AUTOMATION DISCOVERY TO IDENTIFY MALICIOUS ACTIVITY
First Claim
1. A method comprising:
- receiving, with an automation discovery system comprising a processor in communication with a network, potentially automated network traffic data;
analyzing, with the automation discovery system, the potentially automated network traffic data to determine whether the potentially automated network traffic data is likely to be automated;
when the potentially automated network traffic data is not likely to be automated, generating, with the automation discovery system, a low automation confidence score associated with the potentially automated network traffic data; and
when the potentially automated network traffic data is likely to be automated, generating, with the automation discovery system, a high automation confidence score associated with the potentially automated network traffic data, the high automation confidence score being higher than the low automation confidence score.
12 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods may use automation discovery to identify malicious activity. An automation discovery system comprising a processor in communication with a network and in communication with a database may receive potentially automated network traffic data. The system may analyze the potentially automated network traffic data to determine whether the potentially automated network traffic data is likely to be automated. When the potentially automated network traffic data is not likely to be automated, the system may generate a low automation confidence score associated with the potentially automated network traffic data. When the potentially automated network traffic data is likely to be automated, the system may generate a high automation confidence score associated with the potentially automated network traffic data.
45 Citations
28 Claims
-
1. A method comprising:
-
receiving, with an automation discovery system comprising a processor in communication with a network, potentially automated network traffic data; analyzing, with the automation discovery system, the potentially automated network traffic data to determine whether the potentially automated network traffic data is likely to be automated; when the potentially automated network traffic data is not likely to be automated, generating, with the automation discovery system, a low automation confidence score associated with the potentially automated network traffic data; and when the potentially automated network traffic data is likely to be automated, generating, with the automation discovery system, a high automation confidence score associated with the potentially automated network traffic data, the high automation confidence score being higher than the low automation confidence score. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A system comprising:
-
a database; and an automation discovery system comprising a processor in communication with a network and in communication with the database, the automation discovery system being constructed and arranged to; receive potentially automated network traffic data; analyze the potentially automated network traffic data to determine whether the potentially automated network traffic data is likely to be automated; when the potentially automated network traffic data is not likely to be automated, generate a low automation confidence score associated with the potentially automated network traffic data; and when the potentially automated network traffic data is likely to be automated, generate a high automation confidence score associated with the potentially automated network traffic data, the high automation confidence score being higher than the low automation confidence score. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28)
-
Specification