Home > Others

[Original] Microsoft baseline security analyzer tool Introduction

Source: Internet
Author: User
Tags microsoft baseline security analyzer
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

[Original] Microsoft baseline security analyzer tool Introduction

 

As we all know, when conducting security testing, you can start with deployment and infrastructure, input verification, identity verification, authorization, configuration management, sensitive data, session management, encryption, parameter operations, exception management, review, and logging.. Today I would like to recommend a free security leak scanning tool Microsoft Baseline Security Analyzer Microsoft mbsa on Windows.

1. What is mbsa?
It is a free security and vulnerability assessment scanning tool for administrators, security auditors, and IT professionals. This tool allows you to scan one or more windows-based computers to detect Common Security Configuration errors. Mbsa scans Windows-based computers and checks the operating system and other installed components (such as IIS and SQL Server) to detect security configuration errors, and patch it through recommended security updates in a timely manner
.

2. Why should we learn mbsa?

For security testing, we can start with deployment and infrastructure to discover known potential problems, which can effectively improve the risk of system vulnerabilities. Suppose you deploy the operating system, database, server software configuration is not secure,ProgramCodeWhat is the use of excellence.

3 mbsa Official WebsiteHttp://www.microsoft.com/
4 mbsa:Http://www.microsoft.com/en-us/download/details.aspx? Id = 7558
5 mbsa features:
5.1 Check System Configuration
A Windows Operating System
B Internet Information Server
C Microsoft SQL Server
5.2 Security Update

6 scan modes and types
1 single computer
2 computers

6.1 scan type introduction:
1 mbsa typical Scan
A typical scan of mbsa performs a scan and saves the results in a separate XML file. This allows you to view the results in the mbsa GUI. These scans include a full set of available Windows, IIS, SQL, and security update checks.
You can easily sort the reports by computer name, scan date, IP address, or security evaluation. This feature allows you to easily compare Security scans over a period of time.

2 HFNetChk typical Scanning
A typical HFNetChk scan only checks for missing security updates and displays the scan results in the command line window in text format.

3. Network Scanning
Mbsa can remotely scan up to computers from a central computer at the same time. Mbsa is designed to have local management permissions on each computer that is scanned.

7 Introduction to other plug-ins
Microsoft Office Visio 2007 connector for Microsoft Baseline Security Analyzer (mbsa) 2.1 allows you to clearly view the scan results of mbsa.
official: http://download.microsoft.com/download/8/2/8/8285687b-437b-492b-899c-87ec1ed5e79c/Microsoft%20Visio%202007%20Connector%20for%20MBSA.msi

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
baseline security analyzer microsoft office configuration analyzer tool mac microsoft surface pro original original microsoft surface microsoft xbox original google analyzer tool heap dump analyzer tool

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More