Patent search ap:("SecureWorks Corp.") AND inv:"Kevin R. Moore" Page 1

1.

发明授权
System and method for detecting and monitoring thread creation 有权

公开(公告)号：US10484423B2

公开(公告)日：2019-11-19

申请号：US15436301

申请日：2017-02-17

Applicant: SecureWorks Corp.

Inventor： Ross R. Kinder , Aaron Hackworth , Matthew K. Geiger , Kevin R. Moore , Timothy M. Vidas

IPC: G06F21/00 , H04L29/06 , G06F21/55 , G06F21/56 , H04L12/24 , H04L12/707 , G06F9/4401 , G06F9/54 , H04L29/12

Abstract: A system for collection and analysis of forensic and event data comprising a server and an endpoint agent operating on a remote system. The server is configured to receive event data including process creation data, persistent process data, thread injection data, network connection data, memory pattern data, or any combination thereof, and analyze the event data to detect compromises of a remote system. The endpoint agent is configured to acquire event data, and communicate the event data to the server.

2.

发明授权
System and method for collection and analysis of endpoint forensic and event data 有权

公开(公告)号：US10333992B2

公开(公告)日：2019-06-25

申请号：US15436215

申请日：2017-02-17

Applicant: SecureWorks Corp.

Inventor： Ross R. Kinder , Aaron Hackworth , Matthew K. Geiger , Kevin R. Moore , Timothy M. Vidas , Oliver J. Palmer , Jon Ramsey , Matt J. McCormack

IPC: H04L29/06

Abstract: A system for collection and analysis of forensic and event data comprising a server and an endpoint agent operating on a remote system. The server is configured to receive event data including process creation data, persistent process data, thread injection data, network connection data, memory pattern data, or any combination thereof, and analyze the event data to detect compromises of a remote system. The endpoint agent is configured to acquire event data, and communicate the event data to the server.

3.

发明授权
System and method for detecting and monitoring persistent events 有权

公开(公告)号：US09961107B2

公开(公告)日：2018-05-01

申请号：US15436304

申请日：2017-02-17

Applicant: SecureWorks Corp.

Inventor： Ross R. Kinder , Aaron Hackworth , Matthew K. Geiger , Kevin R. Moore , Timothy M. Vidas

IPC: H04L29/06 , G06F21/55 , G06F21/56 , H04L12/24 , H04L12/707 , G06F9/44 , G06F9/54 , H04L29/12

CPC classification number: H04L63/1466 , G06F9/4406 , G06F9/542 , G06F21/552 , G06F21/554 , G06F21/565 , G06F21/566 , G06F2221/033 , G06F2221/034 , G06F2221/2115 , H04L41/069 , H04L45/22 , H04L61/1511 , H04L63/1416 , H04L63/1425 , H04L63/1441 , H04L63/20 , H04L63/308

Abstract: A system for collection and analysis of forensic and event data comprising a server and an endpoint agent operating on a remote system. The server is configured to receive event data including process creation data, persistent process data, thread injection data, network connection data, memory pattern data, or any combination thereof, and analyze the event data to detect compromises of a remote system. The endpoint agent is configured to acquire event data, and communicate the event data to the server.

4.

发明申请
System and Method for Detecting and Monitoring Persistent Events 有权

公开(公告)号：US20170243005A1

公开(公告)日：2017-08-24

申请号：US15436304

申请日：2017-02-17

Applicant: SecureWorks Corp.

Inventor： Ross R. Kinder , Aaron Hackworth , Matthew K. Geiger , Kevin R. Moore , Timothy M. Vidas

IPC: G06F21/56 , G06F9/44 , G06F21/55 , H04L29/06

CPC classification number: H04L63/1466 , G06F9/4406 , G06F9/542 , G06F21/552 , G06F21/554 , G06F21/565 , G06F21/566 , G06F2221/033 , G06F2221/034 , G06F2221/2115 , H04L41/069 , H04L45/22 , H04L61/1511 , H04L63/1416 , H04L63/1425 , H04L63/1441 , H04L63/20 , H04L63/308

Abstract: A system for collection and analysis of forensic and event data comprising a server and an endpoint agent operating on a remote system. The server is configured to receive event data including process creation data, persistent process data, thread injection data, network connection data, memory pattern data, or any combination thereof, and analyze the event data to detect compromises of a remote system. The endpoint agent is configured to acquire event data, and communicate the event data to the server.

5.

发明授权
System and method for detecting and monitoring network communication 有权

公开(公告)号：US10713360B2

公开(公告)日：2020-07-14

申请号：US15436286

申请日：2017-02-17

Applicant: SecureWorks Corp.

