The highest tagged major version is
README
¶
afrog
A tool for finding vulnerabilities.
❤️POC [432]
🐸Like please tag stars🌟⭐
What is afrog
afrog is a tool for finding vulnerabilities. If you want to finding vulnerabilities such as SQL injection, XSS, file inclusion, etc., AWVS does a better job. Otherwise, you can try afrog for free.
Features
- Great performance, least requests, best results
- Real-time display, scanning progress
- View
requestandresponsepackets of scan results - Start the program to automatically update the local POC library
- Long-term maintenance, update POC (afrog-pocs )
- API interface, easy access to other projects
Download afrog
Release
Running afrog
Scan a single target.
afrog -t http://example.com -o result.html
Scan multiple targets.
afrog -T urls.txt -o result.html
For example: urls.txt
http://example.com
http://test.com
http://github.com
Test a single POC file
afrog -t http://example.com -P ./testing/poc-test.yaml -o result.html
Test multiple POC files
afrog -t http://example.com -P ./testing/ -o result.html
Output html report
Directories
¶
| Path | Synopsis |
|---|---|
|
cmd
|
|
|
internal
|
|
|
pkg
|
|
|
log
This is a wrapper for the zap framework no SugerLogger, Only Logger @author: 胖胖的ALEX example: Log().Debug("debug log test") Log().Info("info log test") Log().Warn("warn log test") Log().Error("error log test") Log().Panic("panic log test") Log().Fatal("fatal log test")
|
This is a wrapper for the zap framework no SugerLogger, Only Logger @author: 胖胖的ALEX example: Log().Debug("debug log test") Log().Info("info log test") Log().Warn("warn log test") Log().Error("error log test") Log().Panic("panic log test") Log().Fatal("fatal log test") |
Click to show internal directories.
Click to hide internal directories.