×

Method and apparatus for detecting vulnerability status of a target

  • US 9,537,876 B2
  • Filed: 01/14/2012
  • Issued: 01/03/2017
  • Est. Priority Date: 04/11/2003
  • Status: Active Grant
First Claim
Patent Images

1. A computer implemented method comprising:

  • receiving at a server from a target, a notification of detection, in real time, of an event on the target, the event on the target comprisingat least one of a change in status of;

    a network interface from active to inactive or vice versa,a client network service from start to stop or vice versa,a server network service from start to stop or vice versa, ora port from open to close or vice versa;

    determining, at the server, in response to the notification, that a change has occurred in the status of at least one of the network interface, the client network service, the server network service, or the port;

    when the notification indicates that the status of the port has changed, determining services running on the port, and based on the determined services, determining that security status of a network comprising the target is vulnerable; and

    determining based on the determination of the change of status, that the security status of the network comprising the target is vulnerable,wherein, the detection at the target is implemented by at least one of an operating system (OS) service, an OS command, a hook, or an API.

View all claims
  • 6 Assignments
Timeline View
Assignment View
    ×
    ×