Skip to main content
  1. Home
  2. Computing
  3. Small Business
  4. News

Microsoft's Project Springfield enables automated security testing in the cloud

Jon Martindale
By

azure project springfield test projectspringfield02
Developers keen to test their newly created software against some of the more common exploits out there now have a new avenue to do so. Announced at Microsoft’s Ignite Conference this week, the software giant debuted Project Springfield, a platform which can throw simple attack vectors at application binaries to test them for a number of security flaws.

Although automated testing is a relatively common method of testing the security of a piece of software, Microsoft is coining a new type of exploit hunting for its new platform. “Whitebox fuzzing,” as it is called, is said to combine different testing methods from traditional whiteboxing and fuzzing, hence the name.

It uses similar varied inputs at different levels of the code base to simulate attacks and test for potential weaknesses, all the while using machine learning to refine the input process so that it more intelligently tests the software over and over, according to Ars Technica. This is more likely to mirror a human tester or a potential hacker who would try to deliberately break the system.

The big advantage being that it is remote, so no local access is required and the tests and be repeated and altered time and again for much more thorough testing.

This is a process that Microsoft has been using internally for some time now. The basis for Project Springfield, known as SAGE, was first used to test different aspects of Windows 7 prior to its release. It ultimately discovered as much as a third of all pre-release bugs discovered by fuzzing tools, despite being used as a last line of defense after all other automated testing was complete.

Now that sort of system is available to developers through a easy-to-use user interface and it is available through the Azure Cloud platform, so it is easily accessible. Linux support is planned for the future, but for now Windows binaries are the only ones that it will work with.

Available on a limited preview, Microsoft is openly looking for clients who are interested in using the service to test its popularity and viability on a wider set of binaries.

Editors' Recommendations

Selling something online? Watch out for this clever new scam

An individual holding a phone and card.

WhatsApp adds new privacy features that everyone should start using

The WhatsApp app icon on a phone with other messaging apps.

North Korean hackers are targeting crypto workers

A hand on a laptop in a dark surrounding.

North Korean hackers target huge crypto exchange — are user funds safe?

A depiction of a hacker breaking into a system via the use of code.

Best Adobe Photoshop deals for August 2022

Close up of Adobe Photoshop app icon being chosen from among other Adobe apps on a laptop screen.

The Dell XPS 13 Plus has the M2 MacBook Air beat in this one important way

The Dell XPS 13 Plus on a table outside.

Best Apple iMac Deals: Get an Apple desktop for $479

Apple iMac with Retina 5K Display review close

Best Newegg deals for August 2022

Newegg Green Monday sale

Alienware’s new gaming monitors come with a retractable headset stand

An Alienware monitor with a headset holder.

GPU prices may be about to crash to incredible new lows

Graphics card in the Acer Predator Orion 7000.

AMD steals Intel’s spotlight with new Ryzen 7000 release date

AMD Ryzen processor render.

This Dell 2-in-1 laptop is discounted by $250 right now

Dell Inspiron 14 2-in-1 7420 front angled view with keyboard folded under and showing display.

This ultra-thin Alienware gaming laptop is $1,150 off today

Alienware x17 on a white background and at a side angle while displaying a game.