US 12,192,230 B2
Domain reputation system
Will Glazier, Sunnyvale, CA (US); Khyati Ganatra, Santa Clara, CA (US); and Shaunak Kapoor, Cincinnati, OH (US)
Assigned to CEQUENCE SECURITY, INC., Sunnyvale, CA (US)
Filed by CEQUENCE SECURITY, INC., Sunnyvale, CA (US)
Filed on Jul. 28, 2021, as Appl. No. 17/387,717.
Claims priority of provisional application 63/057,729, filed on Jul. 28, 2020.
Prior Publication US 2022/0038469 A1, Feb. 3, 2022
Int. Cl. H04L 9/40 (2022.01)
CPC H04L 63/145 (2013.01) [H04L 63/0236 (2013.01); H04L 63/1416 (2013.01); H04L 63/1425 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method to facilitate domain reputation analysis and prevention of malicious attacks on a web service, the method comprising:
crawling web resources associated with the web service to obtain information about internal and external web assets associated with the web service;
utilizing headless browser automation with a security scanner browser extension to intercept responses from the internal and external web assets based on the obtained information;
dynamically injecting content security policy headers into the responses to determine dependency data associated with the internal and external web assets;
identifying the domains with which the internal and external web assets communicate based on the dependency data;
analyzing the domains to determine name server reputation, internet protocol (IP) address reputation, and hosting provider reputation associated with the domains;
generating individual domain reputation scores for each of the domains based on the name server reputation, IP address reputation, and hosting provider reputation associated with the domains; and
dynamically generating and deploying content security policies for the web service based on the individual domain reputation scores for each of the domains to protect the web service.