×

SYSTEM AND METHOD FOR CORRELATING LOG DATA TO DISCOVER NETWORK VULNERABILITIES AND ASSETS

  • US 20140283083A1
  • Filed: 04/08/2013
  • Published: 09/18/2014
  • Est. Priority Date: 03/15/2013
  • Status: Active Grant
First Claim
Patent Images

1. A system for correlating log data to discover vulnerable network assets, wherein the system comprises a log correlation engine having one or more processors configured to:

  • receive one or more logs that contain events describing observed activity in a network;

    determine that the one or more logs contain at least one event that matches a regular expression in at least one correlation rule associated with the log correlation engine that indicates a vulnerability;

    obtain information about the indicated vulnerability from at least one data source cross-referenced in the at least one correlation rule; and

    generate a report that the indicated vulnerability was discovered in the network, wherein the report includes the information about the indicated vulnerability obtained from the at least one data source cross-referenced in the at least one correlation rule.

View all claims
  • 3 Assignments
Timeline View
Assignment View
    ×
    ×