Syhunt Introduces Sandcat Professional Edition 2.7, a Comprehensive Security Auditing Solution for Web Applications

September 23, 2006 — Syhunt Technology, a global leader in web application vulnerability assessment software, today announced

the general availability of Sandcat™ Professional Edition 2.7, the latest release of Syhunt's powerful fault-injection test

tool. Sandcat now provides OWASP PHP Top 5 Vulnerabilities testing and closely follows the new “Open Web Application Security

Project” (OWASP) guidelines. The OWASP PHP 5 testing covers remote command execution, XSS (cross-site scripting), SQL

injection, PHP configuration and filesystem attacks, and can help minimize these security threats.

Syhunt's tradition of innovation continues with Sandcat Professional 2.7. Sandcat Pro Edition 2.7 is designed to enable Web

developers and administrators find and fix web application vulnerabilities, ensuring that their Web infrastructure is secure.

Sandcat can help developers determine conformance with the most important SANS and OWASP guidelines, such as the SANS Top 20,

the OWASP Top 10 and the recent OWASP PHP Top 5.

These guidelines address the most critical security problems facing companies today and have been developed with input from

hundreds of professionals in the security industry.

"Before Sandcat, companies had to manually test web applications, which is usually a difficult, cumbersome and time-consuming

task" said Felipe M. Aragao, Syhunt chairman and chief executive officer. "With Sandcat, companies of any size, from small

and mid-size businesses to enterprise corporations can now effectively and rapidly test their web applications to ensure they

meet the recommendations from the current guidelines."

Additional tools in Sandcat Pro include Sandcat Log Analyzer which can analyze Web server logs to find attacks; and Sandcat

Hardener, a web server hardening tool that evaluates security threats and identifies appropriate countermeasures at the web

server configuration stage. Sandcat now also allows to specifically scan for SQL Injection or XSS vulnerabilities.

Pricing and Availability

Sandcat 2.7 is available now for download at www.syhunt.com/sandcat.
Pricing begins at $349 US and is based on the number of web servers that require scanning and the number of users that will

be performing the security assessment.

About Syhunt Technology

Syhunt Technology is a global leader in web application vulnerability assessment software.
Syhunt products are used to automate web application assessment and vulnerability remediation.
For more information about Syhunt, visit www.syhunt.com.

Contact information

AG Brandao, Syhunt Technology
adriana@syhunt.com

Syhunt and Sandcat are registered trademarks of Syhunt Technology. All other brands and products referenced herein are

acknowledged to be trademarks or registered trademarks of their respective holders.