Directed execution of dynamic programs in isolated environments
First Claim
Patent Images
1. A system comprising:
- a device that includes at least one processor, the device including a dynamic program validation engine comprising instructions stored on a computer readable storage medium for execution by the at least one processor, the dynamic program validation engine including;
an object acquisition component that obtains a test object that includes dynamic executable code;
an object transformation component that transforms at least a portion of the test object into a transformed format test object that is configured to execute in a hosted isolated computing environment, the transforming the at least a portion of the test object including replacing item names of referenced content items with local reference names of items that are stored locally, after download from one or more referenced sources that are external to the hosted isolated computing environment;
a directed execution component that initiates directed execution of the transformed format test object, in the hosted isolated computing environment; and
a vulnerability detection component that detects dynamic code vulnerabilities of the test object, based on the directed execution.
3 Assignments
0 Petitions
Accused Products
Abstract
A test object that includes at least one computer program that includes dynamic executable code is obtained. The at least one computer program is transformed into a format that is configured to execute in a hosted isolated computing environment. Directed execution of the at least one computer program is initiated, in the hosted isolated computing environment. Dynamic code vulnerabilities of the at least one computer program are detected, based on the directed execution.
16 Citations
20 Claims
-
1. A system comprising:
a device that includes at least one processor, the device including a dynamic program validation engine comprising instructions stored on a computer readable storage medium for execution by the at least one processor, the dynamic program validation engine including; an object acquisition component that obtains a test object that includes dynamic executable code; an object transformation component that transforms at least a portion of the test object into a transformed format test object that is configured to execute in a hosted isolated computing environment, the transforming the at least a portion of the test object including replacing item names of referenced content items with local reference names of items that are stored locally, after download from one or more referenced sources that are external to the hosted isolated computing environment; a directed execution component that initiates directed execution of the transformed format test object, in the hosted isolated computing environment; and a vulnerability detection component that detects dynamic code vulnerabilities of the test object, based on the directed execution. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
16. A method comprising:
-
obtaining a test object that includes at least one computer program that includes dynamic executable code; transforming the at least one computer program into a format that is configured to execute in a hosted isolated computing environment, the transforming the at least one computer program including replacing item names of referenced content items with local reference names of items that are stored locally, after download from one or more referenced sources that are external to the hosted isolated computing environment; initiating directed execution of the at least one computer program in the hosted isolated computing environment; and detecting dynamic code vulnerabilities of the at least one computer program, via at least one device processor, based on the directed execution. - View Dependent Claims (17, 18)
-
-
19. A computer program product comprising a hardware computer-readable storage medium storing executable code that, when executed, causes at least one data processing apparatus to:
-
obtain a test object that includes at least one computer program that includes dynamic executable code; transform the at least one computer program into a format that is configured to execute in a hosted isolated computing environment, the transforming the at least one computer program including replacing item names of referenced content items with local reference names of items that are stored locally, after download from one or more referenced sources that are external to the hosted isolated computing environment; initiate directed execution of the at least one computer program, in the hosted isolated computing environment; and detect dynamic code vulnerabilities of the at least one computer program, based on the directed execution. - View Dependent Claims (20)
-
Specification