Malware analysis and recovery

Smith, Jared M.

Advanced Search OptionsAdvanced Search queries use a traditional Term Search. For more info, see our FAQ.

All Fields:

Patent Title:

Abstract:

Assignee:

Inventor(s):

Patent Number:

Patent Classification (CPC):

All Classifications
A - human necessities
A01 - agriculture
A21 - baking
A22 - butchering
A23 - foods or foodstuffs
A24 - tobacco
A41 - wearing apparel
A42 - headwear
A43 - footwear
A44 - haberdashery
A45 - hand or travelling articles
A46 - brushware
A47 - furniture
A61 - medical or veterinary science
A62 - life-saving
A63 - sports
A99 - subject matter not otherwise provided for in this section
B - performing operations
B01 - physical or chemical processes or apparatus in general
B02 - crushing, pulverising, or disintegrating
B03 - separation of solid materials using liquids or using pneumatic tables or jigs
B04 - centrifugal apparatus or machines for carrying-out physical or chemical processes
B05 - spraying or atomising in general
B06 - generating or transmitting mechanical vibrations in general
B07 - separating solids from solids
B08 - cleaning
B09 - disposal of solid waste
B21 - mechanical metal-working without essentially removing material
B22 - casting
B23 - machine tools
B24 - grinding
B25 - hand tools
B26 - hand cutting tools
B27 - working or preserving wood or similar material
B28 - working cement, clay, or stone
B29 - working of plastics
B30 - presses
B31 - making articles of paper, cardboard or material worked in a manner analogous to paper
B32 - layered products
B33 - additive manufacturing technology
B41 - printing
B42 - bookbinding
B43 - writing or drawing implements
B44 - decorative arts
B60 - vehicles in general
B61 - railways
B62 - land vehicles for travelling otherwise than on rails
B63 - ships or other waterborne vessels
B64 - aircraft
B65 - conveying
B66 - hoisting
B67 - opening, closing {or cleaning} bottles, jars or similar containers
B68 - saddlery
B81 - microstructural technology
B82 - nanotechnology
B99 - subject matter not otherwise provided for in this section
C - chemistry
C01 - inorganic chemistry
C02 - treatment of water, waste water, sewage, or sludge
C03 - glass
C04 - cements
C05 - fertilisers
C06 - explosives
C07 - organic chemistry
C08 - organic macromolecular compounds
C09 - dyes
C10 - petroleum, gas or coke industries
C11 - animal or vegetable oils, fats, fatty substances or waxes
C12 - biochemistry
C13 - sugar industry
C14 - skins
C21 - metallurgy of iron
C22 - metallurgy
C23 - coating metallic material
C25 - electrolytic or electrophoretic processes
C30 - crystal growth
C40 - combinatorial technology
C99 - subject matter not otherwise provided for in this section
D - textiles
D01 - natural or man-made threads or fibres
D02 - yarns
D03 - weaving
D04 - braiding
D05 - sewing
D06 - treatment of textiles or the like
D07 - ropes
D10 - indexing scheme associated with sublasses of section d, relating to textiles
D21 - paper-making
D99 - subject matter not otherwise provided for in this section
E - fixed constructions
E01 - construction of roads, railways, or bridges
E02 - hydraulic engineering
E03 - water supply
E04 - building
E05 - locks
E06 - doors, windows, shutters, or roller blinds in general
E21 - earth drilling
E99 - subject matter not otherwise provided for in this section
F - mechanical engineering
F01 - machines or engines in general
F02 - combustion engines
F03 - machines or engines for liquids
F04 - positive - displacement machines for liquids
F05 - indexing schemes relating to engines or pumps in various subclasses of classes f01-f04
F15 - fluid-pressure actuators
F16 - engineering elements and units
F17 - storing or distributing gases or liquids
F21 - lighting
F22 - steam generation
F23 - combustion apparatus
F24 - heating
F25 - refrigeration or cooling
F26 - drying
F27 - furnaces
F28 - heat exchange in general
F41 - weapons
F42 - ammunition
F99 - subject matter not otherwise provided for in this section
G - physics
G01 - measuring
G02 - optics
G03 - photography
G04 - horology
G05 - controlling
G06 - computing
G07 - checking-devices
G08 - signalling
G09 - education
G10 - musical instruments
G11 - information storage
G12 - instrument details
G16 - information and communication technology [ict] specially adapted for specific application fields
G21 - nuclear physics
G99 - subject matter not otherwise provided for in this section
H - electricity
H01 - basic electric elements
H02 - generation
H03 - basic electronic circuitry
H04 - electric communication technique
H05 - electric techniques not otherwise provided for
H99 - subject matter not otherwise provided for in this section
Y - new / cross sectional technologies
Y02 - technologies or applications for mitigation or adaptation against climate change
Y04 - information or communication technologies having an impact on other technology areas
Y10 - technical subjects covered by former uspc

More Options ...

