Hello!,
I just started learning Lua for writing NSEs and had a go at a HTTP crawler
that identifies XSS vulnerabilities on sites. I used Juice-Shop OWASP to
confirm it works. (Thats why the source code uses port 3000 in addition to 80)
Id love feedback! Doing my best to learn as much as I can.
Here is an updated version with more XSS patterns integrated into it. As well
as some clean up!
I also created a separate .lua with just the http crawler function.
On Friday, January 24th, 2025 at 4:29 PM, astrotoki wrote:
> Hello!,
>
> I just started learning Lua for writing NSEs and had a go