International Business Machines Corporation
ENDPOINT DETECTION AND RESPONSE ATTACK PROCESS TREE AUTO-PLAY

Last updated: 29 Sep 2021

Abstract:

A computer receives one or more security alerts. The computer selects a subset of the one or more security alerts for processing. The computer executes one or more queries automatically, based on the subset of the one or more security alerts. The computer identifies one or more related processes, wherein the one or more related processes are related to information contained within the subset of the one or more security alerts. The computer displays a full flow of a malware attack, wherein the full flow includes the information contained within the subset of the one or more security alerts and the one or more related processes.

Status:

Application

Type:

Utility

Filling date:

28 May 2021

Issue date:

23 Sep 2021

Full patent description

Patent application document

International Business Machines Corporation ENDPOINT DETECTION AND RESPONSE ATTACK PROCESS TREE AUTO-PLAY

Abstract:

International Business Machines Corporation
ENDPOINT DETECTION AND RESPONSE ATTACK PROCESS TREE AUTO-PLAY