https://github.com/Microsoft/AttackSurfaceAnalyzer

Skip to content
 
Sign up

  * Why GitHub?
    Features -
      + Mobile -
      + Actions -
      + Codespaces -
      + Packages -
      + Security -
      + Code review -
      + Project management -
      + Integrations -
      + GitHub Sponsors -
      + Customer stories-
  * Team
  * Enterprise
  * Explore
      + Explore GitHub -

    Learn and contribute

      + Topics -
      + Collections -
      + Trending -
      + Learning Lab -
      + Open source guides -

    Connect with others

      + The ReadME Project -
      + Events -
      + Community forum -
      + GitHub Education -
      + GitHub Stars program -
  * Marketplace
  * Pricing
    Plans -
      + Compare plans -
      + Contact Sales -
      + Education -

[                    ] [search-key]

  *  
    #
    In this repository All GitHub |
    Jump to |

  * No suggested jump to results

  *  
    #
    In this repository All GitHub |
    Jump to |
  *  
    #
    In this organization All GitHub |
    Jump to |
  *  
    #
    In this repository All GitHub |
    Jump to |

Sign in
Sign up
{{ message }}

microsoft / AttackSurfaceAnalyzer

  * Notifications
  * Star 1.7k
  * Fork 188

Attack Surface Analyzer can help you analyze your operating system's
security configuration for changes during software installation.

MIT License
1.7k stars 188 forks
Star
Notifications

  * Code
  * Issues 34
  * Pull requests 0
  * Actions
  * Projects 3
  * Wiki
  * Security
  * Insights

More

  * Code
  * Issues
  * Pull requests
  * Actions
  * Projects
  * Wiki
  * Security
  * Insights

main
Switch branches/tags
[                    ]
Branches Tags
Could not load branches
Nothing to show
{{ refName }} default View all branches
Could not load tags
Nothing to show
{{ refName }} default
View all tags
7 branches 202 tags
Code
 
Clone
HTTPS GitHub CLI
[https://github.com/m]

Use Git or checkout with SVN using the web URL.

[gh repo clone micros]

Work fast with our official CLI. Learn more.

  * Open with GitHub Desktop
  * Download ZIP

Launching GitHub Desktop

If nothing happens, download GitHub Desktop and try again.

Go back

Launching GitHub Desktop

If nothing happens, download GitHub Desktop and try again.

Go back

Launching Xcode

If nothing happens, download Xcode and try again.

Go back

Launching Visual Studio Code

Your codespace will open once ready.

There was a problem preparing your codespace, please try again.

Latest commit

@daalcant @gfs
daalcant and gfs Fix package content for ASA (#586)
...
0e3c7e1 Jun 4, 2021
Fix package content for ASA (#586)

Update content root for Release configuration
Update ASA css path
Update release pipeline to use dotnet publish for netcoreapp

Co-authored-by: Gabe Stocco <98900+gfs@users.noreply.github.com>

0e3c7e1

Git stats

  * 641 commits

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
.github
Update codeql-analysis.yml
Dec 2, 2020
Benchmarks
Da/style 2 (#578)
May 25, 2021
Cli
Fix package content for ASA (#586)
Jun 4, 2021
Lib
Gfs/#579 (#583)
May 26, 2021
Pipelines
Fix package content for ASA (#586)
Jun 4, 2021
Tests
Gfs/#579 (#583)
May 26, 2021
Tools
Docker tooling.
Oct 8, 2019
docfx
Gfs/docfx publish (#545)
Sep 9, 2020
.editorconfig
Address Roslyn Warnings. (#356)
Feb 18, 2020
.gitattributes
First code commit.
Mar 26, 2019
.gitignore
Adds Benchmarks (#367)
Mar 30, 2020
AttackSurfaceAnalyzer.sln
Rewritten GUI (#533)
Aug 21, 2020
AttackSurfaceAnalyzer.sln.licenseheader
Adding license headers.
Mar 29, 2019
BUILD.md
Fix package content for ASA (#586)
Jun 4, 2021
CONTRIBUTING.md
Add files via upload
Mar 28, 2019
Directory.Build.props
Bump nbgv to fix codeql (#562)
Nov 26, 2020
LICENSE.txt
Gfs/add win7 support (#28)
Apr 1, 2019
NOTICE.txt
Update NOTICE, Add CG detection (#403)
Apr 27, 2020
NuGet.Config
Da/style 2 (#578)
May 25, 2021
README.md
Update Readme.md (#581)
May 25, 2021
SECURITY.md
Create SECURITY.md
May 22, 2020
SUPPORT.md
Create SUPPORT.md
Jun 9, 2020
analyses.json
Rewritten GUI (#533)
Aug 21, 2020
icon-128.png
Expand Analysis Capablities (#374)
Apr 11, 2020
version.json
Gfs/#579 (#583)
May 26, 2021
View code
Attack Surface Analyzer Getting Attack Surface Analyzer Documentation
New Features in 2.3 Overview Core Features How to Use Attack Surface
Analyzer CLI Mode GUI Mode Building Versions Contributing Reporting
Security Issues License

README.md

 Attack Surface Analyzer

Attack Surface Analyzer is a Microsoft developed open source security
tool that analyzes the attack surface of a target system and reports
on potential security vulnerabilities introduced during the
installation of software or system misconfiguration.

