├── xss.swf
├── .gitignore
└── README.md


/xss.swf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/knownsec/xss.swf/HEAD/xss.swf


--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
 1 | # Build and Release Folders
 2 | bin/
 3 | bin-debug/
 4 | bin-release/
 5 | 
 6 | # Other files and folders
 7 | .settings/
 8 | 
 9 | # Project files, i.e. `.project`, `.actionScriptProperties` and `.flexProperties`
10 | # should NOT be excluded as they contain compiler settings and other important
11 | # information for Eclipse / Flash Builder.


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
 1 | xss.swf
 2 | =======
 3 | 
 4 | a tiny tool for swf hacking, just browse it:)
 5 | 
 6 | param&value:
 7 | a(action) - c(cmd)
 8 | -----------------
 9 | 1. location to url: xss.swf?a=location&c=http://www.google.com/
10 | 2. open url to new window: xss.swf?a=open&c=http://www.google.com/
11 | 3. http request to url: xss.swf?a=get&c=http://www.google.com/
12 | 4. eval js codz: xss.swf?a=eval&c=alert(document.domain)
13 | 
14 | -----------------
15 | by evilcos@gmail.com
16 | 


--------------------------------------------------------------------------------