Fortinet, Inc.
Proactive network security assessment based on benign variants of known threats

Abstract:

Systems and methods for performing a proactive assessment of the network security of a private network are provided. According to one embodiment, computer systems and users of the private network are caused to react to a benign variant of a network security threat ("benign threat") by deploying the benign threat within the private network. The benign threat is created by leaving in tact symptoms and propagation mechanisms associated with the network security threat and replacing malicious behaviors of the network security threat with tracking, monitoring and/or reporting behaviors implemented within the benign threat. Responsive to activation of the benign threat on a particular computer system by a particular user information is captured by the benign threat regarding an identity of the particular user. Training of the particular user regarding proper security habits is facilitated by reporting, by the benign threat, the captured information to a management server.