[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Flex website scanners

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] Flex website scanners
From: Jack Mannino <jack.a.mannino@xxxxxxxxx>
Date: Tue, 25 Aug 2009 19:25:56 -0400

Check out SWFScan.  It does what a scanner is supposed to do, which is 
find low-hanging vulnerabilities.  The tool does a pretty good job at 
decompiling for the most part, but you still really need to do manual 
analysis on the code!!  You should never rely on ANY scanner to do 100% 
of your analysis.

Link- 
https://h30406.www3.hp.com/campaigns/2009/wwcampaign/1-5TUVE/index.php?key=swf

-Jack Mannino

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] Flex website scanners
Next by Date: [Full-disclosure] WPA attack improved to 1min, MITM
Previous by thread: [Full-disclosure] Flex website scanners
Next by thread: [Full-disclosure] WPA attack improved to 1min, MITM
Index(es):
- Date
- Thread