Speakers‎ > ‎

Marian Radu, Microsoft

Marian Radu

SWF Disassembler Plug-in for IDA Pro

In 2009 we saw a significant rise in malicious Flash files. They were no longer limited to greyware and redirectors, but began to arrive heavily obfuscated and exploiting vulnerabilities. This new threat landscape and the absence of satisfactory analysis tools have led me to begin writing a Flash disassembler plug-in for researcher's favourite disassembler: IDA Pro. The talk will present the Flash disassembler plugin project along with examples of its usefulness.