Microsoft baseline security analyzer windows 10

Microsoft Baseline Security Analyzer 64-bit (popularly called by its short name MBSA) is a free tool, designed to help small and medium-sized organizations to assess and beef up...

Each software is released under license type that can be found on program pages as well as on search or category pages. Here are the most common license types:

Freeware

Freeware programs can be downloaded used free of charge and without any time limitations. Freeware products can be used free of charge for both personal and professional (commercial use).

Open Source

Open Source software is software with source code that anyone can inspect, modify or enhance. Programs released under this license can be used at no cost for both personal and commercial purposes. There are many different open source licenses but they all must comply with the Open Source Definition — in brief: the software can be freely used, modified and shared.

Free to Play

This license is commonly used for video games and it allows users to download and play the game for free. Basically, a product is offered Free to Play (Freemium) and the user can decide if he wants to pay the money (Premium) for additional features, services, virtual or physical goods that expand the functionality of the game. In some cases, ads may be show to the users.

Demo

Demo programs have a limited functionality for free, but charge for an advanced set of features or for the removal of advertisements from the program’s interfaces. In some cases, all the functionality is disabled until the license is purchased. Demos are usually not time-limited (like Trial software) but the functionality is limited.

Trial

Trial software allows the user to evaluate the software for a limited amount of time. After that trial period (usually 15 to 90 days) the user can decide whether to buy the software or not. Even though, most trial software products are only time-limited some also have feature limitations.

Paid

Usually commercial software or games are produced for sale or to serve a commercial purpose.

This article in our series on Microsoft’s free security tools is focused on a tool called the Microsoft Baseline Security Analyzer (MBSA).  Many years ago before Windows Update was available, servicing software was much more painful than it is today.  Microsoft released security updates weekly, and there were few deployment technologies available to help determine which systems needed which updates.  I wrote an article on this topic if you are interested in a walk down memory lane.  For those IT administrators that lived through those days, the MBSA was a godsend.  Today, 10 years later, the MBSA is still a free security tool that many, many IT Professionals use to help manage the security of their environments.

The MBSA is an easy-to-use tool designed for IT professionals and helps small and medium-sized businesses determine their security state in accordance with Microsoft security recommendations and offers specific remediation guidance. It is a standalone security and vulnerability scanner designed to provide a streamlined method for identifying common security misconfigurations and missing security updates. MBSA is used by many leading third-party security vendors and security auditors and, on average, scans over 3 million computers each week.

The MBSA provides built-in checks to determine if Windows administrative vulnerabilities are present, if weak passwords are being used on Windows accounts, the presence of known IIS and SQL administrative vulnerabilities, and which security updates are required on each individual system.  The MBSA provides dynamic assessment of missing security updates.  The MBSA can scan one or more computers by domain, IP address range or other grouping.  Once complete, the MBSA provides a detailed report and instructions on how to help turn your system into a more secure working environment. The MBSA will create and store individual XML security reports for each computer scanned and will display the reports in the graphical user interface in HTML.

To use the MBSA tool, users will need either Windows Server 2008 R2, Windows 7, Server 2003, Server 2008, Vista, XP or Windows 2000 and will need administrator privileges sufficient to scan the target computers.

After installing MBSA and running the tool, users are taken to the screen seen below which provides quick access to three different sides of the application.  Users can scan a computer using its name or IP address, scan multiple computers within a domain name or a range of IP addresses, or view existing security scan reports.  There are even more options available through the command-line interface to support scripting and fine-tuned control over MBSA’s scanning and reporting features.

Microsoft Baseline Security Analyzer.

From the MBSA scan menu, users have the option to select some or all of the following, which are all checked by default:
• Windows administrative vulnerabilities: the MBSA checks for Windows account-related issues, such as an open Guest account or too many administrative accounts. It also looks at the number of file shares and the PC’s file system to make sure you’re using NTFS instead of FAT for better security.

