US 12,493,721 B2
Computer device and method for managing privilege delegation
John Goodridge, Cheshire (GB)
Assigned to Avecto Limited, Manchester (GB)
Filed by Avecto Limited, Manchester (GB)
Filed on Jun. 30, 2023, as Appl. No. 18/345,677.
Application 18/345,677 is a continuation of application No. 18/319,198, filed on May 17, 2023.
Application 18/319,198 is a continuation of application No. 17/343,120, filed on Jun. 9, 2021, granted, now 11,687,674, issued on Jun. 27, 2023.
Application 17/343,120 is a continuation of application No. 16/142,894, filed on Sep. 26, 2018, granted, now 11,062,055, issued on Jul. 13, 2021.
Claims priority of application No. 1715628 (GB), filed on Sep. 27, 2017.
Prior Publication US 2023/0342498 A1, Oct. 26, 2023
This patent is subject to a terminal disclaimer.
Int. Cl. G06F 21/62 (2013.01)
CPC G06F 21/6281 (2013.01) [G06F 21/629 (2013.01)] 19 Claims
OG exemplary drawing
 
1. A computing device, comprising:
memory configured to store an operating system; and
processing circuitry operatively connected to the memory and configured to:
modify a virtual method table to point to a hooking function associated with an agent plugin, wherein the agent plugin is configured to intercept requests relating to a file using the hooking function;
intercept a request in a user account of a logged-in user to execute therein a command on the file according to first privileges assigned thereto;
extract file information for the file from the intercepted request and redirect the file information to an agent service cooperating with the operating system;
determine whether to execute the command on the file in the user account according to second privileges different from the first privileges based on responses to a set of custom messages defined in a policy file; and
responsive to determining to execute the command on the file in the user account according to the second privileges, cause the command to be executed on the file in the user account according to the second privileges.