Results 1 to 1 of 1

Thread: Deblaze

Thread Tools
- Show Printable Version

02-04-2009, 12:42 AM #1
SheLLniX

View Profile

View Forum Posts

Private Message

Visit Homepage
Jedi Global Moderator

Join Date

Sep 2007

Posts

849
Deblaze came about as a necessity during a few security assessments of flash based websites that made heavy use of flash remoting. I needed something to give me the ability to dig a little deeper into the technology and identify security holes. On all of the servers I've seen so far the names are not case sensitive, making it much easier to bruteforce. Often times HTTP POST requests won't be logged by the server, so bruteforcing may go unnoticed on poorly monitored systems.

Deblaze provides the following functionality:

* Brute Force Service and Method Names
* Method Interrogation
* Flex Technology Fingerprinting

TODO:

* Automatically enumerate parameter types
* Automatically Fuzz parameters
* Request Debug headers

Download

**Hidden Content: To see this hidden content your post count must be 20 or greater.**

--------------------------------------------------------------------------
Don't Learn to HACK - Hack to LEARN
If everyone has one post per day, our forum will be very eventful
--------------------------------------------------------------------------
Reply With Quote

Quick Navigation Security Tools Top

« Previous Thread | Next Thread »

Members who have read this thread : 0

Actions : (View-Readers)

There are no names to display.

Posting Permissions

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
[VIDEO] code is On
HTML code is Off

All times are GMT +7. The time now is 12:28 AM.

Hide Hack By vFCoders