A script processing method, apparatus, medium and device based on threat events

A processing method and event technology, applied in the field of script processing based on threat events, can solve problems such as high threat levels, threat events that cannot be processed in a timely manner, and asset loss, to achieve timely and effective closed-loop disposal, rapid operation and maintenance of security events, and avoid The effect of loss of property

Active Publication Date: 2022-07-22
NSFOCUS INFORMATION TECHNOLOGY CO LTD +1
View PDF3 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0011] Embodiments of the present invention provide a script processing method, device, medium, and equipment based on threat events, which are used to solve the problem that threat events with a high degree of threat cannot be processed in time, which will cause relatively large asset losses

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A script processing method, apparatus, medium and device based on threat events
  • A script processing method, apparatus, medium and device based on threat events
  • A script processing method, apparatus, medium and device based on threat events

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0063] In order to make the objectives, technical solutions and advantages of the present invention clearer, the present invention will be further described in detail below with reference to the accompanying drawings. Obviously, the described embodiments are only a part of the embodiments of the present invention, not all of the embodiments. Based on the embodiments of the present invention, all other embodiments obtained by those of ordinary skill in the art without creative efforts shall fall within the protection scope of the present invention.

[0064] It should be noted that "a plurality or several" mentioned herein refers to two or more. "And / or", which describes the association relationship of the associated objects, means that there can be three kinds of relationships, for example, A and / or B, which can mean that A exists alone, A and B exist at the same time, and B exists alone. The character " / " generally indicates that the associated objects are an "or" relationship...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The present invention relates to a script processing method, device, medium and device based on threat events. According to the scheduling priority of each queue, the threat event correlation script can be obtained from the queue and executed, so that the threat event can be processed according to the scheduling priority corresponding to the threat event, and the threat of the threat event can be relieved. By accurately judging the scheduling priority corresponding to each threat event, the threat event with a higher threat level can be prioritized to avoid causing a large loss of assets. In addition, quantitative analysis and determination based on the threat factors of the threat events to achieve dynamic response can complete timely and effective closed-loop disposal, quickly operate and maintain security events, and improve the SOAR engine's disposal efficiency and response speed.

Description

technical field [0001] The present invention relates to the technical field of network security, and in particular, to a script processing method, apparatus, medium and device based on threat events. Background technique [0002] This section is intended to provide a background or context for the embodiments of the invention that are recited in the claims. The descriptions herein are not admitted to be prior art by inclusion in this section. [0003] Security Orchestration and Automated Response (SOAR) transforms the complex threat event response process and operation and maintenance tasks into a consistent and repeatable threat event processing workflow (i.e. playbook), and executes the threat event correlation playbook through the SOAR engine scheduling to complete the response to the threat event. Closed-loop response to threat events. [0004] The generation and outbreak of threat events are random, and there is the possibility of centralized outbreaks in a short perio...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L9/40
CPCH04L63/1441H04L63/1416H04L63/10
Inventor 刘阿敏黄俊潘登郭兰杰高辉力张方
Owner NSFOCUS INFORMATION TECHNOLOGY CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products