People talk about all kinds of things at a Black Hat event, sometimes even unreleased commercial products. Nearly a month ago, I was in a session at Black Hat DC where HP security researcher Prajakta Jagdale talked about the security risks associated with Flash. Buried in that presentation was the discussion of a tool called SWFscan — a new under development tool from HP that decompiles flash code and looks for vulnerabilities.
InternetNews.com has now learned that HP plans to officially announce a Flash security tool on March 23.
In her Black Hat presentation, Jagdale gave an overview of SWFscan that showed some interesting capabilities.
Unfortunately, the Black Hat presentation link to Jagdale’s slides is no longer operational. Fortunately for me (and for you good readers) I got a CD copy from the conference and I took decent notes while sitting in the presentation.