  • Weak passwords: the MBSA looks for blank or weak passwords throughout all Windows accounts.
  • IIS administrative vulnerabilities: for machines running IIS 5.0 or 6.0, MBSA scans to make sure all the necessary default security options and hotfixes have been run. The tool does not support IIS 7.
  • SQL Server administrative vulnerabilities: the MBSA scans for any versions of SQL Server or Microsoft Data Engine (MSDE) on the machine, looking at the authentication mode to see if you’re using Windows authentication or Mixed Mode (Windows and SQL authentication). It also checks the status of the system administrator account password.
  • Security updates: the MBSA checks the status of all updates with security implications – which include security updates, service packs and update rollups to determine if any are missing. If you’re unsure whether your target computer is correctly configured to check for Microsoft Updates, you can use the option to automatically install and configure the Microsoft Update service on a client.  The MBSA scans Windows and all Microsoft applications installed on the target computers to determine if there are risks from missing security updates. You can tell the MBSA whether to use the Microsoft Update live service, a Windows Server Update Services (WSUS) server or an offline catalog as the source for missing security updates.

The MBSA also provides an expanded list of options beyond what is available via the graphic interface via the command-line interface.  These options can be accessed by opening a command-prompt in the MBSA installation directory and running MBSACLI.exe /?.  The additional features are especially helpful when scripting, performing MBSA scans on specific PCs during login, or managing security scans across a large number of PCs.

  • Create an explicit list of machines to scan (using /listfile)
  • Choose the location of the offline catalog to use (using /cabpath)
  • Direct completed scan reports to a specific network share or directory (using /rd)
  • Use a ‘compact’ version of MBSA on local computers without the need to install the entire MBSA package (using /xmlout)

Microsoft Baseline Security Analyzer.

After you select the appropriate options and computers, you then trigger the scan, which typically takes several minutes to run. By default, the MBSA will automatically attempt to reach Microsoft Update for the latest catalog.  The MBSA will augment the scan using any updates approved by the WSUS admin in managed environments.  In situations where there is no Internet connectivity and no WSUS server, the MBSA will use the offline (WSUSSCN2.CAB) catalog to perform a security scan. Once the scan has completed, the MBSA will generate a full on-screen report, displaying the results of the scan item by item.

Baseline Security Analyzer

A completed scan report groups its findings into categories matching the options in the scan menu, such as administrative vulnerabilities, SQL Server status and security updates.  This is helpful in quickly resolving any issues discovered.  The top of the report indicates which of three data sources were used, including Microsoft Update (the live service), Windows Server Update Services (a managing WSUS server) or Microsoft Update offline (when no other data source was available).  It will also display the actual WSUS server used (if appropriate) and the date of the offline catalog.  If an MBSA scan report is older than 7 days, the report will also indicate that a new scan should be performed to ensure an up-to-date security assessment.

If you are looking for a free security tool that provides a streamlined method to identify missing security updates and common security misconfigurations then I recommend using the Microsoft Baseline Security Analyzer.  For more information please check out these additional resources:

  • Download MBSA
  • MBSA Forum
  • MBSA FAQ
  • User Guide

Tim Rains
Director
Trustworthy Computing

Microsoft Baseline Security Analyzer скриншот № 1

Microsoft Baseline Security Analyzer — Программа предназначена для анализа уровня безопасности компьютера и наличия установленных хотфиксов. Microsoft Baseline Security Analyzer (MBA) проверяет уязвимые места как на локальных компьютерах, так и на компьютерах, объединенных в единую сеть. Программа может проверять защиту в следующих операционных системах и приложениях:

Microsoft Baseline Security Analyzer предоставляет как общую информация о компьютере с оценкой степени угрозы, так и отчет по отдельным компонентам с возможностью просмотра подробных результатов проверки с перечислением всех открытых проблем и установленных обновлений, рекомендации по устранению уязвимостей и различную дополнительную информацию.

  • Windows 2000/XP/2003
  • Microsoft DirectX
  • Internet Information Server (IIS)
  • SQL Server
  • Internet Explorer
  • Office 2000/XP
  • Windows Media Player
  • .NET Framework X
  • Windows Messenger
  • Outlook Express
  • Microsoft Data Access Components (MDAC)
  • Microsoft Virtual Machine и т.д.
  • Кроме того, утилита проверяет сканируемую систему насчет неустановленных обновлений безопасности для всех вышеозначенных программ.

ТОП-сегодня раздела «Мониторинг, Анализ»

скачать Expert HomeExpert Home 4.5

Expert Home — бесплатное приложение, которое представляет собой домашнюю систему наблюдения….

