New Method.


Hopefully this one's a stumper. Network Analyze.. Safari Activity Browser. Go ahead, I don't care.

http://seesaw2.net/matt/newSwfTest/

copy / paste direct link.

Let me know what ya find.



PS: This may or may not have kinks with Safari, a friend said it didn't.. someone else said it did. Give it a shot.

PPS2: I found a way to crack it but lets see if you can while I try to fix it. Like we've covered, there's no way to 100% secure something but you might not know how.

If this one's easy, I have more ideas in line so lets just see how this one works out.

Try first to NOT network analyze it. Pretend as if SSL was on. Activity Monitor is fair game though. Haven't been able to test with Activity Monitor because my Safari isn't working but I used FireBug for firefox which seems to be the same thing pretty much.

Looks great!

Thing is I don't see the movie... Doesn't load on IE or Safari...

Yeah I mentioned thats a temporary issue. Run it with FireFox for now to test til I figure out the deal with that.

If you're looking to use the Activity Monitor on Safari, get Firebug for Firefox. It does the same thing.. Its actually way way more advanced than Safari's

UPDATE

Should work fine with IE now.
Probably safari but I haven't tested.

Yes on IE, still not on Safari...

well for now thats too bad. Use IE and/or FireFox. I can't test with Safari because it won't launch.

Edit: My friend tested with Safari, said it was fine. Clear your cache and try again.

|-----------------------

I think a combination of this method and the previous loading method would be efficient.

Cleared the cache... Still nothing!


I think a combination of this method and the previous loading method would be efficient.

...And maybe a couple of armed guards, metal detectors & X-ray machines, if not some holding facility - let's say in Cuba for instance - to hold the hackers that will succeed anyways... :rolleyes:

Ok. So fix your computer or use one of the other options. I'm not arguing it with you on this thread. Try the challenge or don't. If you can't get to it, sorry but you can't participate.

So the first challange is to see the SWF... (I use firefox an di could see SWF with the DOM inspector)
Yeah... with this method you can be sure that a lot of people will give up... so this method will only work in a resticted enviroment and restricted software.
:clap: O_ó

Right now as it is, if you use View Page Info on FireFox and check the Media tab.. it'll say Disk Cached.

Even if you save as, you get a corrupted file so it won't work anyway, but I just setup a method so there's no cache and no chance to download it.

If you find bugs for a few minutes, it might be cause I'm swapping things out.

------------------------------
Update Completed

Now uses Javascript to embed the flash so when you try to use the FireFox Page Info to view the media downloaded, it will tell you nothing has been cached instead of Disk Cache and you can't download it that way.

i will wait and try

i will wait and try

Try safari and try the Activity Monitor method.

The Javascript Setup is complete and SHOULD work. It works for me but you know.. thats one out of 80 million people and I cant use Safari.

Use the activity monitor and try using Option + Double Click on whatever file you think is the SWF. Then try to open it and see it loads properly.

x|
why i can't download your view.php or flash.php???
i just get junk information...


CWS È xœuWiXSÉÒî’@€B‚Ê°P$a1ì (
ÙAȊȸ@"û¢8¢D *¨QFvö]6‡ˆ‚uŠ¸
îTFDGF¼'>ŸÎ|Ͻ÷ü8çí:UÕ]U]ïÓ�; P-@Ü–
èÙÿúõ«³L†¿ª�( ˜Ò¦½ ‘¡l9!è
p›A˜
0ì6l¦_r¹ãòXÄ("ù
É@£ Þ X

