan unlimited targets, which can be scanned for an unlimited number of times. Coverage for additional mobile programming languages can be ordered separately.
| Product Name | Syhunt Mobile |
| SKU/Product Code | COD-MOB-UNL |
| Types of Testing | MAST |
| No. of Targets | Unlimited |
| CI/CD Integration | No |
| Language Support | A single language included (must select from the list of supported mobile languages, highlighted with green color). Additional mobile languages can be ordered separately |
| Product Datasheet | Datasheet |
Target Types
Targets supported by a product license can be:
Unlimited targets (UNL)
Unlimited target licenses were created to address the application security needs of micro to small organizations.
- This license covers a single supported programming language and allows to scan unlimited targets, which can be scanned for an unlimited number of times. Coverage for additional programming languages can be ordered separately.
- For DAST, the license allows to scan an unlimited number of domains and all its subdomains.
- For SAST/MAST, an unlimited number of code repositories or directories can be scanned.
- When DWET is included in the license, third-party score query does not include access to compromised data that relates to queried domains.
- When, during a scan, Syhunt identifies a programming language not covered by the user license as part of a DAST, MAST or SAST target, Syhunt performs a partial scan, on which checks tailored for the missing language are not performed, and issues a warning.
- You can order Premium domain targets and repositories separately, each offering special benefits and capabilities.
Unlimited for CI/CD (CNL)
Unlimited target licenses (also known as Infinity) with CI/CD integration were created to address the application security needs of small to large organizations:
- Small businesses that start to adopt CI/CD pipelines as they grow and encounter the need for more streamlined software development processes.
- Medium-sized businesses that have dedicated IT teams capable of implementing CI/CD pipelines.
- Large enterprises that adopt CI/CD as a standard practice to improve software delivery speed and reliability.
- Includes all rights from UNL type license, and adds the following rights:
- Authorization and support for CI/CD pipeline integration with supported platforms like GitLab, GitHub and Jenkins for securing own application ecosystem. It is not allowed to integrate the tool with the CI/CD pipeline of another organization.
- Permission to use Syhunt in consultant services (vulnerability assessment, pen-testing and code review services) to scan your customers (if applicable) is included.
Unlimited Universal for CI/CD (UNI)
Universal licenses (also known as Infinity Universal) with CI/CD integration and coverage for all supported programming languages were created to address the application security needs of medium to large organizations:
- Includes all rights from UNL type license, and adds the following rights:
- Authorization and support for CI/CD pipeline integration with supported platforms like GitLab, GitHub and Jenkins for securing own application ecosystem. It is not allowed to integrate the tool with the CI/CD pipeline of another organization.
- Instead of offering a limited (expandable) number of programming languages, all existing programming languages are already included, and newly added and supported programming languages released during the license's term (eg 1 to 3 year, depending on the license ordered) will be automatically added at no additional cost. Purchasing a multi-year (2 or 3 year) license reduces future costs associated with covering new programming languages and frameworks, as these will be automatically included at no extra cost.
- Permission to use Syhunt in consultant services (vulnerability assessment, pen-testing and code review services) to scan your customers (if applicable) is included.
| Target Code | No. of Targets | No. of Languages | Examples |
| UNI | Unlimited targets with CI/CD pipeline integration (own), consultant usage permission and universal access to supported programming languages | All Supported Languages + New | Scan URL: www.mydomain1.com www.mydomain2.com Scan Code: anygit.com/anyuser/anyproject.git |
| CNL | Unlimited targets with CI/CD pipeline integration (own), and consultant usage permission) | Single (1) Language | Scan URL: www.mydomain1.com www.mydomain2.com Scan Code: anygit.com/anyuser/anyproject.git |
| UNL | Unlimited targets with no CI/CD pipeline integration After June 24, 2024, this license removed CI/CD pipeline integration. When renewing their term, clients with CI/CD needs must migrate to CNL type or UNI type license (above) | Single (1) Language | Scan URL: www.mydomain1.com www.mydomain2.com Scan Code: anygit.com/anyuser/anyproject.git |
| DOM or WLC | Domain (Wildcard) target, DAST only *.mydomain.com | Single (1) Language | Scan URL: mydomain.com www.mydomain.com subdomain1.mydomain.com subdomain2.mydomain.com |
License Models, Terms & Conditions
| Code | Period | SKU Example |
| 1YR | Subscription valid for a one (1) year period. | HYB-PLS-UNL-1YR |
| 2YR | Subscription valid for a two (2) year period. | HYB-PLS-UNL-2YR |
| 3YR | Subscription valid for a three (3) year period. | HYB-PLS-UNL-3YR |
- A yearly subscription license (1YR, 2YR or 3YR) grants the user with a valid license key for the product for a limited period. When the period expires, the user needs to purchase a new license key in order to continue using Syhunt. A subcription license comes with 1 to 3 years of software maintenance and two (2) web interface users. Upon expiration of the limited period, if the subscription is not renewed, the Syhunt license shall automatically become disabled.
