Last friday at Microsoft Moscow office Ivan Medvedev (from SWI team) made a presentation about Security Tools for Software Development. He mentioned new Threat Modeling tool, AppVerifier, PreFast, FxCop, and new Whidbey compiler switches. [Update] May be Ivan will post some new information at his blog about those and new tools ;-) An intoduction in testing methods used at Microsoft awake my interesting in fuzzing - a method of finding software security holes by feeding purposely invalid and ill-formed ......
Well, it finally happens. After using
kbAlertz for so long time we can use official RSS feeds for Microsoft Knowledgebase at
http://support.microsoft.com/selectindex/?target=rss now [via
John Howard]
Four part video presentation of the Windows NT kernel by Dave Probert (an architect for Windows) is posted at Channel 9. He does a very good job of comparing the Windows kernel to UNIX-style kernels and how they tackle the same problems differently. Part I Part II Part III Part IV Also very interesting Course about Windows Internals by Dave Probert exists at Strategic Software program site of the University of Tokyo ......
As I posted recently Protect Your Windows Network book by Steve Riley and Jesper M. Johansson is available for pre-ordering. Both Michael Howard and Steve Riley posted updated information about preorder (with promo code ;-) Also yesterday I accidentially found new book by Michael, David LeBlank AND John Viega - 19 Deadly Sins of Software Security due to August 2005. It should be interesting book from authors of Writing of Secure Code and Secure Programming Cookbook. [Update] This monday Michael Howard ......
eWeek have finally allowed Spencer Katt to have a
blog [
subsribed] =))) [
via Rich Burridge]