System and method of identifying internet-facing assets
First Claim
1. A method comprising:
- receiving a seed at a computing device, wherein the seed includes an identification of a domain name system (DNS) name server, an identification of a whois contact, an autonomous system number (ASN), a domain name, a host name, an Internet Protocol (IP) address, or a combination thereof;
retrieving first data based on the seed, the first data indicating a plurality of first internet-facing assets, wherein the first data includes first DNS data retrieved from a DNS database based on the seed, first border gateway protocol (BGP) data retrieved from a BGP database based on the seed, first whois data retrieved from a whois database based on the seed, or a combination thereof;
retrieving second data based on at least one of the first plurality of internet-facing assets, the second data indicating a plurality of second internet-facing assets, wherein the second data includes second DNS data retrieved from the DNS database based on at least one of the plurality of first internet-facing assets, second BGP data retrieved from the BGP database based on the at least one first internet-facing asset, second whois data retrieved from the whois database based on the at least one first internet-facing asset, or a combination thereof;
generating a graphical user interface (GUI) that includes a list of internet-facing assets related to the seed, wherein the list identifies differences between the plurality of first internet-facing assets and the plurality of second internet-facing assets; and
accessing, by the computing device via one or more proxy servers, at least one internet-facing asset of the plurality of first internet-facing assets or the plurality of second internet-facing assets.
3 Assignments
0 Petitions
Accused Products
Abstract
A method includes receiving a seed at a computing device. The method further includes identifying, based on first domain name system (DNS) data, first border gateway protocol (BGP) data, first whois data, or a combination thereof, a plurality of first internet-facing assets related to the seed. The method further includes identifying, based on second DNS data, second BGP data, second whois data, or a combination thereof, a plurality of second internet-facing assets related to at least one of the first internet-facing assets. The method further includes generating a graphical user interface (GUI) that includes a list of internet-facing assets related to the seed, where the list includes the plurality of first internet-facing assets and the plurality of second internet-facing assets.
-
Citations
21 Claims
-
1. A method comprising:
-
receiving a seed at a computing device, wherein the seed includes an identification of a domain name system (DNS) name server, an identification of a whois contact, an autonomous system number (ASN), a domain name, a host name, an Internet Protocol (IP) address, or a combination thereof; retrieving first data based on the seed, the first data indicating a plurality of first internet-facing assets, wherein the first data includes first DNS data retrieved from a DNS database based on the seed, first border gateway protocol (BGP) data retrieved from a BGP database based on the seed, first whois data retrieved from a whois database based on the seed, or a combination thereof; retrieving second data based on at least one of the first plurality of internet-facing assets, the second data indicating a plurality of second internet-facing assets, wherein the second data includes second DNS data retrieved from the DNS database based on at least one of the plurality of first internet-facing assets, second BGP data retrieved from the BGP database based on the at least one first internet-facing asset, second whois data retrieved from the whois database based on the at least one first internet-facing asset, or a combination thereof; generating a graphical user interface (GUI) that includes a list of internet-facing assets related to the seed, wherein the list identifies differences between the plurality of first internet-facing assets and the plurality of second internet-facing assets; and accessing, by the computing device via one or more proxy servers, at least one internet-facing asset of the plurality of first internet-facing assets or the plurality of second internet-facing assets. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A computer-readable storage device storing instructions that, when executed by a processor, cause the processor to perform operations including:
-
receiving a seed at a computing device, wherein the seed includes an identification of a domain name system (DNS) name server, an identification of a whois contact, an autonomous system number (ASN), a domain name, a host name, an Internet Protocol (IP) address, or a combination thereof; retrieving first data based on the seed, the first data indicating a plurality of first internet-facing assets, wherein the first data includes first domain name system (DNS) data, first border gateway protocol (BGP) data, first whois data, or a combination thereof, a plurality of first internet-facing assets related to the seed; retrieving second data based on at least one of the first plurality of internet-facing assets, the second data indicating a plurality of second internet-facing assets, wherein the second data includes second DNS data, second BGP data, second whois data, or a combination thereof, a plurality of second internet-facing assets related to at least one of the plurality of first internet-facing assets; generating a graphical user interface (GUI) that includes a list of internet-facing assets related to the seed, wherein the list identifies differences between the plurality of first internet-facing assets and the plurality of second internet-facing assets; and accessing, by the computing device, via one or more proxy servers, at least one internet-facing asset of the plurality of first internet-facing assets or the plurality of second internet-facing assets to simulate requests from different geographic regions, different domains, different user agents, or a combination thereof. - View Dependent Claims (18, 19)
-
-
20. An apparatus comprising:
-
a processor; and memory storing instructions that, when executed by the processor, cause the processor to perform operations including; receiving a seed at a computing device, wherein the seed includes an identification of a domain name system (DNS) name server, an identification of a whois contact, an autonomous system number (ASN), a domain name, a host name, an Internet Protocol (IP) address, or a combination thereof; retrieving first data based on the seed, the first data indicating a plurality of first internet-facing assets, wherein the first data includes first domain name system (DNS) data, first border gateway protocol (BGP) data, first whois data, or a combination thereof, a plurality of first internet-facing assets related to the seed; retrieving second data based on at least one of the first plurality of internet-facing assets, the second data indicating a plurality of second internet-facing assets, wherein the second data includes second DNS data, second BGP data, second whois data, or a combination thereof, a plurality of second internet-facing assets related to at least one of the plurality of first internet-facing assets; generating a graphical user interface (GUI) that includes a list of internet-facing assets related to the seed, wherein the list identifies differences between the plurality of first internet-facing assets and the plurality of second internet-facing assets; and accessing, by the computing device, at least one internet-facing asset of the plurality of first internet-facing assets or the plurality of second internet-facing assets via a plurality of proxy servers to simulate requests from different geographic regions, different domains, different user agents, or a combination thereof, wherein each of the plurality of proxy servers belongs to a different domain, is located in a different geographic region, is associated with a different user agent, or a combination thereof.
-
-
21. A method comprising:
-
receiving a request to identify a plurality of internet-facing assets associated with a seed, wherein the seed includes an identification of a domain name system (DNS) name server, an identification of a whois contact, an autonomous system number (ASN), a domain name, a host name, an Internet Protocol (IP) address, or a combination thereof; identifying, based upon the seed, a first internet-facing asset; identifying, based upon the first internet-facing asset, a second internet-facing asset; and generating a graphical user interface (GUI), the GUI including a list of the first internet-facing asset and the second internet facing asset, wherein the GUI includes a display of a discovery path between the seed and an internet-facing asset selected from the list.
-
Specification