-
公开(公告)号:US12045346B2
公开(公告)日:2024-07-23
申请号:US18497019
申请日:2023-10-30
发明人: Avihay Cohen
CPC分类号: G06F21/554 , G06F21/128 , G06F21/54 , G06F9/45529 , G06F9/54 , G06F2221/033
摘要: Systems, methods, and computer-readable media for cybersecurity are disclosed. The systems and methods may involve receiving, by an application capable of JavaScript execution, code for execution; executing, before execution of the received code, an intercepting code, wherein the intercepting code is configured to intercept at least one application programming interface (API) invocation by the received code; intercepting, by the intercepting code, an API invocation by the received code; determining that the intercepted API invocation results in a manipulation of a backing store object; and modifying an execution of the intercepted API invocation, wherein the modified execution results in a nonpredictable environment state.
-
公开(公告)号:US11947666B2
公开(公告)日:2024-04-02
申请号:US18053038
申请日:2022-11-07
发明人: Avihay Cohen
CPC分类号: G06F21/554 , G06F21/128 , G06F21/54 , G06F9/45529 , G06F9/54 , G06F2221/033
摘要: Systems, methods, and computer-readable media for cybersecurity are disclosed. The systems and methods may involve receiving, by an application capable of JavaScript execution, code for execution; executing, before execution of the received code, an intercepting code, wherein the intercepting code is configured to intercept at least one application programming interface (API) invocation by the received code; intercepting, by the intercepting code, an API invocation by the received code; determining that the intercepted API invocation results in a manipulation of a backing store object; and modifying an execution of the intercepted API invocation, wherein the modified execution results in at least one of: a non-predictable memory layout, a non-predictable memory behavior, or a non-predictable property of an object.
-
公开(公告)号:US20230093137A1
公开(公告)日:2023-03-23
申请号:US18053138
申请日:2022-11-07
发明人: Avihay Cohen
摘要: Systems, methods, and computer-readable media for cybersecurity are disclosed. The systems and methods may involve receiving, by an application capable of JavaScript execution, code for execution; executing, before execution of the received code, an intercepting code, wherein the intercepting code is configured to intercept at least one application programming interface (API) invocation by the received code; intercepting, by the intercepting code, an API invocation by the received code; determining that the intercepted API invocation results in a manipulation of a backing store object; and modifying an execution of the intercepted API invocation, wherein the modified execution results in a nonpredictable environment state.
-
公开(公告)号:US11847213B2
公开(公告)日:2023-12-19
申请号:US18053138
申请日:2022-11-07
发明人: Avihay Cohen
CPC分类号: G06F21/554 , G06F21/128 , G06F21/54 , G06F9/45529 , G06F9/54 , G06F2221/033
摘要: Systems, methods, and computer-readable media for cybersecurity are disclosed. The systems and methods may involve receiving, by an application capable of JavaScript execution, code for execution; executing, before execution of the received code, an intercepting code, wherein the intercepting code is configured to intercept at least one application programming interface (API) invocation by the received code; intercepting, by the intercepting code, an API invocation by the received code; determining that the intercepted API invocation results in a manipulation of a backing store object; and modifying an execution of the intercepted API invocation, wherein the modified execution results in a nonpredictable environment state.
-
公开(公告)号:US11520883B2
公开(公告)日:2022-12-06
申请号:US17575286
申请日:2022-01-13
发明人: Avihay Cohen
摘要: Systems, methods, and computer-readable media for cybersecurity are disclosed. The systems and methods may involve receiving, by an application capable of JavaScript execution, code for execution; executing, before execution of the received code, an intercepting code, wherein the intercepting code is configured to intercept at least one application programming interface (API) invocation by the received code; intercepting, by the intercepting code, an API invocation by the received code; determining that the intercepted API invocation results in a manipulation of a backing store object; and modifying an execution of the intercepted API invocation, wherein the modified execution results in a nonpredictable environment state.
