Link to this headingFlash
Link to this headingStatic Analysis Tools
Greppable security patterns:
Flash vulnerability detection patterns - Regular expressions for identifying common Flash security issues
Reverse engineering tools:
For detailed Flash file analysis, see [Flash file format reverse engineering](/Reverse Engineering/File Formats/Flash.html)
Link to this headingCommon Flash Vulnerabilities
- Cross-Site Scripting (XSS) - Unsafe handling of external data
- Local file access - Unauthorized file system access
- Cross-domain policy bypass - Improper domain restrictions
- ActionScript injection - Dynamic code execution vulnerabilities