Ep. 11 - Injection Fundamentals: What Is ReDoS?
What is ReDoS? Lets answer that question by injecting a live environment!
About This Episode
At the end of this episode, you'll be able to:
1. Evaluate the programming language’s execution context for Regular Expression Denial Of Service (ReDoS) vulnerabilities
2. Inject a docker container to witness ReDoS
3. Leverage the “Three Questions” approach to spot major injection issues
4. Understand how injection mitigations (i.e., whitelisting) can actually create vulnerabilities
I started my tech tutorial journey when I was bedridden for 6 months because I couldn't get healthcare insurance. While I might of been in extreme physical pain, I persisted because the instructors that I watched during that time filled me with immense joy. Towards the end of that experience, I vowed that once I gained the appropriate expertise, I'd provide quality tutorial content to the greater tech community.
In the years after my disability, I've held positions as a Frontend Developer, Backend Developer, Application Security Engineer and a DevOps/Security Engineer. My professional path has ranged from large corporate settings to an intimate blockchain startup.
Now, the next progression in my journey is to take all of my experience and provide quality security tutorials to the greater tech community.