Microsoft MSF for Agile 2013 Plus Security Development Lifecycle (SDL),destroy the TFS 2013 process?

September 6, 2015, 2:27 am

≫ Next: Attack Surface Analyzer Report generation is failing on Win 10

I tried the SDL Agile tools against my TFS 2013.

1), download it from http://www.microsoft.com/en-us/download/details.aspx?id=42517

2) run the download setup file, it succeeeds.

3) Config the setting accourding to the 'readme' file.

4) create new TFS project with the 'MSF Agile SDL' , it succeeds.

5) visit TFS project, when click the 'work' module, it pop up a window showing the below error message. and the default backlog page can't be displayed correctly. seems it is some problem with the process?

Error(s):

Unable to get property 'setMessage' of undefined or null reference

TypeError: Unable to get property 'setMessage' of undefined or null reference
   at Anonymous function (http://tfs2013update4:8080/tfs/_static/tfs/12/_scripts/TFS/min/Agile/Scripts/TFS.Agile.ProductBacklog.js:4:25855)
   at B (http://tfs2013update4:8080/tfs/_static/tfs/12/_scripts/TFS/min/corejs?v=HEJc3m-TUp5gkngY8ia8ydgk0vb9xsyzR-zxRx_Wx7k1:

↧

Attack Surface Analyzer Report generation is failing on Win 10

September 1, 2015, 12:23 am

≫ Next: ADFS WCTX Cookie missing secure attributes

≪ Previous: Microsoft MSF for Agile 2013 Plus Security Development Lifecycle (SDL),destroy the TFS 2013 process?

I am facing this issue on Win 10 where Attack Surface Analyzer Report Generation is failing due its inability to identify access control entry type in security descriptors on Win 10x64.

Link to Attack Surface Analyzer tool:
https://www.microsoft.com/en-in/download/details.aspx?id=24487

Could some one please help in suggesting any work around, ASA has been a wonderful tool and I hope you would surely be providing support of same on Win 10.

Screenshot of Error .

Regards,

San

↧

ADFS WCTX Cookie missing secure attributes

September 9, 2015, 3:09 am

≫ Next: Security Essentials

≪ Previous: Attack Surface Analyzer Report generation is failing on Win 10

Hi All,

Recently our application have gone through the Application vulnerability Scan, where we found a Cookie which is missing the secure attribute at the time of expiration as in after when its got expired, but this has come as a vulnerability.
Cookie name - _adfsWctx random guid
as per my analysis, this cookie seems to be getting generated by the ADFS WS federation agent, but ADFS team says it generated via application, i don't think its getting generated via the application.
any help to solve this cookie to enable the secure attributes.

↧

Security Essentials

September 12, 2015, 7:22 pm

≫ Next: runtime error c/ WINDOWS\system32\atibtmon.exe

≪ Previous: ADFS WCTX Cookie missing secure attributes

How can you uninstall security essentials prerelease if the uninstall program fails?

↧

runtime error c/ WINDOWS\system32\atibtmon.exe

October 10, 2015, 11:36 am

≫ Next: URG:ATLVersionCheck fails with KNOWN BAD hash error

≪ Previous: Security Essentials

I start Windows and i have this runtime error c / WINDOWS \ system32 \ atibtmon.exe
What should I do?

↧

URG:ATLVersionCheck fails with KNOWN BAD hash error

October 27, 2015, 11:16 am

≫ Next: TM 2016 fails on View->Default layout

≪ Previous: runtime error c/ WINDOWS\system32\atibtmon.exe

Hi All,

During Binscope tool test, one of the executable fails for ATLVersionCheck with withKNOWN BAD (Hash xx-xx....) Error.

