sola-da / ReDoS-vulnerabilitiesLinks
A list of ReDoS vulnerabilities in npm modules found by the Software Lab at TU Darmstadt. For each vulnerability, there is a proof-of-concept exploit, showing how the slowdown may occur. The resources in this repository are provided for research purpose only. Please read below for more details.
☆59Updated 7 years ago
Alternatives and similar repositories for ReDoS-vulnerabilities
Users that are interested in ReDoS-vulnerabilities are comparing it to the libraries listed below
Sorting:
- A fuzzing library in JavaScript. ✨☆118Updated 3 months ago
- Cure53 Browser Security White Paper☆298Updated 7 years ago
- X41 Browser Security White Paper - Tools and PoCs☆184Updated 7 years ago
- Fuzz testing: Beginner's guide☆76Updated last year
- ☆19Updated 6 years ago
- A front-end JavaScript toolkit for creating DNS rebinding attacks.☆45Updated 7 years ago
- This test suite contains over 40 different test cases that have proven to work with different mobile browsers in my research or testing S…☆30Updated 6 years ago
- XSS in pastebin.com and reddit.com via unsanitized markdown output☆87Updated 7 years ago
- HTML5 WebSocket message fuzzer☆146Updated 6 years ago
- Dockerfile for AFL++ and helpful other tools☆21Updated 5 years ago
- PoC for leaking text nodes via CSS injection☆35Updated 7 years ago
- ☆123Updated 4 years ago
- A tool for checking exploitability☆210Updated 6 years ago
- Repository to showcase various configuration recipes with various technologies☆36Updated 2 years ago
- Another web fuzzer written in NodeJS☆58Updated 7 years ago
- Symbolic execution inspired PHP application scanner for code-path discovery☆34Updated 6 years ago
- ☆54Updated 7 years ago
- A library to assist in security-testing Unicode enabled applications during fuzzing, XSS, SQLi, etc.☆42Updated 8 years ago
- ☆71Updated 7 years ago
- Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]☆42Updated last year
- ☆79Updated 12 years ago
- Scripts and auxiliary files for fuzzing PHP's unserialize function☆45Updated 8 years ago
- An all-in-one tool including many common attacks against RSA problems in CTF.☆101Updated 7 years ago
- some example ctf writeups☆27Updated 4 years ago
- Chrome < 62 uxss exploit (CVE-2017-5124)☆161Updated 7 years ago
- Exploitation challenges for CTF☆63Updated 7 years ago
- JWT fuzzer☆107Updated 7 years ago
- Demos of and walkthroughs on in-browser fuzzing using WebAssembly☆124Updated 5 years ago
- ☆19Updated 9 years ago
- TLS Redirection☆120Updated 7 years ago