SWFScangoodorevil?<br />Hacking a website usingSWFScan<br />
Agenda<br />Terminology<br />What is SWFScan?<br />How does itwork?<br />Demo<br />Summary<br />Links<br />Questions?<br />
Terminology<br />Flash<br />Introducedby Macromedia (nowAdobe) as successor of FutureSplash;<br />RIAs (Rich Internet Appl...
What is SWFScan?<br />Free;<br />Developedas-isby the HP Web Security Research Group;<br />Analyzes SWF files forvulnerabi...
How does itwork?<br />
Demo<br />
Summary<br />Flash<br />Rich Internet Applications.<br />ActionScript<br />Programming Flash applications.<br />SWFScan<br...
Links<br />HP SWFScan<br />http://www.hp.com/go/swfscan<br />Adobe Flash<br />http://www.adobe.com/products/flash/<br />Ad...
Questions?<br />
Upcoming SlideShare
Loading in...5
×

13-05-2009 SWFScan Good Or Evil?

369
-1

Published on

When I was studying Computer Security at ROC Midden-Nederland we had to do 2 presentations, this was my second one.

Published in: Education
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
369
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
0
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

13-05-2009 SWFScan Good Or Evil?

  1. 1. SWFScangoodorevil?<br />Hacking a website usingSWFScan<br />
  2. 2. Agenda<br />Terminology<br />What is SWFScan?<br />How does itwork?<br />Demo<br />Summary<br />Links<br />Questions?<br />
  3. 3. Terminology<br />Flash<br />Introducedby Macromedia (nowAdobe) as successor of FutureSplash;<br />RIAs (Rich Internet Applications);<br />Animations and games;<br />ProgrammablethroughActionScript.<br />ActionScript<br />Programminglanguageforprogramming Flash applications.<br />SWF file<br />Flash application file.<br />
  4. 4. What is SWFScan?<br />Free;<br />Developedas-isby the HP Web Security Research Group;<br />Analyzes SWF files forvulnerabilities;<br />Support forActionScriptversion 2 and 3;<br />Is able to fetchremote SWF files.<br />
  5. 5. How does itwork?<br />
  6. 6. Demo<br />
  7. 7. Summary<br />Flash<br />Rich Internet Applications.<br />ActionScript<br />Programming Flash applications.<br />SWFScan<br />Vulnerability scanner for SWF files;<br />Canbeusedbyboth White- and Blackhats.<br />
  8. 8. Links<br />HP SWFScan<br />http://www.hp.com/go/swfscan<br />Adobe Flash<br />http://www.adobe.com/products/flash/<br />Adobe - Creating more secure SWF web applications<br />http://www.adobe.com/devnet/flashplayer/articles/secure_swf_apps.html<br />
  9. 9. Questions?<br />
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×