Download: New security tool ‘Attack Surface Analyzer’ from Microsoft

Microsoft has relased a new security tool, Attack Surface Analyzer, designed to analyze changes to Windows Attack Surface and it’s available for download at the Microsoft Download Centre.

Attack Surface Analyzer is the same tool used by Microsoft’s internal product teams to catalogue changes made to the operating system by the installation of new software.

The tool gives an overview of the changes to the system Microsoft considers important to the security of the platform and highlights these in the attack surface report. The Microsoft Security Development Lifecycle (SDL) requires development teams to define a given product’s default and maximum attack surface during the design phase to reduce the likelihood of exploitation wherever possible. Additional information can be found in the Measuring Relative Attack Surface paper.

The tool allows:
– Developers to view changes in the attack surface resulting from the introduction of their code on to the Windows platform

– IT Professionals to assess the aggregate Attack Surface change by the installation of an organization’s line of business applications

– IT Security Auditors evaluate the risk of a particular piece of software installed on the Windows platform during threat risk reviews

– IT Security Incident Responders to gain a better understanding of the state of a systems security during investigations (if a baseline scan was taken of the system during the deployment phase)

Usage:
– To run Attack Surface Analyzer, you will require Administrator privileges on the computer.
– You can either analyze the results on the computer you generated your scans from, or copy the CAB files to another computer for analysis.

Download: Microsoft Attack Surface Analyzer – Beta (x64)

Thanks: Anand.

This article Download: Free EMET Microsoft security tool might also interest you!

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: