Security Research & Defense

News

Postings are provided "AS IS" with no warranties, and confers no rights.

Get alerts when we update our blog!


Translate this Post

Blogroll

• Microsoft Security Response Center
• The Security Development Lifecycle
• Microsoft Malware Protection Center Blog
• Michael Howard's Weblog
• Microsoft Corporate Privacy Group
• MSRC Ecosystem Strategy (EcoStrat) Team

Report a Vulnerability to Microsoft

• Report a Vulnerability to Microsoft

Tags

• .NET Framework
• ActiveX
• ATL
• Attack
• Attack Surface Reduction
• Attack Vector
• authentication bypass
• AutoPlay
• AutoRun
• blended threat
• bluetooth
• CanSecWest
• Certificate
• Certificate Authority
• classid
• clsid
• COM
• compiler warnings
• Conficker
• converters
• CryptoAPI
• Defense-in-depth
• DEP
• detection
• disassembly
• dns
• double fetch
• exploit timeline
• Exploitability
• exploitation
• Font
• full-disclosure
• gdiplus
• GS
• HTML
• ICMP
• IDA
• IGMP
• IIS
• Internet Explorer (IE)
• ISATAP
• kernel
• Killbit
• Microsoft Office
• Mitigations
• MS08-001
• MS08-067
• MS09-032
• MS09-034
• MS09-035
• MSHTML
• msmq
• msvidctl
• network capture
• network protocol
• NTLM
• Open XML
• OWA
• PGM
• phoenix bit
• ProbeForRead
• ProbeForWrite
• protocol handlers
• quartz.dll
• rating
• registry
• Risk Asessment
• RPC
• RPC over HTTP
• safe for initialization
• safe for scripting
• search
• Security Bulletin
• Security Development Lifecycle (SDL)
• Security Science
• Security Tools
• Security Update
• security zones
• signing
• SMB
• SMB2
• SPN
• spoofing
• SQL
• SQL Injection
• timing attack
• tools
• TTF
• uninitialized variable
• Visual Studio
• win32k.sys
• Windows Media components
• WINS
• Workarounds
• WSD
• WSDAPI
• XBAP
• XSS
• XSS Filter
• Zero-Day Exploit

Recent Posts

• SEHOP per-process opt-in support in Windows 7
• Details on the License Logging Service vulnerability
• Vulnerability in Web Services on Devices (WSD) API
• Font Directory Entry Parsing Vulnerability In win32k.sys
• Announcing the release of the Enhanced Mitigation Evaluation Toolkit

Archives

• November 2009 (4)
• October 2009 (8)
• September 2009 (7)
• August 2009 (4)
• July 2009 (10)
• June 2009 (9)
• May 2009 (5)
• April 2009 (11)
• March 2009 (8)
• February 2009 (3)
• January 2009 (3)
• December 2008 (7)
• November 2008 (1)
• October 2008 (8)
• September 2008 (2)
• August 2008 (6)
• July 2008 (5)
• June 2008 (5)
• May 2008 (2)
• April 2008 (3)
• March 2008 (2)
• February 2008 (4)
• January 2008 (5)
• December 2007 (3)

Browse by Tags

• WSD
• WSDAPI