Title: Malware analysis and recovery

Abstract

A system and method detects malware by processing notifications from an intrusion detection system and baseline snapshots from an image capture utility. The image capture utility constructs an image of the suspected malware intrusion and links the suspected malware intrusion to the baseline snapshots. The system and method propagates the image of the suspected malware intrusion across multiple networks before it distinguishes malicious code, device state, and files from benign code, device state, and files. Some systems and methods include a malware recovery system that executes machine learning instructions and heuristics to revert a client and/or a remote server to one or more baseline snapshots.

Inventors:: Smith, Jared M.

Issue Date:: Tue Feb 23 00:00:00 EST 2021

Research Org.:: Oak Ridge National Laboratory (ORNL), Oak Ridge, TN (United States)

Sponsoring Org.:: USDOE

OSTI Identifier:: 1805551

Patent Number(s):: 10931685

Application Number:: 15/837,942

Assignee:: UT-Battelle, LLC (Oak Ridge, TN)

Patent Classifications (CPCs):: G - PHYSICS G06 - COMPUTING G06F - ELECTRIC DIGITAL DATA PROCESSING

G - PHYSICS G06 - COMPUTING G06N - COMPUTER SYSTEMS BASED ON SPECIFIC COMPUTATIONAL MODELS

Show more

G - PHYSICS G06 - COMPUTING G06F - ELECTRIC DIGITAL DATA PROCESSING
G06F21/55 - Detecting local intrusion or implementing counter-measures
G06F21/56 - Computer malware detection or handling, e.g. anti-virus arrangements

G - PHYSICS G06 - COMPUTING G06N - COMPUTER SYSTEMS BASED ON SPECIFIC COMPUTATIONAL MODELS
G06N20/00 - Machine learning

H - ELECTRICITY H04 - ELECTRIC COMMUNICATION TECHNIQUE H04L - TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
H04L63/1408 - {by monitoring network traffic
H04L63/1416 - {Event detection, e.g. attack signature detection}
H04L63/1425 - {Traffic logging, e.g. anomaly detection}
H04L63/145 - {the attack involving the propagation of malware through the network, e.g. viruses, trojans or worms}

Show less

DOE Contract Number:: AC05-00OR22725

Resource Type:: Patent

Resource Relation:: Patent File Date: 12/11/2017

Country of Publication:: United States

Language:: English

Citation Formats


                    Smith, Jared M. Malware analysis and recovery.  United States: N. p., 2021. 
        Web.

Copy to clipboard


                    Smith, Jared M. Malware analysis and recovery.  United States.

Copy to clipboard


                    Smith, Jared M. Tue .  
        "Malware analysis and recovery".  United States.  https://www.osti.gov/servlets/purl/1805551.

Copy to clipboard


                    
@article{osti_1805551,

  title        = {Malware analysis and recovery},

  author       = {Smith, Jared M.},

  abstractNote = {A system and method detects malware by processing notifications from an intrusion detection system and baseline snapshots from an image capture utility. The image capture utility constructs an image of the suspected malware intrusion and links the suspected malware intrusion to the baseline snapshots. The system and method propagates the image of the suspected malware intrusion across multiple networks before it distinguishes malicious code, device state, and files from benign code, device state, and files. Some systems and methods include a malware recovery system that executes machine learning instructions and heuristics to revert a client and/or a remote server to one or more baseline snapshots.},

  doi          = {},

  journal      = {},
number       = ,

  volume       = ,

  place        = {United States},

  year         = {Tue Feb 23 00:00:00 EST 2021},

  month        = {Tue Feb 23 00:00:00 EST 2021}

}

Copy to clipboard

Patent:

Save / Share:

Export Metadata

Save to My Library

Works referenced in this record:

Protection System Including Machine Learning Snapshot Evaluation
patent-application, June 2015

Kohlenberg, Tobias M.; Tatourian, Igor
US Patent Application 14/360333; 20150178496
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20150178496

