# zan8in/afrog **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/zan8in-afrog).** 4,182 stars · 466 forks · Go · mit ## Links - GitHub: https://github.com/zan8in/afrog - awesome-repositories: https://awesome-repositories.com/repository/zan8in-afrog.md ## Topics `afrog` `bug-bounty` `penetration-testing` `pentest` `poc` `red-teaming` `vulnerability-scanner` `vulnerability-scanning-tools` ## Description afrog is an HTTP vulnerability scanner and web vulnerability management system that identifies security flaws and known CVEs using a YAML-based rule engine. It functions as a payload generator and scanner, comparing server responses against detection rules to find unauthorized access points. The project provides a framework for out-of-band security testing, detecting blind vulnerabilities by triggering and verifying external DNS or HTTP callbacks. Beyond web traffic, it includes a protocol fuzzer capable of executing multi-step read and write sequences over raw TCP and SSL sockets to identify flaws in non-HTTP services. The system covers a broad range of security capabilities, including network service discovery, dictionary-based brute forcing, and HTTP protocol fuzzing. It supports dynamic variable injection for payload construction, regex-based data extraction from responses, and the ability to store results in a database or export them as HTML and JSON reports. ## Tags ### Security & Cryptography - [Vulnerability Scanners](https://awesome-repositories.com/f/security-cryptography/security/utilities/security-tools/vulnerability-assessment-tools/vulnerability-scanners.md) — Provides an automated system to identify known CVEs and security flaws using a rule-based scanning engine. - [Vulnerability Scanning](https://awesome-repositories.com/f/security-cryptography/vulnerability-scanning.md) — Identifies known CVEs and unauthorized access points by checking targets against a library of detection rules. ([source](https://cdn.jsdelivr.net/gh/zan8in/afrog@main/README.md)) - [YAML-Based Check Definitions](https://awesome-repositories.com/f/security-cryptography/vulnerability-scanning/vulnerability-check-definitions/yaml-based-check-definitions.md) — Uses a YAML-based rule engine to evaluate security vulnerability checks via structured request and logic sequences. - [Dictionary-Based Route Probing](https://awesome-repositories.com/f/security-cryptography/dictionary-based-route-probing.md) — Performs reconnaissance by testing predefined lists of common paths and credentials to discover hidden endpoints. - [Out-of-Band Security Testing](https://awesome-repositories.com/f/security-cryptography/out-of-band-security-testing.md) — Identifies blind vulnerabilities by triggering external network callbacks and verifying them through a remote check function. - [Proof of Concept Execution](https://awesome-repositories.com/f/security-cryptography/proof-of-concept-execution.md) — Runs custom YAML-based rules and scripts to verify if a target system is susceptible to specific vulnerabilities. - [Out-of-Band Testing](https://awesome-repositories.com/f/security-cryptography/vulnerability-assessment-testing/security-testing-auditing/security-testing-tools/out-of-band-testing.md) — Identifies blind vulnerabilities by triggering external network callbacks and verifying them via a remote check function. - [Vulnerability Management Systems](https://awesome-repositories.com/f/security-cryptography/vulnerability-management-systems.md) — Provides a centralized platform for scanning targets, storing detected CVEs in a database, and exporting reports. - [File Upload Security](https://awesome-repositories.com/f/security-cryptography/file-upload-security.md) — Generates random boundaries and filenames to create self-deleting verification files to validate file upload vulnerabilities. ([source](https://github.com/zan8in/afrog/wiki/Afrog-PoC-%E8%A7%84%E5%88%99%E7%BC%96%E5%86%99%E6%9D%83%E5%A8%81%E6%8C%87%E5%8D%97)) - [Credential Brute-Forcing](https://awesome-repositories.com/f/security-cryptography/vulnerability-assessment-testing/security-testing-auditing/security-testing/credential-brute-forcing.md) — Performs automated testing of paths and credentials using dictionary-based brute-forcing to find vulnerable endpoints. ([source](https://github.com/zan8in/afrog/wiki/Afrog-PoC-%E8%A7%84%E5%88%99%E7%BC%96%E5%86%99%E6%9D%83%E5%A8%81%E6%8C%87%E5%8D%97)) - [Vulnerability Report Generation](https://awesome-repositories.com/f/security-cryptography/vulnerability-report-generation.md) — Generates detailed vulnerability reports and dashboards from scan results in HTML and JSON formats. ### Artificial Intelligence & ML - [Response Value Extraction](https://awesome-repositories.com/f/artificial-intelligence-ml/data-indexing/schema-less/value-extraction/regex-data-extraction/response-value-extraction.md) — Uses regular expressions to capture specific data from HTTP responses to populate variables for subsequent requests. ### Part of an Awesome List - [Network Protocol Fuzzers](https://awesome-repositories.com/f/awesome-lists/devtools/network-protocol-fuzzers.md) — Executes multi-step read and write sequences over raw TCP and SSL sockets to find flaws in non-HTTP services. - [Web Vulnerability Scanning](https://awesome-repositories.com/f/awesome-lists/security/web-vulnerability-scanning.md) — Identifies