Test Regular Expressions for Evil Payloads/Patterns

Posted · Add Comment

Today I learned of an awesome tool called SDL Regex Fuzzer. It will test your regular expressions for evil patterns. Any regexps that fail are potentially vulnerable to denial-of-service attacks also known as ReDoS and should be rewritten.

Comments are closed.