MSFT InfoSec tools team have been busy

Date June 4, 2009

Well, certainly looks like the Information Security Tools Team have been busy :)   A post by Mark Curphey lists out all the things they have been working on and planning to release later in the year.

Risk Tracker, CAT.NET, Anti-XSS, Threat Modeling Tool, which are all public (and even open source!), and some projects that are internal to MSFT that should make life easier for them. 

I certainly look forward to seeing Risk Tracker as I have some ideas in that space myself, as well as CAT.NET (needs improvement in scalability) and Anti-XSS (needs to be less aggressive in some contexts, although also like that SQLi vuln discovery is going to be added).

Nice to see that team has some good work coming out.  I met with Mark a week or so when he came up to Seattle looking for a place to settle and it’s clear that he’s really enjoying this role and the creative outlet.  Here’s to more of the above I say :)

Category Posted in Misc, Security


Leave a Reply

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>