Explore the potential pitfalls of regular expressions in Python and learn how to prevent Denial of Service (ReDoS) attacks in this informative PyCon US talk. Discover the circumstances that can lead to performance issues in backtracking engines, and gain insights into identifying problematic expressions. Through descriptive examples, understand the core issues surrounding regex performance and security. Learn techniques to optimize regular expression performance and implement defenses against malicious inputs. Dive into the role of static analysis in detecting and mitigating regex-related vulnerabilities, equipping yourself with the knowledge to write more efficient and secure code.
Overview
Syllabus
Talks - Guillaume and Quazi: Oh no! My regex is causing a Denial of Service! What can I do about it?
Taught by
PyCon US