all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Catastrophic backtracking: how can a regular expression cause a ReDoS vulnerability?

Add to bookmarks
Nov. 30, 2022, 2:47 p.m. | Unicorn Developer

DEV Community dev.to

Regular expressions come in handy when you need to search for and replace text. However, in some cases, they may cause the system to slow down or even make vulnerable to ReDoS attacks.






Introduction


ReDoS is a subtype of a DoS attack. The aim of a ReDoS attack is to halt an application or cause it to slow down via an inefficient regex.


ReDoS attacks can be divided into two types:



  1. A string with a malicious pattern is passed …

csharp dotnet redos regular expression security tutorial vulnerability

Visit resource

More from dev.to / DEV Community

Polyfills Explained: Making Modern JavaScript Work Everywhere 🤯🤯 3 hours ago | dev.to
access beginners browser code +12
PostgreSQL. How to check connections that are not using SSL encryption? 4 hours ago | dev.to
check connections database devops +15
Install helm chart from ECR 6 hours ago | dev.to
abc aws aws ecr chart +10
Transitioning from Spring Security WebMvcConfigurer to SecurityFilterChain: A Seamless Migration Guide 7 hours ago | dev.to
applications date development evolution +14
Steps to Adding Google Login to Your React App 7 hours ago | dev.to
access access security account app +23
How to Create a Monitoring Dashboard for Your Azure-hosted VM or Website 8 hours ago | dev.to
azure azure security blog blog post +21
Setting up a Homelab: Part 1 Proxmox and LetsEncrypt 8 hours ago | dev.to
application applications breaking docker +11
Voxel51 Filtered Views Newsletter – April 26, 2024 8 hours ago | dev.to
agent ai april author +22
Beginner's Guide: Connecting to Your EC2 Instance Using AWS Systems Manager (SSM) 8 hours ago | dev.to
access access management aws aws systems manager +20

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Consultant

@ Auckland Council | Central Auckland, NZ, 1010
View on infosec-jobs.com

Security Engineer, Threat Detection

@ Stripe | Remote, US
View on infosec-jobs.com

DevSecOps Engineer (Remote in Europe)

@ CloudTalk | Prague, Prague, Czechia - Remote
View on infosec-jobs.com

Security Architect

@ Valeo Foods | Dublin, Ireland
View on infosec-jobs.com

Security Specialist - IoT & OT

@ Wallbox | Barcelona, Catalonia, Spain
View on infosec-jobs.com
View more jobs