SWFPFinder is a simple and open source bash script designed to discovery the potential swf (file) parameters on the webapp analysing the swf file.
It use swfmill
tool, swfmill is a tool to process Adobe Flash (SWF) files. It can convert SWF from and to an XML dialect called “swfml”, which is closely modeled after the SWF file format.
Also Read – Lava : Large-scale Automated Vulnerability Addition
Install
$ wget https://raw.githubusercontent.com/m4ll0k/SWFPFinder/master/swfpfinder.sh
or
$ git clone https://github.com/m4ll0k/SWFPFinder.git swfpfinder
$ cd swfpfinder
Support Platforms
Requirements
apt-get install swfmill
brew install swfmill
Usage
$ bash swfpfinder.sh https://raw.githubusercontent.com/evilcos/xss.swf/master/xss.swf
Event
SecurityErrorEvent
xss_fla
MainTimeline
MovieClip
param
Object
action
String
cmd
attack
get_complete
get_sec_error
frame1
URLLoader
navigateToURL
URLRequest
_self
_blank
COMPLETE
addEventListener
SECURITY_ERROR
ExternalInterface
eval
call
alert
location
open
get
stop
root
loaderInfo
parameters
a
c
addFrameScript
EventDispatcher
DisplayObject
InteractiveObject
DisplayObjectContainer
Sprite
Burrow is an open source tool for burrowing through firewalls, built by teenagers at Hack Club.…
Simple golang webserver that listens for basic auth or post requests and sends a notification…
Nutek Security Platform for macOS and Linux operating systems. Tools for hackers, bug hunters and…
Welcome to SecureSphere Labs, your go-to destination for a curated collection of powerful hacking tools…
All in one Docker-based workstation with hacking tools for Pentesting and offsec Labs by maintained…
Got it! Below is the updated README.md file with instructions for downloading the project on…