	US 11,669,623 B2
	Method for detecting vulnerabilities in software
Hans-Christian Esperer, Heidelberg (DE); Yun Ding, Heidelberg (DE); Thomas Kastner, Sinsheim (DE); and Markus Schumacher, Einhausen (DE)
Assigned to Virtual Forge GmbH
Filed by VIRTUAL FORGE GmbH, Heidelberg (DE)
Filed on Jan. 25, 2021, as Appl. No. 17/157,559.
Application 17/157,559 is a continuation of application No. 15/834,381, filed on Dec. 7, 2017, granted, now 10,902,129.
Prior Publication US 2021/0173941 A1, Jun. 10, 2021
This patent is subject to a terminal disclaimer.
Int. Cl. G06F 21/57 (2013.01); G06F 8/41 (2018.01); G06F 21/53 (2013.01)

CPC G06F 21/577 (2013.01) [G06F 8/42 (2013.01); G06F 21/53 (2013.01); G06F 8/41 (2013.01); G06F 2221/033 (2013.01)]

10 Claims

1. A method for detecting a vulnerability in software to protect a computer system from a breach, the method comprising:

providing a ruleset comprising programming interfaces of a target framework and comprising rules for an admissible execution context when invoking the programming interfaces;

providing the software to be scanned for the breach;

compiling the software into a first execution code having additional instructions inserted therein to facilitate tracking of an actual execution context of the software;

compiling the ruleset into a second execution code to be executed with the first execution code;

executing the first execution code within a virtual machine;

passing a call of the programming interfaces to the second execution code; and

detecting the breach when the actual execution context is different from the admissible execution context.