vuln-regex-detector
Regex scanner
Detects vulnerable regexes in source code to prevent catastrophic backtracking and other security issues.
Detect vulnerable regexes in your project. REDOS, catastrophic backtracking.
320 stars
6 watching
29 forks
Language: Perl
last commit: about 3 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 jagracey/regex-dos | Scans Regular Expressions for potential performance issues that can be exploited for Denial of Service attacks | 163 |
 tjenkinson/eslint-plugin-redos-detector | Detects vulnerable regex using an external API | 5 |
 jkutner/saferegex | A tool to identify potential regular expression vulnerabilities in software | 52 |
 jhaddix/domain | Automates subdomain discovery using multiple data sources and tools. | 921 |
 intel/hyperscan | A high-performance regular expression matching library for efficient pattern scanning in large data streams | 4,857 |
 attackercan/regexp-security-cheatsheet | A resource for identifying and avoiding common security vulnerabilities in regular expressions used in web application security | 707 |
 directdefense/superserial | A Burp Suite Extender to identify Java Deserialization vulnerabilities in client requests and server responses. | 9 |
 swisskyrepo/vulny-code-static-analysis | A script to detect vulnerabilities in PHP source code using static analysis and regular expressions. | 397 |
 the-login/dns-analyzer | A tool to analyze DNS vulnerabilities in web applications and identify potential security risks. | 94 |
 secdec/attack-surface-detector-burp | Identifies web app endpoints and parameters to help detect vulnerabilities | 98 |
 them4hd1/jcs | Automated tool to identify vulnerabilities in Joomla components and generate reports | 60 |
 m0nad/hellraiser | Scans networks to identify vulnerabilities by correlating CPEs with CVEs using an API | 562 |
 urule99/jsunpack-n | A tool designed to emulate browser behavior and detect vulnerabilities in web-based exploits | 163 |
 redhuntlabs/burpsuite-asset_discover | Identifies various asset types in HTTP responses to help find vulnerabilities | 219 |
 security-code-scan/security-code-scan | Detects vulnerabilities in C# and VB.NET code | 942 |