Abstract: A method including configuring a user device to receive encrypted content and an encrypted assigned private key associated with the encrypted content; configuring the user device to decrypt the encrypted assigned private key based on utilizing a master key to determine a decrypted assigned private key; configuring the user device to determine a combination decryption key based on utilizing the decrypted assigned private key and an access public key associated with the encrypted content; configuring the user device to decrypt an encrypted access private key associated with the access public key to determine a decrypted access private key; and configuring the user device to decrypt the encrypted content based on utilizing the decrypted access private key is disclosed. Various other aspects are contemplated.

Abstract: A method for utilizing, by a VPN server, a first exit IP address to transmit a first query to a host device for retrieving data of interest requested by the user device; determining, by the VPN server based at least in part on transmitting the first query, that the host device has blocked the first exit IP address; establishing, by the VPN server based at least in part on determining that the host device has blocked the first exit IP address, a connection with a secondary server to enable communication of information between the VPN server and the secondary server; and transmitting, by the VPN server to the secondary server, a message identifying the host device and the data of interest to be retrieved from the host device to enable the secondary server to utilize a second exit IP address to transmit a second query to request the data of interest is disclosed. Various other aspects are contemplated.

Abstract: A method for configuring a first user device to generate a sharing encryption key based at least in part on combining a folder access private key associated with a folder and an assigned public key associated with a second user device; configuring the first user device to encrypt the folder access private key associated with the folder utilizing the sharing encryption key; and configuring the first user device to transmit the encrypted folder access private key to enable the second user device to access the folder is disclosed. Various other aspects are contemplated.

Abstract: Systems and methods for optimal load distribution and data processing of a plurality of files in anti-malware solutions are provided herein. In some embodiments, the system includes: a plurality of node processors; a control processor programmed to: receiving a plurality of files used for malware analysis and training of anti-malware ML models; separating the plurality of files into a plurality of subsets of files based on byte size of each of the files, such that processing of each subset of files produces similar workloads amongst all available node processors; distributing the plurality of subsets of files amongst all available node processors such that each node processor processes its respective subset of files in parallel and within a similar timeframe as the other node processors; and receiving, by the control processor, a report of performance and/or anti-malware processing results of the subset of files performed from each node processor.

Abstract: A method in a virtual private network (VPN) environment is disclosed. A user device transmits, to a VPN server before establishment of a VPN connection between the user device and the VPN server, an initiation request to establish the VPN connection. The initiation request includes remote content information indicating remote content that is unavailable in a geographic location of the user device. The user device receives, from the VPN server after establishment of the VPN connection, the remote content based at least in part on a configuration of domain name services (DNS) settings associated with the VPN connection to utilize a remote DNS server that is capable of obtaining the remote content. Various other aspects are contemplated.

Abstract: An intermediary between a client and a target receives response data from the target based on a first request from the client to the target. The intermediary includes in the response data an endpoint interpretable by the client as being available at the target. The intermediary receives a second request from the client directed to the target at the endpoint. The intermediary processes the second request directed to the target without forwarding the second request to the target.

Abstract: A method and apparatus for testing a malware detection machine learning model. The method trains a malware detection model using a first dataset containing malware samples from a particular time period. The trained model is then tested using a second dataset that is a time shifted version of the first dataset.

Abstract: A method for identifying a malicious connection between a client device and a server includes obtaining handshake parameters for the client device and the server responsive to the client device initiating a connection with the server, generating a feature set by extracting features from the handshake parameters, predicting a maliciousness of the connection using a machine learning model, where the extracted features are provided as inputs to the machine learning model, and automatically initiating a corrective action if the connection is predicted to be malicious.

Abstract: A method including determining, by a first device, an assigned key pair including an assigned public key and an assigned private key; determining, by the first device for a folder associated with encrypted content, a folder access public key and a folder access private key; determining, by the first device for a group, a group access public key and a group access private key; encrypting, by the first device, the folder access private key by utilizing the assigned public key; encrypting, by the first device, the folder access private key by utilizing the group access public key; and accessing, by a second device, the folder based on decrypting the folder access private key by utilizing the group access private key or based on decrypting the folder access private key by utilizing the assigned private key, the first device being different than the second device. Other aspects are contemplated.

Abstract: A method in a mesh network including a first device and a second device, the method including receiving, by the first device from a third-party application installed on the first device, an initiation packet including information to be received by the second device, the initiation packet indicating a meshnet IP address assigned to the second device as a destination address; transmitting, by the first device via a meshnet connection between the first device and the second device, the initiation packet to the second device; receiving, by the first device via the meshnet connection and based at least in part on transmitting the initiation packet, a response packet from the second device, the response packet including information to be received by the third-party application; and transmitting, by the first device, the response packet to the third-party application is disclosed. Various other aspects are contemplated.

Abstract: The present disclosure discloses configuring a device to receive, from a transmitting source application, a transmission packet to be transmitted to a destination application; configuring the device to determine connection information included in the transmission packet, the connection information indicating one or more parameters to be utilized by the destination application to connect with the transmitting source application; configuring the device to determine a fingerprint based at least in part on the connection information; configuring the device to compare the determined fingerprint with a trusted fingerprint stored in correlation with an identity of a trusted source application that is known to be unaffected by malware; and configuring the device to process the transmission packet based at least in part on a result of comparing the determined fingerprint with the stored fingerprint is disclosed. Various other aspects are contemplated.

