US 12,067,126 B2
System and method for application security profiling
Vlad A Ionescu, Santa Clara, CA (US); Fabian Yamaguchi, Santa Clara, CA (US); Chetan Conikee, Santa Clara, CA (US); and Manish Gupta, Santa Clara, CA (US)
Assigned to ShiftLeft Inc., Santa Clara, CA (US)
Filed by ShiftLeft Inc., Santa Clara, CA (US)
Filed on Jul. 20, 2022, as Appl. No. 17/869,742.
Application 17/869,742 is a continuation of application No. 16/912,189, filed on Jun. 25, 2020, granted, now 11,436,337.
Application 16/912,189 is a continuation of application No. 15/994,076, filed on May 31, 2018, granted, now 10,740,470, issued on Aug. 11, 2020.
Claims priority of provisional application 62/512,728, filed on May 31, 2017.
Prior Publication US 2023/0009273 A1, Jan. 12, 2023
Int. Cl. H04L 29/06 (2006.01); G06F 21/56 (2013.01); G06F 21/57 (2013.01)
CPC G06F 21/577 (2013.01) [G06F 21/563 (2013.01); G06F 2221/033 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A system for application security profiling comprising:
one or more computer-readable mediums storing instructions that, when executed by one or more computer processors, cause a computing platform to perform operations comprising:
extracting a code property graph from at least a subset of a code base comprises initially extracting an abstract syntax tree subcomponent, control flow graph subcomponent, and a data flow graph subcomponent from the code base, and extracting a code property graph from the abstract syntax tree subcomponent, the control flow graph subcomponent, and the data flow graph subcomponent;
generating a code profile from the code property graph, wherein generating the code profile occurs prior to a compilation of the code base; and
applying the code profile, comprising of identifying sections of interest within the code base.