公开(公告)号：US11171847B2

公开(公告)日：2021-11-09

申请号：US17135389

申请日：2020-12-28

申请人： QOMPLX, Inc.

发明人： Jason Crabtree ,  Andrew Sellers

IPC分类号： H04L12/26 ,  H04L12/24 ,  G06Q10/06 ,  H04L29/08

摘要： A highly scalable distributed connection interface for data capture from multiple network service sources, comprising a connector module wherein, the connector module retrieves a plurality of data from a plurality of network data sources; employs a plurality of application programming interface routines to communicate with the plurality of data sources; accepts a plurality of analysis parameters and control commands directly from human interface devices or from one or more command and control storage devices; and specifies the action or actions to be taken on the retrieved data.

公开(公告)号：US20210297453A1

公开(公告)日：2021-09-23

申请号：US17197697

申请日：2021-03-10

申请人： QOMPLX, Inc.

发明人： Jason Crabtree ,  Andrew Sellers ,  Hao Pan

IPC分类号： H04L29/06 ,  G06F16/951 ,  G06F16/2458

摘要： A system and methods for pathfinding in two- and three-dimensional spaces using an automated planning service, wherein an automated planning service uses worker nodes to create and process abstract problem spaces representing pathfinding problems, and master nodes coordinate the results of workers to provide efficient multi-agent-aware pathfinding.

公开(公告)号：US20210297452A1

公开(公告)日：2021-09-23

申请号：US17162683

申请日：2021-01-29

申请人： QOMPLX, Inc.

发明人： Jason Crabtree ,  Andrew Sellers

IPC分类号： H04L29/06 ,  G06F16/951 ,  G06F16/2458

摘要： A system for cybersecurity rating using active and passive external reconnaissance, that uses a web crawler that sends message prompts to external hosts and receives responses from external hosts, a time-series data store that produces time-series data from the message responses, and a directed computational graph module that analyzes the time-series data to produce a weighted score representing the overall cybersecurity state of an organization.

公开(公告)号：US20210297447A1

公开(公告)日：2021-09-23

申请号：US17169924

申请日：2021-02-08

申请人： QOMPLX, Inc.

发明人： Jason Crabtree ,  Andrew Sellers

IPC分类号： H04L29/06 ,  H04L9/06

摘要： A system for detecting and mitigating attacks using forged authentication objects within a domain is provided, comprising an authentication object inspector configured to observe a new authentication object generated by an identity provider, and retrieve the new authentication object; and a hashing engine configured to retrieve the new authentication object from the authentication object inspector, calculate a cryptographic hash for the new authentication object, and store the cryptographic hash for the new authentication object in a data store; wherein subsequent access requests accompanied by authentication objects are validated by comparing hashes for each authentication object to previous generated hashes.

公开(公告)号：US20210297443A1

公开(公告)日：2021-09-23

申请号：US17170288

申请日：2021-02-08

申请人： QOMPLX, Inc.

发明人： Jason Crabtree ,  Andrew Sellers

IPC分类号： H04L29/06 ,  G06F16/2458

摘要： A system and methods for mitigating golden ticket attacks within a domain is provided, comprising an authentication object inspector configured to observe a new authentication object generated by an identity provider, and retrieve the new authentication object; and a hashing engine configured to retrieve the new authentication object from the authentication object inspector, calculate a cryptographic hash for the new authentication object, and store the cryptographic hash for the new authentication object in a data store; wherein subsequent access requests accompanied by authentication objects are validated by comparing hashes for each authentication object to previous generated hashes.

公开(公告)号：US20210258305A1

公开(公告)日：2021-08-19

申请号：US17138202

申请日：2020-12-30

申请人： QOMPLX, Inc.

发明人： Jason Crabtree ,  Andrew Sellers

IPC分类号： H04L29/06 ,  H04L12/26

摘要： A system for probe-based risk analysis for multi-factor authentication having a multi-dimensional time series data server configured to monitor and record a network's traffic data and to serve the traffic data to other modules and a directed computational graph module configured to probe connection destinations for a response, analyze any received responses, and determine a verification score needed before granting access based at least in part on the analysis of the received responses. A plurality of verification methods build up a user's verification score to required level to gain access.

公开(公告)号：US20210258233A1

公开(公告)日：2021-08-19

申请号：US17162759

申请日：2021-01-29

申请人： QOMPLX, Inc.

发明人： Jason Crabtree ,  Andrew Sellers

IPC分类号： H04L12/26 ,  H04L12/24 ,  G06Q10/06

摘要： A highly scalable distributed connection interface for data capture from multiple network service sources, comprising a connector module wherein, the connector module retrieves a plurality of operational data from a plurality of network data sources; employs a plurality of application programming interface routines to communicate with the plurality of operational data sources;
accepts a plurality of analysis parameters and control commands directly from human interface devices or from one or more command and control storage devices; and specifies the action or actions to be taken on the retrieved operational data.

公开(公告)号：US11089045B2

公开(公告)日：2021-08-10

申请号：US16807007

申请日：2020-03-02

申请人： QOMPLX, Inc.

发明人： Jason Crabtree ,  Andrew Sellers

IPC分类号： H04L29/06

摘要： A system and method for network cybersecurity analysis that uses user and entity behavioral analysis combined with network topology information to provide improved cybersecurity. The system and method involve gathering network entity information, establishing baseline behaviors for each entity, and monitoring each entity for behavioral anomalies that might indicate cybersecurity concerns. Further, the system and method involve incorporating network topology information into the analysis by generating a model of the network, annotating the model with risk and criticality information for each entity in the model and with a vulnerability level between entities, and using the model to evaluate cybersecurity risks to the network. Risks and vulnerabilities associated with user entities may be represented, in part or in whole, by the behavioral analyses and monitoring of those user entities.

公开(公告)号：US20210226864A1

公开(公告)日：2021-07-22

申请号：US17135389

申请日：2020-12-28

申请人： QOMPLX, Inc.

发明人： Jason Crabtree ,  Andrew Sellers

IPC分类号： H04L12/26 ,  H04L12/24 ,  G06Q10/06

摘要： A highly scalable distributed connection interface for data capture from multiple network service sources, comprising a connector module wherein, the connector module retrieves a plurality of data from a plurality of network data sources; employs a plurality of application programming interface routines to communicate with the plurality of data sources; accepts a plurality of analysis parameters and control commands directly from human interface devices or from one or more command and control storage devices; and specifies the action or actions to be taken on the retrieved data.

公开(公告)号：US11055451B2

公开(公告)日：2021-07-06

申请号：US15835312

申请日：2017-12-07

申请人： QOMPLX, Inc.

发明人： Jason Crabtree ,  Andrew Sellers

IPC分类号： G06F9/448 ,  G06F30/20 ,  H04L29/08 ,  G06N7/00 ,  G06F8/10 ,  G06Q10/06 ,  G06N5/00

摘要： A system and method for creating a meta-model simulation of a domain-specific simulation model wherein one or more domain-specific simulation models are abstracted into a meta-model by creating behavior tree models of the objects, actors, and events contained in each domain-specific simulation model. The meta-model simulation may represent combined or merged functionality of domain-specific simulation models from different domains and may be dynamically adjusted during execution by altering one or more parameters of objects, actors, or events in the meta-model simulation.