Evaluation of incremental backup copies for presence of malicious codes in computer systems
patent, June 2011

Liao, En-Yi; Liao, Chinghsien
US Patent Document 7,962,956
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/7962956

Bulk data distribution system
patent, July 2017

Prater, Alexander Clark; Estevez, Victor Gregory; Carlson, Matthew Rice
US Patent Document 9,697,268
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/9697268

Method for Processing an Intrusion into a Wireless Communication Network, Related Device and Computer Program
patent-application, October 2017

Espes, David; Cuppens, NOra
US Patent Application 15/516577; 20170302688
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20170302688

Methods and apparatus for virus detection using journal data
patent, April 2011

Natanzon, Assaf; Drukh, Evgeny; Ahal, Shlomo
US Patent Document 7,934,262
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/7934262

SDI-Scam
patent-application, April 2012

Herz, Frederick S. M.
US Patent Application 13/279893; 20120102570
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20120102570

Systems and methods for remediating the effects of malware
patent, November 2017

Subramanian, Sonia
US Patent Document 9,813,443
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/9813443

Intrusion detection method and signature table
patent-application, June 2003

Brock, Ashley Anderson; Kim, Nathaniel Wook; McClain, Kevin Thomas
US Patent Application 10/015377; 20030110393
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20030110393

Method and system for isolating suspicious email
patent-application, December 2005

Huddleston, David E.
US Patent Application 11/130896; 20050273856
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20050273856

Systems and Methods for Processing Data Flows
patent-application, August 2007

Kapoor, Harsh; Akerman, Moisey; Justus, Stephen D.
US Patent Application 11/610296; 20070192863
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20070192863

Automated Malware Detection and Remediation
patent-application, October 2011

Hooks, David E.; Quinn, Mitchell N.
US Patent Application 12/754814; 20110247071
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20110247071

Detecting and Marking Client Devices
patent-application, October 2014

Hentunen, David
US Patent Application 14/249747; 20140310811
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20140310811

Intrusion Detection and Radio Fingerprint Tracking
patent-application, August 2016

Sen, Robi; Shattil, Steve
US Patent Application 14/109928; 20160226892
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20160226892

Snapshot and restore technique for computer system recovery
patent, August 2010

Fan, Paul; Lin, Jason T.; Wang, Pumbaa
US Patent Document 7,784,098
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/7784098

Method and System for Identifying Enterprise Network Hosts Infected with Slow and/ or Distributed Scanning Malware
patent-application, November 2009

Abdel-Aziz, Bassem; Chow, Stanley; Chen, Shu-Lin
US Patent Application 12/124431; 20090293122
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20090293122

Security Alert Prioritization
patent-application, March 2014

Manadhata, Pratyusa Kumar; Rao, Prasad V.
US Patent Application 13/629222; 20140090056
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20140090056

System and method for deprioritizing and presenting data
patent-application, May 2007

Mustafa, Tarique; Staniford, Stuart
US Patent Application 11/268297; 20070118906
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20070118906

Intrusion prevention system (IPS) mode for a malware detection system
patent, December 2014

McDougal, Monty D.; Lee, Jesse J.; Gilmore, William L.
US Patent Document 8,914,882
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/8914882

Automated threat analysis
patent-application, December 2007

Shevchenko, Sergei
US Patent Application 11/600259; 20070283192
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20070283192

Prioritizing intrusion detection logs
patent-application, October 2005

Gassoway, Paul A.
US Patent Application 10/832692; 20050240781
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20050240781

Malicious Code Infection Cause-and-Effect Analysis
patent-application, January 2015

Hartell, Gregory D.; Steeves, David J.; Hudis, Efim
US Patent Application 14/481873; 20150013007
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20150013007

Centralized Storage and Management of Malware Manifests
patent-application, April 2016

Kashyap, Rahul C.; Navaraj, J. McEnroe Samuel; Passi, Arun
US Patent Application 14/954853; 20160099951
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20160099951

Systems and methods for orchestrating runtime operational integrity
patent, March 2015

Kumar, Srinivas; Pollutro, Dennis Vance
US Patent Document 8,990,948
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/8990948

Automated Behavior and Static Analysis Using an Instrumented Sandbox and Machine Learning Classification for Mobile Security
patent-application, April 2013

Titonis, Theodora H.; Manohar-Alers, Nelson R.; Wysopal, Christopher J.
US Patent Application 13/617568; 20130097706
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20130097706

