The Problem
I started learning bug bounty hunting with nothing
but an Android phone and Termux.
Every time I needed to do recon I had to write
50+ lines of Python just to scan subdomains and
check alive hosts. It was frustrating.
So I built my own language.
Meet VroxScript
VroxScript is a security scripting language where
full recon takes 7 lines instead of 200.
vs
scan subdomains target.com >> subs.txt
alive scan_results >> alive.txt
ports target.com >> ports.txt
headers https://target.com >> headers.txt
fuzz https://target.com >> fuzz.txt
secrets fetch_body
report target.com >> report.txt
Built on Android
No laptop. No fancy setup. Just:
Android phone
Termux
Go compiler
Determination
How it works
VroxScript is interpreted by Go which makes it:
Fast — concurrent scanning with goroutines
Portable — single binary
Simple — no dependencies
Features
Subdomain scanning
Port scanning
Directory fuzzing
Security header checking
Secret detection
DNS lookup
Wayback Machine integration
Full report generation
Get it
GitHub: github.com/InterviewCopilot350/vroxscript
What I learned
Building a programming language taught me more
about networking, compilers and Go than any
tutorial ever could.
— Prince, India
Top comments (0)