you could also use flasm to read SWF bytecodes or if you are looking for
a decompiler just use flare... hwv check on sourceforge.net for more
informations.
cheers,
porco dio
Korhan GURLER wrote:
> Also heritrix can also extract links from flash files, may be you can
> check that out.
> http://crawler.archive.org/
>
>
> On Wed, 2007-01-24 at 08:16 +0200, homegrown_at_bryanallott.net wrote:
>
>> extracting any data from flash, u can look at Swf2html.exe
>> http://www.adobe.com/cfusion/knowledgebase/index.cfm?id=tn_16603
>> the technique is used by search engines succesfully...
>> so from PHP you could try integrate with this binary... hope this helps you
>> in the right direction?
>>
>> ----- Original Message -----
>> From: "김영일" <zero12a_at_naver.com>
>> To: <websecurity_at_webappsec.org>; <webappsec_at_securityfocus.com>;
>> <webappsec_at_lists.owasp.org>
>> Sent: Wednesday, January 24, 2007 6:08 AM
>> Subject: How extract URL-link from flash(.swf) file by PHP?
>>
>>
>>
>>> Dear, web security professionals.
>>>
>>>
>>> I will version up WSTOOL that is a web vulnerability scan tool.
>>>
>>> -. Down: http://sourceforge.net/projects/wstool
>>> -. Site: http://my.dreamwiz.com/zero12a/wstool
>>>
>>>
>>>
>>> I have a problem that is to scan a Full Flash Site.
>>>
>>> How extract URL-link from flash(.swf) file by PHP?
>>>
>>>
>>>
>>>
>>>
>>>
>>> ''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''
>>> WSTOOL is web vulnerability scanner.
>>> - OS-independent
>>> - SQL injection
>>> - XSS Cross Site Scripting
>>> - 404/500 server error
>>> - Admin/Manage folder search
>>> - Web-base or Command-line scanner by PHP
>>> - Check up collate with HTML FORM and LINK
>>> ''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>> -------------------------------------------
>>> Young-il Kim, CISA/CISSP/OCP
>>> Korean, http://cafe.naver.com/WebHack 천상신양
>>> zero12a_at_naver.com, zero12a_at_dreamwiz.com
>>>
>>> ------------------------------------------------------------------------
>>> 새로운 기부 문화의 씨앗, 해피빈
>>> http://happybean.naver.com
>>>
>>>
>> -------------------------------------------------------------------------
>> Sponsored by: Watchfire
>>
>> Testing web application for security vulnerabilities? Try AppScan®. F
>> eatures that include Privilege Escalation Testing, Complex Authentication
>> Support and Validation Highlighting and Reasoning are just some of the
>> reasons more security professionals trust AppScan than any other solutions.
>> Change the way you think about application security testing -
>> download AppScan today!
>>
>> https://www.watchfire.com/securearea/appscancamp.aspx?id=701500000008fHZ
>> --------------------------------------------------------------------------
>>
>>
>
>
> -------------------------------------------------------------------------
> Sponsored by: Watchfire
>
> Testing web application for security vulnerabilities? Try AppScan®. F
> eatures that include Privilege Escalation Testing, Complex Authentication
> Support and Validation Highlighting and Reasoning are just some of the
> reasons more security professionals trust AppScan than any other solutions.
> Change the way you think about application security testing -
> download AppScan today!
>
> https://www.watchfire.com/securearea/appscancamp.aspx?id=701500000008fHZ
> --------------------------------------------------------------------------
>
>
>
-------------------------------------------------------------------------
Sponsored by: Watchfire
Today's hackers exploit web applications to expose, embarrass and even
steal. Firewalls and SSL may be commonplace but recent studies indicate
3 out of 4 websites remain vulnerable to attack. Watchfire's "Addressing
Challenges in Application Security" whitepaper, explains what to do and
provides a guideline to improving your own application security.
Download this whitepaper today!
https://www.watchfire.com/securearea/whitepapers.aspx?id=701500000008fHF
--------------------------------------------------------------------------
Received on Feb 02 2007
Intro
