🔌Network

Lotus has a built-in flexible HTTP module to handle complex scenarios, because this project is mainly focus on web security scanning, but that doesn't mean you cannot preform another type of connections in fact you can use whatever you want with lotus

Our team has been developing a separate libraries for lua in Rust (https://luarocks.org/modules/knas), to ensure that libraries is working safety with lotus but you can use whatever you want of libraies that written in languages like C or C++

HTTP Requests

Your lua script must call the HTTP lua class whose methods are assigned to the rust HTTP module in order to send HTTP requests

Send any method that you wish with a body and headers, but make sure that the headers are in Lua tables rather than strings

Sending normal GET request

Using the 'http:send()' function will permit you to send an HTTP request directly, but make sure you add the method and the URL first since these fields are required by the function Keep in mind that http:send takes the connection options from the user options. If you need to change the connection options for your script, you can visit #change-the-request.

local resp = http:send { url = "https://google.com" }

by adding this line you will call the https://google.com with GET method you will recive table with the response body/headers/url

local resp = http:send { url = "https://google.com" }
println(resp["body"]) -- use println function to print message above the progress bar
for header_name,header_value in ipairs(resp["headers"]) do 
    println(string.format("%s: %s",header_name, header_value))
end

Sending POST Requests

local headers = {}
headers["X-API"] = "RANDOM_DATA"
headers["Content-Type"] = "application/json"
local resp = http:send("POST","http://target.com/api/users",'{"user_id":1}',headers)

Change the request

You can change the default http connection options of your script

  • Connection timeout

http:set_timeout(10) -- 10 secs

  • limits of redirects

http:set_redirects(1) -- no redirects
http:set_redirects(1) -- only one redirect

  • Custom Proxy

http:set_proxy("http://localhost:8080")

keep in mind this will only works in your script not in all scripts, so every time you call http:send function, the options that you changed will be called

Handle Connection Errors

When using the "http:send" function, you might encounter a connections error because of the target response, so to ensure your script is not panicked, call the function within the protect function in the Lua language. This statement only returns a boolean value indicating whether the function has errors or not. For more information about pcall, please see the following link.

local func_status, resp = pcall(function () 
        return http:send("GET","http://0.0.0.0") -- request the localhost
        end)
if func_status == true then 
    -- True means no errors
    println("MAN WAKE UP I CAN ACCESS YOUR LOCAL NETWORK")
end

Also you can tell lotus about the error by adding a logging lines for it

if func_status == true then 
    -- True means no errors
    println("MAN WAKE UP I CAN ACCESS YOUR LOCAL NETWORK")
else 
    log_error(string.format("Connection Error: %s",func_status))
end

what if you want to check for custom error message ?

For example, if you have a Time-based Blind SQL Scanner, the only way to determine whether a parameter is vulnerable is to set your Connection Timeout to a value lower than the value for the SQL SLEEP Function

Therefore, you must verify whether the error was caused by a connection timeout or not

This can be accomplished by adding this function to your LUA script, and then sending the pcall error output to the function along with the error string message

function error_contains(error_obj, error_msg)
    -- ERR_STRING => Converting Error message from error type to string
    return str_contains(ERR_STRING(error_obj),error_msg)
end


function main() 
    local status, resp = pcall(function () 
        return http:send("GET","http://timeouthost")
    end)
    if status ~= true then 
        local timeout_err = error_contains(resp,"caused by: runtime error: timeout_error")
        if timeout_err == true then 
            println("TIMEOUT ERROR")
        end
    end
end

Connection ERROR Table

PreviousStarting PointNextParsing

Last updated