- Software maintenance - a yearly support plan that grants the user the right to product updates, tech support and integration with its online services, such as Syhunt's OAST service Syhunt Signal. The product update right means that the user is entitled to new version and updates of the software for free during the period of the maintenance plan, which is effective for a period up until one year, after which the user needs to extend it. The user is encouraged to purchase maintenance annually with no lapse.
- Syhunt's End User License Agreement (EULA) apply as well to any of the licenses above. The EULA must be accepted prior to installing and running the software.
- Syhunt is licensed per seat and per web interface users - a seat is a device, as explained below.
Seats & Integrations
- Syhunt is licensed per device, whether physical or virtual, and per quantity of web interface users. Each virtual machine on the same host PC needs it's own license for Syhunt.
- Each license allows installation on 1 device and includes two web interface users - an admin and a secondary user. Additional users can be purchased if needed, expanding the number of users, and will be prorated based on the remaining license term duration (1 year, 2 years, or 3 years)
- For Infinity licenses only: If a Jenkins agent or Jenkins server, or GitLab runner agent, is installed and configured on this device, they can integrate and interoperate with the installed, licensed copy of Syhunt, allowing Syhunt to be called from within pipeline scripts, as documented in our integrations documentation.
- Due to the availability of Syhunt for Linux, the Syhunt license that allows to install Syhunt into a single device now allows two devices, as long as the first device is a Windows machine and the second device a Linux machine. Please note that some feature limitations may apply to the Linux version of Syhunt. If you have a license with permission for multiple devices or if you purchase additional licenses of Syhunt to be installed on additional devices, when installing Syhunt on such additional devices, it will be necessary to select between the Windows or Linux version of Syhunt.
Language Selection
Some licenses include support for scanning applications written in all programming languages, while others support at least one programming language. The language must be selected from the below list of supported languages at the moment of license purchase. Additional languages can be purchased if needed, expanding the number of languages, and will be prorated based on the remaining license term duration (1 year, 2 years, or 3 years).
| SKU | Language |
| HTML. Already included at no additional cost. | |
| JavaScript client-side. Already included at no additional cost. Includes client-side TypeScript support | |
| XTA-LNG-PHP | PHP |
| XTA-LNG-ASP | ASP Classic (VBScript & JScript) |
| XTA-LNG-ANT | ASP.NET (C# & VB.NET) |
| XTA-LNG-JAV | Java (JEE / JSP) |
| XTA-LNG-NJS | Node.JS (including Express.js & Koa.js, and server-side TypeScript) |
| XTA-LNG-PYT | Python (including CGI, Django, mod_python & WSGI) |
| XTA-LNG-PRL | Perl |
| XTA-LNG-LUA | Lua (ngx_lua, mod_lua, CGILua & Lua Pages) |
| XTA-LNG-RUB | Ruby (including Rails & ERB) |
| XTA-LNG-PAS | Object Pascal (Delphi XE and older, Lazarus & DWS) |
| XTA-LNG-KOT | Kotlin (including Ktor) |
| XTA-LNG-SWT | Swift (mobile only, requires license with MAST included) |
| XTA-LNG-OBC | ObjectiveC (mobile only, requires license with MAST included) |
Languages highlighted with green will come with MAST support if the license includes MAST capability.
Glossary
| SAST | Static analysis of the security of a web application's source code |
| MAST | Static analysis of the security of a mobile application's source code (Android & iOS) and Android APK file |
| DAST | Dynamic analysis of the security of a web application security with deep crawling and parameter injection |
| OAST | Augmented dynamic analysis of the security of a web application security with out-of-band (OOB) techniques |
| HAST | Hybrid-Augmented analysis of the security of web applications, on which the results of the static analysis are automatically used to enhance its augmented dynamic analysis |
| DWET | Surface to dark web exposure scoring of Internet domains |
| FAST | Forensic analysis of the security of a web application through the analysis of web server log files |