f:\dd\vctools\vc7libs\ship\atlmfc\include\atlcom.h(objcore.obj (nafxcwd.lib)) - KNOWN BAD (Hash 97-D2-E6-9A-A3-D5-F2-F1-BA-2A-51-A2-B6-C8-9A-4B)
f:\dd\vctools\vc7libs\ship\atlmfc\include\atlcomcli.h(objcore.obj (nafxcwd.lib)) - KNOWN BAD (Hash A5-17-80-59-4D-4D-94-0C-68-0A-00-59-ED-6B-B3-1D)
f:\dd\vctools\vc7libs\ship\atlmfc\include\atlcomcli.h(olemisc.obj (nafxcwd.lib)) - KNOWN BAD (Hash A5-17-80-59-4D-4D-94-0C-68-0A-00-59-ED-6B-B3-1D)
f:\dd\vctools\vc7libs\ship\atlmfc\include\atlcomcli.h(olevar.obj (nafxcwd.lib)) - KNOWN BAD (Hash A5-17-80-59-4D-4D-94-0C-68-0A-00-59-ED-6B-B3-1D)
f:\dd\vctools\vc7libs\ship\atlmfc\include\atlcom.h(cmdtarg.obj (nafxcwd.lib)) - KNOWN BAD (Hash 97-D2-E6-9A-A3-D5-F2-F1-BA-2A-51-A2-B6-C8-9A-4B)
f:\dd\vctools\vc7libs\ship\atlmfc\include\atlcomcli.h(cmdtarg.obj (nafxcwd.lib)) - KNOWN BAD (Hash A5-17-80-59-4D-4D-94-0C-68-0A-00-59-ED-6B-B3-1D)
f:\dd\vctools\vc7libs\ship\atlmfc\include\atlcom.h(winocc.obj (nafxcwd.lib)) - KNOWN BAD (Hash 97-D2-E6-9A-A3-D5-F2-F1-BA-2A-51-A2-B6-C8-9A-4B)
f:\dd\vctools\vc7libs\ship\atlmfc\include\atlcomcli.h(winocc.obj (nafxcwd.lib)) - KNOWN BAD (Hash A5-17-80-59-4D-4D-94-0C-68-0A-00-59-ED-6B-B3-1D)
f:\dd\vctools\vc7libs\ship\atlmfc\include\atlcom.h(dlgprop.obj (nafxcwd.lib)) - KNOWN BAD (Hash 97-D2-E6-9A-A3-D5-F2-F1-BA-2A-51-A2-B6-C8-9A-4B)
f:\dd\vctools\vc7libs\ship\atlmfc\include\atlcomcli.h(dlgprop.obj (nafxcwd.lib)) - KNOWN BAD (Hash A5-17-80-59-4D-4D-94-0C-68-0A-00-59-ED-6B-B3-1D)
f:\dd\vctools\vc7libs\ship\atlmfc\include\atlcom.h(dlgdata.obj (nafxcwd.lib)) - KNOWN BAD (Hash 97-D2-E6-9A-A3-D5-F2-F1-BA-2A-51-A2-B6-C8-9A-4B)
f:\dd\vctools\vc7libs\ship\atlmfc\include\atlcomcli.h(dlgdata.obj (nafxcwd.lib)) - KNOWN BAD (Hash A5-17-80-59-4D-4D-94-0C-68-0A-00-59-ED-6B-B3-1D)
f:\dd\vctools\vc7libs\ship\atlmfc\include\atlcom.h(dlgcore.obj (nafxcwd.lib)) - KNOWN BAD (Hash 97-D2-E6-9A-A3-D5-F2-F1-BA-2A-51-A2-B6-C8-9A-4B)
f:\dd\vctools\vc7libs\ship\atlmfc\include\atlcomcli.h(dlgcore.obj (nafxcwd.lib)) - KNOWN BAD (Hash A5-17-80-59-4D-4D-94-0C-68-0A-00-59-ED-6B-B3-1D)
f:\dd\vctools\vc7libs\ship\atlmfc\include\atlcomcli.h(winctrl3.obj (nafxcwd.lib)) - KNOWN BAD (Hash A5-17-80-59-4D-4D-94-0C-68-0A-00-59-ED-6B-B3-1D)
f:\dd\vctools\vc7libs\ship\atlmfc\include\atlcom.h(winctrl1.obj (nafxcwd.lib)) - KNOWN BAD (Hash 97-D2-E6-9A-A3-D5-F2-F1-BA-2A-51-A2-B6-C8-9A-4B)
f:\dd\vctools\vc7libs\ship\atlmfc\include\atlcomcli.h(winctrl1.obj (nafxcwd.lib)) - KNOWN BAD (Hash A5-17-80-59-4D-4D-94-0C-68-0A-00-59-ED-6B-B3-1D)
f:\dd\vctools\vc7libs\ship\atlmfc\include\atlcom.h(wincore.obj (nafxcwd.lib)) - KNOWN BAD (Hash 97-D2-E6-9A-A3-D5-F2-F1-BA-2A-51-A2-B6-C8-9A-4B)
f:\dd\vctools\vc7libs\ship\atlmfc\include\atlcomcli.h(wincore.obj (nafxcwd.lib)) - KNOWN BAD (Hash A5-17-80-59-4D-4D-94-0C-68-0A-00-59-ED-6B-B3-1D)
f:\dd\vctools\vc7libs\ship\atlmfc\include\atlcomcli.h(strcore.obj (nafxcwd.lib)) - KNOWN BAD (Hash A5-17-80-59-4D-4D-94-0C-68-0A-00-59-ED-6B-B3-1D)
c:\program files (x86)\microsoft visual studio 9.0\vc\atlmfc\include\atlcomcli.h(EventLog.obj (libEventLog.lib)) - KNOWN BAD (Hash A5-17-80-59-4D-4D-94-0C-68-0A-00-59-ED-6B-B3-1D)
c:\program files (x86)\microsoft visual studio 9.0\vc\atlmfc\include\atlcomcli.h(Security.obj (libUTClasses.lib)) - KNOWN BAD (Hash A5-17-80-59-4D-4D-94-0C-68-0A-00-59-ED-6B-B3-1D)
f:\dd\vctools\vc7libs\ship\atlmfc\include\atlcomcli.h(atlfuncs.obj (atlsd.lib)) - KNOWN BAD (Hash A5-17-80-59-4D-4D-94-0C-68-0A-00-59-ED-6B-B3-1D)

It would be helpful, if somebody could explain the reason for getting this error and how to fix it.

