YoVDO

Service Denied! Understanding How Regex DoS Attacks Work

Offered By: Ruby Central via YouTube

Tags

RailsConf Courses Regular Expressions Courses Algorithmic Complexity Courses Web Application Security Courses Denial-of-Service Attacks Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the inner workings of regex denial of service (DoS) attacks in this 31-minute RailsConf 2022 talk. Dive into the CRuby regex engine to understand how regular expressions function and why certain string inputs can overwhelm your Rails application. Learn to identify vulnerable regex patterns, comprehend the CPU-intensive nature of these attacks, and discover effective strategies to protect your application from potential threats. Gain valuable insights into algorithmic complexity, state machines, NFA vs DFA, and backtracking to enhance your understanding of regex security in Rails development.

Syllabus

Introduction
Rails Infrastructure Team
Context
Denial of Service
Benchmarks
Algorithmic Complexity
Regex Example
Regular Expressions
State Machines
NFA vs DFA
Backtracking
How to Avoid
Outro


Taught by

Ruby Central

Related Courses

Mentorship in Three Acts
Ruby Central via YouTube Taylor's Guide to Big Rewrites
Ruby Central via YouTube Upgrading the Ruby Community
Ruby Central via YouTube How We Implemented Internal Salary Transparency - And Why It Matters
Ruby Central via YouTube Mentorship Panel
Ruby Central via YouTube