Sytems, Methods And Devices For Remotely Administering A Target Device
First Claim
Patent Images
1. A system, comprising:
- a. first and second network communications devices adapted to communicate with one another according to a layered communications protocol that is characterized by a protocol stack, said first network communications device for issuing a data request to said second network communications device along a predetermined first relay route therebetween, and said second network communications device for transmitting a reply to said data request along a predetermined second relay route therebetween; and
b. a relay subnet defining the predetermined first relay route and the predetermined second relay route, said relay subnet including at least one intermediary network communications device adapted to communicate according to said layered communications protocol that is characterized by an associated intermediary device protocol stack and configured to forward;
(i) outbound traffic corresponding to said data request to the second network communications device without revealing the first network communications device as an origin of said data request; and
(ii) inbound traffic corresponding to said reply toward said first network communications device.
5 Assignments
0 Petitions
Accused Products
Abstract
The present invention relates to the manipulation or monitoring of one communications device from another via a network. More particularly, the invention relates to remote control or administration of a target computer from a launch computer via predetermined relay routes therebetween. To this end, systems, devices and methodologies are provided.
54 Citations
29 Claims
-
1. A system, comprising:
-
a. first and second network communications devices adapted to communicate with one another according to a layered communications protocol that is characterized by a protocol stack, said first network communications device for issuing a data request to said second network communications device along a predetermined first relay route therebetween, and said second network communications device for transmitting a reply to said data request along a predetermined second relay route therebetween; and
b. a relay subnet defining the predetermined first relay route and the predetermined second relay route, said relay subnet including at least one intermediary network communications device adapted to communicate according to said layered communications protocol that is characterized by an associated intermediary device protocol stack and configured to forward;
(i) outbound traffic corresponding to said data request to the second network communications device without revealing the first network communications device as an origin of said data request; and
(ii) inbound traffic corresponding to said reply toward said first network communications device. - View Dependent Claims (2, 3, 4)
-
-
5. A command and control system, comprising
a. a launch computer having installed thereon a launch tool set configured to issue data requests; -
b. a target computer having installed thereon a target tool set configured to respond to said data requests with data replies; and
c. at least one relay computer having installed thereon a relay tool set configured;
(i) to forward data requests from the launch computer to the target computer, while not identifying the target computer to the launch computer as an origin of said data requests; and
(ii) to forward said data replies from the target computer toward the launch computer.
-
-
6. A command and control system, comprising:
-
a. a launch computer adapted to communicate according to a layered communications protocol that is characterized by a launch computer protocol stack;
b. a target computer adapted to communicate according to said layered communications protocol that is characterized by an associated target computer protocol stack;
c. a front end trigger component issuing data requests to the target computer;
d. a response component replying to said data requests with data replies; and
e. a data transmission component which;
(i) transmits said data requests from the launch computer to the target computer via a predetermined outbound relay route, while concealing an identity of the launch computer from the target computer; and
(ii) transmits said data replies from the target computer to the launch computer via a predetermined reply relay route. - View Dependent Claims (7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A network communications device configured for use as a participant in a command and control system, said device comprising:
-
a. a memory storing an operating system which allows the network communications device to communicate with other computers on a relay network according to a layered communications protocol that is characterized by a protocol stack, wherein said relay network comprises an outbound relay subnet and a return relay subnet;
b. a storage device storing a tool set for issuing data requests to a target computer via the outbound relay network;
c. an input/output system which includes a network adapter for interfacing the network communications device to the relay network; and
d. a processor that is programmed;
(i) with respect to each outgoing packet which corresponds to a data request destined for the target computer, to incorporate into the outgoing packet associated outbound routing information, prior to continued processing by the protocol stack;
(ii) with respect to each outgoing packet that is not destined for said target computer, to allow said outgoing packet to be processed by the protocol stack without modification;
(iii) with respect to each inbound packet arriving from a relay computer along the return relay subnet, to convert the respective inbound packet into one which corresponds to a reply transmission from the target computer prior to continued processing by the protocol stack; and
(iv) with respect to each inbound packet arriving from a non-relay computer along the return relay subnet, to allow the respective inbound packet to be processed by the protocol stack without modification. - View Dependent Claims (17, 18, 19, 20, 21)
-
-
22. A method of remotely accessing and controlling a target computer from a launch computer, comprising:
-
a. installing a set of launch tools on the launch computer;
b. obtaining system level access to the target computer;
c. uploading a set of target tools to the target computer, wherein said target tools include a loadable kernel module (LKM) responsible for retrieving reply data from the target computer in response to a data request issued from the launch computer;
d. installing said LKM on the target computer;
e. logging off the target computer;
f. sending an outbound relay packet containing said data request along a predetermined outbound relay route from the launch computer to the target computer; and
g. receiving from the target computer a reply relay packet in response to said outbound transmission packet, wherein said reply relay packet is one which traveled along a predetermined return relay route from the target computer to the launch computer. - View Dependent Claims (23, 24, 25, 26, 27, 28, 29)
-
Specification