скачать PE ExplorerPE Explorer 1.99 R6

PE Explorer — программа для просмотра, редактирования и анализа внутреннего устройства…

скачать 64IP Port Scanner64IP Port Scanner 1.2

64IP Port Scanner — шустрая программа для сканирования локального компьютера или любого хоста на…

Отзывы о программе Microsoft Baseline Security Analyzer

Atoll про Microsoft Baseline Security Analyzer 2.0 [09-10-2005]

Название просто супер: Microsoft Вазелин
2 | 2 | Ответить

  • Remove From My Forums
  • Question

  • When are you publishing MBSA for Windows 10?  If not then what are you replacing this with?  MBSA is needed more than ever now.  

Answers

  • Yes, you can download it.

    But, NO, it does not work «fine».  

    It has incorrect answers in multiple areas.  For example, it doesn’t know about Windows 10 updates and doesn’t think I have the computer configured for automatic updates, but I do.  etc.

    So, it is better than nothing.   But do I trust it to give correct answers.  No.

    • Proposed as answer by

      Tuesday, October 2, 2018 8:55 AM

    • Marked as answer by
      PamPierce
      Tuesday, October 2, 2018 2:55 PM

Microsoft Baseline Security Analyzer для Windows 10

Microsoft Baseline Security Analyzer для Windows 10 – полезное программное средство для проверки степени защищенности ОС. Поможет проанализировать безопасность операционной системы и определить уровень ее надежности. Выполняет поиск уязвимых мест на конкретной рабочей машине и устройствах в пределах локальной сети.

При обнаружении потенциальных уязвимостей сообщает об этом пользователю. Составляет исчерпывающий отчет о проделанной работе, дополнительно предлагая варианты устранения найденных проблем. Отображает общие сведения о компьютере, установленных в нем аппаратных компонентах и программном обеспечении. Рекомендуем скачать Microsoft Baseline Security Analyzer для Windows 10 на русском языке без регистрации и смс с официального сайта.

Информация о программеСКАЧАТЬ БЕСПЛАТНО

  • Лицензия: Бесплатная
  • Разработчик: Microsoft
  • Языки: русский, украинский, английский
  • Устройства: пк, нетбук, ноутбук (Acer, ASUS, DELL, Lenovo, Samsung, Toshiba, HP, MSI)
  • ОС: Windows 10 Домашняя, Профессиональная, Корпоративная, PRO, Enterprise, Education, Home Edition (обновления 1507, 1511, 1607, 1703, 1709, 1803, 1809)
  • Разрядность: 32 bit, 64 bit, x86
  • Версия: последняя 2023, без вирусов

Скриншот программы Microsoft Baseline Security Analyzer для Windows 10

Аналоги Microsoft Baseline Security Analyzer

  1. EASEUS Data Recovery WizardEASEUS Data Recovery Wizard
  2. Download Accelerator PlusDownload Accelerator Plus
  3. ESET NOD32ESET NOD32
  4. NortonNorton
  5. DiskeeperDiskeeper
  6. HDDlifeHDDlife

Отзывы пользователей

From Wikipedia, the free encyclopedia

Microsoft Baseline Security Analyzer

MBSA Logo.png
MS Baseline Security Analyzer Screenshot.PNG

Screenshot of Microsoft Baseline Security Analyzer analysis result

Developer(s) Microsoft
Initial release 16 August 2004[1]
Stable release

2.3
/ 9 January 2015[2]

Operating system Windows 7, Windows Server 2008, Windows Vista, Windows Server 2003, Windows XP and Windows 2000[2]
Platform IA-32 and x86-64[2]
Size 1.5 ~ 1.7 MB[2]
Available in English, German, French and Japanese[2]
Type Computer security
License Freeware
Website technet.microsoft.com/en-us/security/cc184924.aspx

Microsoft Baseline Security Analyzer (MBSA) is a discontinued software tool which is no longer available from Microsoft that determines security state by assessing missing security updates and less-secure security settings within Microsoft Windows, Windows components such as Internet Explorer, IIS web server, and products Microsoft SQL Server, and Microsoft Office macro settings. Security updates are determined by the current version of MBSA using the Windows Update Agent present on Windows computers since Windows 2000 Service Pack 3. The less-secure settings, often called Vulnerability Assessment (VA) checks, are assessed based on a hard-coded set of registry and file checks. An example of a VA might be that permissions for one of the directories in the /www/root folder of IIS could be set at too low a level, allowing unwanted modification of files from outsiders.

