What's New in Syhunt 7.0.14
October 2, 2024
Syhunt Hybrid 7.0.14 expands Linux support and adds usability enhancements
Syhunt is excited to announce the release of Syhunt Hybrid version 7.0.14, packed with a range of new features and improvements to enhance your experience. This update includes improved crawler functionality, expanded Linux installation support, and various usability enhancements. On the SAST front, Syhunt has added support for a CI YML file specific to each targeted repository, streamlining integration into CI/CD pipelines. On the DAST front, Syhunt has made it easier to activate its deep AJAX crawler.
Syhunt added detailed installation guides for a variety of distributions, including Oracle Linux, Rocky Linux, Alma Linux, Amazon Linux 2, and Amazon Linux 2023. These additions offer great alternatives following the discontinuation of CentOS. Previously, Syhunt officially supported only Ubuntu and CentOS. With the release of version 7.0.14, we have expanded our official support to include Kali Linux, Ubuntu, Debian, and Fedora. While we continue to offer comprehensive installation guides for a wide range of Linux distributions, these four—Kali Linux, Ubuntu, Debian, and Fedora—are now the primary distros supported by Syhunt moving forward.
Coming Next: Focus on expanding the web UI
Although this release focuses on crawler improvements and expanded Linux support, we recognize that the expansion of the web user interface has faced some delays. Rest assured that many of your requests will be addressed in the next updates.
Improvements in 7.0.14
- Added scancore -runcmd:checkdeps command parameter that allows to check if all dependencies needed for the deep AJAX crawler, AI Powered Login and Selenium Powered Login to work are installed.
- Added check for PHP CGI Argument Injection (CVE-2024-4577).
- Improved AJAX crawler - virtual URL handling and React support.
- Improved check for outdated jQuery versions.
- Improved support for proxy.
- Replaced Syhunt Breach (discontinued) with Syhunt Mobile scanner, following the same modification of the web user interface.
- Upgraded OpenResty to the latest release (version 1.25.3.2)
- Added new version of updater.
- Fixed a SQL Injection false positive case.
- Fixed a typo in Outdated Flash vulnerability title.
- Fixed a Path Disclosure false positive caused by a specific JS code (DAST related).
- Fixed missing Korean translations in reports.
- Carbon version fix for Python dependencies checking.
- Optional AI Patch consent file (.aipatchconsent) is no longer supported. Create .syhunt-ci.yml file instead with ai_patchconsent key set to true. Example:
scanner:
ai_patchconsent: true
That's all, for now. Happy bug hunting!