Patents Assigned to Mandiant Corporation
  • Method and system for analyzing data related to an event
    Patent number: 8566476
    Abstract: A system and method for analyzing data from a plurality of computer environments. A user may search for computer environments that meet a certain criterion. The computer environments are authenticated and data is copied from the computer environments to a memory location. The data may be marked so that a user may determine which computer environment provided the data. The user may add notations to the data during a review. Changes to data on the computer environments may be provided to a user using a syndication feed.
    Type: Grant
    Filed: February 1, 2008
    Date of Patent: October 22, 2013
    Assignee: Mandiant Corporation
    Inventors: Jason Shiffer, Matthew Frazier, Sean Cunningham, Scott Hogsten, Eric Helvey, Theodore Wilson
  • System and method for determining data entropy to identify malware
    Patent number: 8069484
    Abstract: Systems and methods for performing malware detection for determining suspicious data based on data entropy are provided. The method includes acquiring a block of data, calculating an entropy value for the block of data, comparing the entropy value to a threshold value, and recording the block of data as suspicious when the entropy value exceeds the threshold value. An administrator may then investigate suspicious data.
    Type: Grant
    Filed: January 25, 2007
    Date of Patent: November 29, 2011
    Assignee: Mandiant Corporation
    Inventors: Chad McMillan, Jason Garman