Syhunt Hybrid
Scan URL and code for flaws
Syhunt Hybrid combines comprehensive hybrid static and dynamic security scans to detect vulnerabilities like XSS, File Inclusion, SQL Injection, Command Execution and many more.
Products
Mobile & Web Application Security Testing Tools
Syhunt Security is a leader in application security in the Americas and worldwide with the proven assessment technology to enable organizations to actively hunt for breaches and guard their mobile and web applications. Find below more about our products and why they excel. Review their features and capabilities and pick the one that best matches your needs.
Hunt for Application Vulnerabilities
Syhunt Code for Web Apps
Scan web app source code files for flaws
Syhunt Code enables web developers and QA testers to automatically scan any kind of web application source code for potential security vulnerabilities.
Syhunt Dynamic
Scan URLs for vulnerabilities
Syhunt Dynamic comes with a wide array of features to detect and help you fix your web application security vulnerabilities with minimal effort.
Syhunt Mobile
Scan Android & iOS mobile apps for flaws
Syhunt Mobile enables publishers, developers and QA testers to automatically scan Android and iOS mobile applications for the OWASP Mobile Top 10 and other vulnerabilities.
Hunt for Security Breaches
Syhunt Breach
Hunt and prevent breaches on the dark web
Syhunt Breach uncovers data breaches on the surface, deep and dark layers of the web that affect your organization, including file exposures, credential exposures and more.
Syhunt Forensic
Scan logs for breach attempts
Syhunt Forensic quickly analyzes and exposes the source, the type and the methods currently being used to compromise your organization's web applications.
Check today for all kinds of vulnerabilities
Syhunt on-premise scanner suite come with everything you need to defend your web applications. With Syhunt you can easily check for a wide array of different web application security threats through source code, live dynamic analysis or both.
| Check | CWE |
| Authentication Bypass / Broken Authentication | CWE-287 |
| SQL Injection (Error & Blind) | CWE-89 |
| Local File Inclusion | CWE-98 |
| Remote File Inclusion | CWE-98 |
| Command Execution | CWE-78 |
| Cross-Site Scripting (XSS) | CWE-79 |
| NoSQL Injection | |
| Unvalidated Redirects | CWE-601 |
| Arbitrary File Manipulation | CWE-73 |
| CRLF Injection | CWE-93 |
| Directory Traversal | CWE-22 |
| Old/Backup Files | CWE-530 |
| Path Disclosure | CWE-211 |
| LDAP Injection | CWE-90 |
| XPath Injection | CWE-91 |
| Web-Based Backdoors |