公开(公告)号：US12118497B2

公开(公告)日：2024-10-15

申请号：US17954320

申请日：2022-09-27

Applicant: Splunk Inc.

Inventor： Anupadmaja Raghavan ,  George Daloukov ,  Alok Anant Bhide ,  Ross Andrew Lazerowitz ,  Tristan Antonio Fletcher ,  Alan Vincent Hardin

IPC: G06Q10/06 ,  G06Q10/0639 ,  G06Q10/20 ,  H04L41/5006 ,  H04L41/5009

CPC classification number: G06Q10/06393 ,  G06Q10/20 ,  H04L41/5006 ,  H04L41/5009

Abstract: An automatic service monitor in an information technology environment has its operation controlled by information that, in part, defines entities that perform services and defines key performance indicators (KPIs) that indicate measures of performance of the services. Additional information controls the operation of the service monitor with respect to identifying and adapting for KPIs based on the non-normal data caused by maintenance work or other causes. Such adaptation may include changes in how reported information appears to the user.

公开(公告)号：USD1044856S1

公开(公告)日：2024-10-01

申请号：US29858419

申请日：2022-10-31

Applicant: SPLUNK Inc.

Designer： Tatsuya Hama ,  Ioan Popa ,  Melissa Hermanson ,  Viet Quoc Nguyen

Abstract: The FIGURE is a display screen or portion thereof with a graphical user interface for an application login page, showing our new design.
The surrounding rectangular box of broken lines shows a display screen or portion thereof and forms no part of the claimed design. The remaining broken lines show a graphical user interface for an application login page and form no part of the claimed design.

公开(公告)号：US20240320267A1

公开(公告)日：2024-09-26

申请号：US18673114

申请日：2024-05-23

Applicant: Splunk Inc.

Inventor： Ram Sriharsha

IPC: G06F16/901 ,  G06F9/38 ,  G06F9/54 ,  G06F16/14 ,  G06F16/16 ,  G06F16/22 ,  G06F16/23 ,  G06F16/242 ,  G06F16/2453 ,  G06F16/2455 ,  G06F16/2458 ,  G06F16/28 ,  G06F17/16 ,  G06F17/18 ,  G06F18/21 ,  G06F18/214 ,  G06N20/00 ,  G06N20/20

CPC classification number: G06F16/901 ,  G06F9/3885 ,  G06F9/544 ,  G06F16/144 ,  G06F16/156 ,  G06F16/168 ,  G06F16/2246 ,  G06F16/23 ,  G06F16/2379 ,  G06F16/242 ,  G06F16/24534 ,  G06F16/24568 ,  G06F16/2465 ,  G06F16/285 ,  G06F17/16 ,  G06F17/18 ,  G06F18/2148 ,  G06F18/2185 ,  G06N20/00 ,  G06N20/20 ,  G06F16/22 ,  G06F16/2264 ,  G06F16/2282

Abstract: Systems and methods are described for processing ingested data, detecting anomalies in the ingested data, and providing explanations of a possible cause of the detected anomalies as the data is being ingested. For example, a token or field in the ingested data may have an anomalous value. Tokens or fields from another portion of the ingested data can be extracted and analyzed to determine whether there is any correlation between the values of the extracted tokens or fields and the anomalous token or field having an anomalous value. If a correlation is detected, this information can be surfaced to a user.

公开(公告)号：US20240320231A1

公开(公告)日：2024-09-26

申请号：US18626007

申请日：2024-04-03

Applicant: Splunk Inc.

Inventor： Arindam Bhattacharjee ,  Sourav Pal ,  Srinivas Bobba

IPC: G06F16/2458 ,  G06F16/27

CPC classification number: G06F16/2471 ,  G06F16/278

Abstract: Systems and methods are described for distributed processing a query in a first query language utilizing a query execution engine intended for single-device execution. While distributed processing provides numerous benefits over single-device processing, distributed query execution engines can be significantly more difficult to develop that single-device engines. Embodiments of this disclosure enable the use of a single-device engine to support distributed processing, by dividing a query into multiple stages, each of which can be executed by multiple, concurrent executions of a single-device engine. Between stages, data can be shuffled between executions of the engine, such that individual executions of the engine are provided with a complete set of records needed to implement an individual stage. Because single-device engines can be significantly less difficult to develop, use of the techniques described herein can enable a distributed system to rapidly support multiple query languages.

公开(公告)号：US12088611B1

公开(公告)日：2024-09-10

申请号：US17573399

申请日：2022-01-11

Applicant: SPLUNK Inc.

Inventor： Cui Lin ,  Stanislav Miskovic

IPC: H04L9/40 ,  G06F18/214 ,  G06N20/00

CPC classification number: H04L63/1425 ,  G06F18/214 ,  G06N20/00 ,  H04L63/1416 ,  H04L63/1466 ,  H04L63/166 ,  H04L63/20

Abstract: A computerized method is disclosed that includes operations of obtaining historical network traffic and preparing a training set of data by: applying security rules to the historical network traffic data to obtain a first filtered subset of network transmissions representing a first set of beaconing candidates that is labeled to form a first set of labeled results, applying a clustering logic to the historical network traffic data to obtain a second filtered subset of network transmissions representing a second set of beaconing candidates that is labeled to form a second set of labeled results, applying a machine learning model to the historical network traffic data to label the historical network traffic forming a third set of labeled results, wherein the first, second and third sets of labeled results are augmented to form an augmented labeled training set, and training a machine learning model using the augmented labeled training set.

