Invention Grant
- Patent Title: Endpoint detection and response attack process tree auto-play
-
Application No.: US17303415Application Date: 2021-05-28
-
Publication No.: US12093387B2Publication Date: 2024-09-17
- Inventor: Dara P. Murphy , Michael J. Ryan
- Applicant: International Business Machines Corporation
- Applicant Address: US NY Armonk
- Assignee: International Business Machines Corporation
- Current Assignee: International Business Machines Corporation
- Current Assignee Address: US NY Armonk
- Agency: Yee & Associates, P.C.
- Main IPC: G06F21/56
- IPC: G06F21/56 ; G06F21/55 ; H04L29/06
Abstract:
A computer receives one or more security alerts. The computer selects a subset of the one or more security alerts for processing. The computer executes one or more queries automatically, based on the subset of the one or more security alerts. The computer identifies one or more related processes, wherein the one or more related processes are related to information contained within the subset of the one or more security alerts. The computer displays a full flow of a malware attack, wherein the full flow includes the information contained within the subset of the one or more security alerts and the one or more related processes.
Public/Granted literature
- US20210294896A1 ENDPOINT DETECTION AND RESPONSE ATTACK PROCESS TREE AUTO-PLAY Public/Granted day:2021-09-23
Information query
