Patent · US Active

Web application vulnerability scanning

US10108801B2 · kind B2 · utility

19Cited by

0References

37Claims

0Family size

Assignee

Qualys, Inc. · US

Inventors

Michael P. Shema · San Francisco, US
Vaagn Toukharian · Redwood City, US
Sergey Shekyan · Redwood City, US

Key dates

Filing date	Nov 15, 2012
Grant date	Oct 23, 2018
Priority date	—
Expiry date	Nov 15, 2032

Classification

Technology area (CPC H)Electricity
CPC primaryH04L67/02
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Present example embodiments relate generally to scanning websites, wherein the devices, methods, and logic for the scanning comprises receiving interaction information between a user computing device and a web application of the website; dynamically determining an action to be performed to the web application that approximately simulates the user computing device interacting with the web application, wherein the action is dynamically determined based on the received interaction information; establishing a browsing session with the website; discovering the web application within the website; and identifying a vulnerability of the web application by interacting with the web application using the action.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.