Microsoft has announced the release of Attack Surface Analyzer, a new free tool for developers that helps them secure their applications. “The tool also gives an overview of the changes to the system Microsoft considers important to the security of the platform and highlights these in the attack surface report,” explained Microsoft’s David Ladd. Specifically, the tool looks for changed or newly added files, registry keys, services, ActiveX controls, listening ports, and access control lists.
[login]
Microsoft also updated several of its secure development tools this week, including its SDL Threat Modeling Tool and its SDL Binscope Binary Analyzer.