Share private packages across your team with npm Orgs, now with simplified billing via the aws marketplace!Learn more »

dos-billion-laughs

1.1.0 • Public • Published 7 years ago

Billion Laughs DoS Attack

Most browsers fix this... but here is a handy program to find ones that do not.

The server will return offensive XML by default at any request. Navigating to /lol.html serves an HTML page to see if DOMParser can choke on it.

As of this writing, the Firefox DOMParser appears to be effected. (Cheers to @davejohnson for finding that!)

none

npm i dos-billion-laughs

1.1.0

none

7 years ago