System and method for collection and analysis of endpoint forensic and event data

Invention Grant

US10333992B2 System and method for collection and analysis of endpoint forensic and event data 有权

Please log in to see more content

Patent Title: System and method for collection and analysis of endpoint forensic and event data
Application No.: US15436215

Application Date: 2017-02-17
Publication No.: US10333992B2

Publication Date: 2019-06-25
Inventor: Ross R. Kinder , Aaron Hackworth , Matthew K. Geiger , Kevin R. Moore , Timothy M. Vidas , Oliver J. Palmer , Jon Ramsey , Matt J. McCormack
Applicant: SecureWorks Corp.
Applicant Address: US TX Round Rock
Assignee: Dell Products, LP
Current Assignee: Dell Products, LP
Current Assignee Address: US TX Round Rock
Agency: Larson Newman, LLP
Main IPC: H04L29/06
IPC: H04L29/06

System and method for collection and analysis of endpoint forensic and event data

Abstract:

A system for collection and analysis of forensic and event data comprising a server and an endpoint agent operating on a remote system. The server is configured to receive event data including process creation data, persistent process data, thread injection data, network connection data, memory pattern data, or any combination thereof, and analyze the event data to detect compromises of a remote system. The endpoint agent is configured to acquire event data, and communicate the event data to the server.

Public/Granted literature

US20170244762A1 System and Method for Collection and Analysis of Endpoint Forensic and Event Data Public/Granted day:2017-08-24

Information query

Espacenet