Version history[edit]

Versions 1.2.1 and below run on NT4, Windows 2000, Windows XP, and Windows Server 2003, provide support for IIS versions 5 through 6, SQL Server 7 and 2000, Internet Explorer 5.01 and 6.0 only, and Microsoft Office 2000 through 2003. Security update assessment is provided by an integrated version of Shavlik’s HFNetChk 3.8 scan tool. MBSA 1.2.1 was localized into English, German, French and Japanese versions and supported security assessment for any locale.

Version 2.0 retained the hard-coded VA checks, but replaced the Shavlik security assessment engine with Microsoft Update technologies which adds dynamic support for all Microsoft products supported by Microsoft Update. MBSA 2.0.1 was released to support the revised Windows Update (WU) offline scan file (WSUSSCN2.CAB). MBSA 2.1 added Vista and Windows Server 2008 support, a new Vista-styled GUI interface, support for the latest Windows Update Agent (3.0), a new Remote Directory (/rd) feature and extended the VA checks to x64 platforms.

In the August 2012 Security Bulletin Webcast Q&A on Technet it was announced that «The current version of MBSA (2.2) will not support Windows 8 and Microsoft currently has no plans to release an updated version of the tool.»[3]

In November 2013 MBSA 2.3 was released. This release adds support for Windows 8, Windows 8.1, Windows Server 2012, and Windows Server 2012 R2. Windows 2000 will no longer be supported with this release.[4]

Microsoft support and updates for MBSA has ended. The current version 2.3 does not offer official support for Windows 10 or Windows Server 2016. The Microsoft MBSA webpage has been removed.[5]

How MBSA differs from Microsoft Update[edit]

MBSA only scans for 3 classes of updates, security updates, service packs and update rollups. Critical and optional updates are left aside.

See also[edit]

  • Belarc Advisor

References[edit]

  1. ^ «Download Details: Microsoft Baseline Security Analyzer v1.2.1 (for IT Professionals)». Microsoft Download Center. Microsoft Corporation. Archived from the original on 18 June 2009. Retrieved 13 October 2009.
  2. ^ a b c d e «Download Details: Microsoft Baseline Security Analyzer 2.2 (for IT Professionals)». Microsoft Download Center. Microsoft Corporation. 6 August 2010. Retrieved 21 November 2009.
  3. ^ «August 2012 Security Bulletin Webcast Q&A». Microsoft. Archived from the original on 24 August 2012. Retrieved 20 August 2012.
  4. ^ «Microsoft Baseline Security Analyzer (MBSA) 2.3&#124MBSA». Microsoft. Retrieved 12 November 2013.
  5. ^ «What is Microsoft Baseline Security Analyzer and its uses?». Microsoft. Retrieved October 5, 2018.

External links[edit]

  • Official website
    • Forum
  • Microsoft Office Visio 2007 Connector for the Microsoft Baseline Security Analyzer (MBSA) 2.1
  • https://technet.microsoft.com/en-us/security/cc184924.aspx#windows-version

In response to direct customer need for a streamlined method of identifying common security misconfigurations, Microsoft has developed the Microsoft Baseline Security Analyzer (MBSA). It includes a graphical and command line interface that can perform local or remote scans of Windows systems.

MBSA extends previous versions by adding support for Windows Vista. MBSA can be installed on computers running Windows Vista and it can scan Windows Vista computers. More information on the capabilities of MBSA is available on the MBSA Web site.

Note: This software is a pre-release version. It may not work the way a final version of the software will. We may change it for the final, commercial version. We also may not release a commercial version.

MBSA runs on Windows Vista, Windows Server 2003, Windows 2000, and Windows XP systems and will scan for common security misconfigurations in the following products: Windows Vista, Windows 2000, Windows XP, Windows Server 2003, Internet Information Server (IIS) 5.0, and 6.0, SQL Server 7.0 and 2000, Internet Explorer (IE) 5.01 and later, and Office 2000, 2002 and 2003. MBSA also scans for missing security updates, update rollups and service packs published to Microsoft Update.

