Regexp Security Cheatsheet
This repository sponsored by ScanFactory provides a comprehensive list of security vulnerabilities in regular expressions commonly used in Web Application Firewalls (WAFs), with a focus on bypass examples and high severity issues. It includes SAST tools to identify vulnerabilities in custom regular expressions, and was first introduced at BlackHat USA 2016.
FEATURES
SIMILAR TOOLS
An article in Phrack Magazine discussing the creation of shellcode for StrongARM/Linux architecture.
Exhaustive checklist for securing Node.js web services with a focus on error handling and custom error pages.
A collection of reports and resources highlighting Android security vulnerabilities and best practices.
A threat intelligence aggregation service that consolidates and summarizes security updates from multiple sources to provide comprehensive cybersecurity situational awareness.
A comprehensive SQL injection cheat sheet covering various database management systems and techniques.
A collection of computer science courses with video lectures covering a wide range of topics.
Collection of recent infosec/hacking videos from conferences.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.