Network Intrusion Detection with Distributed Correlation
patent-application, July 2011

Figlin, Igal; Zavalkovsky, Arthur; Arzi, Lior
US Patent Application 12/686959; 20110173699
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20110173699

System and method for detecting malicious traffic using a virtual machine configured with a select software environment
patent, May 2016

Aziz, Ashar
US Patent Document 9,356,944
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/9356944

Malicious code infection cause-and-effect analysis
patent-application, June 2007

Hartrell, Gregory D.; Steeves, David J.; Hudis, Efim
US Patent Application 11/321754; 20070150957
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20070150957

System ad Method for Managing Environment Configuration Using Snapshots
patent-application, February 2013

Carmel, Yuval; Peleg, Guy; Halamish, Michal
US Patent Application 13/198893; 20130036214
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20130036214

System and Method of Active Remediation and Passive Protection Against Cyber Attacks
patent-application, January 2014

Cheng, Lee C.
US Patent Application 13/953790; 20140033310
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20140033310

Computer virus and malware cleaner
patent-application, June 2007

Nason, D. David; Lizon, Joshua Nathaniel
US Patent Application 11/303397; 20070143843
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20070143843

Detecting advanced persistent threats
patent, December 2014

Saklikar, Samir Dilipkumar; Kuppa, Aditya; Moreau, Dennis
US Patent Document 8,904,531
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/8904531

Automatic Health-Check Method and Device for On-Line System
patent-application, December 2014

Fu, Yisheng; Ji, Naigeng; Tian, Longhui
US Patent Application 14/364290; 20140372602
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20140372602

Integrated network threat analysis
patent, April 2016

Arcamone, Michael; Diehl, Matthew D.
US Patent Document 9,313,217
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/9313217

Method and System for Automatic Detection and Analysis of Malware
patent-application, June 2016

Thomas, Ralph; Ligh, Bruce Michael
US Patent Application 15/003273; 20160156658
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20160156658

Remediation for Ransomware Attacks on Cloud Drive Folders
patent-application, February 2018

Iwanir, Elad; Lahav, Chen; Tamir, Gal
US Patent Application 15/375001; 20180034835
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20180034835

Security Policy Generation Based on Snapshots of Similar Virtual Machines
patent-application, November 2016

Deng, Yu; Mahindra, Ruchi; Ramasamy, HariGovind V.
US Patent Application 14/699251; 20160321455
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20160321455

System for Automated Computer Support
patent-application, December 2014

Hooks, David Eugene
US Patent Application 14/467780; 20140365825
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20140365825

Generation of alerts in an event management system based upon risk
patent, March 2016

Dotan, Yedidya; Friedman, Lawrence N.; Nair, Manoj
US Patent Document 9,282,114
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/9282114

Dynamic throughput ingestion of backup sources
patent, May 2019

Thomas, Markose; Manjunath, Chinmaya
US Patent Document 10,298,680
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/10298680

Method and system for a self-heating device
patent, November 2009

Kramer, Michael; Field, Scott A.; Seinfeld, Marc E.
US Patent Document 7,624,443
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/7624443

System and Method Employing Structured Intelligence to Verify and Contain Threats at Endpoints
patent-application, November 2014

Cunningham, Sean; Dana, Robert; Nardone, Joseph
US Patent Application 14/216453; 20140344926
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20140344926

Periodic Mobile Forensics
patent-application, April 2015

Guido, Mark D.
US Patent Application 14/062513; 20150121522
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20150121522

Malicious Code Infection Cause-and -Effect Analysis
patent-application, April 2015

Hartell, Gregory D.; Steeves, David J.; Hudis, Efim
US Patent Application 14/481864; 20150101010
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20150101010

System and Method for Cyber Security Threat Detection
patent-application, September 2013

Paine, Jeffrey
US Patent Application 15/699777; 20180255077
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20180255077

Similar Records in DOE Patents and OSTI.GOV collections:

Malware detection and analysis

Patent Chiang, Ken; Lloyd, Levi; Crussell, Jonathan; ...

