Hello all, this is Monty LaRue posting with some SDL related tools news. Microsoft has recently released an updated version of the Web Application Configuration Analyzer (WACA). While this tool isn’t intended to satisfy specific SDL requirements, it is valuable for performing best practices checks on your web application’s configuration. The checks span the Windows, IIS, ASP.NET, and SQL Server aspects of a deployment and are derived from standards that Microsoft uses to harden production servers. WACA is a good complement to the Attack Surface Analyzer tool which is applicable within the SDL Verification Phase.
Youth, Parents, Teachers, Schools: Take Note of a New Online Bullying Report
As online meanness and cruelty continue to garner global attention, parents, educators, and school officials … Read more »
Now available – "Windows Server 2012 Security from End to Edge and Beyond"
You might recall back in November, I wrote an article that discussed a new book … Read more »
Banned APIs and Extending the Visual Studio 2010 Editor
It gives me great pleasure to introduce Tim Burrell from our team based in Cheltenham, … Read more »