Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/jeremy-rifkin/regex-fuzzing
https://github.com/jeremy-rifkin/regex-fuzzing
Last synced: 27 days ago
JSON representation
- Host: GitHub
- URL: https://github.com/jeremy-rifkin/regex-fuzzing
- Owner: jeremy-rifkin
- Created: 2023-10-21T18:00:17.000Z (about 1 year ago)
- Default Branch: main
- Last Pushed: 2024-12-08T06:55:38.000Z (about 1 month ago)
- Last Synced: 2024-12-08T07:25:12.893Z (about 1 month ago)
- Language: Python
- Size: 6.84 KB
- Stars: 0
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# Regex fuzzing driver
This is a driver script that invokes https://github.com/ucsb-seclab/regulator-dynamic to fuzz a regular expression for
ReDoS vulnerabilities. More info at https://www.usenix.org/system/files/sec22summer_mclaughlin.pdf.
## Instructions
`make run` will build and run a container using `podman`. It will take a while.
After that, you can fuzz regular expressions with:
```
python3 main.py --fuzzer-binary /opt/regulator-dynamic/fuzzer/build/fuzzer -v --regex "http://(b|[b])*c" --flags ""
```
This repo provides a parallel runner script that takes a file of js regexes with one `/pattern/flags` per line
```
python3 runner.py regexes.txt
```