logo

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 9183397 B1

PDFFull Text
Date of Patent:
Nov. 10, 2015

Filed:

Jun. 05, 2012

System and method for providing automated computer security compromise as a service

Applicants:

Ariel Futoransky, Buenos Aires, AR;

Aureliano Emanuel Calvo, Buenos Aires, AR;

Fernando Russ Federico Russ, Buenos Aires, AR;

Jorge Lucangeli Obes, San Francisco, CA (US);

Ariel Waissbein, Buenos Aires, AR;

Alejandro Javier Frydman, Buenos Aires, AR;

Ezequiel David Gutesman, Buenos Aires, AR;

Pedro Oscar Varangot, Buenos Aires, AR;

Inventors:

Ariel Futoransky, Buenos Aires, AR;

Aureliano Emanuel Calvo, Buenos Aires, AR;

Fernando Russ Federico Russ, Buenos Aires, AR;

Jorge Lucangeli Obes, San Francisco, CA (US);

Ariel Waissbein, Buenos Aires, AR;

Alejandro Javier Frydman, Buenos Aires, AR;

Ezequiel David Gutesman, Buenos Aires, AR;

Pedro Oscar Varangot, Buenos Aires, AR;

Assignee:

Core SDI Incorporated, Buenos Aires, AR;

Attorneys:

Peter A. Nieves

Sheehan Phinney Bass + Green PA

Primary Examiner:

Kenneth Chang

Int. Cl.
CPC ...
G06F 21/57 (2013.01); H04L 29/06 (2006.01); G06F 21/55 (2013.01); H04L 29/08 (2006.01);
U.S. Cl.
CPC ...
G06F 21/577 (2013.01); G06F 21/552 (2013.01); H04L 63/1433 (2013.01); H04L 67/025 (2013.01);
Abstract

A system for providing automated computer security compromise as a service, contains a web server having a web front end running on the web server. The Web server has stored therein pentest definitions. A command and control component processes the pentest definitions, builds pentest task tickets and reporting task tickets, and monitors at least one penetration tester component and/or at least one report generator component. The command and control component interacts with a cloud computing environment to scale up or down the number of penetration tester components and the number of report generator components, and assigns task tickets to the penetration tester and report generator components. At least one penetration tester component runs penetration testing modules available inside the penetration testing framework as instructed by the pentest task tickets. At least one reporter generator component generates reports based on the reporting tasks tickets generated by the command and control service.

Find Patent Forward Citations

Loading…