专利内容由知识产权出版社提供
专利名称:System and method for detecting and
monitoring persistent events
发明人:Ross R. Kinder,Aaron Hackworth,Matthew K.
Geiger,Kevin R. Moore,Timothy M. Vidas
申请号:US15436304申请日:20170217公开号:US09961107B2公开日:20180501
专利附图:
摘要:A system for collection and analysis of forensic and event data comprising aserver and an endpoint agent operating on a remote system. The server is configured to
receive event data including process creation data, persistent process data, threadinjection data, network connection data, memory pattern data, or any combinationthereof, and analyze the event data to detect compromises of a remote system. Theendpoint agent is configured to acquire event data, and communicate the event data tothe server.
申请人:SecureWorks Corp.
地址:Wilmington DE US
国籍:US
代理机构:Larson Newman, LLP
更多信息请下载全文后查看
