1. IT-Security >
  2. Cyber Security Nachrichten >
  3. SWFPFinder - SWF Potential Parameters Finder

ArabicEnglishFrenchGermanGreekItalianJapaneseKoreanPersianPolishPortugueseRussianSpanishTurkishVietnamese

SWFPFinder - SWF Potential Parameters Finder


IT Security Nachrichten vom | Direktlink: feedproxy.google.com Nachrichten Bewertung


SWFPFinder is a simple and open source bash script designed to discovery the potential swf (file) parameters on the webapp analysing the swf file. SWFPFinder use swfmill tool, swfmill is a tool to process Adobe Flash (SWF) files. It can convert SWF from and to an XML dialect called “swfml”, which is closely modeled after the SWF file format.

Install
$ wget https://raw.githubusercontent.com/m4ll0k/SWFPFinder/master/swfpfinder.sh

or

$ git clone https://github.com/m4ll0k/SWFPFinder.git swfpfinder
$ cd swfpfinder

Support Platforms
  • MacOSx
  • Linux
  • Window (Cygwin)

Requirements
  • swfmill
    • for linux apt-get install swfmill
    • for macosx brew install swfmill

Usage
$ bash swfpfinder.sh https://raw.githubusercontent.com/evilcos/xss.swf/master/xss.swf

Event
SecurityErrorEvent
xss_fla
MainTimeline
MovieClip
param
Object
action
String
cmd
attack
get_complete
get_sec_error
frame1
URLLoader
navigateToURL
URLRequest
_self
_blank
COMPLETE
addEventListener
SECURITY_ERROR
ExternalInterface
eval
call
alert
location
open
get
stop
root
loaderInfo
parameters
a
c
addFrameScript
EventDispatcher
DisplayObject
InteractiveObject
DisplayObjectContainer
Sprite


...
http://feedproxy.google.com/~r/PentestTools/~3/oq6S3f4ZiN8/swfpfinder-swf-potential-parameters.html

Externe Quelle mit kompletten Inhalt anzeigen


Zur Startseite von Team IT Security

➤ Weitere Beiträge von Team Security | IT Sicherheit

SWFPFinder - SWF Potential Parameters Finder

vom 610.06 Punkte ic_school_black_18dp
SWFPFinder is a simple and open source bash script designed to discovery the potential swf (file) parameters on the webapp analysing the swf file. SWFPFinder use swfmill tool, swfmill is a tool to process Adobe Flash (SWF) files. It can convert SWF from

Git-Vuln-Finder - Finding Potential Software Vulnerabilities From Git Commit Messages

vom 119.93 Punkte ic_school_black_18dp
Finding potential software vulnerabilities from git commit messages. The output format is a JSON with the associated commit which could contain a fix regarding a software vulnerability. The search is based on a set of regular expressions against the

ParamSpider - Mining Parameters From Dark Corners Of Web Archives

vom 117.49 Punkte ic_school_black_18dp
ParamSpider : Parameter miner for humans.Key Features : Finds parameters from web archives of the entered domain. Finds parameters from subdomains as well. Gives support to exclude urls with specific extensions. Saves the output result in a nice and c

Mistica - An Open Source Swiss Army Knife For Arbitrary Communication Over Application Protocols

vom 101.66 Punkte ic_school_black_18dp
Mística is a tool that allows to embed data into application layer protocol fields, with the goal of establishing a bi-directional channel for arbitrary communications. Currently, encapsulation into HTTP, DNS and ICMP protocols has been implemented, b

IPFinder CLI - The Official Command Line Client For IPFinder

vom 98.81 Punkte ic_school_black_18dp
The Official Command Line Client For IPFinder: Supports Single IP Address, asn, ranges, firewall as Input Supports Bulk Exports Results to Screen or to An Output File Supports IPv4 and IPv6 Supports ASN number , RANGES , Firewall Getting Startedsinging up

IPFinder CLI - The Official Command Line Client For IPFinder

vom 98.81 Punkte ic_school_black_18dp
The Official Command Line Client For IPFinder: Supports Single IP Address, asn, ranges, firewall as Input Supports Bulk Exports Results to Screen or to An Output File Supports IPv4 and IPv6 Supports ASN number , RANGES , Firewall Getting Startedsinging up

XCTR Hacking Tools - All in one tools for Information Gathering

vom 98.81 Punkte ic_school_black_18dp
All in one tools for Information Gathering.Instagram: Capture the RootScreenshotsRead MeInitially, you need to create a project where you will save everything.All of the collected information is saved as "project-name" in results directory.You can update

Layerwise learning for Quantum Neural Networks

vom 93.19 Punkte ic_school_black_18dp
Posted by Andrea Skolik, Volkswagen AG and Leiden UniversityIn early March, Google released TensorFlow Quantum (TFQ) together with the University of Waterloo and Volkswagen AG. TensorFlow Quantum is a software framework for quantum machine learning (QML) which

See-SURF - Python Based Scanner To Find Potential SSRF Parameters

vom 93.05 Punkte ic_school_black_18dp
A Python based scanner to find potential SSRF parameters in a web application.MotivationSSRF being one of the critical vulnerabilities out there in web, I see there was no tool which would automate finding potential vulnerable parameters. See-SURF can be add

Cangibrina – Admin Dashboard Finder Tool

vom 88.93 Punkte ic_school_black_18dp
Cangibrina is a Python-based multi platform admin dashboard finder tool which aims to obtain the location of website dashboards by using brute-force, wordlists, Google, Nmap and robots.txt. It is multi-threaded, supports modifying your user agent, us

PHPStan - PHP Static Analysis Tool (Discover Bugs In Your Code Without Running It!)

vom 84.72 Punkte ic_school_black_18dp
PHPStan focuses on finding errors in your code without actually running it. It catches whole classes of bugs even before you write tests for the code. It moves PHP closer to compiled languages in the sense that the correctness of each line of the code

Creating .NET Core global tools on macOS

vom 84.72 Punkte ic_school_black_18dp
One of the really cool aspects about .NET Core is the support for global tools. You can use global tools to simplify common tasks during your development workflow. For example, you can create tools to minify image assets, simplify working with source contro

Team Security Diskussion über SWFPFinder - SWF Potential Parameters Finder