Latest version of Binscope(v1.2) used.

Thanks,
Vinay

↧

TM 2016 fails on View->Default layout

November 10, 2015, 6:54 am

≫ Next: How to keep temporary files created while using MiniFuzz

≪ Previous: URG:ATLVersionCheck fails with KNOWN BAD hash error

I am getting system error when selecting View->Default window layout while in Analysis View. I selected it because I could not see the Threat List. Exception stack below.

Threat Modeling Tool 4, Assembly version 'TMT7, Version=7.0.8000.0, Culture=neutral, PublicKeyToken=69c3241e6f0468ca', today is 'Tuesday, November 10, 2015 5:10:35'Crash information:
System.ArgumentNullException: Value cannot be null.
Parameter name: dockingView
   at Microsoft.VisualStudio.PlatformUI.Shell.DockOperations.Dock(ViewElement targetView, ViewElement dockingView, DockDirection dockDirection)
   at ThreatModeling.DashboardControl.ResetWindowLayout()
   at ThreatModeling.DashboardControl.ChangeEventHandler(Object sender, SubscribableEventArgs args)
   at ThreatModeling.Model.SubscribableEventDelegate.Invoke(Object sender, SubscribableEventArgs args)
   at ThreatModeling.ViewModel.DashboardViewModel.OnChange(SubscribableEventClass eventClass, Dictionary`2 args)
   at ThreatModeling.ViewModel.DashboardViewModel.ObjectModelEventInterceptor(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.ViewModel.DashboardViewModel.ObjectModel_ObjectModelChanged(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.Model.ObjectModelChangeDelegate.Invoke(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.Model.ObjectModel.OnObjectModelChange(ObjectModelChangeCause cause, Object objectOfChange)
   at ThreatModeling.ViewModel.ResetWindowLayoutCommand.Execute(Object parameter)
   at MS.Internal.Commands.CommandHelpers.CriticalExecuteCommandSource(ICommandSource commandSource, Boolean userInitiated)
   at System.Windows.Controls.MenuItem.InvokeClickAfterRender(Object arg)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Int32 numArgs)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Int32 numArgs, Delegate catchHandler)

End of crash information

Threat Modeling Tool 4, Assembly version 'TMT7, Version=7.0.8000.0, Culture=neutral, PublicKeyToken=69c3241e6f0468ca', today is 'Tuesday, November 10, 2015 5:10:45'Crash information:
System.ArgumentNullException: Value cannot be null.
Parameter name: dockingView
   at Microsoft.VisualStudio.PlatformUI.Shell.DockOperations.Dock(ViewElement targetView, ViewElement dockingView, DockDirection dockDirection)
   at ThreatModeling.DashboardControl.ResetWindowLayout()
   at ThreatModeling.DashboardControl.ChangeEventHandler(Object sender, SubscribableEventArgs args)
   at ThreatModeling.Model.SubscribableEventDelegate.Invoke(Object sender, SubscribableEventArgs args)
   at ThreatModeling.ViewModel.DashboardViewModel.OnChange(SubscribableEventClass eventClass, Dictionary`2 args)
   at ThreatModeling.ViewModel.DashboardViewModel.ObjectModelEventInterceptor(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.ViewModel.DashboardViewModel.ObjectModel_ObjectModelChanged(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.Model.ObjectModelChangeDelegate.Invoke(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.Model.ObjectModel.OnObjectModelChange(ObjectModelChangeCause cause, Object objectOfChange)
   at ThreatModeling.ViewModel.ResetWindowLayoutCommand.Execute(Object parameter)
   at MS.Internal.Commands.CommandHelpers.CriticalExecuteCommandSource(ICommandSource commandSource, Boolean userInitiated)
   at System.Windows.Controls.MenuItem.InvokeClickAfterRender(Object arg)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Int32 numArgs)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Int32 numArgs, Delegate catchHandler)
   at System.Windows.Threading.DispatcherOperation.InvokeImpl()
   at System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(Object state)
   at System.Threading.ExecutionContext.RunInternal(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
   at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
   at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state)
   at System.Windows.Threading.DispatcherOperation.Invoke()
   at System.Windows.Threading.Dispatcher.ProcessQueue()
   at System.Windows.Threading.Dispatcher.WndProcHook(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
   at MS.Win32.HwndWrapper.WndProc(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
   at MS.Win32.HwndSubclass.DispatcherCallbackOperation(Object o)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Int32 numArgs)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Int32 numArgs, Delegate catchHandler)
   at System.Windows.Threading.Dispatcher.LegacyInvokeImpl(DispatcherPriority priority, TimeSpan timeout, Delegate method, Object args, Int32 numArgs)
   at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam)
   at MS.Win32.UnsafeNativeMethods.DispatchMessage(MSG& msg)
   at System.Windows.Threading.Dispatcher.PushFrameImpl(DispatcherFrame frame)
   at System.Windows.Threading.Dispatcher.PushFrame(DispatcherFrame frame)
   at System.Windows.Application.RunDispatcher(Object ignore)
   at System.Windows.Application.RunInternal(Window window)
   at System.Windows.Application.Run(Window window)
   at ThreatModeling.App.Main()