 Getting Attack Surface Analyzer

CodeQL Nuget Nuget

If you have the .NET Core SDK installed you can install Attack
Surface Analyzer with dotnet tool install -g
Microsoft.CST.AttackSurfaceAnalyzer.CLI.

Platform specific binaries for Attack Surface Analyzer are
distributed via our GitHub releases page.

 Documentation

Documentation is available on the Wiki.

Documentation for the API is available on GitHub Pages.

 New Features in 2.3

  * New Blazor GUI with Rule Authoring and Testing Sandbox
  * New Collectors
  * Improved collection and analysis performance.
  * Support for C# 9/.NET 5

 Overview

Attack Surface Analyzer 2 replaces the original Attack Surface
Analyzer tool, released publicly in 2012.

Potential users of Attack Surface Analyzer include:

  * DevOps Engineers - View changes to the system attack surface
    introduced when your software is installed.
  * IT Security Auditors - Evaluate risk presented by when
    third-party software is installed.

 Core Features

The core feature of Attack Surface Analyzer is the ability to "diff"
an operating system's security configuration, before and after a
software component is installed and to run arbitrary complex rules on
the results to surface interesting findings. This is important
because most installation processes require elevated privileges, and
once granted, can lead to unintended system configuration changes.

Attack Surface Analyzer currently reports on changes to the following
operating system components:

  * File system (static snapshot and live monitoring available)
  * User accounts
  * Services
  * Network Ports
  * Certificates
  * Registry
  * COM Objects
  * Event Logs
  * Firewall Settings
  * Wifi Networks
  * Cryptographic Keys
  * Processes
  * TPM Information

All data collected is stored in a set of local SQLite databases.

 How to Use Attack Surface Analyzer

Run the following commands in an Administrator Shell (or as root).
Replace asa with asa.exe as appropriate for your platform.

 CLI Mode

To start a default all collectors run: asa collect -a

To compare the last two collection runs: asa export-collect

For other commands run: asa --help

 GUI Mode

For the GUI interface run: asa gui and a browser window should open
directed at http://localhost:5000 with the web based interface.

Detailed information on how to use Attack Surface Analyzer can be
found on our wiki.

 Building

To build Attack Surface Analyzer, see BUILD.

 Versions

The latest public version of Attack Surface Analyzer with public
builds is 2.3 (see Release\v2.3).

2.4 is now in development on the main branch. You can see the
features coming here.

 Contributing

This project welcomes contributions and suggestions. Most
contributions require you to agree to a Contributor License Agreement
(CLA) declaring that you have the right to, and actually do, grant us
the rights to use your contribution. For details, visit https://
cla.microsoft.com.

When you submit a pull request, a CLA-bot will automatically
determine whether you need to provide a CLA and decorate the PR
appropriately (e.g., label, comment). Simply follow the instructions
provided by the bot. You will only need to do this once across all
repos using our CLA.

This project has adopted the Microsoft Open Source Code of Conduct.

For more information see the Code of Conduct FAQ or contact
opencode@microsoft.com with any additional questions or comments.

 Reporting Security Issues

Security issues and bugs should be reported privately, via email, to
the Microsoft Security Response Center (MSRC) at secure@microsoft.com
. You should receive a response within 24 hours. If for some reason
you do not, please follow up via email to ensure we received your
original message. Further information, including the MSRC PGP key,
can be found in the Security TechCenter.

 License

Attack Surface Analyzer 2 is licensed under the MIT license.

About

Attack Surface Analyzer can help you analyze your operating system's
security configuration for changes during software installation.

Topics

security-tools attack-surface

Resources

Readme

License

MIT License

Releases 202

 
v2.3.146-beta Latest
Jun 5, 2021
+ 201 releases

Packages 0

No packages published

Contributors 8

  * @gfs
  * @daalcant
  * @guyacosta
  * @scovetta
  * @microsoftopensource
  * @msftgits
  * @0xflotus
  * @FardinA143

Languages

  * C# 87.4%
  * HTML 10.6%
  * Other 2.0%

  * (c) 2021 GitHub, Inc.
  * Terms
  * Privacy
  * Security
  * Status
  * Docs

 

  * Contact GitHub
  * Pricing
  * API
  * Training
  * Blog
  * About

You can't perform that action at this time.
You signed in with another tab or window. Reload to refresh your
session. You signed out in another tab or window. Reload to refresh
your session.