Microsoft’s Attack Surface Analyzer tool released
| by tech2 News Staff |
Last year, Microsoft had announced the beta version to its Attack Surface Analyzer tool. Now the beta stage is complete as Attack Surface Analyzer 1.0 is available for download. The purpose of this tool is to help software developers, independent software vendors (ISVs) and IT professionals better understand changes in Windows systems’ attack surface resulting from the installation of new applications. Since the launch of Attack Surface Analyzer, the company has received positive feedback about the value it has provided to customers. Attack Surface Analyzer tool can be downloaded here.
This release includes performance enhancements and bug fixes to improve the user experience. Through improvements in the code, Microsoft was able to reduce the number of false positives and improve Graphic User Interface performance. This release also includes documentation and guidance to improve ease of use.
Attack Surface Analyzer released
The Attack Surface Analyzer tool is designed to assist independent software vendors (ISVs) and other software developers during the verification phase of the Microsoft Security Development Lifecycle (SDL) as they evaluate the changes their software makes to the attack surface of a computer. As Attack Surface Analyzer does not require source code or symbol access, IT professionals and security auditors can also use the tool to gain a better understanding of the aggregate attack surface change that may result from the introduction of line-of-business (LOB) applications to the Windows platform.
The Attack Surface Analyzer enables:
Unlike many tools that analyze a system based on signatures or known vulnerabilities, Attack Surface Analyzer looks for classes of security weaknesses Microsoft has seen when applications are installed on the Windows operating system, and it highlights these as issues. The tool also gives an overview of changes to the system that Microsoft considers important to the security of the platform and highlights these changes in the attack surface report. Some of the checks performed by the tool include analysis of changed or newly added files, registry keys, services, Microsoft ActiveX controls, listening ports and other parameters that affect a computer's attack surface.
The tool has a stand-alone wizard to help guide users through the scanning and analysis process; a command-line version supports automation and older versions of Windows, and assists IT professionals as they integrate the tool with existing enterprise management tools.
Tags: Microsoft Attack Surface Analyzer , Microsoft , Attack Surface Analyzer download , Attack Surface Analyzer x86 , Attack Surface Analyzer x64 , Attack Surface Analyzer features , Attack Surface Analyzer antivirus
We could have another debacle like Aliens: Colonial Marines on our hands...
Leaked Images, Availability, Pricing,
We bring you a handful of useful tips and tricks to get more out of your...
By Team tech2
Pirated or legal, the vast majority of us use Microsoft Office. It’s...
Methods to implement to hide your IP address whilst on the Internet
By Francis D'sa
Thu Dec 12, 17:43:18
Thu Dec 12, 17:40:34
Thu Dec 12, 17:26:34