Skip to content
/ redos-checks Public

Checking regular expression denial of service (ReDoS) with various languages / regex engines

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

spenserblack/redos-checks

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
.github/workflows
.github/workflows
 
 
javascript
javascript
 
 
python
python
 
 
.editorconfig
.editorconfig
 
 
.gitattributes
.gitattributes
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
redos.json
redos.json
 
 

Repository files navigation

ReDoS Checks

This is a simple repository to check if a language / regex engine is vulnerable to ReDoS. If you've written a regular expression with catastrophic backtracking, you may be vulnerable to DoS via a text input that exploits that regular expression.

redos.json contains a collection of vulnerable regular expressions, and text inputs that exploits the vulnerabilities.

The "ReDoS Checks" action ReDoS Checks executes simple implementations to execute the vulnerable regular expression on the dangerous input, timing out if it takes too long.

About

Checking regular expression denial of service (ReDoS) with various languages / regex engines

Topics

regex regexp vulnerability denial-of-service redos denial-of-service-attack

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Languages