首页>
外国专利>
Interactive infection visualization for improved exploit detection and signature generation for malware and malware families
Interactive infection visualization for improved exploit detection and signature generation for malware and malware families
展开▼
机译:交互式感染可视化可改善恶意软件和恶意软件家族的漏洞利用检测和签名生成
展开▼
页面导航
摘要
著录项
相似文献
摘要
According to one embodiment, a malware detection and visualization system comprises one or more processors; and a storage module communicatively coupled to the one or more processors, the storage module comprises logic, upon execution by the one or more processors, that accesses a first set of information that comprises (i) information directed to a plurality of observed events and (ii) information directed to one or more relationships that identify an association between different observed events of the plurality of observed events; and generates a reference model based on the first set of information, the reference model comprises at least a first event of the plurality of observed events, a second event of the plurality of observed events, and a first relationship that identifies that the second event is based on the first event, wherein at least one of (i) the plurality of observed events or (ii) the one or more relationships constitutes an anomalous behavior is provided.
展开▼