首页>
外国专利>
Testing security incident response through automated injection of known indicators of compromise
Testing security incident response through automated injection of known indicators of compromise
展开▼
机译:通过自动注入已知的危害指标来测试安全事件响应
展开▼
页面导航
摘要
著录项
相似文献
摘要
Disclosed are various embodiments for testing the security incident response of an organization through automated injection of a known indicator of compromise. A stream of event data generated by a network monitoring system of an organization is received. The stream of event data is modified to include data embodying a fabricated indicator of compromise. The stream of event data that has been modified is then provided to an intrusion detection system of the organization. Metrics are then generated that assess the response of the organization to the fabricated indicator of compromise.
展开▼