公开(公告)号：US08555379B1

公开(公告)日：2013-10-08

申请号：US11864810

申请日：2007-09-28

申请人： Oliver Whitehouse ,  Oliver Friedrichs ,  Elias Levy

发明人： Oliver Whitehouse ,  Oliver Friedrichs ,  Elias Levy

IPC分类号： H04L29/06

CPC分类号： H04L63/1483 ,  H04L63/1416 ,  H04L63/145 ,  H04L63/1491

摘要： A method and apparatus for monitoring communications from a communications device comprising monitoring communications from a communications device by storing a data acquisition address in a contact list of the communications device that identifies a location of a monitoring device. Further, when malicious software uses the contact list to send messages, a message is sent using the malicious software to the monitoring device using the data acquisition address.

摘要翻译： 一种用于监测来自通信设备的通信的方法和装置，包括通过将数据采集地址存储在识别监视设备的位置的通信设备的联系人列表中来监视来自通信设备的通信。 此外，当恶意软件使用联系人列表发送消息时，使用数据采集地址将使用恶意软件的消息发送到监视设备。

公开(公告)号：US08875286B2

公开(公告)日：2014-10-28

申请号：US13308533

申请日：2011-11-30

申请人： Oliver Friedrichs ,  Alfred Huger ,  Adam J. O'Donnell

发明人： Oliver Friedrichs ,  Alfred Huger ,  Adam J. O'Donnell

IPC分类号： G06F11/00 ,  G06F12/14 ,  G06F21/56

CPC分类号： H04L63/1416 ,  G06F21/564

摘要： Novel methods, components, and systems for detecting malicious software in a proactive manner are presented. More specifically, we describe methods, components, and systems that leverage machine learning techniques to detect malicious software. The disclosed invention provides a significant improvement with regard to detection capabilities compared to previous approaches.

摘要翻译： 介绍了以主动的方式检测恶意软件的新方法，组件和系统。 更具体地说，我们描述利用机器学习技术来检测恶意软件的方法，组件和系统。 与先前的方法相比，所公开的发明提供了关于检测能力的显着改进。

公开(公告)号：US08341737B1

公开(公告)日：2012-12-25

申请号：US12059741

申请日：2008-03-31

申请人： Zulfikar Ramzan ,  Oliver Friedrichs ,  Andrea Del Miglio ,  Candid Wüest ,  Sourabh Satish

发明人： Zulfikar Ramzan ,  Oliver Friedrichs ,  Andrea Del Miglio ,  Candid Wüest ,  Sourabh Satish

IPC分类号： H04L29/06

CPC分类号： H04L63/1483

摘要： A callback component embedded on a web site determines a current location of the web site. The current location is compared to a known legitimate location of the web site to determine if the web site has been copied to a different host location. Responsive to determining that the web site has been copied to a different location, the callback component alerts a central authority that the web site may be a fraudulent web site set up to launch phishing attacks. If the central authority determines that the web site is fraudulent, the central authority alerts appropriate entities to take down the fraudulent web site. The callback component generates a visual component viewable on the web site to deter phishing attackers from removing the callback component when the web site is copied.

摘要翻译： 嵌入在网站上的回调元件确定网站的当前位置。 将当前位置与网站的已知合法位置进行比较，以确定网站是否已被复制到不同的主机位置。 响应于确定网站已经被复制到不同的位置，回调组件警告中央机构网站可能是设置为发起网络钓鱼攻击的欺诈性网站。 如果中央当局确定网站是欺诈性的，中央机关警告适当的实体取消欺诈性网站。 回调组件生成可视化组件，可在网站上查看，以防止网络钓鱼攻击者在复制网站时删除回调组件。

公开(公告)号：US20070054578A1

公开(公告)日：2007-03-08

申请号：US10539187

申请日：2003-12-15

申请人： Werner Hoersch ,  Oliver Friedrichs

发明人： Werner Hoersch ,  Oliver Friedrichs

IPC分类号： B32B27/12 ,  B32B27/04 ,  B32B5/02

CPC分类号： D06M15/564 ,  D06M13/52 ,  D06M15/333 ,  D06M23/14 ,  D06N7/0092 ,  D06N2203/045 ,  D06N2203/068 ,  D06N2209/105 ,  D06N2211/26 ,  Y10T442/273

摘要： The invention relates to a textile product in which a three-dimensional pattern is applied on a textile substrate having a certain abrasion resistance, whereby the three-dimensional pattern covers at least 15% of the area of the textile substrate, so that the abrasion resistance of the textile product lies beyond the abrasion resistance of the textile substrate. As a consequence, the abrasion resistance of a textile substrate can be improved by a process in which a textile substrate web having a certain abrasion resistance is provided and a three-dimensional pattern covering at least 15% of the area of the textile substrate web is applied thereupon.

