| CPC G06F 21/563 (2013.01) [G06F 21/568 (2013.01); G06F 2221/034 (2013.01)] | 20 Claims |
|
1. A system, comprising:
a microprocessor; and
a computer readable medium, coupled with the microprocessor and comprising microprocessor readable and executable instructions that, when executed by the microprocessor, cause the microprocessor to:
scan a software build environment for one or more potentially malicious code paths;
in response to scanning the software build environment for the one or more potentially malicious code paths, identify the one or more potentially malicious code paths,
wherein at least one of the one or more potentially malicious code paths is identified as being malicious based on comparing a hash of the at least one of the one or more potentially malicious code paths with a known hash of a legitimate version of a code path for the at least one of the one or more potentially malicious code paths, and
wherein the identified one or more potentially malicious code paths comprise at least one of: a typo squat code path, a dependency confusion code path, and a brandjack code path; and
in response to identifying the one or more potentially malicious code paths, the microprocessor
denies the start of a build process.
|