公开(公告)号：US20240241962A1

公开(公告)日：2024-07-18

申请号：US18098075

申请日：2023-01-17

Applicant: Charter Communications Operating, LLC

Inventor： Jeffrey Murray Rowell ,  Charles James Manser

IPC: G06F21/57 ,  G06F8/71

CPC classification number: G06F21/577 ,  G06F8/71

Abstract: Obtain a command to download code from a version control system repository server. Responsive to the obtained command, quarantining the code and run a security scan on the code while it is quarantined. Based on an acceptable result of the security scan, release the quarantine and permit download of the code.

公开(公告)号：US11487904B2

公开(公告)日：2022-11-01

申请号：US17076047

申请日：2020-10-21

Applicant: Charter Communications Operating, LLC

Inventor： Jeffrey Murray Rowell ,  Charles James Manser

IPC: G06F21/62 ,  G06F21/57 ,  H04L9/40 ,  G06N5/02 ,  H04L41/0813 ,  H04L41/08 ,  G06F9/455 ,  G06F21/00

Abstract: Methods and systems for automated shell discovery and access. The method includes gathering, by a control server, fingerprint data for a target device for which root shell access is required, generating, by a decision tree controller, a decision tree from the gathered fingerprint data, traversing, by the decision tree controller, the decision tree to determine a path to the root shell, reporting, by the decision tree controller to the control server, a found access path, connecting, by the control server to the root shell on the target device, using one or more commands associated with the found access path, and executing, by the control server at an accessed root shell of the target device, privileged commands associated with a task.

公开(公告)号：US11252177B2

公开(公告)日：2022-02-15

申请号：US16922573

申请日：2020-07-07

Applicant: Charter Communications Operating, LLC

Inventor： Charles James Manser ,  Jeffrey Murray Rowell

IPC: H04L29/06 ,  H04L12/28 ,  H04L12/46 ,  H04L29/12

Abstract: Methods and systems for automated ad hoc customer premise equipment (CPE) bi-directional vulnerability scanning. A method includes an auto provisioning server receiving CPE information for a designated CPE to initiate a bi-directional vulnerability scan, obtaining telemetry data from a cable modem termination system (CMTS) based on the CPE information, configuring switches to form a virtual local area network channel between a LAN scanner and the designated CPE using the CPE information, provisioning the LAN scanner to obtain a LAN side Internet Protocol (IP) address from the designated CPE, initiating vulnerability scans at a wide area network (WAN) scanner and the LAN scanner using a stored WAN side IP address and a stored LAN side IP address, respectively, and generating a vulnerability scan report based on results from the WAN scanner and the LAN scanner. At least one network device can be configured based on the report.

公开(公告)号：US20220014541A1

公开(公告)日：2022-01-13

申请号：US16922573

申请日：2020-07-07

Applicant: Charter Communications Operating, LLC

Inventor： Charles James Manser ,  Jeffrey Murray Rowell

IPC: H04L29/06 ,  H04L12/46 ,  H04L12/28 ,  H04L29/12

Abstract: Methods and systems for automated ad hoc customer premise equipment (CPE) bi-directional vulnerability scanning. A method includes an auto provisioning server receiving CPE information for a designated CPE to initiate a bi-directional vulnerability scan, obtaining telemetry data from a cable modem termination system (CMTS) based on the CPE information, configuring switches to form a virtual local area network channel between a LAN scanner and the designated CPE using the CPE information, provisioning the LAN scanner to obtain a LAN side Internet Protocol (IP) address from the designated CPE, initiating vulnerability scans at a wide area network (WAN) scanner and the LAN scanner using a stored WAN side IP address and a stored LAN side IP address, respectively, and generating a vulnerability scan report based on results from the WAN scanner and the LAN scanner. At least one network device can be configured based on the report.

公开(公告)号：US11616802B2

公开(公告)日：2023-03-28

申请号：US17568006

申请日：2022-01-04

Applicant: Charter Communications Operating, LLC

Inventor： Charles James Manser ,  Jeffrey Murray Rowell

IPC: H04L9/40 ,  H04L12/28 ,  H04L12/46 ,  H04L61/5014 ,  H04L101/622

Abstract: Methods and systems for automated ad hoc customer premise equipment (CPE) bi-directional vulnerability scanning. A method includes an auto provisioning server receiving CPE information for a designated CPE to initiate a bi-directional vulnerability scan, obtaining telemetry data from a cable modem termination system (CMTS) based on the CPE information, configuring switches to form a virtual local area network channel between a LAN scanner and the designated CPE using the CPE information, provisioning the LAN scanner to obtain a LAN side Internet Protocol (IP) address from the designated CPE, initiating vulnerability scans at a wide area network (WAN) scanner and the LAN scanner using a stored WAN side IP address and a stored LAN side IP address, respectively, and generating a vulnerability scan report based on results from the WAN scanner and the LAN scanner. At least one network device can be configured based on the report.

公开(公告)号：US20220131891A1

公开(公告)日：2022-04-28

申请号：US17568006

申请日：2022-01-04

Applicant: Charter Communications Operating, LLC

Inventor： Charles James Manser ,  Jeffrey Murray Rowell

IPC: G06F21/55 ,  H04L12/46 ,  H04L101/622 ,  H04L12/28

Abstract: Methods and systems for automated ad hoc customer premise equipment (CPE) bi-directional vulnerability scanning. A method includes an auto provisioning server receiving CPE information for a designated CPE to initiate a bi-directional vulnerability scan, obtaining telemetry data from a cable modem termination system (CMTS) based on the CPE information, configuring switches to form a virtual local area network channel between a LAN scanner and the designated CPE using the CPE information, provisioning the LAN scanner to obtain a LAN side Internet Protocol (IP) address from the designated CPE, initiating vulnerability scans at a wide area network (WAN) scanner and the LAN scanner using a stored WAN side IP address and a stored LAN side IP address, respectively, and generating a vulnerability scan report based on results from the WAN scanner and the LAN scanner. At least one network device can be configured based on the report.

公开(公告)号：US20220121762A1

公开(公告)日：2022-04-21

申请号：US17076047

申请日：2020-10-21

Applicant: Charter Communications Operating, LLC

Inventor： Jeffrey Murray Rowell ,  Charles James Manser

IPC: G06F21/62 ,  G06F21/57 ,  H04L29/06 ,  H04L12/24 ,  G06F9/455 ,  G06N5/02

Abstract: Methods and systems for automated shell discovery and access. The method includes gathering, by a control server, fingerprint data for a target device for which root shell access is required, generating, by a decision tree controller, a decision tree from the gathered fingerprint data, traversing, by the decision tree controller, the decision tree to determine a path to the root shell, reporting, by the decision tree controller to the control server, a found access path, connecting, by the control server to the root shell on the target device, using one or more commands associated with the found access path, and executing, by the control server at an accessed root shell of the target device, privileged commands associated with a task.