ŠýŠ&è)´—ÒoJŸ•*«
5•ÉÖU´ÔôÚº=³÷¢‚+ÌÅ…�°fòy~Å¢*ãSùç– (\=…Ü‘×ö©àÂD
Ad*T!q'Ç%BøñOôfJ˜"š 2}IuX¶/§³ûá ÜÇKäk_ýØgóRæ?ãu¬iVÔé vu<>š+ɪq2Æ�¡•°‚Ò\Ó¢ŒÒžò`“ËEÝ'âc¶ñ5!o¯×–¦šÏVV*y Øæ/ÅÏÜ-Ñ@Es�ð³GíÓiÇ@zYÇ�î€NŠ¤bò<*:ÃÉ´x¶èÌ¡ü"Èâ·Õ3w‹!
)Ÿx&ÕD:ëçÉÄtF{ðÌüa§DºÛI0Æ>€ÔŒ]Mœø¸M øGȵEƒ„u¿Z”Ž©8êö•æ¥Ò'vXC€X¡F¦Š2¨F¸¢~<K;ðWFát*é3]_9oˆ ö˜Š�g}\ž]ýI�Ý0·J«aaGÉ<}dÄõ$˜"8²ÎºÜþ|dË ?cñå¼ÝÑŠŽ”Œ’ÛøŸ·?$Ç®xÍUS™¢T(ïžßM|=�?Œ@õò¥¡vµ%ÙC ³)ÂÈ©ËOD� ÿÔ»C¾Æžã~K‚ž›MQÛÕwÕŽwJ«Øs—‚ç¿çF1e,zð5Þ_î*gý”®¿"oˆâÛˆy÷Hr¢›x]å[�˜
GÚã‹ž~ÍüùëØëU§®ä„W—ýÿ:ºÒ§�–g‚]w¢ ï«�«Áò¡&˜Œ1óF
=§¸ÕEûáÇ1}âPNëùøúÛ½„î dq¨îðùƒ®5£…µ�¤ž¬~‹´jæö<áBæ
€ÎU€g†¤à}Q\Ä:qZËÙúAƒ:®¾ Ô³œÍÌ�–ßÐ
PMG¶·au’ïo
ðyXí$MüXÝ%’í�ë8¨ ~e[eµ1":–p%ºçì[iu )ðÖ�uóXo;ãPâ½tÏwWµÓ!QyIÒÀÅ°‘îÊË=VÑ—e†K�Ä”r†ê –W·#wù©$ÔÙ¬] ø�äDñyŸjóÖWDk½x
Æqa QèÍFâõ�e”©uc§ºÄ; íÿ©€ò‡Íˆc¬ýö°•
R—”“˜(UzN�Ÿ…h†ÑMÂíÖµpÒvQ¼Ð mˆ÷êuþ¾ ^2Ì*òцb*Ÿ.ÍÏ
÷zY¸ª9ˆ«iݘ‰.Á�ân\ÐaÁüÓWÓ|ÓëEz. ‡~¢P¢]|‚3Üñ€×Ãù¥ØäëŒKwÍŽÝÇ¢*im›oÀ¶üµ–?<ýì$¿²â¤³{MÛLëàrƒe~ó“JdÂ+{êKÝ.*¡:~é†ä‚_Gio› ¡ñž4ßxÙ‘êp*„žNkÄXDÓ’4yÿ‚Ñ%og3ZlìÓ*’wÁ<3�ÍÍ›ôe�o½n1¢*ˆ#W*BÔ´| €‹£ÐQ•â‘;Ô"fok„ ˜·Z}.½u‹7¾$¦©
›ËœÃÁ�dOÍ\³·*Ùà°)ë}>04IøP÷®¦m÷êŒàñ| :±€¦‰¡:ÓÉ
/ùWg©þ¬µ€a®±hVÿÅgâÍáS%{æû{ …¼¨.ËIeÐ%Mþ¥—ÆX*}~ûÒX0¢oËàòf[†‡WÛ-Z�‘0Wä“NŽ-uÖ…9Ò÷ºIó
ÖW”ñÔáæÜù3ZYëx̧»M.ôpÆLV-ø˜Ñ¥ÈðÝ
Ë×3’Ê'‘žMç&Æ8ƒ6Á_ÀYѧXú4.ƒØ²¸•³)ðI¤Ýb�SU‚y}nD¥»RS¬z–$uÅÆ) *Ék‚î*†aí)òh´/PÛFp’íè‡ö&¨VÑ/¢bãF x®Ýä¿¡“ÓñùYc‹¡ï¦ÑùXiu×DýHðYn¢i™r¥˜h&˜Nd7'44³I‡°†}À‡%Äg6