and exploits web application vulnerabilities by checking targets against a library of detection rules. - [PoC Execution Engines](https://awesome-repositories.com/f/awesome-lists/security/proof-of-concept/poc-execution-engines.md) — Loads and executes user-defined rule sets from external directories to identify specific security vulnerabilities. ([source](https://cdn.jsdelivr.net/gh/zan8in/afrog@main/README.md)) ### Development Tools & Productivity - [Payload Variable Management](https://awesome-repositories.com/f/development-tools-productivity/environment-variable-managers/payload-variable-management.md) — Defines reusable variables with random strings and encoding options to construct flexible payloads for requests. ([source](https://github.com/zan8in/afrog/wiki/Afrog-PoC-%E8%A7%84%E5%88%99%E7%BC%96%E5%86%99%E6%9D%83%E5%A8%81%E6%8C%87%E5%8D%97)) - [Network Service Discovery](https://awesome-repositories.com/f/development-tools-productivity/component-discovery/automatic/network-service-discovery.md) — Automatically discovers active components and reachable services on a network via port scanning. ### Networking & Communication - [Response Header Extractors](https://awesome-repositories.com/f/networking-communication/response-header-extractors.md) — Captures specific values from response bodies or headers using regular expressions for use in subsequent rules. ([source](https://github.com/zan8in/afrog/wiki/Afrog-PoC-%E8%A7%84%E5%88%99%E7%BC%96%E5%86%99%E6%9D%83%E5%A8%81%E6%8C%87%E5%8D%97)) - [Protocol Fuzzing](https://awesome-repositories.com/f/networking-communication/tcp-session-management/protocol-fuzzing.md) — Executes multi-step read and write sequences over raw TCP and SSL sockets to identify protocol-specific flaws. ([source](https://github.com/zan8in/afrog/wiki/Afrog-PoC-%E8%A7%84%E5%88%99%E7%BC%96%E5%86%99%E6%9D%83%E5%A8%81%E6%8C%87%E5%8D%97)) - [Port Scanners](https://awesome-repositories.com/f/networking-communication/port-scanners.md) — Provides functional capabilities to identify open network ports and services across target hosts. ([source](https://cdn.jsdelivr.net/gh/zan8in/afrog@main/README.md)) - [Protocol Session Orchestration](https://awesome-repositories.com/f/networking-communication/tcp-session-management/protocol-session-orchestration.md) — Manages multi-step read and write sequences over raw TCP and SSL sockets to identify flaws in non-HTTP services. ### Software Engineering & Architecture - [YAML Security Rule Definition](https://awesome-repositories.com/f/software-engineering-architecture/custom-rule-development/security-rule-development/yaml-security-rule-definition.md) — Provides a system to create YAML-based rules using HTTP requests and logic expressions to identify security flaws. ([source](https://github.com/zan8in/afrog/wiki/Afrog-PoC-%E8%A7%84%E5%88%99%E7%BC%96%E5%86%99%E6%9D%83%E5%A8%81%E6%8C%87%E5%8D%97)) - [Analysis Report Serialization](https://awesome-repositories.com/f/software-engineering-architecture/diagnostic-reporting-formats/analysis-report-serialization.md) — Transforms scan findings and audit trails into human and machine-readable reports for external analysis. ### Testing & Quality Assurance - [HTTP Fuzzing](https://awesome-repositories.com/f/testing-quality-assurance/http-fuzzing.md) — Generates permutations of HTTP requests using variables to discover hidden endpoints and unexpected server behavior. ### User Interface & Experience - [Evasive Payload Generators](https://awesome-repositories.com/f/user-interface-experience/form-and-input-management/api-generators/api-payload-builders/request-payload-construction/evasive-payload-generators.md) — Constructs flexible HTTP requests using random variables, custom encodings, and manual header control. ### Web Development - [Raw HTTP Request Construction](https://awesome-repositories.com/f/web-development/raw-http-request-construction.md) — Allows construction of manual HTTP messages to control exact header order and manage complex multi-part bodies. ([source](https://github.com/zan8in/afrog/wiki/Afrog-PoC-%E8%A7%84%E5%88%99%E7%BC%96%E5%86%99%E6%9D%83%E5%A8%81%E6%8C%87%E5%8D%97)) - [Variable Injection](https://awesome-repositories.com/f/web-development/request-body-handling/variable-injection.md) — Constructs flexible HTTP payloads by replacing placeholders with randomly generated or encoded values during runtime. ### Data & Databases - [Scan Result Exporters](https://awesome-repositories.com/f/data-databases/data-serialization-formats/data-formats/output-format-rendering/scan-result-exporters.md) — Generates structured reports of scan findings in multiple formats such as HTML and JSON. - [Vulnerability Result Storage](https://awesome-repositories.com/f/data-databases/vulnerability-result-storage.md) — Saves detected vulnerabilities to a database and provides a web interface for searching and filtering. ([source](https://cdn.jsdelivr.net/gh/zan8in/afrog@main/README.md)) ### DevOps & Infrastructure - [Scan Result Exporters](https://awesome-repositories.com/f/devops-infrastructure/scan-result-interpreters/scan-result-exporters.md) — Generates vulnerability reports in HTML or JSON formats including detailed request and response data. ([source](https://cdn.jsdelivr.net/gh/zan8in/afrog@main/README.md))