US 12,468,807 B1
Techniques for control plane level containment
Ron Konigsberg, Tel Aviv (IL); Matan Haim, Tel Aviv (IL); Itay Harel, Tel Aviv (IL); Itamar Gilad, Tel Aviv (IL); and Arik Nemtsov, New York, NY (US)
Assigned to Wiz, Inc., New York, NY (US)
Filed by Wiz, Inc., New York, NY (US)
Filed on Apr. 24, 2025, as Appl. No. 19/188,648.
Int. Cl. G06F 21/56 (2013.01); G06F 21/55 (2013.01)
CPC G06F 21/562 (2013.01) [G06F 21/554 (2013.01)] 17 Claims
OG exemplary drawing
 
1. A method for control plane containment of cybersecurity threats, comprising:
generating at least a detection rule for application by a sensor configured to detect events;
configuring the sensor to deploy on a resource in a cloud computing environment;
generating the at least a detection rule based on static analysis of a code object utilized in deploying the resource;
deploying the sensor on the resource, wherein the sensor is configured to:
apply the at least a detection rule on a detected event;
detect an event which triggers the at least a detection rule, the event corresponding to a process running on the resource; and
halt execution of the process.