The Register® — Biting the hand that feeds IT

Feeds

Microsoft unleashes Windows attack tool

Attack Surface Analyzer explains what apps do to your beautiful Windows installation

By Simon Sharwood, APAC Editor, 3rd August 2012
  • print
  • alert

Customer Success Testimonial: Recovery is Everything

Developers, developers …. *&^%%!!# developers who break Windows!

That may well be a refrain that motivated Redmond to release a new software tool, Surface Analyzer 1.0, which explains how new apps impact Windows’ ability to repel the various varieties of naughtyware.

Microsoft explains the tool’s powers thusly:

Attack Surface Analyzer looks for classes of security weaknesses Microsoft has seen when applications are installed on the Windows operating system, and it highlights these as issues. The tool also gives an overview of changes to the system that Microsoft considers important to the security of the platform, and it highlights these changes in the attack surface report. Some of the checks performed by the tool include analysis of changed or newly added files, registry keys, services, Microsoft ActiveX controls, listening ports and other parameters that affect a computer's attack surface.

Redmond expects developers will find the new application useful to fine tune their wares before imposing new worries on real, live, end-users. IT departments are also expected to find the tool useful.

The new version of Attack Surface Analyzer is a full 1.0 release, taking the tool out of beta. You can grab it here. ®

Ensure Ease of Recovery with Asigra’s Agentless Software

COMMENTS

House Rules Send Corrections
All Reader Comments (22)
Highly Rated
Anonymous Coward
Anonymous Coward
Reply Icon

Re: CRITICAL SECURITY ISSUE: Windows located on computer

"That's why, when I search for "Linux Security" there isn't a single result returned."

Stop using Bing !

11
0
Stuart Longland

They should have been doing this years ago

Given the complexity of the modern Windows operating system today, such a tool would have probably saved us all a lot of trouble.

10
0
h4rm0ny
Reply Icon

Re: Of course...

Yes, but it's the same principle as Open Source - better to find the weaknesses and fix them, rather than trust that others wont find them.

8
0

More from The Register

breaking news
NSA PRISM snoop-gate: Won't someone think of the children, wails Apple
10,000 things probed, mostly about missing kids, Alzheimer patients, we're told
96
breaking news
NSA PRISM-gate: Relax, GCHQ spooks 'keep us safe', says Cameron
Whatever they are up to, it's all above board, we're told
90
PRISM snitch claims NSA hacked Chinese targets since 2009
Snowden suddenly looks safer in Hong Kong after revelations
33
breaking news
US chief spook: Look, we only want to spy on 6.66 BEELLLION of you
Americans assured they are not in the NSA's sights
68
Speech-to-text drives motorists to distraction
Will talking to you mean I crash into that car up ahead, Siri?
30
DHS warns of vulns in hospital medical equipment
Has your doctor's anasthesia machine been hacked?
17
breaking news
'BadNews is malware' says outfit that found it
Google says code harmless but Lookout says code base is evolving
15
Panda-peddlers cuffed for chess gambling gambit
More porridge on the menu for Chinese coders after second offence
13
breaking news
Yes, maybe we should keep hackers in the clink for YEARS, mulls EU
Watch out black hats, they just might throw away the key
39
Microsoft borks botnet takedown in Citadel snafu
Stupid Redmond kicked over our honeypots, wail white hats
19