Detecting web exploit kits by tree-based structural similarity search

Invention Grant

US10560471B2 Detecting web exploit kits by tree-based structural similarity search 有权

Please log in to see more content

Patent Title: Detecting web exploit kits by tree-based structural similarity search
Application No.: US15344791

Application Date: 2016-11-07
Publication No.: US10560471B2

Publication Date: 2020-02-11
Inventor: Xin Hu , Jiyong Jang , Fabian Monrose , Marc Philippe Stoecklin , Teryl Taylor , Ting Wang
Applicant: HCL Technologies Limited
Applicant Address: IN New Delhi
Assignee: HCL Technologies Limited
Current Assignee: HCL Technologies Limited
Current Assignee Address: IN New Delhi
Agency: Brooks Kushman P.C.
Main IPC: H04L29/06
IPC: H04L29/06 ; G06F16/245 ; G06F16/28 ; G06F16/22 ; H04L29/08

Detecting web exploit kits by tree-based structural similarity search

Abstract:

A method includes receiving, at an input port of a computer, indication of HTTP (Hypertext Transfer Protocol) traffic and clustering, using a processor on the computer, the HTTP traffic according to a client IP (Internet Protocol) into a web session tree. A client tree structure of the web session tree is generated and the client tree structure is compared with tree structures of exploit kit samples.

Public/Granted literature

US20170054749A1 DETECTING WEB EXPLOIT KITS BY TREE-BASED STRUCTURAL SIMILARITY SEARCH Public/Granted day:2017-02-23

Information query

Espacenet