End of crash information

Threat Modeling Tool 4, Assembly version 'TMT7, Version=7.0.8000.0, Culture=neutral, PublicKeyToken=69c3241e6f0468ca', today is 'Tuesday, November 10, 2015 6:42:39'Crash information:
System.ArgumentNullException: Value cannot be null.
Parameter name: dockingView
   at Microsoft.VisualStudio.PlatformUI.Shell.DockOperations.Dock(ViewElement targetView, ViewElement dockingView, DockDirection dockDirection)
   at ThreatModeling.DashboardControl.ResetWindowLayout()
   at ThreatModeling.DashboardControl.ChangeEventHandler(Object sender, SubscribableEventArgs args)
   at ThreatModeling.Model.SubscribableEventDelegate.Invoke(Object sender, SubscribableEventArgs args)
   at ThreatModeling.ViewModel.DashboardViewModel.OnChange(SubscribableEventClass eventClass, Dictionary`2 args)
   at ThreatModeling.ViewModel.DashboardViewModel.ObjectModelEventInterceptor(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.ViewModel.DashboardViewModel.ObjectModel_ObjectModelChanged(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.Model.ObjectModelChangeDelegate.Invoke(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.Model.ObjectModel.OnObjectModelChange(ObjectModelChangeCause cause, Object objectOfChange)
   at ThreatModeling.ViewModel.ResetWindowLayoutCommand.Execute(Object parameter)
   at MS.Internal.Commands.CommandHelpers.CriticalExecuteCommandSource(ICommandSource commandSource, Boolean userInitiated)
   at System.Windows.Controls.MenuItem.InvokeClickAfterRender(Object arg)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Int32 numArgs)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Int32 numArgs, Delegate catchHandler)

End of crash information

Threat Modeling Tool 4, Assembly version 'TMT7, Version=7.0.8000.0, Culture=neutral, PublicKeyToken=69c3241e6f0468ca', today is 'Tuesday, November 10, 2015 6:42:49'Crash information:
System.ArgumentNullException: Value cannot be null.
Parameter name: dockingView
   at Microsoft.VisualStudio.PlatformUI.Shell.DockOperations.Dock(ViewElement targetView, ViewElement dockingView, DockDirection dockDirection)
   at ThreatModeling.DashboardControl.ResetWindowLayout()
   at ThreatModeling.DashboardControl.ChangeEventHandler(Object sender, SubscribableEventArgs args)
   at ThreatModeling.Model.SubscribableEventDelegate.Invoke(Object sender, SubscribableEventArgs args)
   at ThreatModeling.ViewModel.DashboardViewModel.OnChange(SubscribableEventClass eventClass, Dictionary`2 args)
   at ThreatModeling.ViewModel.DashboardViewModel.ObjectModelEventInterceptor(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.ViewModel.DashboardViewModel.ObjectModel_ObjectModelChanged(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.Model.ObjectModelChangeDelegate.Invoke(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.Model.ObjectModel.OnObjectModelChange(ObjectModelChangeCause cause, Object objectOfChange)
   at ThreatModeling.ViewModel.ResetWindowLayoutCommand.Execute(Object parameter)
   at MS.Internal.Commands.CommandHelpers.CriticalExecuteCommandSource(ICommandSource commandSource, Boolean userInitiated)
   at System.Windows.Controls.MenuItem.InvokeClickAfterRender(Object arg)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Int32 numArgs)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Int32 numArgs, Delegate catchHandler)
   at System.Windows.Threading.DispatcherOperation.InvokeImpl()
   at System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(Object state)
   at System.Threading.ExecutionContext.RunInternal(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
   at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
   at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state)
   at System.Windows.Threading.DispatcherOperation.Invoke()
   at System.Windows.Threading.Dispatcher.ProcessQueue()
   at System.Windows.Threading.Dispatcher.WndProcHook(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
   at MS.Win32.HwndWrapper.WndProc(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
   at MS.Win32.HwndSubclass.DispatcherCallbackOperation(Object o)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Int32 numArgs)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Int32 numArgs, Delegate catchHandler)
   at System.Windows.Threading.Dispatcher.LegacyInvokeImpl(DispatcherPriority priority, TimeSpan timeout, Delegate method, Object args, Int32 numArgs)
   at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam)
   at MS.Win32.UnsafeNativeMethods.DispatchMessage(MSG& msg)
   at System.Windows.Threading.Dispatcher.PushFrameImpl(DispatcherFrame frame)
   at System.Windows.Threading.Dispatcher.PushFrame(DispatcherFrame frame)
   at System.Windows.Application.RunDispatcher(Object ignore)
   at System.Windows.Application.RunInternal(Window window)
   at System.Windows.Application.Run(Window window)
   at ThreatModeling.App.Main()

