Attack Surface Analyzer (64 bit)

Attack Surface Analyzer (64 bit)

Attack Surface Analyzer is a newly released tool from Microsoft that allows users to easily detect sensitive security changes of the Windows operating system.

More specifically, Attack Surface Analyzer allows displaying any additional files, registry keys, ActiveX drivers and indicating the server's open ports when users are worried about security. inside your system, especially after installing a certain software. In addition, it is also tasked with evaluating the configuration access privileges for the added files.

Create system image files for comparison

Basically, Attack Surface Analyzer will go through 2 steps of taking a picture of the system, one is the image file before installing a software and the other is the image file after installation. Based on these two snapshots, users can identify the changes, thereby assuring that their system has been compromised or not. The program stores reports in a compressed file format * .cab.

After starting the software, users should proceed to create a * .cab file taking a system image before proceeding to install a certain software. To do this, first click on the Run new scan option in the Please select an action section as well as declare the location of the * .cab file to back up the system image by clicking the Browse button of the Name of CAB file to generate field. in the Select options section. Then click the Run Scan button at the bottom to conduct a system scan.

After performing a system snapshot before installing certain software, users proceed to create a new backup point after having installed a software on their system as a * .cab file.

Make comparisons

Now, to compare between the two system points before and after installing the software, users first click on the Generate Attack Surface Report option in the Please select an action section. Now, in the Select options section, users click the Browse button of the Baseline Cab field to point to the * .cab file containing the system image when the operation is stable. Then click the Browse button in the Product Cab field to point to the * .cab file containing the image of the system after installing the software.

After the declaration is finished, please click the Generate button to proceed for the test program, this information will be exported in the * .mht file format to view in a web browser, the path information will be saved. In the Report Filename field, users can change this link by clicking the Browse button.

After the scan is complete, open the * .mht file created to view the comparisons. There are 3 columns of information appear for users to observe.

- Report Summary: provides information about 2 * .cab files that users compare, along with information about the configuration of the system.
- Security Issues: provides information related to the security issues of the system, users can rely on it to know if their system can face security dangers or risks.

- Attack Surface: a place to report changes related to the system surface, which is very helpful for developers to change the impact of applications on the Windows operating system platform surface. reports, users need to accept ActiveX readability enabled for their web browser.

Overall, the Attack Surface Analyzer is a very useful application for those who are concerned about security. The beta version of the application is somewhat limited as the message file is somewhat unimpressive, presented only at a rough level only.

Pactimza