Microsoft has launched a highly technical blog to disseminate vulnerability information to security researchers and practitioners on Patch Tuesdays. While they have been sharing information about vulnerabilities and patches on Patch Tuesdays, there has not been this level of technical depth available until now.
The blog’s tagline is as follows:
“Information from Microsoft about vulnerabilities, mitigations and workarounds, active attacks, and other related guidance and information.”
As an example of the type of posts on the site, one post has a PCAP file used to show the pre-patch states of SMBv2 network traffic. This packet data can easily be used to identify unpatched computers on the network using an intrusion detection system like Snort.
Although the open source community has been sharing information like this for years, it is a big step in the right direction for Microsoft. Hopefully they will follow through on this site and build a valuable resource for the computer security community. Whether you like Microsoft or not, this is a positive effort and they need to be commended for it.
Entries (RSS)