> Hello,
>
> I noticed that under the high priority script ideas was the need for a
> library that parses HTML info from sites. I wrote a script that uses a web
> crawler and extracts html info from attached pages and accompanying urls
> within the html body. Let me know if this is what yall wer
Hello!,
I just started learning Lua for writing NSEs and had a go at a HTTP crawler
that identifies XSS vulnerabilities on sites. I used Juice-Shop OWASP to
confirm it works. (Thats why the source code uses port 3000 in addition to 80)
Id love feedback! Doing my best to learn as much as I can.
Here is an updated version with more XSS patterns integrated into it. As well
as some clean up!
I also created a separate .lua with just the http crawler function.
On Friday, January 24th, 2025 at 4:29 PM, astrotoki wrote:
> Hello!,
>
> I just started learning Lua for writing NSEs and had a go
Hello all!
I just wrote up another script, trying to practice and maybe have some added to
the master list for nmap. This script enumerates possible hidden path
extensions on urls. As always, Id love input on it, changes or updates.
Thanks all!
Ryan LaPierre
pathfinder.nse.lua
Description: Bi
Here is my submission of a script I wrote that should test a site for null byte
poisoning vulnerabilities.
nul_byte_poison.nse.lua
Description: Binary data
___
Sent through the dev mailing list
https://nmap.org/mailman/listinfo/dev
Archived at https://s
Hello,
I noticed that under the high priority script ideas was the need for a library
that parses HTML info from sites. I wrote a script that uses a web crawler and
extracts html info from attached pages and accompanying urls within the html
body. Let me know if this is what yall were after?
T
