Agent-based vulnerability management

Assignee

• TRIPWIRE, INC. · US

Inventors

• Mark Pieno · Tualatin, US
• Tyler Reguly · Toronto, CA
• Darlene Hibbs · London, CA
• Craig Young · Lewisburg, US
• Lane Thames · Atlanta, US
• Jamaal Scarlett · Alpharetta, US
• Lamar Bailey · Cumming, US
• Miles Budnek · Alpharetta, US
• Bob Terhune · Portland, US
• Jon David Loucks · Tualatin, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L63/1433
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

Apparatus and methods for analyzing vulnerabilities with an agent executing on a computer host using a vulnerability scanner and vulnerability server are disclosed. In one example a method comprises, with a vulnerability scanner, searching for data associated with a vulnerability test (for example, the command that initiates the test) to determine whether the data associated with the vulnerability is available or not available. When the data associated with the vulnerability test is available in a vulnerability scanner database, the vulnerability scanner provides prior scan results generated using one or more commands specified by the data to a vulnerability aggregation server. When the data associated with the vulnerability test is not available in the vulnerability scanner database, the vulnerability scanner performs a scan of the host to obtain results associated with the vulnerability test.