áÌ' }-¤âZòΕmŽžûD/É
JO¶ ±ô/†m2š´3´0‡�81ýEmçœ)*݈Ô1=3F¯64 �žXY?eSÇß¼PÁ‚¹~b‡žvµ¸QœŸÜ»ó§fk -yh=€Ía•ÌuÇèŒÈ? b�'xXéJïí—�=Y Ÿ¨[Ç—äAÝ=rýãÆu‘篲Jõ}ðÂÇÙªèHâó6…„sW‹mËxU{xn“ 5=ëyÆõdJeüŠŒ¾3¯B$¦‘2Rg¯Å”øc*UM1Xê)•jh;•ù…ß‚Ù¡Þ ¿zÎ4-|dºæK±'Ò¨æ‹àÔ âDá~•ª@Be2S@Æ|®b»tçJü¡ÏYö*Í9>fnH²�iÊmü½õ
›µeñò ìCÓMhL²í¸bú·²š+ô²Ã<M�ØÓ8˜�Ö“mÞvJhêçÐŽ!L¡i9¼&̹¹Š}<×ßkc¸Â…\=u5ÌÙ5Ü“ô&ÞÖ�çƒúáyÁ9ÿ’î¹Xt¼y<¸|·û®ßPË3<x¹‘™mZÌ-5Fùëcÿù—k8é¯wk²ÁßI�µ‡{éú몚ÑÕGÞëS¨¡mêÜ/üV.fk^òê¹5iáÂéº5P"îÔ|*�°€2Ô«�Ö56£K\x
^["_)Vó»±UPpÆ´ÓG’y÷!!±¹žð™1ª �£ä ”ûôšôÙ”)‚sN„nƒgUKÐr?«Ÿ«‹ò^›áRN£÷êUx¼
˜ÂU™™±\BE0�o|ÀÉ;¬ëNõÚcl˜×T†]!æ躬“Cãèz¥mUï¿4’¶v–cù5"LŒJ¿Ñä]åŠ× ÀRKâ¶KŒMoÂ(ƒhZPo»õ0ý‰ôÃU¬§(Ú,”nô©¥Z.÷É’žÓÝ Û®ð�3¼hâ=²uá—7è¹;‘ñ´~Ø
P�+ jc ¤èf¼o° Â,a˜× -Tè_ÔzÖD¯îß$èjX¨žr&‡9q;ëÓq’&(†ß’ÁF�sÇQÊ
J8SÅ…8Ó_2©T,ãL‰îUˆ3õ—ÄôÒòjç6Â;„sÄûŽ ™\�#ÕI£°±iÍ1SiIË“äáür¦sÖ+icÀB
ÀÙøý]ÖqŠ=ü,ºÒSƒªÅd¡ý2[lŒÏ›ÛÆκ* -Ò¼”[*»ï)”êšÃ÷mžˆUH ôÎZØ+—¨§-ŽŸë{介y¥áw»0&^nh\Õ‚Ã%_
0
§`[hÎ>d¤Wì‚ÒL0ipŸˆP‘ÿ•%~&ގܺž~îÔ˜7Wž^ó¥þö¶VŸºÝ#„SV¾ø¶¶VK
^-Š¯l¯�äê 4�Œöîå5C¿|c°ë&-«cL{F2sY¿·-�zj#¹fè�¾|µ½EBZxtÀt¬ÏÞÃtÚÀ
ÏÁ—jˆ )äb½Ìgû!Ÿ9‚D: æF¤*îjËWëEò='Ú.UîysÈLv*7¾öË6ViK7åÙ*Êm
Ÿ¡‚æØ)qrË;Uâ;Ê;W°�ð¾r—SA5ýpÑí㯖*^<ðvézdÀ*ù?Tð
��ˆéo¡&-{µÇqYôý¸7×+v�¥_B–2fâj÷*91Ý9?‰ø(£ôÈ«”6âíÑÓþ<B>@ÓlzÛy-cIFÀ1‘2öç=§Xlw5¨”×6•?wª4�2¦– zëšÿû¥üٞ㶼’œ¥×r”äãA¿÷{@çƒÍÓ…˜¥!Ð?^/ëçI3ÓÄýÙ®þ6ã}±¬òÚÄÝ~W†·aic|Ô