System Requirements

* Supported Operating Systems: Windows 2000 Service Pack 4; Windows Server 2003; Windows Vista; Windows XP

System requirements are outlined in the main help and readme.html file that is included in the tool.

Microsoft Baseline Security Analyzer (MBSA) — это бесплатный инструмент, предназначенный для ИТ-специалистов малого и среднего бизнеса. Однако, благодаря понятному графическому интерфейсу пользователя, он также служит отличным инструментом безопасности для личного использования. MBSA анализирует настройки безопасности локальных и сетевых компьютеров Windows и может выявлять типичные ошибки в конфигурации безопасности или отсутствующие обновления.

Вы можете загрузить MBSA 2.2 из центра загрузки Microsoft. Он доступен для 64-разрядной (x64) и 32-разрядной (x86) систем Windows 2000, Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7 и Windows Server 2008 R2. Кроме того, он поставляется на четырех разных языках: немецкий (DE), английский (EN), французский (FR) и японский (JA).

Начиная

Интерфейс запуска MBSA очень прост и в основном предлагает только три варианта: сканирование компьютера, сканирование нескольких компьютеров или просмотр существующих отчетов о проверке безопасности. На боковой панели также имеются ссылки на документацию программы и веб-сайт безопасности Microsoft.

неправильная настройка безопасности

Обратите внимание, что вам требуются права администратора для всех машин, которые вы хотите сканировать. Вы можете сканировать одну или несколько систем на основе имени компьютера или IP-адреса. Если вы решите сканировать несколько компьютеров, вам необходимо ввести доменное имя или диапазон IP-адресов.

Для этой демонстрации я пошел со сканированием одного компьютера.

конфигурация безопасности

Параметры сканирования просты, но не обязательно понятны для неопытного пользователя. Если вы не понимаете, что означают некоторые параметры, нажмите ссылку> Параметры сканирования внизу для получения подробных объяснений. Информация будет загружена в отдельном окне Internet Explorer.

конфигурация безопасности

Сканирование занимает всего несколько секунд и возвращает обзор проблем, обнаруженных в разных категориях. Каждый элемент оценивается и предоставляется сводка результатов вместе со ссылками на дополнительные информационные материалы.

конфигурация безопасности

Пройденные проверки получают зеленый балл, элементы, которые невозможно проверить, помечены серым минусом, место для улучшений выделено синим баллом, желтый балл указывает на некритическую уязвимость, а красный балл предупреждает пользователя неудачная проверка и, следовательно, критическая проблема безопасности. Перейдите по соответствующим ссылкам для получения подробной информации о том, что было отсканировано, или инструкций по устранению проблемы.

Все отчеты сохраняются и могут быть доступны позднее для справки. Вы также можете распечатать или скопировать свой отчет в буфер обмена.

неправильная настройка безопасности

Вывод

Microsoft Baseline Security Analyzer — очень хороший инструмент для быстрого получения обзора настроек безопасности на вашем компьютере с Windows. Инструкции по исправлению обнаруженных ошибок в настройках безопасности очень ясны и поэтому должны быть простыми для обычного пользователя. В целом, документация на удивление детализирована и хорошо сделана, как если бы Microsoft ожидала, что не-ИТ-специалисты будут использовать этот инструмент.

Однако следует отметить, что для исправления большинства конфигураций требуется некоторое общее представление о том, как работает Windows. Например, проблема с файловой системой не обязательно связана с безопасностью, и инструкции не содержат информации о том, как найти диск, на котором не работает NTFS. Более того, некоторые проблемы требуют дополнительных знаний и должны быть оставлены на усмотрение экспертов, например, установка срока действия пароля.

Для получения дополнительной информации также ознакомьтесь с этой статьей из Microsoft Patterns & Practices: Как использовать Microsoft Baseline Security Analyzer .

Каково твое мнение? Как вы думаете, это полезный инструмент? Пожалуйста, поделитесь своими мыслями!

Изображение предоставлено: beboy

Like this post? Please share to your friends:
  • Microsoft authenticator windows 10 скачать для пк
  • Microsoft arc mouse driver windows 10
  • Microsoft arc mouse 1349 драйвер windows 10
  • Microsoft applocale скачать для windows 10
  • Microsoft applocale windows 10 не устанавливается