First Go

2025-02-12 Thread astrotoki via dev
Hello!, I just started learning Lua for writing NSEs and had a go at a HTTP crawler that identifies XSS vulnerabilities on sites. I used Juice-Shop OWASP to confirm it works. (Thats why the source code uses port 3000 in addition to 80) Id love feedback! Doing my best to learn as much as I can.

Re: First Go

2025-02-12 Thread astrotoki via dev
Here is an updated version with more XSS patterns integrated into it. As well as some clean up! I also created a separate .lua with just the http crawler function. On Friday, January 24th, 2025 at 4:29 PM, astrotoki wrote: > Hello!, > > I just started learning Lua for writing NSEs and had a go