&#xfeff;<html>
  <head>
    <META http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" type="text/css" href="html_style_eog.css"/>
<script type="text/javascript">
			function printpage()
			{
			window.print()
			}
			</script>
<script type="text/javascript" src="https://components.uspto.gov/js/ais/40-patentsgazette.js"></script></head>
  <body bgcolor='#FFFFFF' onload='javascript: if ((navigator.appName.indexOf("Netscape")!=-1) && parent.leftFrame!=null) parent.leftFrame.location.reload();'>
    <basefont face="Times New Roman, Times New Roman, Times New Roman " size="2">
      <div style="margin-left: +10pt">
        <table width="90%" border="0" rules="none" align="center">
          <tr align="center">
            <td width="20%" colspan="1" rowspan="2" align="left" valign="top"><a href="https://ppubs.uspto.gov/pubwebapp/external.html?q=11750659.pn.&amp;db=USPAT" target="popup"><input type="button" class="button" value="   Full Text   "></a></td>
            <td class="table_data"><b>US 11,750,659 B2</b></td>
            <td width="20%" colspan="1" rowspan="2" align="right" valign="top">
              <form><input type="button" value="Print this page" onclick="printpage()"></form>
            </td>
          </tr>
          <tr align="center">
            <td colspan="1" class="table_data" style="text-transform: uppercase"><b>Cybersecurity profiling and rating using active and passive external reconnaissance</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b> Jason Crabtree,  Vienna, VA (US);  Andrew Sellers,  Monument, CO (US); and  Richard Kelley,  Woodbridge, VA (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Assigned to  QOMPLX, INC.,  Tysons, VA (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed by  QOMPLX, Inc.,  Tysons, VA (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed on Mar.  30, 2021, as Appl. No. 17/216,939.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 17/216,939 is a continuation of application No. 16/777,270, filed on Jan.  30, 2020, granted, now 11,025,674.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 16/777,270 is a continuation in part of application No. 16/720,383, filed on Dec.  19, 2019, granted, now 10,944,795.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 16/720,383 is a continuation of application No. 15/823,363, filed on Nov.  27, 2017, granted, now 10,560,483, issued on Feb.  11, 2020.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/823,363 is a continuation in part of application No. 15/725,274, filed on Oct.  4, 2017, granted, now 10,609,079, issued on Mar.  31, 2020.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/725,274 is a continuation in part of application No. 15/655,113, filed on Jul.  20, 2017, granted, now 10,735,456, issued on Aug.  4, 2020.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/655,113 is a continuation in part of application No. 15/616,427, filed on Jun.  7, 2017, abandoned.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/616,427 is a continuation in part of application No. 15/237,625, filed on Aug.  15, 2016, granted, now 10,248,910, issued on Apr.  2, 2019.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/237,625 is a continuation in part of application No. 15/206,195, filed on Jul.  8, 2016, abandoned.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/206,195 is a continuation in part of application No. 15/186,453, filed on Jun.  18, 2016, abandoned.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/186,453 is a continuation in part of application No. 15/166,158, filed on May   26, 2016, abandoned.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/166,158 is a continuation in part of application No. 15/141,752, filed on Apr.  28, 2016, granted, now 10,860,962.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/141,752 is a continuation in part of application No. 15/091,563, filed on Apr.  5, 2016, granted, now 10,204,147, issued on Feb.  12, 2019.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/091,563 is a continuation in part of application No. 14/986,536, filed on Dec.  31, 2015, granted, now 10,210,255, issued on Feb.  19, 2019.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 14/986,536 is a continuation in part of application No. 14/925,974, filed on Oct.  28, 2015, abandoned.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/616,427 is a continuation in part of application No. 14/925,974, filed on Oct.  28, 2015, abandoned.</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Prior Publication US 2022/0014556 A1, Jan.  13, 2022</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>This patent is subject to a terminal disclaimer.</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Int. Cl. </b><i><b>H04L 9/40</b></i> (2022.01); <i><b>G06F 16/2458</b></i> (2019.01); <i><b>G06F 16/951</b></i> (2019.01)</td>
          </tr>
        </table>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="75%">
            <col width="15%">
          </colgroup>
          <tr align="left">
            <td class="table_data" align="left"><b>CPC </b><i><b>H04L 63/20</b></i> (2013.01)&#xa0;[<i><b>G06F 16/2477</b></i> (2019.01); <i><b>G06F 16/951</b></i> (2019.01); <i><b>H04L 63/1425</b></i> (2013.01); <i><b>H04L 63/1441</b></i> (2013.01)]</td>
            <td class="table_data" align="right"><b>4 Claims</b></td>
          </tr>
        </table>
        <center><img src="US11750659-20230905-D00000.gif" alt="OG exemplary drawing"></center>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="90%">
          </colgroup>
          <tr>
            <td class="table_data" align="center">&#xa0;</td>
          </tr>
          <tr>
            <td valign="top" class="para_text">
              <div class="claim_text_root">1. A system for cybersecurity profiling and rating using internal and external reconnaissance, comprising:<div class="claim_text">a cyber-physical graph module comprising a first plurality of programming instructions stored in a memory of, and operating on a processor of, a computing device, wherein the first plurality of programming instructions, when operating on the processor, cause the computing device to create a cyber-physical graph of an organization, the cyber-physical graph comprising nodes representing entities associated with the organization and edges representing relationships between entities associated with the organization;</div>
                <div class="claim_text">a reconnaissance engine comprising a second plurality of programming instructions stored in the memory of, and operating on the processor of, the computing device, wherein the second plurality of programming instructions, when operating on the processor, cause the computing device to:<div class="claim_text">perform a reconnaissance search using the cyber-physical graph; and</div>
                  <div class="claim_text">apply some or all of the results of the reconnaissance search to the cyber-physical graph to create a cybersecurity profile of the organization; and</div>
                </div>
                <div class="claim_text">a scoring engine comprising a third plurality of programming instructions stored in the memory of, and operating on the processor of, the computing device, wherein the third plurality of programming instructions, when operating on the processor, cause the computing device to:</div>
                <div class="claim_text">receive the cybersecurity profile and the results of the reconnaissance search;</div>
                <div class="claim_text">using the cyber-physical graph and the reconnaissance search results:<div class="claim_text">estimate a frequency and severity of cyber-attacks on the organization;</div>
                  <div class="claim_text">identify a plurality of cybersecurity risks associated with the organization;</div>
                  <div class="claim_text">determine a business impact for each cybersecurity risk identified;</div>
                  <div class="claim_text">assign a network resilience rating to the organization; and</div>
                  <div class="claim_text">determine a functional cybersecurity score for the organization based at least on the network resilience rating.</div>
                </div>
              </div>
            </td>
          </tr>
        </table>
      </div>
    
  </body>
</html>