Overview
Explore the critical topic of Regular Expression Denial-of-Service (ReDoS) vulnerabilities in this 15-minute IEEE conference talk. Gain insights into the challenges of detecting and exploiting these vulnerabilities, learn about the Revealer tool, and understand vulnerable patterns in regular expressions. Discover the process of exploit generation and its potential impact on system security. Examine experimental results and grasp the significance of addressing ReDoS vulnerabilities in software development and security practices.
Syllabus
Introduction
Challenges
Response
Enfa
StaticVulnerable Patterns
Exploit Generation
Experiment
Experiments
Impact
Summary
Taught by
IEEE Symposium on Security and Privacy