US 12,423,426 B1
System and method for tracing cloud computing environment deployments to code objects utilizing unique fingerprints
Assaf Segal, Tel Aviv (IL); Amir Lande Blau, Tel Aviv (IL); Tal Gilady, Tel Aviv (IL); Ami Luttwak, Binyamina (IL); and Arnon Trabelsi, Tel Aviv (IL)
Assigned to Wiz, Inc., New York, NY (US)
Filed by Wiz, Inc., New York, NY (US)
Filed on Nov. 20, 2024, as Appl. No. 18/954,023.
Int. Cl. G06F 21/56 (2013.01)
CPC G06F 21/565 (2013.01) [G06F 2221/033 (2013.01)] 19 Claims
OG exemplary drawing
 
1. A method for improving inspection of software containers deployed in a cloud computing environment, comprising:
detecting a plurality of configuration files, each configuration file corresponding at least to a software container image, the software container image corresponding to a software container deployed in the cloud computing environment;
parsing a first configuration file of the plurality of configuration files to detect a first plurality of commands;
generating a first fingerprint based at least on the detected first plurality of commands;
parsing a second configuration file of the plurality of configuration files to detect a second plurality of commands;
generating a second fingerprint based at least on the detected second plurality of commands;
determining that the first configuration file matches the second configuration file in response to detecting a match based on the first fingerprint and the second fingerprint;
determining that the first configuration file mismatches the second configuration file in response to detecting a mismatch based on the first fingerprint and the second fingerprint; and
inspecting the first configuration file for a cybersecurity object in response to determining that the first configuration file matches the second configuration file.