End of crash information

Threat Modeling Tool 4, Assembly version 'TMT7, Version=7.0.8000.0, Culture=neutral, PublicKeyToken=69c3241e6f0468ca', today is 'Tuesday, November 10, 2015 6:44:33'Crash information:
System.ArgumentNullException: Value cannot be null.
Parameter name: dockingView
   at Microsoft.VisualStudio.PlatformUI.Shell.DockOperations.Dock(ViewElement targetView, ViewElement dockingView, DockDirection dockDirection)
   at ThreatModeling.DashboardControl.ResetWindowLayout()
   at ThreatModeling.DashboardControl.ChangeEventHandler(Object sender, SubscribableEventArgs args)
   at ThreatModeling.Model.SubscribableEventDelegate.Invoke(Object sender, SubscribableEventArgs args)
   at ThreatModeling.ViewModel.DashboardViewModel.OnChange(SubscribableEventClass eventClass, Dictionary`2 args)
   at ThreatModeling.ViewModel.DashboardViewModel.ObjectModelEventInterceptor(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.ViewModel.DashboardViewModel.ObjectModel_ObjectModelChanged(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.Model.ObjectModelChangeDelegate.Invoke(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.Model.ObjectModel.OnObjectModelChange(ObjectModelChangeCause cause, Object objectOfChange)
   at ThreatModeling.ViewModel.ResetWindowLayoutCommand.Execute(Object parameter)
   at MS.Internal.Commands.CommandHelpers.CriticalExecuteCommandSource(ICommandSource commandSource, Boolean userInitiated)
   at System.Windows.Controls.MenuItem.InvokeClickAfterRender(Object arg)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Int32 numArgs)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Int32 numArgs, Delegate catchHandler)

End of crash information

Threat Modeling Tool 4, Assembly version 'TMT7, Version=7.0.8000.0, Culture=neutral, PublicKeyToken=69c3241e6f0468ca', today is 'Tuesday, November 10, 2015 6:44:39'Crash information:
System.ArgumentNullException: Value cannot be null.
Parameter name: dockingView
   at Microsoft.VisualStudio.PlatformUI.Shell.DockOperations.Dock(ViewElement targetView, ViewElement dockingView, DockDirection dockDirection)
   at ThreatModeling.DashboardControl.ResetWindowLayout()
   at ThreatModeling.DashboardControl.ChangeEventHandler(Object sender, SubscribableEventArgs args)
   at ThreatModeling.Model.SubscribableEventDelegate.Invoke(Object sender, SubscribableEventArgs args)
   at ThreatModeling.ViewModel.DashboardViewModel.OnChange(SubscribableEventClass eventClass, Dictionary`2 args)
   at ThreatModeling.ViewModel.DashboardViewModel.ObjectModelEventInterceptor(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.ViewModel.DashboardViewModel.ObjectModel_ObjectModelChanged(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.Model.ObjectModelChangeDelegate.Invoke(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.Model.ObjectModel.OnObjectModelChange(ObjectModelChangeCause cause, Object objectOfChange)
   at ThreatModeling.ViewModel.ResetWindowLayoutCommand.Execute(Object parameter)
   at MS.Internal.Commands.CommandHelpers.CriticalExecuteCommandSource(ICommandSource commandSource, Boolean userInitiated)
   at System.Windows.Controls.MenuItem.InvokeClickAfterRender(Object arg)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Int32 numArgs)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Int32 numArgs, Delegate catchHandler)
   at System.Windows.Threading.DispatcherOperation.InvokeImpl()
   at System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(Object state)
   at System.Threading.ExecutionContext.RunInternal(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
   at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
   at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state)
   at System.Windows.Threading.DispatcherOperation.Invoke()
   at System.Windows.Threading.Dispatcher.ProcessQueue()
   at System.Windows.Threading.Dispatcher.WndProcHook(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
   at MS.Win32.HwndWrapper.WndProc(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
   at MS.Win32.HwndSubclass.DispatcherCallbackOperation(Object o)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Int32 numArgs)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Int32 numArgs, Delegate catchHandler)
   at System.Windows.Threading.Dispatcher.LegacyInvokeImpl(DispatcherPriority priority, TimeSpan timeout, Delegate method, Object args, Int32 numArgs)
   at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam)
   at MS.Win32.UnsafeNativeMethods.DispatchMessage(MSG& msg)
   at System.Windows.Threading.Dispatcher.PushFrameImpl(DispatcherFrame frame)
   at System.Windows.Threading.Dispatcher.PushFrame(DispatcherFrame frame)
   at System.Windows.Application.RunDispatcher(Object ignore)
   at System.Windows.Application.RunInternal(Window window)
   at System.Windows.Application.Run(Window window)
   at ThreatModeling.App.Main()