Embodiments of the invention describe systems and methods for malicious software detection and analysis. A binary executable comprising obfuscated malware on a host device may be received, and incident data indicating a time when the binary executable was received and identifying processes operating on the host device may be recorded. The binary executable is analyzed via a scalable plurality of execution environments, including one or more non-virtual execution environments and one or more virtual execution environments, to generate runtime data and deobfuscation data attributable to the binary executable. At least some of the runtime data and deobfuscation data attributable tomore » « less
Full Text Available
Integrating multiple data sources for malware classification

Patent Anderson, Blake Harrell; Storlie, Curtis B; Lane, Terran

Disclosed herein are representative embodiments of tools and techniques for classifying programs. According to one exemplary technique, at least one graph representation of at least one dynamic data source of at least one program is generated. Also, at least one graph representation of at least one static data source of the at least one program is generated. Additionally, at least using the at least one graph representation of the at least one dynamic data source and the at least one graph representation of the at least one static data source, the at least one program is classified.
Full Text Available
Statistical fingerprinting for malware detection and classification

Patent Prowell, Stacy J.; Rathgeb, Christopher T.

A system detects malware in a computing architecture with an unknown pedigree. The system includes a first computing device having a known pedigree and operating free of malware. The first computing device executes a series of instrumented functions that, when executed, provide a statistical baseline that is representative of the time it takes the software application to run on a computing device having a known pedigree. A second computing device executes a second series of instrumented functions that, when executed, provides an actual time that is representative of the time the known software application runs on the second computing device.more » « less
Full Text Available
System and method for monitoring power consumption to detect malware

Patent Prowell, Stacy J.; Nichols, Jeffrey A.; Hernandez Jimenez, Jarilyn M.

A system and method (referred to as the system) detects malware, viruses, and/or malicious activity by generating a direct current source power consumption profile by causing a monitored device to execute a fully automated recurrent software operation. The system receives by an automated detection system, the direct current source power consumption profile generated by an intelligent power sensor and generates by a detection engine, a power security profile that identifies suspicious code by profiling direct current consumed by monitored type devices. The system executes a detection engine remote from the monitored device that identifies an infected device.
Full Text Available
Independent malware detection architecture

Patent Smith, Jared M.; Petrik, Rachel L.; Arik, Berat E.

A system and method (referred to as the system) detect malware by training a rule-based model, a functional based model, and a deep learning-based model from a memory snapshot of a malware free operating state of a monitored device. The system extracts a feature set from a second memory snapshot captured from an operating state of the monitored device and processes the feature set by the rule-based model, the functional-based model, and the deep learning-based model. The system identifies identifying instances of malware on the monitored device without processing data identifying an operating system of the monitored device, data associatedmore » « less
Full Text Available

Similar Records

Title: Malware analysis and recovery

Abstract

Citation Formats

Protection System Including Machine Learning Snapshot Evaluation patent-application, June 2015

Evaluation of incremental backup copies for presence of malicious codes in computer systems patent, June 2011

Bulk data distribution system patent, July 2017

Method for Processing an Intrusion into a Wireless Communication Network, Related Device and Computer Program patent-application, October 2017

Methods and apparatus for virus detection using journal data patent, April 2011

SDI-Scam patent-application, April 2012

Systems and methods for remediating the effects of malware patent, November 2017

Intrusion detection method and signature table patent-application, June 2003

Method and system for isolating suspicious email patent-application, December 2005

Systems and Methods for Processing Data Flows patent-application, August 2007

Automated Malware Detection and Remediation patent-application, October 2011

Detecting and Marking Client Devices patent-application, October 2014

Intrusion Detection and Radio Fingerprint Tracking patent-application, August 2016

Snapshot and restore technique for computer system recovery patent, August 2010

Method and System for Identifying Enterprise Network Hosts Infected with Slow and/ or Distributed Scanning Malware patent-application, November 2009

Security Alert Prioritization patent-application, March 2014

System and method for deprioritizing and presenting data patent-application, May 2007

Intrusion prevention system (IPS) mode for a malware detection system patent, December 2014

Automated threat analysis patent-application, December 2007

Prioritizing intrusion detection logs patent-application, October 2005

Malicious Code Infection Cause-and-Effect Analysis patent-application, January 2015

Centralized Storage and Management of Malware Manifests patent-application, April 2016

Systems and methods for orchestrating runtime operational integrity patent, March 2015

Automated Behavior and Static Analysis Using an Instrumented Sandbox and Machine Learning Classification for Mobile Security patent-application, April 2013

Network Intrusion Detection with Distributed Correlation patent-application, July 2011

System and method for detecting malicious traffic using a virtual machine configured with a select software environment patent, May 2016

Malicious code infection cause-and-effect analysis patent-application, June 2007

System ad Method for Managing Environment Configuration Using Snapshots patent-application, February 2013

