FAQ's

Quick Hits

• Attack Surface Analyzer requires administrator privileges to accurately gather system data.
• Due to limitations in functionality of Server Core available, only the command line option is likely to be fully supported.
• The tool has very high CPU and memory demands, and often takes a considerable amount of time to complete.
• Analyses should never be run on live production servers since it can severely degrade the performance of the system.
• Use of the file system or registry (on Windows systems) will add significant time to the collection and analysis.
• The older classic version of the tool produced .cab files which are not compatible with this rewritten version which stores results in a local SQLite db file.

How do I run Attack Surface Analyzer GUI as root on Mac OS?

Unfortunately running as administrator on OS X is currently a little complicated, but we are investigating on improving it. #12

This example uses the AttackSurfaceAnalyzerGui-macos-2.0.14-beta+cd32f380ac.tar.gz release.

• Open terminal in the directory you downloaded AttackSurfaceAnalyzerGui-macos-2.0.14-beta+cd32f380ac.tar.gz
• Run tar xzvf AttackSurfaceAnalyzerGui-macos-2.0.14-beta+cd32f380ac.tar.gz
• Run sudo ./AttackSurfaceAnalyzerGui-macos-2.0.14-beta+cd32f380ac/asa.app/Contents/MacOS/asa

What do I need to run Attack Surface Analyzer on Windows 7?

Make sure you have KB2999226 and KB2533623 installed. Or you'll see The library hostfxr.dll was found, but loading it from C:\<path_to_app>\hostfxr.dll failed