oÉǧEÓšå>©§oòK}Þ…å¿ëz˜wCf«+³
ôÌuˆŒÐuòǸ ´°‹²ÛT8—ôÐw…îÃÀ2…~Ë%4äi7
E-ð]ØŠ¹Â4ÕìYȼ�¿@Ÿ¡ÖÜxj´T}ØÕ¿�¹®ï˜–FOž·Å5ö%§vA¿ö ©ø¡
üxÕ�«nrÜÊ
.¾´<1ª<møv½ú–Ü{kD Ö sàÜ�ð^Àø
* ƒPÀ,Àa`'ˆ ‘`ˆ1 Ä��’@2Ø
ö‚4u˜ìZÃ…ƒï\×Vöiq•ƒ[X}GËô~ Ÿ~ qçïH’98ËÖö?mWü@FŽßQÎzí,—·ýŽ´,¿#UçïhÃÙ±z‹ÐúÒ 6ÈÐ{«ï²»ÿ}†Ðþoz¶�—áoháÇß[ÿÅâ×s<‚d{6üÏΚá@–¾¿¯„8×Ø(6èâ,‰D¢©ìm�saÇ2Ãp´½‰Iaщ8ïVl B\lBhRÛç…£F†G$%â¨a‰a »eB†9ÍG†b’pnÖ6Ö¦6ö–æà+œ +ý².H yKó³È+fÀ••Õ Še]Z7QF!|%ÊrçÆ Ð«®üMŸü£´YH$haéÉ�7
$‘{�ŠY\mâJ þᎼ¥Ù3H«Ùç`¹AVd*€gŸâY²vk�K<B£�ìš$ðL�Î
ÙzçŽ>‘G2ž;÷bƒÉeLr@ûX¡È8S�µOg{²Ú-xziLâåçHA®}²àQYšÖƒøèÃ5Ú‡Ìîio$¡•3;G_x‰Œ��lÖDý_, rÿ?è’
´£h ÿ›Tû3Ÿ¡‚æØ)qrË;Uâ;Ê;W°Â�ð¾rA5ýpà ‘Ã*㯖*^<ðvézdÀ*ù?Tð
Â�Â�ˆé¸7×+vÂ�Â¥_B–2fâj÷Â*91à �9?‰ø(£ôÈ«â€�6âÃ*ÑÓþ<B>@ÓlzÛy-cIFÀ1‘2öç=§Xlw5¨6•?wª4Â�2¦–šà ¿Ã»Â¥Ã¼Ã™Å¾Ã£Â¶Â¼â€™Å“¥×râ€�äãA¿÷{@çƒÃ�à “…˜¥!Ã�?^/ëçI3ÓÄýÙ®þ6ã}±¬òÚÄÃ�~W†·a|Ô
oÉǧEÓÅ¡Ã¥>©§oòK}Þ…å¿ëzËœwC+³
ôÌuˆŒÃ�uòǸ�´°‹²ÛT8—ôÃ�w…îà ƒÃ€~Ë%4äi7
E-ð]ØŠ¹Â4ÕìYȼ�¿@Ÿ¡ÖÜxj´T}ØÕ¿�¹® FOž·Å5ö%§vA¿ö©ø¡
üxÕ�«nrÜÊ.¾´<1ª<møv½ú–Ü{kD�Ö�sà Ü�ð^Àø
* ƒPÀ,Àa`°‹²ÛT8—ô�w…îÃÀ2…~Ë%4 äi7
E-ð]ØÅ ¹Â4ÕìYȼÂ�¿ï˜–FOž·Å5ö%§vA¿ö ©Ã¸Â¡
üxÕÂ�«nrÜÊ1ªmøv½ú–Ü{kD�Ö�sà ÃœÂ�ð^Æ’PÀ,Àa`°²ÛT8—ôÃ�w…îÃÀ2â €¦~Ë%4äi7
E-ð]ØÅ ¹Â4ÕìYȼÂ�¿@Ÿ¡ÖÜxj´T}ØÕ¿Â�¹®à ¯Ëœâ€“FOžvA¿ö©ø¡
üxÕ�«nrÜÊ
.¾´<1ª<møv�Ö�sà Ü�ð^Àø
* ƒPÀ,Àa`


