• Share
  • Email
  • Embed
  • Like
  • Save
  • Private Content
Sebastian Porst - Reverse-Engineering Flash Files with SWFRETools
 

Sebastian Porst - Reverse-Engineering Flash Files with SWFRETools

on

  • 103,293 views

 

Statistics

Views

Total Views
103,293
Views on SlideShare
101,369
Embed Views
1,924

Actions

Likes
2
Downloads
68
Comments
0

12 Embeds 1,924

http://korben.info 1007
http://www.korben.info 797
http://www.slideshare.net 79
http://korben.info:81 21
url_unknown 7
http://wwwd.forumactif.org 3
http://feeds.feedburner.com 2
http://astucestutos.fr 2
http://feed.deblan.fr 2
http://m.korben.info 2
http://feeds2.feedburner.com 1
http://wwwd.forumactif.net 1
More...

Accessibility

Categories

Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment
  • http://www.flickr.com/photos/markchadwick/4592186576/
  • http://www.flickr.com/photos/markchadwick/4592186576/

Sebastian Porst - Reverse-Engineering Flash Files with SWFRETools Sebastian Porst - Reverse-Engineering Flash Files with SWFRETools Presentation Transcript

  • Reverse-Engineering Flash Files with SWFRETools
    Sebastian Porst (sp@porst.tv) – SOURCE Boston 2011
  • About Me
    2
  • Current Work
    3
  • What this talk is about
    Ship it!
    4
  • What this talk is not about
    5
  • Why is this relevant?
    6
  • SWF Files: An Overview
    Header
    Tag 1
    Tag 2
    Tag 3
    Tag 4

    Tag n
    7
  • SWF Files: Interesting Aspects
    8
  • Existing Tools
    SWFTools
    Flash Dump Decompiler
    swfmill
    Sothink SWF Decompiler
    9
  • Problems with existing tools
    SWFTools
    Flash Dump Decompiler
    Crashes
    Old
    Limited
    Wrong tool
    swfmill
    Sothink SWF Decompiler
    10
  • Introducing SWFRETools
    11
  • Goals
    12
  • Architecture
    13
  • Tool I: The Parser
    14
  • Parser Goals
    15
  • Workflow Intermezzo I
    16
  • Tool 2: Flash Dissector
    17
  • Flash Dissector Goals
    18
  • Flash Dissector Demo
    19
  • Weaknesses of Flash Dissector
    20
  • Flash Dissector Future
    21
  • Workflow Intermezzo II
    22
  • Static analysis vs Dynamic analysis
    23
  • Detour: Flash Player Debugger
    24
  • Detour: Flash Player Debugger
    25
  • Tool III: Tracer/Debugger
    26
  • Tracer Implementation
    27
  • Last week in China
    28
  • Last week in China
    29
  • Tracer Plans
    30
  • Workflow Intermezzo III
    31
  • Minimizing sample files
    32
  • Minimizing files without templates
    33
  • Do not forget RETURN
    34
    Function A
    Function B
    Crash here
  • Tool IV: Minimizer
    35
  • Automated minimizing
    36
  • Minimizer Goals
    37
  • Off to GitHub we go!
    Shipped!
    https://github.com/sporst
    38
  • Call for participation
    39
  • Summary
    40
  • Thank you!
    41
    ?
  • Let me help …
    42
  • Image Credits
    http://www.flickr.com/photos/markchadwick/4592186576/
    43