公开(公告)号：US12120124B1

公开(公告)日：2024-10-15

申请号：US17588843

申请日：2022-01-31

Applicant: Splunk Inc.

Inventor： Jacob Davis ,  Dekel Shahaff ,  Jeffrey Roecks ,  Sydney Flak ,  Navya Mehta ,  Ian Forrest ,  Sydney Karimi ,  Elton Xue

IPC: G06F8/20 ,  G06F8/30 ,  G06F8/33 ,  G06F8/41 ,  G06F8/71 ,  H04L9/40 ,  G06F8/72 ,  G06F8/77 ,  G06F11/34 ,  G06F11/36

CPC classification number: H04L63/105 ,  G06F8/30 ,  G06F8/71 ,  H04L63/102 ,  G06F8/33 ,  G06F8/72 ,  G06F8/77 ,  G06F11/3438 ,  G06F11/3688 ,  G06F11/3692

Abstract: Techniques are described for providing a built-in “app” editor for an information technology (IT) and security operations application that enables users to create, modify, and test operation of apps under development within the editor. Some IT and security operations applications enable users to extend the applications by adding connectivity to third party technologies to run custom actions. For example, a user might create a custom app to enable an IT and security operations application to connect to an external service providing information about malicious Internet Protocol (IP) addresses, to connect to a relevant cloud provider service, or to interact with a firewall or other type of computing device used in a user's computing environment. Given the broad set of technologies that can be orchestrated by an IT and security operations application, apps broadly enable users to add custom functionality to interface with virtually any technology of interest.

公开(公告)号：US11924284B1

公开(公告)日：2024-03-05

申请号：US18326830

申请日：2023-05-31

Applicant: Splunk Inc.

Inventor： Matthew Hanson ,  Jacob Davis ,  Zhi Peng Zhou ,  James Harris ,  Jacob Andrew Edward Moore ,  Austin Tyler Hariri ,  Shiying Tu ,  Daniel Trenkner ,  Kavita Varadarajan

IPC: H04L67/133

CPC classification number: H04L67/133

Abstract: Described herein are techniques are provided for enabling a security orchestration, automation, and response (SOAR) service to automatically manage apps used to interface with an integrated security operations service and other related devices and services. Further described herein is a SOAR app generator service or application used to automate the creation of apps for a SOAR service based on application programming interfaces (API) specifications for related devices or services, as well as visual playbook editor interfaces for a SOAR service that enable the configuration of complex action input parameters including arrays and objects.