End of crash information

Threat Modeling Tool 4, Assembly version 'TMT7, Version=7.0.8000.0, Culture=neutral, PublicKeyToken=69c3241e6f0468ca', today is 'Tuesday, November 10, 2015 6:50:19'Crash information:
System.ArgumentNullException: Value cannot be null.
Parameter name: dockingView
   at Microsoft.VisualStudio.PlatformUI.Shell.DockOperations.Dock(ViewElement targetView, ViewElement dockingView, DockDirection dockDirection)
   at ThreatModeling.DashboardControl.ResetWindowLayout()
   at ThreatModeling.DashboardControl.ChangeEventHandler(Object sender, SubscribableEventArgs args)
   at ThreatModeling.Model.SubscribableEventDelegate.Invoke(Object sender, SubscribableEventArgs args)
   at ThreatModeling.ViewModel.DashboardViewModel.OnChange(SubscribableEventClass eventClass, Dictionary`2 args)
   at ThreatModeling.ViewModel.DashboardViewModel.ObjectModelEventInterceptor(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.ViewModel.DashboardViewModel.ObjectModel_ObjectModelChanged(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.Model.ObjectModelChangeDelegate.Invoke(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.Model.ObjectModel.OnObjectModelChange(ObjectModelChangeCause cause, Object objectOfChange)
   at ThreatModeling.ViewModel.ResetWindowLayoutCommand.Execute(Object parameter)
   at MS.Internal.Commands.CommandHelpers.CriticalExecuteCommandSource(ICommandSource commandSource, Boolean userInitiated)
   at System.Windows.Controls.MenuItem.InvokeClickAfterRender(Object arg)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Int32 numArgs)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Int32 numArgs, Delegate catchHandler)

End of crash information

Threat Modeling Tool 4, Assembly version 'TMT7, Version=7.0.8000.0, Culture=neutral, PublicKeyToken=69c3241e6f0468ca', today is 'Tuesday, November 10, 2015 6:50:59'Crash information:
System.ArgumentNullException: Value cannot be null.
Parameter name: dockingView
   at Microsoft.VisualStudio.PlatformUI.Shell.DockOperations.Dock(ViewElement targetView, ViewElement dockingView, DockDirection dockDirection)
   at ThreatModeling.DashboardControl.ResetWindowLayout()
   at ThreatModeling.DashboardControl.ChangeEventHandler(Object sender, SubscribableEventArgs args)
   at ThreatModeling.Model.SubscribableEventDelegate.Invoke(Object sender, SubscribableEventArgs args)
   at ThreatModeling.ViewModel.DashboardViewModel.OnChange(SubscribableEventClass eventClass, Dictionary`2 args)
   at ThreatModeling.ViewModel.DashboardViewModel.ObjectModelEventInterceptor(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.ViewModel.DashboardViewModel.ObjectModel_ObjectModelChanged(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.Model.ObjectModelChangeDelegate.Invoke(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.Model.ObjectModel.OnObjectModelChange(ObjectModelChangeCause cause, Object objectOfChange)
   at ThreatModeling.ViewModel.ResetWindowLayoutCommand.Execute(Object parameter)
   at MS.Internal.Commands.CommandHelpers.CriticalExecuteCommandSource(ICommandSource commandSource, Boolean userInitiated)
   at System.Windows.Controls.MenuItem.InvokeClickAfterRender(Object arg)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Int32 numArgs)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Int32 numArgs, Delegate catchHandler)
   at System.Windows.Threading.DispatcherOperation.InvokeImpl()
   at System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(Object state)
   at System.Threading.ExecutionContext.RunInternal(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
   at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
   at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state)
   at System.Windows.Threading.DispatcherOperation.Invoke()
   at System.Windows.Threading.Dispatcher.ProcessQueue()
   at System.Windows.Threading.Dispatcher.WndProcHook(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
   at MS.Win32.HwndWrapper.WndProc(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
   at MS.Win32.HwndSubclass.DispatcherCallbackOperation(Object o)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Int32 numArgs)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Int32 numArgs, Delegate catchHandler)
   at System.Windows.Threading.Dispatcher.LegacyInvokeImpl(DispatcherPriority priority, TimeSpan timeout, Delegate method, Object args, Int32 numArgs)
   at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam)
   at MS.Win32.UnsafeNativeMethods.DispatchMessage(MSG& msg)
   at System.Windows.Threading.Dispatcher.PushFrameImpl(DispatcherFrame frame)
   at System.Windows.Threading.Dispatcher.PushFrame(DispatcherFrame frame)
   at System.Windows.Application.RunDispatcher(Object ignore)
   at System.Windows.Application.RunInternal(Window window)
   at System.Windows.Application.Run(Window window)
   at ThreatModeling.App.Main()

End of crash information

↧

How to keep temporary files created while using MiniFuzz

November 24, 2015, 10:35 pm

≫ Next: Threat Modelling Tool 2016 - Generate Report - false risk rankings

≪ Previous: TM 2016 fails on View->Default layout

I am planning to test anti-virus program to see if the realtime malware scan diagnose correctory against fuzzed files.
I am going to use the MiniFuzz to create tons of malformed files for various file formats.
However it is not possible to keep all created files becasue MiniFuzz delete them automatically and I can't reproduce an issue even if the scan misdiagnose the files.

