kazet

This solves only a part of the task - downloading the content. How would you e.g. solve the reputation problem?

I think a good first step would be to collect a couple of sites that provide reputation information (and check what they consider bad websites) and only then compare and...

Sure! Let's assume you have a PHP site that always (regardless of the parameters) run an incorrect SQL query and prints a SQL error: `You have an error in your...

Detect also http error 500

The overall logic seems fine. The main two things to improve would be: - add reporting capabilities, so that malicious outgoing links would be included in automatic reports generated by...

In my opinion this won't be sufficient because there is plenty of HTTP 1.1 servers that are not vulnerable to this attack, therefore such a check would have a large...

if possible, implementing a Nuclei template is a better idea than an Artemis module

Reporting all of them caused a lot of spam - so let's invent other way of keeping a list of the important ones

todo add exchange rce

I am not sure whether OWASP cheat cheets are a good direction. I was rather thinking of detecting victims of e.g. https://www.bleepingcomputer.com/news/security/new-balada-injector-campaign-infects-6-700-wordpress-sites/ or https://github.com/projectdiscovery/nuclei-templates/blob/3fcda12c44c235e09586fd929c37fa60fbe28f71/http/miscellaneous/defacement-detect.yaml#L4