Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Pen Testing capabilities of Flash Files

from [Fausto Napolitano] Network Security [Permanent Link]
Subject: Re: Pen Testing capabilities of Flash Files
Date: Mon, 14 Mar 2005 18:01:22 +0100 
Sorry, no articles or papers, but, i used flasm (flasm.sourceforge.net)
for a few sites, and, you can get a lot of stuff from it :)

cheers,
fau

On Sun, 2005-03-13 at 21:45 +0000,
roger.franks@middleeastadvertising.com wrote:

Good Day

Does anyone know of any work/papers/articles where a flash file is covertly 
used
to pen-test a persons PC's? We have a number of clients for whom we run
advertising campaigns for, who have loads of "extra scripts" enabled in the
flash files, I am talking about stuff like enabling audio which I guess allows
for the ability to listen to peoples audio channels..is this possible or 
indeed
legal? I guess this is an issue on client side security which I note allows 
for
such controls.

Roger Franks, Security Manager
Middle East Advertising - AlClick | http://www.middleeastadvertising.com
Dubai, United Arab Emirates | Tel:(9714) 319 7575, Fax: (9714) 319 7573

----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: MS SQL MDF FILE, Sanders, Jonathan
Next by Date:  Re: Nessus against Novell file servers., Davi Ottenheimer
Previous by Thread:  Pen Testing capabilities of Flash Files, roger . franks
Next by Thread:  MS SQL MDF FILE, Irvin Temp
Indexes:  [Date] [Thread] [Top] [All Lists]