Tools & Utilities Use these security tools to lock down your systems, check your code for security issues, and check your systems for vulnerabilities. Tools FxCop Use the FxCop code analysis tool to make sure your .NET assemblies conform to the .NET Framework Design Guidelines. Rights Management Add-on for Internet Explorer The Rights Management Add-on for Internet Explorer is a way that Windows users can view files with restricted permission. These restrictions help people to prevent sensitive documents, Web-based information, and e-mail messages from being forwarded, edited, or copied by unauthorized individuals. Windows Application Verifier Available as part of the Application Compatibility Toolkit, the Application Verifier (AppVerifier) is a collection of tests used during the application development and testing process. It helps developers identify potential application compatibility, stability, and security issues. Administrative Tools These tools, availble from Microsoft Technet, may be of use to developers writing server based applications. KB 824146 Scanner for MS03-026 and MS03-039 Patches The KB 824146 Scanner tool is provided as a utility to assist administrators. It can quickly identify those Microsoft Windows systems on their network that immediately require the patch described in KB article 824146. The utility can be used to identify systems that have the patch applied as well as those systems that may require further investigation and verification of the patch installation. Microsoft Baseline Security Analyzer Analyze Windows systems for common security misconfigurations using the Microsoft Baseline Security Analyzer. Windows Update Get the latest updates available for your computer's operating system, software, and hardware. UrlScan Security Tool UrlScan is a powerful security tool that works in conjunction with the IIS Lockdown Tool to give IIS Web site administrators the ability to turn off unneeded features and restrict the kind of HTTP requests that the server will process. IIS Lockdown Tool Get the updated version of the IIS Lockdown Wizard version 2.1, with templates for the major IIS-dependent Microsoft products. Programming Microsoft Application Security: Anti-Cross Site Scripting Library This download contains the redistributable files for the Microsoft Application Security Anti-Cross Site Scripting Library. The Anti-Cross Site Scripting Library can be used to provide comprehensive protection to Web-based applications against Cross-Site Scripting (XSS) attacks. Platform SDK Redistributable: CAPICOM This download contains the redistributable files for CAPICOM 2.0.0.3 and Samples of its use. CAPICOM can be used to digitally sign data, sign code, verify digital signatures, envelop data for privacy, hash data, encrypt/decrypt data and more. Cryptographic Service Provider Developer's Toolkit (CSPDK) The Cryptographic Service Provider Developer's Kit is eligible for export from the U.S. to all customers worldwide, except to U.S. embargoed destinations. Please see https://www.microsoft.com/exporting/ for details.