首页>
外国专利>
Enriching malware information for use with network security analysis and malware detection
Enriching malware information for use with network security analysis and malware detection
展开▼
机译:丰富恶意软件信息,以便与网络安全性分析和恶意软件检测一起使用
展开▼
页面导航
摘要
著录项
相似文献
摘要
One or more malware data pipelines is configured to provide malware data that includes original data fields identifying information for detected malware instances and corresponding files that are associated with the detected malware instances. Malware enrichment circuitry is configured to identify additional information to include in enriched data fields for the detected malware instances, the additional information being identified from one or more of: the original data fields, the corresponding files, and one or more third party services. A datastore is configured to store the malware data with the original data fields and the enriched data fields, wherein the datastore includes indices for both the original data fields and the enriched data fields to permit for searching and analysis across the original data fields and the enriched data fields.
展开▼