公开(公告)号：US20180336348A1

公开(公告)日：2018-11-22

申请号：US15559642

申请日：2015-04-10

Applicant: ENTIT Software LLC

Inventor： Ming Sum Sam Ng ,  Alvaro Munoz ,  Oleksandr Mirosh

IPC: G06F21/54

Abstract: Examples disclosed herein relate to modifying a web page. In one example, in response to beginning execution of a process initiating generation of a web page of a web application at a server, a runtime agent is executed. In this example, the runtime agent modifies code of the web page to inject code to protect output of the web page. In the example, the process can be executed using the modified code to generate a modified web page.

公开(公告)号：US10678910B2

公开(公告)日：2020-06-09

申请号：US15559642

申请日：2015-04-10

Applicant: ENTIT Software LLC

Inventor： Ming Sum Sam Ng ,  Alvaro Munoz ,  Oleksandr Mirosh

IPC: G06F21/54 ,  G06F21/52 ,  H04L29/06 ,  H04L29/08 ,  G06F8/41

Abstract: Examples disclosed herein relate to modifying a web page. In one example, in response to beginning execution of a process initiating generation of a web page of a web application at a server, a runtime agent is executed. In this example, the runtime agent modifies code of the web page to inject code to protect output of the web page. In the example, the process can be executed using the modified code to generate a modified web page.

公开(公告)号：US10581878B2

公开(公告)日：2020-03-03

申请号：US15617048

申请日：2017-06-08

Applicant: EntIT Software LLC

Inventor： Ming Sum Sam Ng ,  Oleksandr Mirosh ,  Alvaro Munoz Sanchez

IPC: H04L29/06 ,  H04L29/08 ,  G06F21/55

Abstract: A method for attack detection includes: intercepting, by a runtime security agent, a request for a web resource; determining whether the intercepted request was triggered from an external website; determining whether the intercepted request was triggered from a current session; determining whether the intercepted request is requesting a static file type; and in response to a determination that the intercepted request was triggered from an external website and was not triggered from a current session, or a determination that the intercepted request was triggered from an external website and is not requesting a static file type, providing, by the runtime security agent, an indication of a potential attack.

公开(公告)号：US20180359265A1

公开(公告)日：2018-12-13

申请号：US15617048

申请日：2017-06-08

Applicant: EntIT Software LLC

Inventor： Ming Sum Sam Ng ,  Oleksandr Mirosh ,  Alvaro Munoz Sanchez

IPC: H04L29/06 ,  G06F21/56 ,  H04L29/08

CPC classification number: H04L63/1416 ,  G06F21/554 ,  H04L63/0281 ,  H04L63/1466 ,  H04L67/02

Abstract: A method for attack detection includes: intercepting, by a runtime security agent, a request for a web resource; determining whether the intercepted request was triggered from an external website; determining whether the intercepted request was triggered from a current session; determining whether the intercepted request is requesting a static file type; and in response to a determination that the intercepted request was triggered from an external website and was not triggered from a current session, or a determination that the intercepted request was triggered from an external website and is not requesting a static file type, providing, by the runtime security agent, an indication of a potential attack.