Everyday we install and uninstall so many software from various sources in our computer. When we install a software with extended privilege, that software can change lots of different types of settings in your computer that you don’t know until you investigate. Because of the changes they made, you should be aware of that. And to investigate the changes made by newly installed software is a pretty hard job and it requires advanced knowledge. But to maintain system security you need to know every changes made on your system and this tools will do a pretty good job.
Attack Surface Analyzer was such a tool developed by Microsoft to prepare a report of all changes made by any application that installed on your system. This was an important tools since it was first released on 2012.
The classic Attack Surface Analyzer 1.0 was released in 2012 to help software developers and IT professionals identify changes made to Windows operating systems during application installationsGuy Acosta, Security Program Manager II, Customer Security and Trust
On May 15, 2019 Microsoft released all new version of Attack Surface Analyzer 2.0. Microsoft security team rewrote the tool to take benefit from modern, cross-platform technologies like .NET Core and Electron. And most importantly you can install Attack Surface Analyzer 2.0 on Windows, Linux and macOS operating system. The Microsoft team also made that tools available on GitHub as open-source under MIT license.
According to that blog post, Attack Surface Analyzer 2.0 can detect various types of changes in any system that includes –
- File System
- User Accounts
- System Services
- Network Ports (listeners)
- System Certificate Stores
- Windows Registry
Download Attack Surface Analyzer 2.0
You can visit Microsoft official download page to download Microsoft Attack Surface Analyzer 2.0 and don’t forget to run the scan.
Contribute in GitHub
Tech Matra team investigated the GitHub project repository. There were 6 contributors as of today on that project and the commits are regular.