Flashmingo, a tool that detects Adobe Flash vulnerabilities, is now available

Written about 1 year ago by IanDorfman

Despite the fact that Adobe Flash is set to be completely deprecated by 2020, it won't be going away any time soon, especially from legacy web content built with it in mind. In order to ensure security to counter malicious actors discovering exploits for the foreseeable future, the developers behind Small FireEye iconFireEye have created and released an open source tool called Small FLASHMINGO iconFLASHMINGO.

Flashmingo automatically parses and analyzes .swf files used in Small Adobe Flash Player iconAdobe Flash Player for vulnerabilities. It can work as an independent part of an analyst's workflow or as part of a library. It's extendible via Small Python iconPython plugins, enabling further custom functionality to be further tooled to the needs of your workflow or analysis.

In the words of FireEye in its conclusion to the post announcing Flashmingo's release:

"Flashmingo provides malware analysts a flexible framework to quickly deal with these pesky Flash samples without getting bogged down in the intricacies of the execution environment and file format."

Flashmingo is available now via GitHub.

Further coverage
FireEye Blog