Find regular expressions vulnerable to ReDoS

Edit Package regexploit

Many default regular expression parsers have unbounded worst-case complexity.
Regex matching may be quick when presented with a matching input string.
However, certain non-matching input strings can make the regular expression
matcher go into crazy backtracking loops and take ages to process. This can
cause denial of service, as the CPU will be stuck trying to match the regex.

This tool is designed to:
* find regular expressions which are vulnerable to ReDoS
* give an example malicious string which will cause catastrophic backtracking

- C#
- JavaScript/TypeScript (requires node to be installed)
- Python

  • Developed at security
  • Download package
  • osc -A checkout openSUSE:Factory/regexploit && cd $_
  • Create Badge
Source Files
Filename Size Changed
regexploit-1.0.0.tar.gz 0000072704 71 KB over 1 year
regexploit.changes 0000000182 182 Bytes over 1 year
regexploit.spec 0000002250 2.2 KB over 1 year
Comments 0
openSUSE Build Service is sponsored by