公开(公告)号：US11736512B1

公开(公告)日：2023-08-22

申请号：US17069180

申请日：2020-10-13

Applicant: Shape Security, Inc.

Inventor： Jarrod S. Overson

IPC: H04L9/40

CPC classification number: H04L63/1441 ,  H04L63/1416 ,  H04L63/20

Abstract: Methods, non-transitory computer readable media, protection server apparatuses, and network security systems that improve network security for web applications by mitigating cyberattacks that cause the exfiltration of data are illustrated. With this technology, network request(s) are received from a client that specify domain(s) to which the client has sent data during rendering of a webpage. The webpage includes instrumentation code configured to intercept and post the network requests. A determination is then mage when one of the domain(s) is a malicious domain. Interceptor code is generated based on a type of attack that is associated with the one of the domains, when the determination indicates the one of the domains is a malicious domain. The instrumentation code is then updated to include the interceptor code. The interceptor code is configured to mitigate the attack when the webpage is subsequently rendered by another client.

公开(公告)号：US10855696B2

公开(公告)日：2020-12-01

申请号：US15059080

申请日：2016-03-02

Applicant: Shape Security, Inc.

Inventor： Jarrod S. Overson ,  Ariya Hidayat ,  Michael Ficarra ,  Bei Zhang ,  Justin Call

IPC: H04L29/06 ,  H04L29/08

Abstract: In an approach, an apparatus comprises: one or more processors; a processor logic coupled to the one or more processors and configured to: intercept, from a client computer, a request directed to a server computer that identifies a purported user agent executing on the client computer; send, to the server computer, the request from the client computer; intercept, from the server computer, one or more original instructions to be executed by the purported user agent of the client computer; determine one or more features supported by the purported user agent that are not utilized by the one or more original instructions; transform the one or more original instructions into one or more revised instructions which, when executed by the purported user agent, cause the purported user agent to utilize the one or more features; send, to the client computer, the one or more revised instructions.