-
公开(公告)号:US20220164441A1
公开(公告)日:2022-05-26
申请号:US17575286
申请日:2022-01-13
发明人: Avihay Cohen
IPC分类号: G06F21/55
摘要: Systems, methods, and computer-readable media for cybersecurity are disclosed. The systems and methods may involve receiving, by an application capable of JavaScript execution, code for execution; executing, before execution of the received code, an intercepting code, wherein the intercepting code is configured to intercept at least one application programming interface (API) invocation by the received code; intercepting, by the intercepting code, an API invocation by the received code; determining that the intercepted API invocation results in a manipulation of a backing store object; and modifying an execution of the intercepted API invocation, wherein the modified execution results in a nonpredictable environment state.
-
公开(公告)号:US20240314168A1
公开(公告)日:2024-09-19
申请号:US18611880
申请日:2024-03-21
发明人: Avihay Cohen
IPC分类号: H04L9/40
CPC分类号: H04L63/1491 , H04L63/1425
摘要: Systems, methods, and non-transitory computer readable media including instructions for implementing a runtime virtual barrier for fine grained execution control are disclose. Implementing the runtime virtual barrier for fine grained execution control includes receiving, by an application capable of JavaScript execution, an executable code including an API invocation; intercepting, by a virtual barrier, the API invocation; determining that the API invocation is an invocation for a native API configured for subsequent execution in response to a trigger event; based on the determination that the API invocation is an invocation for a native API configured for subsequent execution, recording an invocation source identifier; and upon occurrence of the trigger event: retrieving the invocation source identifier; and influencing execution of the native API based on the invocation source identifier.
-
公开(公告)号:US20240289490A1
公开(公告)日:2024-08-29
申请号:US18612048
申请日:2024-03-21
发明人: Avihay Cohen
IPC分类号: G06F21/62 , G06F16/958
CPC分类号: G06F21/6245 , G06F16/986
摘要: Systems, methods, and non-transitory computer readable media including instructions for implementing a runtime virtual barrier for fine grained execution control are disclose. Implementing the runtime virtual barrier for fine grained execution control includes receiving, by an application capable of JavaScript execution, an executable code including an API invocation; intercepting, by a virtual barrier, the API invocation; determining that the API invocation is an invocation for a native API configured for subsequent execution in response to a trigger event; based on the determination that the API invocation is an invocation for a native API configured for subsequent execution, recording an invocation source identifier; and upon occurrence of the trigger event: retrieving the invocation source identifier; and influencing execution of the native API based on the invocation source identifier.
-
公开(公告)号:US20230083463A1
公开(公告)日:2023-03-16
申请号:US18053038
申请日:2022-11-07
发明人: Avihay Cohen
摘要: Systems, methods, and computer-readable media for cybersecurity are disclosed. The systems and methods may involve receiving, by an application capable of JavaScript execution, code for execution; executing, before execution of the received code, an intercepting code, wherein the intercepting code is configured to intercept at least one application programming interface (API) invocation by the received code; intercepting, by the intercepting code, an API invocation by the received code; determining that the intercepted API invocation results in a manipulation of a backing store object; and modifying an execution of the intercepted API invocation, wherein the modified execution results in at least one of: a non-predictable memory layout, a non-predictable memory behavior, or a non-predictable property of an object.
-
公开(公告)号:US20240362321A1
公开(公告)日:2024-10-31
申请号:US18762967
申请日:2024-07-03
发明人: Avihay Cohen
IPC分类号: G06F21/54
CPC分类号: G06F21/54 , G06F2221/033
摘要: A non-transitory computer readable medium contains instructions that when executed cause one or more processors to perform cybersecurity operations that include detecting an interpreter-based application configured to exhibit native functionality and to generate a plurality of execution contexts following receipt of an original input code. An interpreter-based cybersecurity agent is injected within the detected interpreter-based application, which is itself configured for execution by the interpreter-based application prior to execution of the original input code. Exposed APIs are patched using the injected interpreter-based cybersecurity agent to cause patched APIs to exhibit non-native functionality in order to thwart exploitations.
-
-
-
-
-
-
-
-
-
搜索结果
13 条记录 (耗时 0.022 秒)
