Name : regexploit
| |
Version : 1.0.0
| Vendor : obs://build_opensuse_org/security
|
Release : 7.8
| Date : 2024-02-01 11:26:41
|
Group : Unspecified
| Source RPM : regexploit-1.0.0-7.8.src.rpm
|
Size : 0.37 MB
| |
Packager : (none)
| |
Summary : Find regular expressions vulnerable to ReDoS
|
Description :
Many default regular expression parsers have unbounded worst-case complexity. Regex matching may be quick when presented with a matching input string. However, certain non-matching input strings can make the regular expression matcher go into crazy backtracking loops and take ages to process. This can cause denial of service, as the CPU will be stuck trying to match the regex.
This tool is designed to: * find regular expressions which are vulnerable to ReDoS * give an example malicious string which will cause catastrophic backtracking
Supports: - C# - JavaScript/TypeScript (requires node to be installed) - JSON - Python - YAML
|
RPM found in directory: /packages/linux-pbone/ftp5.gwdg.de/pub/opensuse/repositories/security/openSUSE_Tumbleweed/noarch |