漏洞扫描工具 - Afrog

https://github.com/zan8in/afrog

C:Users>afrog.exe -hafrog
Usage:  afrog.exe [flags]
Flags:TARGET:   -t, -target string[]     target URLs/hosts to scan (comma separated)   -T, -target-file string  list of target URLs/hosts to scan (one per line)
POCS:   -P, -poc-file string             PoC file or directory to scan   -ap, -append-poc string[]        append PoC file or directory to scan (comma separated)   -pd, -poc-detail string          show a afrog-pocs detail   -pl, -poc-list                   show afrog-pocs list   -ep, -exclude-pocs string[]      pocs to exclude from the scan (comma-separated)   -epf, -exclude-pocs-file string  list of pocs to exclude from scan (file)
OUTPUT:   -o, -output string          write to the HTML file, including all vulnerability results   -j, -json string            write to the JSON file, but it will not include the request and response content   -ja, -json-all string       write to the JSON file, including all vulnerability results   -doh, -disable-output-html  disable the automatic generation of HTML reports (higher priority than the -o command)
FILTER:   -s, -search string    search PoC by keyword , eg: -s tomcat,phpinfo   -S, -severity string  pocs to run based on severity. support: info, low, medium, high, critical, unknown
RATE-LIMIT:   -rl, -rate-limit int           maximum number of requests to send per second (default 150)   -c, -concurrency int           maximum number of afrog-pocs to be executed in parallel (default 25)   -smart                         intelligent adjustment of concurrency based on changes in the total number of assets being scanned   -rrl, -reverse-rate-limit int  reverse poc maximum number of requests to send per second (default 50)   -rc, -reverse-concurrency int  reverse poc maximum number of afrog-pocs to be executed in parallel (default 20)
OPTIMIZATION:   -retries int    number of times to retry a failed request (default 1)   -timeout int    time to wait in seconds before timeout (default 10)   -mt             enable the monitor-target feature during scanning   -mhe int        max errors for a host before skipping from scan (default 3)   -mrbs int       max of http response body size (default 2)   -silent         only results only   -pedm           This monitor tracks and records the execution time of each POC to identify the POC with the longest execution time.   -vsb            Once a vulnerability is detected, the scanning program will immediately halt the scan and report the identified vulnerability.   -cookie string  custom global cookie, only applicable to http(s) protocol, eg: -cookie 'JSESSION=xxx;'
UPDATE:   -un, -update                 update afrog engine to the latest released version   -duc, -disable-update-check  disable automatic afrog-pocs update check
PROXY:   -proxy string  list of http/socks5 proxy to use (comma separated or file input)
VERSION:   -v, -version  afrog version