| CPC H04L 63/1433 (2013.01) [H04L 63/20 (2013.01)] | 20 Claims |
|
1. A computer-implemented method, comprising:
initiating a penetration test to simulate an attack on a computer network;
interrupting the penetration test at a particular hop to select a next action path of the penetration test, comprising:
identifying a plurality of available action paths to a plurality of next hops achievable from the particular hop,
calculating a penetration parameter for each of the available action paths, the calculation comprising:
determining a positive reward associated with a next hop associated with the available action path,
negatively adjusting the positive reward with a detection parameter associated with the available action path, and
negatively adjusting the positive reward with a time parameter associated with the available action path, and
selecting one of the available action paths as the next action path based on the penetration parameters of the available action paths; and
executing the next action path to continue the penetration test.
|