08 September 2009 | 11,783 views

SWFScan – Free Flash Application Security Scanner

Check Your Web Security with Acunetix

HP SWFScan is a free tool developed by HP Web Security Research Group, which will automatically find security vulnerabilities in applications built on the Flash platform.

HP is offering SWFScan because:

  • Their research shows that developers and increasingly implementing applications built on the Adobe Flash platform without the required security expertise.
  • As a result, they are seeing a proliferation of insecure applications being deployed on the web.
  • A vulnerable application built on the Flash platform widens your website’s attack surface creating more opportunity for malicious hackers.

How SWFScan works and what vulnerabilities it finds:

  • Decompiles applications built on the Adobe Flash platform to extract the ActionScript code and statically analyzes it to identify security issues such as information disclosure.
  • Identifies and reports insecure programming and deployment practices and suggests solutions.
  • Enables you to audit third party applications without requiring access to the source code.

You can download SWFScan here:

SwfScan.msi

Or read more here.

Advertisements



Recent in Hacking Tools:
- Dharma – Generation-based Context-free Grammar Fuzzing Tool
- Passgen – Random Character Generator For WPA/WPA2 Key Cracking
- AddressSanitizer – A Fast Memory Error Detector

Related Posts:
- ServiceCapture – HTTP Traffic Capture for Debugging Flash
- Netsparker Community Edition – Web Application Security Scanner
- SWFIntruder – Analysis and Security Testing of Flash Applications

Most Read in Hacking Tools:
- Top 15 Security/Hacking Tools & Utilities - 1,918,637 views
- Brutus Password Cracker – Download brutus-aet2.zip AET2 - 1,186,497 views
- wwwhack 1.9 – Download wwwhack19.zip Web Hacking Tool - 648,088 views

Advertise on Darknet

One Response to “SWFScan – Free Flash Application Security Scanner”

  1. Morgan Storey 14 September 2009 at 2:09 am Permalink

    I have used this tool a couple of times for my own interest, it is very good and amazing what developers think they can hide right there in the flash code. Stuff like file system paths, and passwords, crazy.