公开(公告)号：US12086045B1

公开(公告)日：2024-09-10

申请号：US17589833

申请日：2022-01-31

Applicant: Splunk, Inc.

Inventor： William Deaderick ,  William Stanton ,  Thomas Camp Vieth

IPC: G06F11/00 ,  G06F11/30 ,  G06F16/242 ,  G06F16/2458 ,  G06F18/21

CPC classification number: G06F11/3075 ,  G06F16/244 ,  G06F16/2477 ,  G06F18/2178

Abstract: A computerized method is disclosed for grouping alerts through machine learning. The method including receiving an alert to be assigned to any of a plurality of existing issues or to a newly created issue, wherein an issue is a grouping of alerts, determining a temporal distance between the alert and each of the existing issues, determining either of (i) a numerical distance between the alert and each of the existing issues for a particular numerical field, or (ii) a categorical distance between the alert and each of the existing issues for a particular categorical field, determining an overall distance between the alert and each of the existing issues, and assigning the alert to either (i) an existing issue having a shortest overall distance to the alert that satisfies one or more time constraints, or (ii) the newly created issue.

公开(公告)号：US12079304B1

公开(公告)日：2024-09-03

申请号：US17246228

申请日：2021-04-30

Applicant: SPLUNK INC.

Inventor： Abhinav Mishra ,  Ram Sriharsha ,  Sichen Zhong

IPC: G06F18/10 ,  G06F18/214 ,  G06Q10/04

CPC classification number: G06F18/10 ,  G06F18/214 ,  G06Q10/04

Abstract: Embodiments of the present disclosure are directed to facilitating performing online data forecasting. In operation, data decomposition of an incoming data point is performed to determine a trend component associated with the incoming data point. Such a trend component, and previous trend components, can be used to determine a trend component expected for a data point subsequent to the incoming data point. A seasonality component expected for the data point subsequent to the incoming data point can be identified, for example, based on a seasonality component associated with a previous corresponding data point. Thereafter, the expected trend and seasonality components can be used to predict the data point subsequent to the incoming data point. Such a data prediction can be performed in an online processing manner such that a subsequent data point is not used to decompose the incoming data point or forecast the data point.

公开(公告)号：US12072859B1

公开(公告)日：2024-08-27

申请号：US18050016

申请日：2022-10-26

Applicant: Splunk Inc.

Inventor： Ryan O'Connor

IPC: G06F3/04847 ,  G06F16/22 ,  G06F16/2458

CPC classification number: G06F16/22 ,  G06F3/04847 ,  G06F16/2474

Abstract: A computer system displays a graphical user interface (GUI) that includes data visualizations corresponding to data having timestamps within a time interval. A first type of input signal is mapped to a second type of input signal. The first type of input signal is associated with an input device communicatively coupled to the computer system. The second type of input signal is configured to operate a graphical user control of the GUI. Before mapping, the first type of input signal is configured to perform a function that is different from operation of the graphical user control. After receiving an input signal of the first type, an input signal of the second type is applied to the graphical user control based on the mapping. The time interval is adjusted, and the data visualizations are updated automatically to correspond to updated data having timestamps within the adjusted time interval.

公开(公告)号：US12067007B1

公开(公告)日：2024-08-20

申请号：US17874024

申请日：2022-07-26

Applicant: SPLUNK Inc.

Inventor： Jesse Brandau Miller ,  Marc V. Robichaud ,  Cory Eugene Burke

IPC: G06F7/00 ,  G06F16/242 ,  G06F16/2455 ,  G06F16/248

CPC classification number: G06F16/2425 ,  G06F16/2428 ,  G06F16/2455 ,  G06F16/248

Abstract: A method includes causing display to a user of at least one event of a first result set from a first pipelined search on events at an event source. Each event comprises a time stamp and a portion of machine data. A selection of a command is received from the user. The selection is to extend the first pipelined search with the selected command in a second pipelined search. The system selects between the first result set and the event source for execution of the second pipelined search based on an analysis of the selected command and at least one command of the first pipelined search. Based on the selecting being of the first result set, display to the user is caused of at least one event of a second result set from the execution of the second pipelined search on the first result set.

公开(公告)号：US20240273003A1

公开(公告)日：2024-08-15

申请号：US18605682

申请日：2024-03-14

Applicant: Splunk Inc.

Inventor： Ioannis Vlachogiannis ,  Vasileios Karampinas

IPC: G06F11/34 ,  G06F8/77 ,  G06F9/54 ,  G06F11/07 ,  G06F11/30

CPC classification number: G06F11/3495 ,  G06F9/542 ,  G06F11/0709 ,  G06F11/0715 ,  G06F11/0742 ,  G06F11/0775 ,  G06F11/3003 ,  G06F11/3013 ,  G06F11/302 ,  G06F11/3082 ,  G06F11/34 ,  G06F11/3409 ,  G06F11/3466 ,  G06F8/77 ,  G06F11/3093 ,  G06F11/3476 ,  G06F2201/86 ,  G06F2201/865 ,  G06F2201/88

Abstract: A quality score for a computer application release is determined using a first number of unique users who have launched the computer application release on user devices and a second number of unique users who have encountered at least once an abnormal termination with the computer application release on user devices. Additionally or optionally, an application quality score can be computed for a computer application based on quality scores of computer application releases that represent different versions of the computer application. Additionally or optionally, a weighted application quality score can be computed for a computer application by further taking into consideration the average application quality score and popularity of a plurality of computer applications.