SWF Decrypt: Unprotect SWF files

April 5, 2010 Magus 18 comments

Not all protected SWF files. But the AS3 ones that are claimed to be protected by SWF Encrypt from Amayeta and SWF Protector from DComSoft. This should be really embarrassing to some people, but an eye-opener for the rest of the community.

For years, Amayeta had charged developers $145 for SWF Encrypt. Last week, I’ve put it to the test and SWF Decrypt was born. While at it, I took a stab at SWF Protector from DComSoft, newer but gaining popularity, and reversed their protection too. I’m publishing SWF Decrypt to share my findings and help spread awareness. I do not think it is an unethical or a hacker tool. I’m just uncovering what many people thought was protecting their work from Flash decompilers.

I also hope that SWF Decrypt will encourage the authors of SWF Encrypt and SWF Protection to implement real code obfuscation methods. Until they do, I can recommend to use other solutions that at least can rename classes and variables. If the software that you are using can rename classes, then you can tell it is using at least one code obfuscation method that works. Notice that SWF Decrypt does not recover renamed variables by Amayeta. There is no way to recover that. But from what I hear, their variable renaming method does not work for most people.

SWF Decrypt does not specifically target SWF Encrypt and SWF Protection. It reverses the lame techniques they use and probably used by other products as well. I didn’t test all the products available in the market yet. But I encourage everyone to share their findings in the comments section here.

SWF Decrypt is a freeware and can be freely distributed. I did not make it open source yet to prevent Amayeta and DComSoft from knowing how I managed to easily reverse their protection. I plan to mess with them for a while

SWF Decrypt Amayeta, DComSoft, SWF Decrypt, SWF Encrypt, SWF Protection

#1 | Written by Rasmus Wriedt Larsen about 2 years ago.

I’m glad you’re sharing this, and it pisses me off as these products aren’t better than it seems. I’m a little concerned about the release of the software, it might hurt a lot of developers. I don’t have any better ideas of getting attention to this subject though, as it wouldn’t really matter that much if you just said you did it, but couldn’t prove it.

I would very much like you to try and do the same thing with the Kindisoft software, from what I understand they’re the real deal!

In the meantime, if people want to do some protection themselves (as these companies apparently are completely worthless now), check out this tutorial: http://active.tutsplus.com/tutorials/workflow/protect-your-flash-files-from-decompilers-by-using-encryption/

I’ll be sure to help spread the word
#2 | Written by admin about 2 years ago.

I don’t know any better way to make people aware of this either. Plus, someone was going to do it sooner or later.

The tutorial is really good. But you need to follow all the steps down to 14.
#3 | Written by Worries about 2 years ago.

Hello dear

tank you for this Tool it’s very nice and you are smart

but i have swf file it incrypt with other teachnical other then amayata and i hope you help me decrypt it

you can contact me on my email if you want to help me.

thank you.
#4 | Written by Kevin about 2 years ago.

Hi

SWF Decrypt is not working on my laptop, everytime and drop the swf file into the window. Swf Decrypt says “Sorry something went wrong with recovery”.

Please Mail me

Thanks in advance
#5 | Written by Magus about 2 years ago.

@kevin, I sent you an email.
#6 | Written by Worries about 2 years ago.

i’ve the same problem it says “Sorry something went wrong with recovery”.
#7 | Written by Cristian about 2 years ago.

Tools works with AS3 only so error is because you are trying to recover swf with AS2

Magus where is support? May be you need more employees?
#8 | Written by ciao about 2 years ago.

Great work!!! I agree that SWF obfuscation is a fruitless attempt given the open nature of the SWF format. I despise companies that charge hundreds of dollars for some useless “protection mechanisms”. Keep up the effort! I am working on a project that deals with actionscript bytecode as well, so please feel free to drop me a line if you want to discuss ideas.
#9 | Written by Magus about 2 years ago.

Thanks for stepping by Ciao. I’m looking forward to seeing your work.

I disagree with you though. SWF format is just as open as Java and .NET. Why do they have many obfuscators that are working really well (some are open source) while we are dogged by worthless ones?
#10 | Written by Andreas Renberg about 2 years ago.

I can’t seem to find a “contact” link, so this will have to do.

I’m working on a “SWF Encryption/Decryption/Protection” themed month on my blog, considering how many of my bookmarks in that category are starting to add up, and how much of that information has been passing my desk lately.

I stumbled across your blog while doing some further research, and the information so far has been interesting, though I still haven’t tried the SWF Decryption program (Sadly, I’m in Linux, so I might not be able to)

I was wondering if you had any information you wanted to contribute that I can publish or link to, or if you had any good links on the matter you could share.

Cheers,
Andreas J. Renberg
#11 | Written by Magus about 2 years ago.

Hi Andreas,

Sounds like a good idea. Let me know if you have any questions that you want me to answer. You can reach me on magus at this domain.

You can run SWF Decrypt on Linux using the Mac version. Just extract the archive and run the following command:
java -jar SWF\ Decrypt.app/Contents/Resources/Java/SwfUnprotector.jar

SWF Decrypt is a java application. I was just too lazy to create a linux package and didn’t really think that anyone will need it.
#12 | Written by laguna about 1 year ago.

SWF Decrypt is not working on my pc, everytime and drop the swf file into the window. Swf Decrypt says “Sorry something went wrong with recovery”.
And also I click the button, but nothing happen.

I’m using win 7 64 bit.
Pls help.
Thx
#13 | Written by saksham about 1 year ago.

Hey mate

Great work there, before trying your application I wish to know if that really works on exe files that has been the file extension of the files I want to decrypt. As per software it is decrypted using swf protector. Any solutions for that? Would be great
#14 | Written by javid about 1 year ago.

Hi
Can you check Flash Secure Optimizer from eramsoft.com i will purchase it but don’t know it is secure.

Please check it.

Thanks.
#15 | Written by pollette78 about 1 year ago.

hi

I download it for Mac os X 10.5.8, it starts to open and suddenly closes down

please help
#16 | Written by manoj about 1 year ago.

can u help in cracking one swf which has been protected

we have tried several way but we are unable to crack it

it would be of great help if you can do it i am ready to provide you with the protected and the nonprotected swf

pls try to help me asap as i am in urgent need

thanks regards
manojshivalkar@yahoo.com
#17 | Written by Magus about 10 months ago.

No!
#18 | Written by Magus about 10 months ago.

Make sure you have Java configured correctly

SWF Encryption Uncovered

SWF Decrypt: Unprotect SWF files

Leave a Comment

SWF Decrypt

Recent Posts

Twitter

Comments

Search

Meta