-
公开(公告)号:US11636128B1
公开(公告)日:2023-04-25
申请号:US16513619
申请日:2019-07-16
申请人: Splunk Inc.
发明人: Nasim Bigdelu , Hema Krishnamurthy Mohan , Amin Moshgabadi , Clark Eugene Mullen , Siri Singamneni , Daniel Streit
IPC分类号: G06F16/248 , G06F16/242 , G06F9/451
摘要: Systems and methods are disclosed for allowing a user to view query results associated with a time range that is different from a time range indicated by a query. For example, a user interface (UI) data manager can receive a request for a panel of a workbook with a query that identifies the first time range. The UI data manager can obtain the panel, including the query and query results, and cause display of a panel view corresponding to the panel. The displayed query results may not correspond to the same time range as the literal time range indicated by the query. Rather, the query results may be the query results generated during an earlier time range that corresponds to the last time the query was run.
-
公开(公告)号:US11636116B2
公开(公告)日:2023-04-25
申请号:US17243156
申请日:2021-04-28
申请人: SPLUNK Inc.
IPC分类号: G06F16/22 , G06F16/242 , G06F16/2455 , G06F16/248 , H04L45/741 , H04L49/00 , H04L49/90 , H04L49/9005
摘要: Systems and methods are described for customizable data streams in a streaming data processing system. Routing criteria for the customizable data streams are defined by a user, an automated process, or any other process. The routing criteria can be defined using graphical controls. The streaming data processing system uses the routing criteria to determine data that should be used to populate a particular data stream. Further, processing pipelines are customized such that a particular processing pipeline can obtain data from a particular user defined data stream and write data to a particular user defined data stream. Data is routed through the user defined data streams and customized processing pipelines based on a data route. A data route for a set of data may include multiple user defined data streams and multiple processing pipelines. The data route can include a loop of processing pipelines and data streams.
-
3.发明授权公开(公告)号:US11625394B1
公开(公告)日:2023-04-11
申请号:US17653626
申请日:2022-03-04
申请人: Splunk Inc.
IPC分类号: G06F9/44 , G06F16/2452 , G06F16/21 , G06F8/77
摘要: Systems and methods are disclosed for supporting transformations of a graph generated from a query to event data. The event data may be unstructured event data, from which instances of a journey can be identified that represent sequences of related events describing actions performed in a computing environment. When evaluating journey instances, it can be helpful to visualize the instances as a graph. Depending on the instances viewed, a user may desire different modifications to the graph. While such modifications can be made when initially building instances from the unstructured event data, this can limit reuse of the resulting instances (since the modification would also be present when evaluating other subsets). To address this, embodiments of the present disclosure enable graph modifications to be applied to subsets of journey instances after building those instances from unstructured event data, increasing reuse of instances built from a query against the unstructured data.
-
公开(公告)号:US11621899B1
公开(公告)日:2023-04-04
申请号:US17835567
申请日:2022-06-08
申请人: Splunk Inc.
发明人: Vineetha Bettaiah , Tristan Antonio Fletcher , Ross Andrew Lazerowitz , Hemendra Singh Choudhary
IPC分类号: G06F16/22 , H04L43/04 , G06F16/28 , G06F16/2457 , G06F40/174 , G06F3/0482 , H04L67/1097 , G06F40/177
摘要: The operation of an automatic service monitoring system (SMS) is directed by stored control information. Methods and mechanisms are provided to create control information that directs operations of the SMS regarding the grouping together of related notable events for unified display and processing. The control information directs grouping operations that automatically correlate the events without requiring, for example, a set of declarative grouping rules.
-
公开(公告)号:US11620288B2
公开(公告)日:2023-04-04
申请号:US17652620
申请日:2022-02-25
申请人: Splunk Inc.
发明人: Alexandros Batsakis , Scott Calvert , Alexander Douglas James , Bei Li , Ashish Mathew , James Monschke , Sogol Moshtaghi , Christopher Madden Pride , Xiaowei Wang
IPC分类号: G06F16/00 , G06F16/2453 , G06F16/13 , G06F11/34 , G06F16/2455
摘要: Systems and methods are disclosed for mapping search nodes to a search head in a data intake and query system based on a tenant identifier in order to execute a query received by the data intake and query system. The mapping may allow same or similar search nodes to be used to execute queries that are associated with a particular tenant identifier, in order to take advantage of caching and local data stored with those search nodes. In some cases, search nodes can be mapped based on the tenant identifier using a hashing algorithm, such as a consistent hashing algorithm.