WHY???

i'm working on making that junk information not show up

x|--> CWS <-- È xœuWiXSÉÒî’@€B‚Ê°P$a1ì (
ÙAȊȸ@"û¢8¢D *¨QFvö]6‡ˆ‚u..........[/code]

Hope it aint this --> Google Search - CWS virus (http://www.google.com/search?hl=en&q=CWS+virus&btnG=Search)

:( :eek: :o :)

But anyway, it does not work on Safari (for me either) so I guess by it not working in some browsers, that would be one form of protection (ha, ha) now if you can get it to not show up and work in IE & FF you have 100% security because no one can see the files or the website (ok, just kidding) but for real it does not show in Safari (for me either, as mentioned by others).

I am intrigued and interested, just wish I could participate. Would like to see it working in all browsers etc... You might also want to clarify whats the CWS refernece is ;-)

The CWS has nothing to do with any CWS virus. Promise.
And to be honest, if you look up any ancronym, you'll probably find a virus related to it lol.


As for the Safari issue, that is due to hotlinking. I'm working on a server method that will make my script method irrelevant, thus allowing it to work on all browsers.

The only way I can have the effect in tune without using the server method is to use the code I have which coincidently only lets it work on Firefox.


I'll have that fixed soon hopefully.

As for the Safari issue, that is due to hotlinking. I'm working on a server method that will make my script method irrelevant, thus allowing it to work on all browsers. The only way I can have the effect in tune without using the server method is to use the code I have which coincidently only lets it work on Firefox. I'll have that fixed soon hopefully.

Giddy up Matthew, looking forward to seeing it working in ALL! Sounds interesting, I'm intrigued. ;)

Are you hotlink protecting via .htaccess ? (just curious)

Giddy up Matthew, looking forward to seeing it working in ALL! Sounds interesting, I'm intrigued. ;)

Are you hotlink protecting via .htaccess ? (just curious)

Sort of. But not really.

i can't
:(

Sort of. But not really.

ah....ok? Well I'm looking forward to it running in ALL browsers regardless of the method used, but will be interested in that also! :)

i can't :(

I want to! But I need to have access to it first. But maybe even then I wont be able to since others arent having to much fun trying.

But I'm ready to start trying once the kinks are worked out regarding the browser compatibilities.

;)

*

ok... are you sure there are some variables inside the file???
i don't see any kind of variable or comment.

yeah theres a variable in it. I just tested.

How did you manage to come up with that file?

with all my methods i have tested i only get this characters (http://www.actionscript.org/forums/showpost.php3?p=634062&postcount=14) (driving me crazy)
and this charcters came from flash.php, view.php (not longer avalivable) and finily flash.asp
but with flash.asp i get an error that make me think that changing the extention of the file maybe i could get some info.
-----------------------------------------

eidted:
i have downloaded the file over and over and i get the same file.... i'm starting to think that there are no viariable :P
I have open all my swf and now i know that all that 'junk information' is the swf
CWS.qf..blabla

What file are you downloading?


------------------------------

I think you may have caught me between edits because you actually can't download the flash.asp file. If you clear you cache and try again, you should get a flash file that is 338 bytes which ends up being pretty wide when you open it with nothing in it.

Do you?


I was experimenting with methods before because of things working/not working/browser issues.. I gotta sacrifice some with this method, but I think its best.


What you were running into earlier were decoy files.

well... now i can't get any SWF... and there is no cache.
t+tt on the ASP but now is imposible to me to get the correct time :(
nice work.

ok cool. thats how it was but things were changing while i was fixing stuff so it'd be leaving cache.. and this and that.. so it wasn't right. but i think it is now

*

%

-----

:o

Well now it seems to be appearing in Safari, so good job with that! However now in Firefox the SWF has a border around it?

As for as a SWF, Variables etc... after a few attempts and peaks into the situation, I cant seem to get anything either, so again good job on that Matt. (I didnt try to go into ultra-hack mode, but nor will most the peeps who are the problem we are trying to stop with these methods, so again nice work).

