Soroush Dalili (@irsdl) – سروش دلیلی

Web AppSec ninja, semicolon character enthusiast!

Skip to content
  • Home
  • Advisories
  • Archives

Flash it baby!

A guideline for penetration testers to find vulnerabilities in Flash files was presented in BSides Manchester 2016.

The slides can be found at:

Flash it baby! from Soroush Dalili

The PowerPoint file can be downloaded from:

https://soroush.secproject.com/downloadable/flash_it_baby_v2.0.pptx

This entry was posted in Security Articles and tagged flash, flash xss, swf on October 1, 2016 by Soroush Dalili.

Post navigation

← Common Security Issues in Web-Based Payment Systems (& Gambling Apps) Using Firefox Profiles in Security Testing →

Social

Follow me on:

Recent Posts

  • Bug Bounty vs Penetration Testing (Simple Unbiased Comparison) February 20, 2018
  • Rare ASP.NET request validation bypass using request encoding February 20, 2018
  • Additional notes on “A Forgotten HTTP Invisibility Cloak” talk! September 1, 2017
  • Request encoding to bypass web application firewalls August 24, 2017
  • When a web application SSRF causes the cloud to rain credentials & more August 24, 2017
  • CVE-2017-8592 – XMLHttpRequest in IE followed 307 redirections with additional or customised headers August 24, 2017
  • Using Firefox Profiles in Security Testing May 1, 2017
  • Flash it baby! October 1, 2016
  • Common Security Issues in Web-Based Payment Systems (& Gambling Apps) June 11, 2015
  • Interesting XML Processing in Copy/Paste in Word and Outlook March 31, 2015
  • Non-Root-Relative Path Overwrite (RPO) in IIS and .Net applications February 23, 2015
  • Analysis of setting cookies for third party websites in different browsers February 22, 2015
  • IIS Short File Name Disclosure is back! Is your server vulnerable? August 9, 2014
  • Upload a web.config File for Fun & Profit July 26, 2014
  • File Upload and PHP on IIS: >=? and <=* and "=. July 23, 2014

Archives

  • February 2018 (2)
  • September 2017 (1)
  • August 2017 (3)
  • May 2017 (1)
  • October 2016 (1)
  • June 2015 (1)
  • March 2015 (1)
  • February 2015 (2)
  • August 2014 (1)
  • July 2014 (2)
  • May 2014 (1)
  • April 2014 (1)
  • January 2014 (1)
  • October 2013 (3)
  • September 2013 (2)
  • April 2013 (1)
  • March 2013 (1)
  • November 2012 (2)
  • October 2012 (1)
  • August 2012 (1)
  • June 2012 (5)
  • April 2012 (2)
  • December 2011 (1)
  • May 2011 (1)
  • March 2011 (1)
  • January 2011 (2)
  • December 2010 (5)
  • September 2010 (1)
  • August 2010 (4)
  • July 2010 (1)
  • June 2010 (2)
  • May 2010 (3)
  • March 2010 (2)
  • January 2010 (2)
  • December 2009 (4)
  • November 2009 (5)
  • August 2009 (1)
  • February 2009 (2)
  • January 2009 (20)
  • December 2008 (1)

Blog Tags

  • Anti-XSS bypass
  • AntiXSS bypass
  • ASP.NET
  • block ip
  • block isp
  • bug bounty
  • Burp Suite Beautifier
  • Burp Suite Extension
  • bypass
  • Challenge
  • computer science vulnerabilities
  • Critical vulnerabilities
  • CSRF Attacks
  • ExternalInterface
  • ExternalInterface.call
  • FaceBook MobWars Cheat
  • file upload
  • file upload bypass
  • file uploader bypass methods
  • file uploader security bypass
  • flash
  • flash xss
  • hacking videos
  • iis
  • IIS Tilde bug
  • IIS tilde feature
  • IIS tilde vulnerability
  • jar protocol
  • Javascript
  • logical flaw
  • Microsoft IIS Vulnerability
  • National ID Code Algorithm
  • penetration testing
  • Privacy
  • request encoding
  • Short name scanner
  • travian game
  • travian hack
  • travian online game
  • Unrestricted File Download
  • Unrestricted File Upload
  • WAF bypass
  • website vulnerability
  • XSS
  • XSS Vulnerability

RSS reddit.com netsec Channel Feed

  • Virtual Machine for Adversary Emulation and Threat Hunting April 21, 2018
  • Malspam pushing ransomware using two layers of password protection to avoid detection April 21, 2018
  • Invoke-ATTACKAPI: Invoke-ATTACKAPI A PowerShell script to interact with the MITRE ATT&CK Framework via its own API in order to gather information about techniques, tactics, groups, software and references provided by the MITRE ATT&CK Team. April 21, 2018
  • Grouper - A PowerShell script to find vulnerable settings in AD Group Policy (Full Sources - See Comment) April 20, 2018
  • Living Off The Land Binaries and Scripts documentation - #LOLBins and #LOLScripts April 19, 2018

RSS SecurityFocus Feed

  • Vuln: Apache Commons FileUpload CVE-2016-3092 Denial Of Service Vulnerability
  • Vuln: FasterXML Jackson-databind CVE-2017-15095 Incomplete Fix Remote Code Execution Vulnerability
  • Vuln: Multiple Huawei Products CVE-2017-17167 Information Disclosure Vulnerability
  • Vuln: FasterXML Jackson-databind CVE-2018-7489 Incomplete Fix Remote Code Execution Vulnerability
  • Bugtraq: Seagate Media Server stored Cross-Site Scripting vulnerability

RSS Exploit-DB Feed

  • [webapps] Cobub Razor 0.8.0 - Physical path Leakage
  • [webapps] Rvsitebuilder CMS - Database Backup Download
  • [remote] Easy File Sharing Web Server 7.2 - Stack Buffer Overflow
  • [webapps] Match Clone Script 1.0.4 - Cross-Site Scripting
  • [webapps] Kodi 17.6 - Persistent Cross-Site Scripting
Proudly powered by WordPress