Inventor： Ross R. Kinder , Aaron Hackworth , Matthew K. Geiger , Kevin R. Moore , Timothy M. Vidas

IPC: G06F21/56 , H04L29/06 , G06F9/54 , G06F21/55 , H04L12/24 , H04L12/707 , G06F9/4401 , H04L29/12

Abstract: A system for collection and analysis of forensic and event data comprising a server and an endpoint agent operating on a remote system. The server is configured to receive event data including process creation data, persistent process data, thread injection data, network connection data, memory pattern data, or any combination thereof, and analyze the event data to detect compromises of a remote system. The endpoint agent is configured to acquire event data, and communicate the event data to the server.

6.

发明授权
System and method for detecting and monitoring process creation 有权

公开(公告)号：US10678919B2

公开(公告)日：2020-06-09

申请号：US15436295

申请日：2017-02-17

Applicant: SecureWorks Corp.

Inventor： Ross R. Kinder , Aaron Hackworth , Matthew K. Geiger , Kevin R. Moore , Timothy M. Vidas

IPC: G06F21/56 , H04L29/06 , G06F9/54 , G06F21/55 , H04L12/24 , H04L12/707 , G06F9/4401 , H04L29/12

Abstract: A system for collection and analysis of forensic and event data comprising a server and an endpoint agent operating on a remote system. The server is configured to receive event data including process creation data, persistent process data, thread injection data, network connection data, memory pattern data, or any combination thereof, and analyze the event data to detect compromises of a remote system. The endpoint agent is configured to acquire event data, and communicate the event data to the server.

7.

发明申请
System and Method for Detecting and Monitoring Process Creation 审中-公开

公开(公告)号：US20170243004A1

公开(公告)日：2017-08-24

申请号：US15436295

申请日：2017-02-17

Applicant: SecureWorks Corp.

Inventor： Ross R. Kinder , Aaron Hackworth , Matthew K. Geiger , Kevin R. Moore , Timothy M. Vidas

IPC: G06F21/55 , H04L29/06 , G06F21/56

Abstract: A system for collection and analysis of forensic and event data comprising a server and an endpoint agent operating on a remote system. The server is configured to receive event data including process creation data, persistent process data, thread injection data, network connection data, memory pattern data, or any combination thereof, and analyze the event data to detect compromises of a remote system. The endpoint agent is configured to acquire event data, and communicate the event data to the server.

8.

发明申请
System and Method for Detecting and Monitoring Thread Creation 审中-公开

公开(公告)号：US20170244754A1

公开(公告)日：2017-08-24

申请号：US15436301

申请日：2017-02-17

Applicant: SecureWorks Corp.

Inventor： Ross R. Kinder , Aaron Hackworth , Matthew K. Geiger , Kevin R. Moore , Timothy M. Vidas

IPC: H04L29/06

Abstract: A system for collection and analysis of forensic and event data comprising a server and an endpoint agent operating on a remote system. The server is configured to receive event data including process creation data, persistent process data, thread injection data, network connection data, memory pattern data, or any combination thereof, and analyze the event data to detect compromises of a remote system. The endpoint agent is configured to acquire event data, and communicate the event data to the server.

9.

发明申请
System and Method for Collection of Forensic and Event Data 审中-公开

公开(公告)号：US20170244750A1

公开(公告)日：2017-08-24

申请号：US15436277

申请日：2017-02-17

Applicant: SecureWorks Corp.

Inventor： Ross R. Kinder , Aaron Hackworth , Matthew K. Geiger , Kevin R. Moore , Timothy M. Vidas , Oliver J. Palmer , Jon Ramsey , Matt J. McCormack

IPC: H04L29/06 , G06F9/445

CPC classification number: H04L63/308 , H04L63/0428 , H04L63/08 , H04L63/1416 , H04L63/1425 , H04L63/1433 , H04L63/1441 , H04L63/145 , H04L63/1466 , H04L63/20

Abstract: A system for collection and analysis of forensic and event data comprising a server and an endpoint agent operating on a remote system. The server is configured to receive event data including process creation data, persistent process data, thread injection data, network connection data, memory pattern data, or any combination thereof, and analyze the event data to detect compromises of a remote system. The endpoint agent is configured to acquire event data, and communicate the event data to the server.

10.

发明申请
System and Method for Detecting and Monitoring Network Communication 审中-公开

公开(公告)号：US20170244734A1

公开(公告)日：2017-08-24

申请号：US15436286

申请日：2017-02-17

Applicant: SecureWorks Corp.

Inventor： Ross R. Kinder , Aaron Hackworth , Matthew K. Geiger , Kevin R. Moore , Timothy M. Vidas

IPC: H04L29/06 , H04L12/24 , H04L12/707

Abstract: A system for collection and analysis of forensic and event data comprising a server and an endpoint agent operating on a remote system. The server is configured to receive event data including process creation data, persistent process data, thread injection data, network connection data, memory pattern data, or any combination thereof, and analyze the event data to detect compromises of a remote system. The endpoint agent is configured to acquire event data, and communicate the event data to the server.

Search Results

Country/Region

Patent validity

Application date

Publication (announcement) day

applicant

The country/region where the applicant is located

Inventor

IPC

IPC Department

IPC class

IPC subclass

IPC group

IPC team

Appearance classification