Please let me know the way to keep all fuzzed files.

↧

Threat Modelling Tool 2016 - Generate Report - false risk rankings

December 21, 2015, 6:07 am

≫ Next: Using SDL Tools for .NET applications hosted in Linux

≪ Previous: How to keep temporary files created while using MiniFuzz

Hi,

I am using the SDLC Threat Modelling tool 2016 by Microsoft on a Windows 10 virtual Box 64-bit.

When I am trying to generate a final report, it discards all the different risk rankings for each threat, and instead of having the respective high, medium, low levels next to each threat, it produces a html report putting high next to every threat.

Any help?

Regards,

Ioannis (Yannis) Kostakis

Cyber Security Specialist

↧

Using SDL Tools for .NET applications hosted in Linux

January 22, 2012, 11:49 pm

≫ Next: How to use SDL Regex Fuzzer Tool functionality in .NET Web Application (Asp.net & C#)

≪ Previous: Threat Modelling Tool 2016 - Generate Report - false risk rankings

I just have a thought about the applicability of MS SDL tools like Regex Fuzzer, SDL BinScope for the .NET applications hosted in Linux etc. environments.

Please confirm and can we do it?

Thanks

↧

How to use SDL Regex Fuzzer Tool functionality in .NET Web Application (Asp.net & C#)

January 1, 2016, 2:27 am

≫ Next: Broken report - Threat Modelling Tool 2016 - fault risk ratings

≪ Previous: Using SDL Tools for .NET applications hosted in Linux

Hi,

i want to ask that how can we use Regex Fuzzer functionality in our .net application (Asp.net & C#) to validate user input regular expression w.r.t ReDos?

any other options for user input regular expression validation w.r.t ReDos..

Any plans for a command line interface so large numbers of regular expressions can be evaluated in a batch?

Thanks

↧

Broken report - Threat Modelling Tool 2016 - fault risk ratings

January 4, 2016, 2:21 am

≫ Next: Windows Report Viewer 2012 and MS Reporting Services 2012 Support Lifecycle

≪ Previous: How to use SDL Regex Fuzzer Tool functionality in .NET Web Application (Asp.net & C#)

Hi,

I am using the SDLC Threat Modelling tool 2016 by Microsoft on a Windows 10 virtual Box 64-bit.

When I am trying to generate a final report, it discards all the different risk ratings for each threat, and instead of having the respective high, medium, low levels next to each threat, it produces a html report putting only high next to every threat.

Any help?

Regards,

Ioannis (Yannis) Kostakis

Cyber Security Specialist

↧

Windows Report Viewer 2012 and MS Reporting Services 2012 Support Lifecycle

January 25, 2016, 4:20 am

≫ Next: BinScope 2014 reports DefaultGSCookieCheck failure against VC2008 compiled DLL

≪ Previous: Broken report - Threat Modelling Tool 2016 - fault risk ratings

Hi.

I am using Microsoft Reporting Viewer 2012 and MS Reporting Services 2012 in one of my application and i would like to know what is the support lifecycle for these software.

I need this details so that i can plan for upgrade to newer version of MS Reporting Viewer and MS Reporting services.

Thanks,

Prashant

↧

BinScope 2014 reports DefaultGSCookieCheck failure against VC2008 compiled DLL

February 1, 2016, 9:20 am

≫ Next: Seeking information on SDL threat modeling tool

≪ Previous: Windows Report Viewer 2012 and MS Reporting Services 2012 Support Lifecycle

The result of running BinScope 2014 against our C/C++ DLL built with Visual Studio 2008 is:

DefaultGSCookieCheck (FAIL)

<dll-name> is a C or C++ binary which interferes with the stack protector. The stack protector (/GS) is a security feature of the compiler which makes it more difficult to exploit stack buffer overflow memory corruption vulnerabilities. The stack protector relies on a random number, called the "security cookie", to detect these buffer overflows. This "cookie" is statically linked with your binary from a Visual C++ library in the form of the symbol __security_cookie. On recent Windows versions, the loader looks for the magic statically linked value of this cookie, and initializes the cookie with a far better source of entropy -- the system's secure random number generator -- rather than the limited random number generator available early in the C runtime startup code. When this symbol is not the default value, the additional entropy is not injected by the operating system, reducing the effectiveness of the stack protector. To resolve this issue, ensure that your code does not reference or create a symbol named __security_cookie or __security_cookie_complement.