System and Method of Active Remediation and Passive Protection Against Cyber Attacks patent-application, January 2014

Computer virus and malware cleaner patent-application, June 2007

Detecting advanced persistent threats patent, December 2014

Automatic Health-Check Method and Device for On-Line System patent-application, December 2014

Integrated network threat analysis patent, April 2016

Method and System for Automatic Detection and Analysis of Malware patent-application, June 2016

Remediation for Ransomware Attacks on Cloud Drive Folders patent-application, February 2018

Security Policy Generation Based on Snapshots of Similar Virtual Machines patent-application, November 2016

System for Automated Computer Support patent-application, December 2014

Generation of alerts in an event management system based upon risk patent, March 2016

Dynamic throughput ingestion of backup sources patent, May 2019

Method and system for a self-heating device patent, November 2009

System and Method Employing Structured Intelligence to Verify and Contain Threats at Endpoints patent-application, November 2014

Periodic Mobile Forensics patent-application, April 2015

Malicious Code Infection Cause-and -Effect Analysis patent-application, April 2015

System and Method for Cyber Security Threat Detection patent-application, September 2013

Protection System Including Machine Learning Snapshot Evaluation
patent-application, June 2015

Evaluation of incremental backup copies for presence of malicious codes in computer systems
patent, June 2011

Bulk data distribution system
patent, July 2017

Method for Processing an Intrusion into a Wireless Communication Network, Related Device and Computer Program
patent-application, October 2017

Methods and apparatus for virus detection using journal data
patent, April 2011

SDI-Scam
patent-application, April 2012

Systems and methods for remediating the effects of malware
patent, November 2017

Intrusion detection method and signature table
patent-application, June 2003

Method and system for isolating suspicious email
patent-application, December 2005

Systems and Methods for Processing Data Flows
patent-application, August 2007

Automated Malware Detection and Remediation
patent-application, October 2011

Detecting and Marking Client Devices
patent-application, October 2014

Intrusion Detection and Radio Fingerprint Tracking
patent-application, August 2016

Snapshot and restore technique for computer system recovery
patent, August 2010

Method and System for Identifying Enterprise Network Hosts Infected with Slow and/ or Distributed Scanning Malware
patent-application, November 2009

Security Alert Prioritization
patent-application, March 2014

System and method for deprioritizing and presenting data
patent-application, May 2007

Intrusion prevention system (IPS) mode for a malware detection system
patent, December 2014

Automated threat analysis
patent-application, December 2007

Prioritizing intrusion detection logs
patent-application, October 2005

Malicious Code Infection Cause-and-Effect Analysis
patent-application, January 2015

Centralized Storage and Management of Malware Manifests
patent-application, April 2016

Systems and methods for orchestrating runtime operational integrity
patent, March 2015

Automated Behavior and Static Analysis Using an Instrumented Sandbox and Machine Learning Classification for Mobile Security
patent-application, April 2013

Network Intrusion Detection with Distributed Correlation
patent-application, July 2011

System and method for detecting malicious traffic using a virtual machine configured with a select software environment
patent, May 2016

Malicious code infection cause-and-effect analysis
patent-application, June 2007

System ad Method for Managing Environment Configuration Using Snapshots
patent-application, February 2013

System and Method of Active Remediation and Passive Protection Against Cyber Attacks
patent-application, January 2014

Computer virus and malware cleaner
patent-application, June 2007

Detecting advanced persistent threats
patent, December 2014

Automatic Health-Check Method and Device for On-Line System
patent-application, December 2014

Integrated network threat analysis
patent, April 2016

Method and System for Automatic Detection and Analysis of Malware
patent-application, June 2016

Remediation for Ransomware Attacks on Cloud Drive Folders
patent-application, February 2018

Security Policy Generation Based on Snapshots of Similar Virtual Machines
patent-application, November 2016

System for Automated Computer Support
patent-application, December 2014

Generation of alerts in an event management system based upon risk
patent, March 2016

Dynamic throughput ingestion of backup sources
patent, May 2019

Method and system for a self-heating device
patent, November 2009

System and Method Employing Structured Intelligence to Verify and Contain Threats at Endpoints
patent-application, November 2014

Periodic Mobile Forensics
patent-application, April 2015

Malicious Code Infection Cause-and -Effect Analysis
patent-application, April 2015

System and Method for Cyber Security Threat Detection
patent-application, September 2013