HP has launched a new tool to find security vulnerabilities in Flash/Flex applications, SWFScan. Looks quite promising, this is how it does it:
- Decompiles and analyzes the application to identify security issues.
- Identifies insecure code, and deployment setup.
- No need for access to the code
- And it is Free
Definitely worth trying, finally someone creates a tool to address Flash security.