-
公开(公告)号:US11606379B1
公开(公告)日:2023-03-14
申请号:US17236890
申请日:2021-04-21
申请人: Splunk Inc.
摘要: Techniques are described for processing anomalies detected using user-specified rules with anomalies detected using machine-learning based behavioral analysis models to identify threat indicators and security threats to a computer network. In an embodiment, anomalies are detected based on processing event data at a network security system that used rules-based anomaly detection. These rules-based detected anomalies are acquired by a network security system that uses machine-learning based anomaly detection. The rules-based detected anomalies are processed along with machine learning detected anomalies to detect threat indicators or security threats to the computer network. The threat indicators and security threats are output as alerts to the network security system that used rules-based anomaly detection.
-
7.发明授权公开(公告)号:US11604799B1
公开(公告)日:2023-03-14
申请号:US16513556
申请日:2019-07-16
申请人: Splunk Inc.
发明人: Nasim Bigdelu , Hema Krishnamurthy Mohan , Amin Moshgabadi , Clark Eugene Mullen , Siri Singamneni , Daniel Streit
IPC分类号: G06F16/248 , G06F9/451 , G06F3/0482 , G06F3/0484 , G06F16/242
摘要: Systems and methods are disclosed for allowing a user to perform various actions in association with a panel. For example, a user interface (UI) data manager can cause display of, as part of a panel view associated with a panel, a user interface field that includes a query and a first display object that includes query results generated as a result of execution of the query. In response to a user input, the UI data manager can further cause display of a second display object that provides the user with a list of actions that can be performed in association with the panel. If a user selects an action, the UI data manager can perform the action and cause display of results of the action in the panel view. The UI data manager can further associate the results of the action with the panel corresponding to the panel view.
-
公开(公告)号:US11593477B1
公开(公告)日:2023-02-28
申请号:US16779465
申请日:2020-01-31
申请人: Splunk Inc.
发明人: Vadan Thimmegowda , Sourabh Satish , Tejas Wanjari
摘要: Techniques are described that enable an IT and security operations application to prioritize the processing of selected events for a defined period of time. Data is obtained reflecting activity within an IT environment, wherein the data includes a plurality of events each representing an occurrence of activity within the IT environment. A severity level is assigned to each event of the plurality of events, where the events are processed by the IT and security operations application in an order that is based at least in part on the severity level assigned to each event. Input is received identifying at least one event of the plurality of events for expedited processing to obtain a set of expedited events, and the identified events are processed by the IT and security operations application before processing events that are not in the set of expedited events.
-
公开(公告)号:US11580107B2
公开(公告)日:2023-02-14
申请号:US16398038
申请日:2019-04-29
申请人: Splunk Inc.
发明人: Sourav Pal , Arindam Bhattacharjee , Asha Andrade , Nikhil Roy
IPC分类号: G06F16/00 , G06F16/2455 , G06F9/50 , G06F16/22
摘要: Systems and methods are described for exporting bucket data from one or more buckets to one or more worker nodes. The system can identify data from different bucket data from buckets stored in a data intake and query system that is to be processed by one or more worker nodes. The system can allocate one or more execution resources, such as a processing pipeline, to process and export the bucket data from the buckets. The system can assign bucket data corresponding to individual buckets to the execution resource based on a bucket distribution policy. The indexer can export the bucket data to the worker nodes for further processing based on the bucket data-execution resource assignment.
-
公开(公告)号:US11574429B1
公开(公告)日:2023-02-07
申请号:US16399990
申请日:2019-04-30
申请人: SPLUNK INC.
发明人: Simon Tam , Everett Yip
IPC分类号: G06F40/103 , G06T11/60 , G06T3/40 , G06F9/451 , G06T3/20 , G06F40/106 , G06F40/197
摘要: A client device executes a display layout application that receives a size of each display item included in a set of display items. The set of display items is associated with a first frame included in a bounding box associated with a display screen. The display layout application determines a reference size based on the sizes of the set of display items. The display layout application determines a size of the first frame based on the reference size. The display layout application determines a position for a first display item included in the set of display items based on a position of the first frame within the bounding box. The display layout application generates a layout for display on the display screen, where the layout includes the first display item.
-
-
-
-
-
-
-
-
-
搜索结果
1602 条记录 (耗时 0.125 秒)