An anonymous reader writes: "The final release of JavaSnoop 1.0 came on Monday, after months of revisions and fixes since it was first announced at Black Hat this summer. The tool is the creation of Arshan Dabirsiaghi, director of research at Aspect Security, and it's meant to give developers, researchers and other interested parties the ability to do a number of interesting things with Java applications that normally aren't possible without having the source code at hand.
"The whole idea of JavaSnoop is to turn theoretical vulnerabilities into real vulnerabilities," he said in his presentation at Black Hat. "Theoretical vulns don't really get fixed at the same rate that real vulns do."