I would like to get some advice on how you approach a new software installation on Windows to be able to extract the impact that software makes on your system and attack surface.
I need to know what changes the software makes on the system such as registry, ACLs, services, processes, network settings (such as ports that it may have open for communication), and all folders and files it installed. In a nutshell, a holistic view of the Attack Surface.
I have been using a sandbox environment and Microsoft's Attack Surface Analyzer, however to my surprise it has missed some important security concerns.