I've been unable to find any documentation which details this any further or states the means to resolve it (even in the BinScope 2014 user guide). Perhaps it is not possible to resolve without upgrading to later than VS2008, but I would like a definitive answer to that.

It's the nature of BinScope 2014's DefaultGSCookieCheck complaint that I'm trying to address. I understand the purpose and approach behind the /GS option, but this new issue has come up since the original version of BinScope (prior to the 2014 version) and there are no clear instructions as to how one might change the toolchain to address it, or even if it is possible with VS2008.

Thanks,

Mark

↧

Seeking information on SDL threat modeling tool

February 16, 2016, 2:21 am

≫ Next: Threat Model Tool 2016 - Crashes and lost Threat List view

≪ Previous: BinScope 2014 reports DefaultGSCookieCheck failure against VC2008 compiled DLL

I have few quires related to SDL threat modeling tool, can you please provide details for the same:

What is the difference between SDL threat modeling tool 2016 and Microsoft threat and analysis tool (TAM) ?
Which one is better suitable for threat modeling software applications(under design/development) in SDLC phase?
Is there any details document on creating our own templates in SDL threat modeling tool 2016?
Can Microsoft provides any sort of trainings on using and customizing SDL threat modeling tool?
Please share any documents/video, which provide details on using and enhancing SDL threat modeling tool

↧

Threat Model Tool 2016 - Crashes and lost Threat List view

March 2, 2016, 9:33 am

≫ Next: Not working with Visio 2016

≪ Previous: Seeking information on SDL threat modeling tool

When using the modeling tool and switching between design and analysis view, I lost the Threat List and the app crashes.

I can get all the windows back, EXCEPT, the Threat List. Uninstalled and reinstalled, verified registry and program files were cleaned up. Now I'm at the point where this tool useless on this system.

System.NullReferenceException: Object reference not set to an instance of an object.
   at ThreatModeling.DashboardControl.ChangeEventHandler(Object sender, SubscribableEventArgs args)
   at ThreatModeling.Model.SubscribableEventDelegate.Invoke(Object sender, SubscribableEventArgs args)
   at ThreatModeling.ViewModel.DashboardViewModel.OnChange(SubscribableEventClass eventClass, Dictionary`2 args)
   at ThreatModeling.ViewModel.DashboardViewModel.ObjectModelEventInterceptor(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.ViewModel.DashboardViewModel.ObjectModel_ObjectModelChanged(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.Model.ObjectModelChangeDelegate.Invoke(Object sender, ObjectModelChangeEventArgs args)
   at ThreatModeling.Model.ObjectModel.OnObjectModelChange(ObjectModelChangeCause cause, Object objectOfChange)
   at ThreatModeling.ViewModel.NotesCommand.Execute(Object parameter)
   at MS.Internal.Commands.CommandHelpers.CriticalExecuteCommandSource(ICommandSource commandSource, Boolean userInitiated)
   at System.Windows.Controls.MenuItem.InvokeClickAfterRender(Object arg)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Int32 numArgs)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Int32 numArgs, Delegate catchHandler)

↧

Not working with Visio 2016

March 3, 2016, 6:54 am

≫ Next: Humen Contact

≪ Previous: Threat Model Tool 2016 - Crashes and lost Threat List view

Hi everyone.

Does any one know how to make the Threat Modeling tool work with Visio 2016?

Thanks,

Amir

↧

Humen Contact

March 7, 2016, 7:42 am

≫ Next: DefaultGSCookieCheck with Bin Scope 2014 report

≪ Previous: Not working with Visio 2016

How can I contact the Microsoft SDL team directly?

↧

DefaultGSCookieCheck with Bin Scope 2014 report

April 4, 2016, 6:12 am

≫ Next: Passing SecurityToken(SAML) between relying parties

≪ Previous: Humen Contact

Hi All,

I am probably not the first one to inquire about this, but this has really become a pain in the 'code'.

Although i understand the significance and legitimacy of /GS check, but this DefaultGSCookieCheck is something which is coming in tons for our code build and we have no idea about it.

Can somebody please explain why and what does this error means?

Regards,

Abhay

↧

Passing SecurityToken(SAML) between relying parties

April 4, 2016, 11:33 am

≫ Next: Threat Model Tool 2016 - falsely marks some interactions as Deleted

≪ Previous: DefaultGSCookieCheck with Bin Scope 2014 report

Hi friends,

I have created SecurityTokenService using WIF - (ActiveFederation) and successfully integrated that with my portal web application for authentication. Now , I have to integrate this with my other web applications and I don't want my users to login again on those web apps. So , is it a good method to transfer SAML token between web applications as cookies OR what is enterprise way to do it ? Please help.

jaik

↧