What is the principle behind bypassing AppLocker using LUA scripts?

The bypass works by leveraging the Lua scripting engine (lua.exe or wlua.exe) to execute scripts that can call Windows APIs. If AppLocker rules do not explicitly block Lua executables, scripts can run arbitrary code. A detailed analysis is in the article Testing and Analysis of Bypassing AppLocker Using LUA Scripts.