| Tool name | Type | Description |
|---|
AccessChk | Identity and Access Control | AccessChk is a command-line tool that identifies what permissions or access levels a user or group has. AcessChk returns permissions to files, directories, registry keys, global objects, and Windows services. |
AccessEnum | Identity and Access Control | AccessEnum is a command-line tool that identifies which users and groups have access to a specific file or folder. |
Auditpol | Secure Configuration Assessment and Management | Auditpol is a command-line tool that displays information about and performs functions to manipulate audit policies. |
Extended Security Update Inventory Tool | Threats and Vulnerabilities Mitigation | The Extended Security Update Inventory tool determines if any SMS client computers need security updates that are not detectable by using Microsoft Baseline Security Analyzer (MBSA). This tool is available from the Microsoft Download Center. |
Icacls | Secure Configuration Assessment and Management | Icacls is a command-line tool that displays or modifies discretionary access control lists (DACLs) on specified files, and applies stored DACLs to files in specified directories. Icacls.exe replaces the Cacls.exe tool for viewing and editing DACLs. |
Malicious Software Removal Tool | Threats and Vulnerabilities Mitigation | The Malicious Software Removal Tool checks computers running Windows Vista, Windows XP, Windows 2000, or Windows Server 2003 for infections by specific, prevalent malicious software and helps remove any infection found. |
Microsoft Baseline Security Analyzer Tool | Threats and Vulnerabilities Mitigation | Microsoft Baseline Security Analyzer (MBSA) is an easy-to-use tool designed for the IT professional that helps small-sized and medium-sized businesses determine their security state in accordance with Microsoft security recommendations and offers specific remediation guidance. |
Microsoft Security Assessment Tool | Threats and Vulnerabilities Mitigation | The Microsoft Security Assessment Tool provides information and recommendations about best practices to help enhance security within your IT infrastructure. |
Microsoft Threat Analysis & Modeling v2.1.2 | Threats and Vulnerabilities Mitigation | The Microsoft Threat Analysis & Modeling tool allows non–security subject matter experts to enter already known information including business requirements and application architecture, which is then used to produce a feature-rich threat model. |
Security Configuration Wizard | Secure Configuration Assessment and Management | The Security Configuration Wizard (SCW) determines the minimum functionality required for a server's role or roles and disables functionality that is not required. SCW is included with Windows Server 2008 and can be accessed from Administrative Tools and Server Manager. |
ShareEnum | Identity and Access Control | ShareEnum is a command-line tool that identifies the security settings of print and file shares. It shows administrators potential security problems arising from security that is too low. |
Windows Sysinternals | Identity and Access Control | The Windows Sysinternals Web site includes advanced system utilities and technical information to help you manage, troubleshoot, and diagnose your Windows systems and applications. |