摘要翻译： 本发明涉及一种纺织品，其中在具有一定耐磨性的纺织品基材上施加三维图案，由此三维图案覆盖纺织品基材的面积的至少15％，使得耐磨性 的织物产品超出了织物基材的耐磨性。 因此，通过提供具有一定耐磨性的纺织品基材纤维网和覆盖至少15％的纺织品基材幅材的面积的三维图案可以改善织物基材的耐磨性 应用于此

公开(公告)号：US09218461B2

公开(公告)日：2015-12-22

申请号：US13308528

申请日：2011-11-30

申请人： Oliver Friedrichs ,  Alfred Huger ,  Adam O'Donnell

发明人： Oliver Friedrichs ,  Alfred Huger ,  Adam O'Donnell

IPC分类号： G06F21/56 ,  G06F21/57 ,  H04L29/06 ,  G06F21/00

CPC分类号： G06F21/00 ,  G06F21/56 ,  G06F21/577 ,  G06F2221/033 ,  H04L63/14

摘要： Novel methods, components, and systems that enhance traditional techniques for detecting malicious software are presented. More specifically, we describe methods, components, and systems that leverage important contextual information from a client system (such as recent history of events on that system) to detect malicious software that might have otherwise gone ignored. The disclosed invention provides a significant improvement with regard to detection capabilities compared to previous approaches.

摘要翻译： 介绍了增强传统技术检测恶意软件的新方法，组件和系统。 更具体地说，我们描述了利用来自客户端系统的重要上下文信息（例如该系统上的事件的最近历史）的方法，组件和系统来检测否则将被忽略的恶意软件。 与先前的方法相比，所公开的发明提供了关于检测能力的显着改进。

公开(公告)号：US08103875B1

公开(公告)日：2012-01-24

申请号：US11755708

申请日：2007-05-30

申请人： Zulfikar Ramzan ,  Sourabh Satish ,  Oliver Friedrichs

发明人： Zulfikar Ramzan ,  Sourabh Satish ,  Oliver Friedrichs

IPC分类号： H04L9/32

CPC分类号： H04L51/12 ,  H04L63/0236 ,  H04L63/126

摘要： Methods, systems, and products for detecting phishing attempts through fingerprinting are provided. In an embodiment, there is a computer program product that comprises a computer-readable medium and computer program instructions encoded on the medium for deterring fraud perpetrated through an incoming electronic message containing an address for responding to the incoming electronic message. The instructions are for extracting the address from the incoming electronic message and generating a fingerprint based on the extracted address. It is then determined whether the generated fingerprint matches a plurality of stored legitimate fingerprints. When there is a lack of a match, an action is taken to prevent use of the address.

摘要翻译： 提供了用于通过指纹识别来检测网络钓鱼尝试的方法，系统和产品。 在一个实施例中，存在计算机程序产品，其包括计算机可读介质和编码在介质上的计算机程序指令，用于阻止通过包含用于响应于传入电子消息的地址的传入电子消息进行的欺诈。 这些指令用于从输入的电子消息中提取地址，并根据提取的地址生成指纹。 然后确定生成的指纹是否与多个存储的合法指纹匹配。 当缺乏比赛时，采取行动来防止使用地址。

公开(公告)号：US20200344113A1

公开(公告)日：2020-10-29

申请号：US16926907

申请日：2020-07-13

申请人： Oliver Friedrichs ,  Atif Mahadik ,  Govind Salinas ,  Sourabh Satish

发明人： Oliver Friedrichs ,  Atif Mahadik ,  Govind Salinas ,  Sourabh Satish

IPC分类号： H04L12/24 ,  H04L29/06

摘要： Described herein are systems, methods, and software to enhance the management of responses to incidents. In one example, a method of improving incident response comprises identifying an incident in an information technology (IT) environment associated with a first entity of a plurality of entities, and identifying action implementation information related to the incident. The method further anonymizes the action implementation information for the incident, and determines action suggestions based at least on the anonymized action implementation information.

