Systems and methods for assessing computer security
First Claim
Patent Images
1. A computer-implemented method, comprising:
- storing a Xamin.dll file, a Xamin.exe file, and a Xamincli.exe file in a common directory, the Xamin.dll file performing backend processing for the Xamin.exe file and the Xamincli.exe file;
adding a command line version of a security program to a client system'"'"'s login script on a primary domain controller, such that the client system'"'"'s Internet activity is evaluated upon login to a domain;
receiving a call for the Xamin.dll file;
performing a security evaluation of the client system by manual run or by login script;
if the security evaluation is performed by manual run, then executing the Xamin.exe file from the client system and writing an output created by the Xamin.exe file to the client system;
if the security evaluation is performed by login script, then i) establishing a logon connection between a host system and the client system through a network, ii) executing the Xamin.exe file from the host system, and iii) writing the output created by the Xamin.exe file to the host system;
scanning for operating system characteristics including operating system version, build, and service pack version;
scanning security information including screen saver activity, password protection, timeout, legal notice text and caption, default background image display, automatic logon, last user displayed, shutdown procedure, restricted sessions, minimum password length, minimum and maximum password age, password history, lockout duration, lockout window, lockout threshold, installation of registry key, and password filtering;
parsing data obtained by scanning the client system; and
generating output files containing the parsed data.
7 Assignments
0 Petitions
Accused Products
Abstract
A computer-implemented method includes establishing a logon connection between a host system and one or more client systems through a network; assessing computer security at the host system by scanning each client system after logon; parsing data obtained by scanning each client system; and generating output files containing parsed data.
Implementations may include scanning for one or more of: Ethernet adapters, operating system, computer name, antivirus installation, security information, mounted drives, local user information, services, audit policies, shared drives, trusted domains, Internet uniform locators, installed applications, images and movies.
-
Citations
17 Claims
-
1. A computer-implemented method, comprising:
-
storing a Xamin.dll file, a Xamin.exe file, and a Xamincli.exe file in a common directory, the Xamin.dll file performing backend processing for the Xamin.exe file and the Xamincli.exe file; adding a command line version of a security program to a client system'"'"'s login script on a primary domain controller, such that the client system'"'"'s Internet activity is evaluated upon login to a domain; receiving a call for the Xamin.dll file; performing a security evaluation of the client system by manual run or by login script; if the security evaluation is performed by manual run, then executing the Xamin.exe file from the client system and writing an output created by the Xamin.exe file to the client system; if the security evaluation is performed by login script, then i) establishing a logon connection between a host system and the client system through a network, ii) executing the Xamin.exe file from the host system, and iii) writing the output created by the Xamin.exe file to the host system; scanning for operating system characteristics including operating system version, build, and service pack version; scanning security information including screen saver activity, password protection, timeout, legal notice text and caption, default background image display, automatic logon, last user displayed, shutdown procedure, restricted sessions, minimum password length, minimum and maximum password age, password history, lockout duration, lockout window, lockout threshold, installation of registry key, and password filtering; parsing data obtained by scanning the client system; and generating output files containing the parsed data. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A computer system, comprising:
-
means for storing a Xamin.dll file, a Xamin.exe file, and a Xamincli.exe file in a common directory, the Xamin.dll file performing backend processing for the Xamin.exe file and the Xamincli.exe file; means for adding a command line version of a security program to a client system'"'"'s login script on a primary domain controller, such that the client system'"'"'s Internet activity is evaluated upon login to a domain; means for receiving a call for the Xamin.dll file; means for performing a security evaluation of the client system; if the security evaluation is performed by a manual run, then means for executing the Xamin.exe file from the client system and for writing an output created by the Xamin.exe file to the client system; if the security evaluation is performed by login script, then i) means for establishing a logon connection between a host system and the client system through a network, ii) means for executing the Xamin.exe file from the host system, and iii) means for writing the output created by the Xamin.exe file to the host system; means for scanning for operating system characteristics including operating system version, build, and service pack version; means for scanning security information including screen saver activity, password protection, timeout, legal notice text and caption, default background image display, automatic logon, last user displayed, shutdown procedure, restricted sessions, minimum password length, minimum and maximum password age, password history, lockout duration, lockout window, lockout threshold, installation of registry key, and password filtering; means for parsing data obtained by scanning the client system; and means for generating output files containing parsed data. - View Dependent Claims (14, 15)
-
-
16. A computer program stored on computer-readable storage media, the computer program, executed by a processor, causes the processor to:
-
store a Xamin.dll file, a Xamin.exe file, and a Xamincli.exe file in a common directory, the Xamin.dll file performing backend processing for the Xamin.exe file and the Xamincli.exe file; add a command line version of a security program to a client system'"'"'s login script on a primary domain controller, such that the client system'"'"'s Internet activity is evaluated upon login to a domain; receive a call for the Xamin.dll file; perform a security evaluation of the client system by manual run or by login script; if the security evaluation is performed by manual run, then execute the Xamin.exe file from the client system and write an output created by the Xamin.exe file to the client system; if the security evaluation is performed by login script, then i) establish a logon connection between a host system and the client system through a network, ii) execute the Xamin.exe file from the host system, and iii) write the output created by the Xamin.exe file to the host system; scan for operating system characteristics including operating system version, build, and service pack version; scan security information including screen saver activity, password protection, timeout, legal notice text and caption, default background image display, automatic logon, last user displayed, shutdown procedure, restricted sessions, minimum password length, minimum and maximum password age, password history, lockout duration, lockout window, lockout threshold, installation of registry key, and password filtering; parse data obtained by scanning the client system; and generating output files containing the parsed data. - View Dependent Claims (17)
-
Specification