In the ever-evolving landscape of cybersecurity, the need for robust tools that aid Bug Bounty programs, Penetration Testing (Pentest), and Red Teaming has never been greater.
Enter “afrog,” a high-performance vulnerability scanner designed to empower network security professionals.
With its versatility, speed, and customizability, afrog is becoming a go-to solution for identifying and addressing vulnerabilities swiftly, ultimately strengthening the defenses of organizations against potential threats.
afrog is a high-performance vulnerability scanner that is fast and stable.
It supports user-defined PoC and comes with several built-in types, such as CVE, CNVD, default passwords, information disclosure, fingerprint identification, unauthorized access, arbitrary file reading, and command execution.
With afrog, network security professionals can quickly validate and remediate vulnerabilities, which helps to enhance their security defense capabilities.
you can install it with:
$ https://github.com/zan8in/afrog/releases$ git clone https://github.com/zan8in/afrog.git
$ cd afrog
$ go build cmd/afrog/main.go
$ ./afrog -h$ go install -v github.com/zan8in/afrog/v2/cmd/afrog@latestBy default, afrog scans all built-in PoCs, and if it finds any vulnerabilities, it automatically creates an HTML report with the date of the scan as the filename.
afrog -t https://example.comIf you see an error message saying:
[ERR] ceye reverse service not set: /home/afrog/.config/afrog/afrog-config.yamlFor more information click here
garak checks if an LLM can be made to fail in a way we don't…
Vermilion is a simple and lightweight CLI tool designed for rapid collection, and optional exfiltration…
ADCFFS is a PowerShell script that can be used to exploit the AD CS container…
Tartufo will, by default, scan the entire history of a git repository for any text…
Loco is strongly inspired by Rails. If you know Rails and Rust, you'll feel at…
A data hoarder’s dream come true: bundle any web page into a single HTML file.…