公开(公告)号：US20070204347A1

公开(公告)日：2007-08-30

申请号：US11735491

申请日：2007-04-16

申请人： Maximiliano Caceres ,  Gerardo Richarte ,  Agustin Friedman ,  Ricardo Quesada ,  Luciano Notarfrancesco ,  Oliver Friedrichs ,  Javier Burroni ,  Gustavo Ajzenman ,  Gabriel Becedillas ,  Bruce Leidl

发明人： Maximiliano Caceres ,  Gerardo Richarte ,  Agustin Friedman ,  Ricardo Quesada ,  Luciano Notarfrancesco ,  Oliver Friedrichs ,  Javier Burroni ,  Gustavo Ajzenman ,  Gabriel Becedillas ,  Bruce Leidl

IPC分类号： G06F11/00

CPC分类号： H04L63/1433

摘要： A system is provided for performing penetration testing of a target computer network by installing a remote agent in the target computer network. The system includes a local agent provided in a computer console and configured to receive and execute commands. A user interface is provided in the console and configured to send commands to and receive information from the local agent, process the information, and present the processed information. A database is configured to store the information received from the local agent. A network interface is connected to the local agent and configured to communicate with the remote agent installed in the target computer network via a network. Security vulnerability exploitation modules are provided for execution by the local agent and/or the remote agent.

摘要翻译： 提供了一种用于通过在目标计算机网络中安装远程代理来执行目标计算机网络的穿透测试的系统。 该系统包括在计算机控制台中提供并配置为接收和执行命令的本地代理。 在控制台中提供用户界面，并配置为向本地代理发送命令并从本地代理程序接收信息，处理信息并呈现已处理的信息。 数据库被配置为存储从本地代理接收到的信息。 网络接口连接到本地代理，并配置为经由网络与安装在目标计算机网络中的远程代理进行通信。 提供了安全漏洞利用模块，供本地代理和/或远程代理执行。

公开(公告)号：US06636972B1

公开(公告)日：2003-10-21

申请号：US09976815

申请日：2001-10-12

申请人： Thomas Henry Ptacek ,  Timothy Nakula Newsham ,  Oliver Friedrichs

发明人： Thomas Henry Ptacek ,  Timothy Nakula Newsham ,  Oliver Friedrichs

IPC分类号： G06F1130

CPC分类号： H04L63/08 ,  H04L63/14 ,  H04L63/1433

摘要： A system and method for building an executable script for performing a network security audit is described. A source program expressed in a network packet simulation language is stored. The same program includes a plurality of statements encoding logic to simulate an exchange of network protocol compliant-packets. Each statement is scanned into a sequence of individual tokens. Each token is parsed into grammatical phrases comprising at least one of an expression and a control construct. Each expression evaluates a data value. Each control construct defines a process flow. The grammatical phrases are compiled into program instructions to execute the logic on a target machine.

摘要翻译： 描述了用于构建用于执行网络安全审核的可执行脚本的系统和方法。 存储以网络分组模拟语言表示的源程序。 相同的程序包括用于模拟网络协议兼容分组的交换的多个语句编码逻辑。 每个语句被扫描成一系列单独的令牌。 每个令牌被解析成包括表达式和对照构造中的至少一个的语法短语。 每个表达式计算一个数据值。 每个控件结构定义一个流程。 语法短语被编译成程序指令，以在目标机器上执行逻辑。

公开(公告)号：US09100425B2

公开(公告)日：2015-08-04

申请号：US13308522

申请日：2011-11-30

申请人： Oliver Friedrichs ,  Alfred Huger ,  Adam J. O'Donnell

发明人： Oliver Friedrichs ,  Alfred Huger ,  Adam J. O'Donnell

IPC分类号： G06F21/56 ,  H04L29/06 ,  G06F21/44

CPC分类号： H04L63/1416 ,  G06F21/564

摘要： Novel methods, components, and systems for automatically detecting malicious software are presented. More specifically, methods, components, and systems for the automated deployment of generic signatures to detect malicious software. Even more specifically, computer implemented methods for determining whether a software application is likely malicious including computing at a client component a generic fingerprint for a software application, transmitting the generic fingerprint data to a server component, receiving at the client component information from the server component relating to the generic fingerprint of the software application, and following a prescribed set of actions based on the information received from the server.

摘要翻译： 介绍了用于自动检测恶意软件的新方法，组件和系统。 更具体地，用于自动部署通用签名以检测恶意软件的方法，组件和系统。 甚至更具体地，用于确定软件应用是否可能是恶意的计算机实现的方法，包括在客户端组件处计算软件应用程序的通用指纹，将通用指纹数据发送到服务器组件，在客户端接收来自服务器组件的信息 涉及软件应用的通用指纹，并且基于从服务器接收的信息遵循规定的一组动作。