微软(Microsoft)最近启动了一个博客系列,涵盖了他们在微软安全博客(Microsoft Security Blog)上提供的所有安全工具。这些工具值得尊重,因为这些程序可以使您的系统免受恶意软件的侵害并受到保护。
Microsoft 提供的免费安全工具
除了Windows 10中的(Windows 10)Microsoft Security Essentials和Windows Defender,我们大多数人都熟悉的从Microsoft下载的免费杀毒软件, Microsoft还为家庭用户、网络管理员和(Microsoft)IT 专业人员(IT Pros)提供了更多的安全工具。此列表提供了此类有用工具的摘要。
- Windows Defender 离线版
- Microsoft 基线安全分析器(Microsoft Baseline Security Analyzer)
- 微软安全扫描仪
- 恶意软件删除工具
- 网址扫描工具
- 端口
- 威胁建模工具
- 反跨站脚本库
- DNSLint
- NB查找
- BinScope 二进制分析器
- 攻击面分析器
- 禁止.h
- 增强的缓解体验工具包(Mitigation Experience Toolkit)。
1]Windows Defender离线
Windows Defender Offline(以前称为Microsoft Standalone System Sweeper Tool)是一种可靠的软件解决方案,可保护您的计算机免受 Rootkit 攻击、查找可能不需要的程序并将其从您的 PC 中删除。使用此工具的主要好处是它可以在诸如 rootkit 之类的恶意软件隐藏之前运行。除此之外(Apart),Windows Defender Offline还配备了Microsoft Active Protection Service(简称MAPS ),可自动向(MAPS)Microsoft报告恶意软件,从而为您提供更好的保护。
如果遇到任何不安全的应用程序,独立软件会提醒用户,提示用户采取行动(接受或拒绝风险)。因此,实时提供完整的保护。
2]微软基线安全分析器(Microsoft Baseline Security Analyzer)
Microsoft Baseline Security Analyzer对定期需要检查其安全状态是否符合(Microsoft Baseline Security Analyzer)Microsoft安全建议的 IT 专业人员和中小型企业有巨大帮助。如果没有,请提供具体的补救指导。
通过(Via)内置检查,MBSA可以识别单个系统上缺少的安全更新、管理漏洞和常见的安全配置错误。该程序按域、IP 地址范围或其他分组扫描一台或多台计算机。 完成后,MBSA会提供一份详细的报告和说明,说明如何帮助将系统转变为更安全的工作环境。(Once)
3]微软安全扫描仪
Microsoft 安全扫描程序(Microsoft Safety Scanner)是一种按需扫描程序,可清除系统中的病毒、木马或潜在危险软件等恶意软件。它不需要管理员权限即可扫描系统,其完善的向导会提示用户快速从三种不同类型的扫描中进行选择:
首次启动后仅 10 天内没有实时保护可用和可用。
4]恶意软件删除工具
Malicious Software Removal Tool是Microsoft为Windows用户提供的另一款免费安全扫描程序,可帮助从运行Windows 10、Windows 8、Windows 7、Windows Vista、Windows Server 2003、Windows Server 2008或视窗XP(Windows XP)。
5] URL扫描工具
(URL)Microsoft的URL扫描工具(Tool)可帮助您保护您的 Web 服务器并故意远离不良攻击和漏洞利用。这个程序是如何运行的?首先,它使用一系列规则扫描传入的URL请求和相关数据,以确定是否存在威胁(如果有)。(URL)然后,它只允许那些符合管理员创建的准则的请求通过。这提高了服务器的安全性并确保工具或系统仅响应有效请求。更多,在这里。有关URL(URL)扫描工具的逐步配置,请访问此处。
6]端口qry
Portqry 是一种命令行实用程序,可用于解决TCP/IP连接问题。该应用程序报告您选择的计算机上TCP和UDP端口的端口状态。(UDP)简而言之,它的行为很像TCP/IP连接测试工具、端口扫描器和本地端口监视器。无论您运行的Windows版本如何, (Windows)Portqry都是一款出色的轻量级端口扫描器。
7]威胁建模工具
SDL威胁建模工具(SDL Threat Modeling Tool)可帮助工程师分析其系统的安全性,以便在软件生命周期的早期发现和解决设计问题。
8]反跨站点脚本库(Anti-Cross Site Scripting Library)
Microsoft Anti-Cross Site Scripting Library ( AntiXSS V4.2.1(AntiXSS V4.2.1) ) 是一个编码库,旨在帮助开发人员保护其基于 Web 的 ASP.NET 应用程序免受 XSS 攻击。点击此处了解详情。
9] DNSLint
DNSLint是一个Microsoft Windows实用程序,可帮助您诊断常见的DNS名称解析问题。
10] NB查找
NBLookup是一个命令行诊断工具,它使用用户数据报协议(User Datagram Protocol)将NetBIOS名称查询发送到Microsoft Windows Internet 命名服务(Microsoft Windows Internet Naming Service)服务器。
11] BinScope二进制分析器
BinScope二进制分析器(BinScope Binary Analyzer)工具对审核他们正在开发或部署/管理的应用程序的安全性的开发人员和 IT 专业人员都有帮助。
12]攻击面分析器
攻击面分析器(Attack Surface Analyzer)可以帮助软件开发人员和独立软件供应商(Independent Software Vendors)了解由于安装他们开发的应用程序而导致的Windows系统攻击面的变化。
13] 禁止.h
禁止的.h 头文件是一种清理资源,旨在帮助开发人员避免使用并帮助识别和删除代码中可能导致漏洞的禁止功能。
14]增强的缓解体验工具包(Enhanced Mitigation Experience Toolkit)
增强的缓解体验工具包或EMET是适用于Windows 10/8的最佳安全工具之一,有助于防止已安装软件中的漏洞被恶意软件和恶意进程利用。
这是在安全缓解技术的帮助下实现的,这些技术充当特殊保护和障碍,漏洞利用作者必须克服以利用软件漏洞。注意(NOTE):EMET 现在已被弃用。
相关(Related):Microsoft 的 5 大必备免费软件(Top 5 must-have free software from Microsoft)。
List of free Security Tools from Microsoft
Microsoft recently kicked off a blog series to cover all the security tools being offered by them on the Microsoft Security Βlog. These tools deserve respect as these progrаms keep your system malware-free and protected.
