Skip to content

Getting Started

zan8in edited this page Jun 8, 2023 · 6 revisions

A Security Tool for Bug Bounty, Pentest and Red Teaming.

Installation

Prerequisites

  • Go version 1.19 or higher.

you can install it with:

$ https://github.com/zan8in/afrog/releases
$ git clone https://github.com/zan8in/afrog.git
$ cd afrog
$ go run cmd/afrog/main.go
$ ./afrog -h
$ go install -v https://github.com/zan8in/afrog/cmd/afrog@latest

Running afrog

By default, afrog scans all built-in PoCs, and if it finds any vulnerabilities, it automatically creates an HTML report with the date of the scan as the filename.

afrog -t https://example.com

details Warning occurs when running afrog If you see an error message saying:

[ERR] ceye reverse service not set: /home/afrog/.config/afrog/afrog-config.yaml

it means you need to modify the configuration file.

To execute a custom PoC directory, you can use the following command:

afrog -t https://example.com -P mypocs/

You can scan multiple URLs at the same time as well.

afrog -T urls.txt

For more information on how to use the tool, please refer to the usage documentation (Usage).

Clone this wiki locally