Patenton — panteon of patents

(19)

RU

(11)

2 769 075

(13)

C1

(51)

IPC

G06F21/50(2013-01-01)

H04L12/40(2006-01-01)

(21) (22)

Application

2021116850, 2021-06-10

(24)

Start date

2021-06-10

(22)

Actual filing date

2021-06-10

(45)

Published

2022-03-28

(72)

Inventor

Volkov Dmitrij AleksandrovichPrudkovskij Nikolaj Sergeevich

(73)

Holder

Obshchestvo S Ogranichennoj Otvetstvennostyu Ajbi Tds"

SYSTEM AND METHOD FOR ACTIVE DETECTION OF MALICIOUS NETWORK RESOURCES Russian patent published in 2022 - IPC G06F21/50 H04L12/40 

Abstract RU 2769075 C1

FIELD: computer technology.

SUBSTANCE: technical solution relates to the field of computer technology. The expected result is achieved due to the fact that traffic is received by the communication module of the internal device; a suspicious IP address is detected by the analysis module of the internal device; a suspicious device with a suspicious IP address is scanned by the scanning module of the internal device, and a list of running services is obtained; the internal device communication module sends a suspicious IP address and a list of services to an external device; the external device analysis module compares the list of services with known malicious services; if there are such services, the external device notification module creates a report on the detection of malicious activity; in the absence of matches, the analytical module of the external device calculates the ownership interval of the suspicious IP address, and if the interval is less than the threshold value, the suspicious device is considered malicious and a report on malicious activity is created by the external device notification module, if the ownership interval is greater than the threshold value, the suspicious device is considered legitimate.

EFFECT: increase the accuracy of detecting compromise of the protected infrastructure by intruders or malware.

8 cl, 5 dwg

Similar patents RU2769075C1

Title Year Author Number
SYSTEM AND METHOD FOR OUTSIDE CONTROL OF THE CYBERATTACK SURFACE 2021
  • Bobak Tim Dzhon Oskar
  • Volkov Dmitrij Aleksandrovich
 RU2778635C1
METHOD AND COMPUTING DEVICE FOR DETECTING TARGET MALICIOUS WEB RESOURCE 2022
  • Rozhnov Ilia Olegovich
 RU2791824C1
METHOD OF ANALYSING AND DETECTING MALICIOUS INTERMEDIATE NODES IN NETWORK 2012
  • Golovanov Sergej Jur'Evich
 RU2495486C1
METHOD AND SYSTEM FOR DETECTING THE INFRASTRUCTURE OF A MALICIOUS SOFTWARE OR A CYBERCRIMINAL 2020
  • Volkov Dmitrij Aleksandrovich
  • Mileshin Filipp Alekseevich
 RU2722693C1
METHOD OF ANALYSING MALICIOUS ACTIVITY ON INTERNET, DETECTING MALICIOUS NETWORK NODES AND NEIGHBOURING INTERMEDIATE NODES 2012
  • Golovanov Sergej Jur'Evich
 RU2523114C2
SYSTEM AND METHOD OF PROTECTING CLOUD INFRASTRUCTURE FROM ILLEGAL USE 2012
  • Kononov Ehl'Dar Mikhajlovich
  • Lapushkin Anton Sergeevich
  • Efremov Andrej Anatol'Evich
 RU2536663C2
METHOD AND SYSTEM FOR DETECTING MALICIOUS FILES BY GENERATING ADS ON ONLINE TRADING PLATFORMS 2019
  • Gubanov Dmitrij Nikolaevich
  • Davidov Dmitrij Georgievich
  • Sysoev Valentin Valerevich
  • Anistratenko Aleksandr Arturovich
  • Denisenko Maksim Gennadievich
 RU2727932C1
METHOD FOR CLASSIFYING OBJECTS TO PREVENT SPREAD OF MALICIOUS ACTIVITY 2023
  • Parinov Denis Igorevich
  • Vlasova Viktoriia Vladimirovna
  • Romanenko Aleksei Mikhailovich
  • Antonov Aleksei Evgenevich
 RU2808385C1
SYSTEM AND METHOD OF CORRELATING EVENTS FOR DETECTING INFORMATION SECURITY INCIDENT 2019
  • Lyukshin Ivan Stanislavovich
  • Kiryukhin Andrej Aleksandrovich
  • Lukiyan Dmitrij Sergeevich
  • Filonov Pavel Vladimirovich
 RU2739864C1
METHOD AND SYSTEM FOR TUNNELLING TRAFFIC IN A DISTRIBUTED NETWORK TO DETONATE MALICIOUS SOFTWARE 2022
  • Mitin Arsenij Viktorovich
 RU2797264C1

RU 2 769 075 C1

Authors

Volkov Dmitrij Aleksandrovich

Prudkovskij Nikolaj Sergeevich

Dates

2022-03-28Published

2021-06-10Filed

download Download PDF read Similar patents