A few general questions:

1.) Since you seem to be using an iframe to inject another document etc.., will this method work for various design structures, meaning by doing so will it provide issues in the design stage of using this method, for hybrid sites, or full flash sites? Maybe I dont know enough yet about what exactly you have implimedted to fully understand the implimentation of this approach to wrap my head around how things would work.

2.) Perhaps it is premature to ask this, but again will this same method offer the same capabiltes for external content loaded into the SWF, ie: images, xml, mp3 etc... in therory ? Just curious.

Again, nice work Matt, seems interesting thus far.

I will be interested in knowing more about your approach etc.. (if you plan to share :) ).

;)

A few general questions:

1.) Since you seem to be using an iframe to inject another document etc.., will this method work for various design structures, meaning by doing so will it provide issues in the design stage of using this method, for hybrid sites, or full flash sites? Maybe I dont know enough yet about what exactly you have implimedted to fully understand the implimentation of this approach to wrap my head around how things would work.

2.) Perhaps it is premature to ask this, but again will this same method offer the same capabiltes for external content loaded into the SWF, ie: images, xml, mp3 etc... in therory ? Just curious.

Again, nice work Matt, seems interesting thus far.

I will be interested in knowing more about your approach etc.. (if you plan to share :) ).


It works in more than just an iFrame method. The iFrame is for Internet Explorer users. The reason it has a border is because I didn't include the tag "frameborder=0". Otherwise it'd look just like an embed. It can also be embedded with "embed" or "object" with proper tweaking.

If you load XML files or Mp3s into Flash using the standard methods of loadMovie, loadSound, or whatever else .. it shouldn't protect anything. You'll be able to see those in the activity monitor. There are work-arounds however which would work like this Flash file, but I still have to hammer those out.

I mostly have to go through these files and remove useless code and clean up the process a little more. While I was experimenting and hurrying to fix things while it was already posted, there was some code left in it that isn't really necessary that I have to pinpoint. I wanna be 100% sure of the process used to do this.

I'm very glad to find that any attempt to download the file doesn't work :)


I know there are ways around all this, but I hope you can't find them. It seems so far, this method is the best out there.

:confused:

:confused:

Don't post your conclusions unless you post the method you used to get to the conclusions.

This is like school.. an answer without work isn't worth any points.

It works in more than just an iFrame method. It can also be embedded with "embed" or "object" with proper tweaking.

So your saying then, this method will work with SWFobject, SWFaddress etc... all the industry standards, methods and so on...

If you load XML files or Mp3s into Flash using the standard methods of loadMovie, loadSound, or whatever else .. it shouldn't protect anything. You'll be able to see those in the activity monitor. There are work-arounds however which would work like this Flash file, but I still have to hammer those out.

Well, if you can hammer it out and also get this to work with images and mp3 files then those would be great features to have!!! That would be awesome if possible.

I know there are ways around all this, but I hope you can't find them.

Matt, so whats the next phase if this continues to prove to be a viable method, are you gonna continue to clean the code up and develop things further I assume, then what? Are you planning a tutorial, documentation and source code as you originally mentioned and hinted about in the original thread? (http://www.actionscript.org/forums/showpost.php3?p=628773&postcount=24)

So your saying then, this method will work with SWFobject, SWFaddress etc... all the industry standards, methods and so on...

I have to look into it more. It might take an altered version of the SWFObject where it changes what gets embedded but it might. I rushed things last night but I think for it to work on IE it needs to be in an IFrame instead of an embed tag. It DOES work in an Object tag but I have to check to see if that makes it vulnerable to SWFCatchers. SWFCatchers check for object flash codebase, but even still.. I'm not positive yet if it'll matter.

EDIT:
It's going to need a different version of SWFObject if you intend to use it. The SoThink catchers read for the object classid of Flash. Which when you embed with Object/Embed method, it will be caught. I can either work on a way to try and avoid that or just use iframes. It doesn't pick up on the iframes.

There's ups and downs. The embed tag will not cache. The iframe will disk cache but will save a corrupted/useless file. Either way is god but SoThink reads the embed files and can get them. That needs to either be adjusted or avoided.


Well, if you can hammer it out and also get this to work with images and mp3 files then those would be great features to have!!! That would be awesome if possible.

It'll be tough, if even possible. I'll have to check and work on it but I'm actually doubting it, but anythings possible I suppose.