Abstract: An intended network usage is received. An association between the intended network usage and a virtual private network (VPN) server is retrieved. Responsive to determining not to use the VPN server, a new VPN server is obtained from a central server. An encrypted tunnel is established with the new VPN server. An association is stored between the new VPN server and the intended network usage. A communication directed to a network server is encrypted to obtain an encrypted communication. The encrypted communication is transmitted via the encrypted tunnel.

Abstract: A method including transmitting, by a device to a storage server, a request to receive encrypted content and one or more encrypted keys stored in association with the encrypted content; receiving, by the device from the storage server, the encrypted content and the one or more encrypted keys; receiving, by the device, a master string of alphanumeric characters; determining, by the device, a master key based at least in part on the master string; decrypting, by the device based at least in part on utilizing the master key, an encrypted assigned private key associated with the device to determine an assigned private key, the encrypted assigned private key being included in the one or more encrypted keys; and decrypting, by the device, the encrypted content based at least in part on utilizing the assigned private key is disclosed. Various other aspects are contemplated.

Abstract: A method including transmitting, by an infrastructure device to a distributor device, an invitation link to enable the distributor device to distribute to a user device network services provided by the infrastructure device; transmitting, by the infrastructure device to the distributor device based on the distributor device activating the invitation link, seed information to be utilized by the distributor device to determine a distributor key pair including a distributor public key and a distributor private key; receiving, by the infrastructure device from the distributor device, an action request related to an action to be performed regarding the network services, a portion of the action request being signed based on utilizing the distributor private key; and enabling, by the infrastructure device, performance of the action regarding the network services based on validating the action request by utilizing the distributor public key is disclosed.

Abstract: The present disclosure discloses determining, by a first device, an access key pair associated with encrypted content, the access key pair including a content access public key and a content access private key; receiving, by the first device, a public key associated with a second device; encrypting, by the first device, the content access private key based at least in part on utilizing the content access private key and the public key associated with the second device; and transmitting, by the first device, the encrypted content access private key to enable the second device to access the encrypted content. Various other aspects are contemplated.

Abstract: A method for configuring a VPN server to receive a first data request to retrieve first data of interest from a first host device; configuring the VPN server to utilize a first exit IP address to transmit a first query for retrieving the first data of interest from the first host device; configuring the VPN server to determine, based on transmitting the first query, that the first exit IP address is blocked by the first host device; configuring the VPN server to suspend, based on determining that the first exit IP address is blocked, utilization of the first exit IP address for retrieving the first data of interest from the first host device; and configuring the VPN server to utilize the first exit IP address to transmit a second query for retrieving second data of interest from a second host device is disclosed. Various other aspects are contemplated.

Abstract: A method including monitoring, by a first device in communication with a second device in a mesh network, a triggering event associated with optimizing a meshnet connection utilized by the first device and the second device to communicate meshnet data; comparing, by the first device based at least in part on determining an occurrence of the triggering event, a threshold value with a measured value associated with a communication condition associated with communicating the meshnet data via the meshnet connection; and transmitting, by the first device to the second device based at least in part on a result of the comparing, coordination information including identification information that identifies an optimal midpath node and timing information that indicates a connection time associated with connecting with the optimal midpath node for optimizing the meshnet connection. Various other aspects are contemplated.

Abstract: A method including analyzing affected data known to include harmful content, and clean data known to be free of the harmful content; determining, based on analyzing the affected data and the clean data, harmful traits that appear in the affected data with a frequency that satisfies a threshold frequency, and clean traits that appear in the clean data with the frequency that satisfies the threshold frequency; mixing the harmful traits and the clean traits to determine a mixed set; analyzing the affected data based on utilizing the mixed set to determine a harmful pattern that indicates characteristics associated with the harmful traits and the clean traits; and transmitting pattern information indicating the harmful pattern to enable the user device to determine whether given data includes the harmful content is disclosed. Various other aspects are contemplated.

Abstract: A method including receiving, by a processor during communication between a first device and a second device in a mesh network, a first request from the first device to determine a current first communication parameter associated with the first device; determining, by the processor based at least in part on receiving the first request, the current first communication parameter associated with the first device; and transmitting, by the processor to the first device utilizing the current first communication parameter, information indicating the current first communication parameter. Various other aspects are contemplated.

Abstract: The disclosure describes transmitting, by a user device to an infrastructure device, access information to enable authentication of the user device; calculating, by the user device, a hash of private data, the hash of the private data to be utilized for comparison with a hash of breached data that is compromised due to a data breach, the private data being different from the access information; verifying, by the user device based at least in part on communicating verification information with the infrastructure device, that the user device is authorized to have access to a plaintext version of the private data; transmitting, by the user device to the infrastructure device, the hash of the private data; and receiving, by the user device from the infrastructure device, a notification indicating a result of a comparison of the hash of the private data with the hash of the breached data.