Free Security Tools from Microsoft
Apart from Microsoft Security Essentials and Windows Defender in Windows 10, the free antivirus software downloads from Microsoft, which most of us are familiar with, Microsoft offers many more security tools for home users, network administrators, and IT Pros. This list provides a summary of such useful tools.
- Windows Defender Offline
- Microsoft Baseline Security Analyzer
- Microsoft Safety Scanner
- Malicious Software Removal Tool
- URLScan Tool
- Portqry
- Threat Modeling Tool
- Anti-Cross Site Scripting Library
- DNSLint
- NBLookup
- BinScope Binary Analyzer
- Attack Surface Analyzer
- banned.h
- Enhanced Mitigation Experience Toolkit.
1] Windows Defender Offline
Windows Defender Offline, earlier called Microsoft Standalone System Sweeper Tool, is a reliable software solution to keep your computer protected from rootkits, find potentially unwanted programs and have them removed from your PC. The primary benefit of using this tool is that it runs before malware, such as rootkits, can hide. Apart from above, Windows Defender Offline comes equipped with the Microsoft Active Protection Service (shortly known as MAPS) that automatically reports malware to Microsoft, thus providing you with better protection.
The standalone software alerts the user if it comes across any unsafe application, prompting the user to take action (accepts or deny the risk). Thus, offering complete protection in real-time.
2] Microsoft Baseline Security Analyzer
Microsoft Baseline Security Analyzer is of immense help to IT professionals and small and medium-sized businesses that periodically require to check whether their security state is in accordance with Microsoft security recommendations. If not, offer specific remediation guidance.
Via built-in checks, MBSA works to identify missing security updates, administrative vulnerabilities and common security misconfigurations on individual systems. The program scans one or more computers by domain, IP address range or another grouping. Once complete, the MBSA provides a detailed report and instructions on how to help turn the systems into a more secure working environment.
3] Microsoft Safety Scanner
Microsoft Safety Scanner is an on-demand scanner that flushes out malware, such as a virus, trojan or potentially dangerous software holed up in your system. It requires no administrator privileges for scanning the system and its well-developed wizard, prompts a user to pick from three different types of scan quickly:
- Quick scan
- Full scan
- Customized scan.
No real-time protection is available and usable for just 10 days after launched for the first time.
4] Malicious Software Removal Tool
Malicious Software Removal Tool is yet another free security scanner from Microsoft for Windows users, that helps remove specific, prevalent malicious software from computers that are running Windows 10, Windows 8, Windows 7, Windows Vista, Windows Server 2003, Windows Server 2008, or Windows XP.
5] URLScan Tool
URLScan Tool from Microsoft helps you protect your web servers and stay away deliberately from undesirable attacks and exploits. How does the program work? Firstly, it scans incoming URL requests and associated data with a series of rules to determine whether there is a threat if any. Then, it only allows those requests to pass that comply with guidelines created by the administrator. This improves the security of the server and ensure that the tool or system only responds to valid requests. More, here. For the step-by-step configuration of the URLScan tool, visit here.
6] Portqry
Portqry is a command-line utility that one can use to troubleshoot TCP/IP connectivity issues. The application reports the port status of TCP and UDP ports on a computer you choose. In short, it behaves much like a TCP/IP connectivity test tool, port scanner, and local port monitor. Portqry is a great lightweight port scanner regardless of the version of Windows you run.
7] Threat Modeling Tool
The SDL Threat Modeling Tool helps engineers analyze the security of their systems to find and address design issues early in the software lifecycle.
8] Anti-Cross Site Scripting Library
The Microsoft Anti-Cross Site Scripting Library (AntiXSS V4.2.1) is an encoding library designed to help developers protect their ASP.NET web-based applications from XSS attacks. Learn more about it here.
9] DNSLint
DNSLint is a Microsoft Windows utility that helps you to diagnose common DNS name resolution issues.
10] NBLookup
NBLookup is a command-line diagnostic tool that uses the User Datagram Protocol to send NetBIOS name queries to Microsoft Windows Internet Naming Service servers.
11] BinScope Binary Analyzer
The BinScope Binary Analyzer tool can be helpful for both developers and IT professionals that are auditing the security of applications that they are developing or deploying / managing.
12] Attack Surface Analyzer
Attack Surface Analyzer can help software developers and Independent Software Vendors understand the changes in Windows systems’ attack surface resulting from the installation of the applications they develop.
13] banned.h
The banned.h header file is a sanitizing resource that is designed to help developers avoid using and help identify and remove banned functions from code that may lead to vulnerabilities.
14] Enhanced Mitigation Experience Toolkit
Enhanced Mitigation Experience Toolkit or EMET is one of the best security tools for Windows 10/8 that helps prevent vulnerabilities in installed software from being exploited by malware and malicious processes.
This is achieved with the help of security mitigation technologies, which function as special protections and obstacles that an exploit author must defeat to exploit software vulnerabilities. NOTE: EMET has been deprecated now.
Related: Top 5 must-have free software from Microsoft.