CPC G06F 21/577 (2013.01) [G06F 8/42 (2013.01); G06F 21/53 (2013.01); G06F 8/41 (2013.01); G06F 2221/033 (2013.01)] | 10 Claims |
1. A method for detecting a vulnerability in software to protect a computer system from a breach, the method comprising:
providing a ruleset comprising programming interfaces of a target framework and comprising rules for an admissible execution context when invoking the programming interfaces;
providing the software to be scanned for the breach;
compiling the software into a first execution code having additional instructions inserted therein to facilitate tracking of an actual execution context of the software;
compiling the ruleset into a second execution code to be executed with the first execution code;
executing the first execution code within a virtual machine;
passing a call of the programming interfaces to the second execution code; and
detecting the breach when the actual execution context is different from the admissible execution context.
|