US 12,189,779 B1
Detection of cyber threats embedded in cloud applications
Roy Reznik, Tel Aviv (IL); Ami Luttwak, Binyamina (IL); Guy Rozendorn, Tel Aviv (IL); and Yarin Miran, Rishon le Zion (IL)
Assigned to Wiz, Inc., New York, NY (US)
Filed by Wiz, Inc., New York, NY (US)
Filed on Feb. 1, 2021, as Appl. No. 17/164,650.
Int. Cl. G06F 21/57 (2013.01); G06F 8/75 (2018.01); H04L 9/32 (2006.01)
CPC G06F 21/577 (2013.01) [G06F 8/75 (2013.01); H04L 9/3236 (2013.01); G06F 2221/033 (2013.01)] 21 Claims
OG exemplary drawing
 
1. A method for detection of cyber threats embedded in cloud applications, comprising:
detecting code of at least one cloud application that is for execution in a cloud amongst a plurality computing resources in a cloud environment;
filtering the detected code to remove a portion of the code that is non-unique for the at least one cloud application;
performing a static analysis on each unique portion of the code to identify a mismatch between any unique portion of the code and its corresponding verified version stored in a code repository; and
detecting a potential cyber threat embedded in the code based on a comparison of each identified mismatch with one or more data features using at least a vulnerability tool.