Matt, so whats the next phase if this continues to prove to be a viable method, are you gonna continue to clean the code up and develop things further I assume, then what? Are you planning a tutorial, documentation and source code as you originally

With further testing and fine tuning and stuff, if everything is still good and works I'll provide source and tutorials here at AS.org. There are still a lot of bases to be covered with this.

It'll be tough, if even possible. I'll have to check and work on it but I'm actually doubting it, but anythings possible I suppose.

Just so you know my thoughts on this, say your doing a site for a artist, photographer, or musician and then at times the content becomes more important that some actionscript code (of course its important also), that was my thought regarding this. You see it being discussed alot also by flash developers across various forums, regarding protecting the external content being served. I know that would take some work, but it was just of thought. Again I dont know what methods you got going but just wanted to through out the idea if it would be possible, it would have some definite value for developers on some projects perhaps. If not then, oh well :(

With further testing and fine tuning and stuff, if everything is still good and works I'll provide source and tutorials here at AS.org. There are still a lot of bases to be covered with this.

Sounds good Matt, but yeah I understand mucho testing, refinements are needed before a tutorial saying that its finito and ready for the masses including the professional swf crack makers ;)

Thanks for your time Matt, I am interested how this is all gonna end up turning out.

I'll do what I can considering I'm juggling this, MARA and work.. and trying to have a life.

In terms of images being protected and stuff.. It might be possible but highly doubtful. Even if you load the images in a special way that you can't find the link to them, whats to stop someone from taking a screen capture? People have free software that records anything coming out of your speakers, any video playing etc.. I don't think preventing that is really possible.. The only one that I think might be is video. Audio and images are easily ripable 100% and its unpreventable.

Nothing'll be 100% secure but we can hope it lasts for a little while lol.

Nothing'll be 100% secure but we can hope it lasts for a little while lol.

Are bets opened for how long? ;)

Are bets opened? ;)

Depends on your bet. :)

What would really impress me is something that fools a packet sniffer (e.g. wireshark). If you're loading images then from the perspective of a packet sniffer they're very easy to recognize / save. Even across SSL there are ways to use a packet sniffer (there's one that embeds in IE, but I don't remember the name).

What would really impress me is something that fools a packet sniffer (e.g. wireshark). If you're loading images then from the perspective of a packet sniffer they're very easy to recognize / save. Even across SSL there are ways to use a packet sniffer (there's one that embeds in IE, but I don't remember the name).

Yeah i have a method underway to do that

I got the same .swf file as Spock using wireshark.

CWS is a compressed swf file. Here is the uncompressed version. Wasn't able to find the variable.

I got the same .swf file as Spock using wireshark.

CWS is a compressed swf file. Here is the uncompressed version. Wasn't able to find the variable.
yes... it's the same file i found...
and i keep finding
O_ó

Any further progress or updates on this project / challenge ? Just curious.

Flash Decompliation Challenge

Hi mattkenefick,

:confused: I was wondering is there going to be any follow-up, update, further info, or even the tutorial and source as your originally mentioned you would provide on this process? Or were we just guinea pigs for the process. Seriously this would be great to know, how about some feedback on the subject!

:) Thanks again for all your time and effort mattkenefick.

Sorry! I've been gone for a while. I'll follow-up on this soon.
It's good to be back.

Sorry! I've been gone for a while. I'll follow-up on this soon. It's good to be back.

Hi Matt, welcome back! Looking forward to your follow-up, thanks so much.

Sorry! I've been gone for a while. I'll follow-up on this soon. It's good to be back.

Seems like you didnt stay long after coming back ? :) Any update/input, still planning to follow up soon? ;)

(08/21/2007) - Sorry! I've been gone for a while. I'll follow-up on this soon.

Hey mattkenefick (11/30/07),

I see your back around again... how about that follow-up you talked about? Would be really nice to see what you were working on etc.... care to follow-up and share ?? Originally you said you would do a tutorial etc... what happened? Your method seemed interesting... I would like to know more (and no doubt others would also).

:) Thanks!

gah... this is like the worst edge-of-the-seat anticipation build up ever! Come back Matt! :)