News

Microsoft SDL verifier tool available as free download

Cliff Saran

Microsoft has released Attack Surface Analyzer beta, a tool the company has used internally for five years to help IT departments tackle IT security.

The Microsoft verification tool highlights changes in system state, runtime parameters and securable objects on the Windows operating system. This analysis helps developers, testers and IT professionals identify increases in the attack surface caused by installing applications on a machine, Microsoft said.

The tool takes snapshots of an organisation's system and compares ("diffing") these to identify changes.

Microsoft uses the Attack Surface Analyzer beta for the verification phase of its Security Development Lifecycle (SDL). By making the tool available, Microsoft hopes developers will be able to use it to verify that they have built and deployed their applications in accordance with Microsoft's SDL guidelines


Email Alerts

Register now to receive ComputerWeekly.com IT-related news, guides and more, delivered to your inbox.
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
 

COMMENTS powered by Disqus  //  Commenting policy