发明申请
- 专利标题: SYSTEM, APPARATUS AND METHOD FOR AUTOMATICALLY VERIFYING EXPLOITS WITHIN SUSPECT OBJECTS AND HIGHLIGHTING THE DISPLAY INFORMATION ASSOCIATED WITH THE VERIFIED EXPLOITS
- 专利标题(中): 系统,装置和方法,用于在悬挂物体中自动验证曝光,并显示与验证曝光相关的显示信息
-
申请号: US14228073申请日: 2014-03-27
-
公开(公告)号: US20150186645A1公开(公告)日: 2015-07-02
- 发明人: Ashar Aziz , Muhammad Amin , Osman Abdoul Ismael , Zheng Bu
- 申请人: FireEye, Inc.
- 申请人地址: US CA Milpitas
- 专利权人: FireEye, Inc.
- 当前专利权人: FireEye, Inc.
- 当前专利权人地址: US CA Milpitas
- 主分类号: G06F21/56
- IPC分类号: G06F21/56
摘要:
According to one embodiment, a threat detection system is integrated with intrusion protection system (IPS) logic and virtual execution logic. The IPS logic is configured to receive a first plurality of objects and filter the first plurality of objects by identifying a second plurality of objects as suspicious objects. The second plurality of objects is a subset of the first plurality of objects and is lesser or equal in number to the first plurality of objects. The virtual execution logic is configured to automatically verify whether any of the suspicious objects is an exploit. The virtual execution logic comprises at least one virtual machine configured to virtually process content within the suspicious objects and monitor for anomalous behaviors during the virtual processing that are indicative of exploits.
公开/授权文献
信息查询
