Patent · US Active

Security scanner

US10110622B2 · kind B2 · utility

2Cited by

51References

20Claims

0Family size

Assignee

MICROSOFT TECHNOLOGY LICENSING, LLC · US

Inventors

Dragos D. Boia · Seattle, US
Barry Markey · Kirkland, US
Donald J. Ankney · Seattle, US
Viresh Ramdatmisier · Seattle, US

Key dates

Filing date	Feb 13, 2015
Grant date	Oct 23, 2018
Priority date	—
Expiry date	Dec 22, 2035

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/577
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Systems and methods for automated selection of payloads for use in a security scan of a web application by a security scanner are described herein. More specifically, the systems and methods test potential payloads for a security scan of a given web application on a test application with known security vulnerabilities, evaluate valid response returned by this test application, determine functionally equivalent responses, group payloads based the equivalence of their valid responses, and select one or more payloads from each created group for use in the security scan of the given web application.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.