公开(公告)号：US12028222B1

公开(公告)日：2024-07-02

申请号：US17560747

申请日：2021-12-23

Applicant: Splunk Inc.

Inventor： Atif Mahadik ,  Ryan Connor Means ,  Govind Salinas ,  Sourabh Satish

IPC: H04L41/14 ,  H04L41/0631 ,  H04L41/0654 ,  H04L41/22

CPC classification number: H04L41/145 ,  H04L41/0636 ,  H04L41/0645 ,  H04L41/0654 ,  H04L41/22

Abstract: Described herein are improvements for generating courses of action for an information technology (IT) environment. In one example, a method includes identifying a first course of action for responding to an incident type in an information technology environment and generating a simulated incident associated with the incident type. The method further includes initiating performance of the first course of action based on the generation of the simulated incident. The method also includes, upon reaching a particular step of the first course of action that prevents the performance of the first course of action from proceeding, providing a first simulated result that allows the performance of the first course of action to proceed.

公开(公告)号：US11714683B1

公开(公告)日：2023-08-01

申请号：US17163320

申请日：2021-01-29

Applicant: Splunk Inc.

Inventor： Jeffery Roberts ,  Matthew Hanson ,  Ryan Connor Means ,  Jeffrey Roecks ,  Taotao Yu

IPC: G06F15/173 ,  G06F9/50 ,  G06F9/455

CPC classification number: G06F9/5027 ,  G06F9/45558 ,  G06F2009/45562 ,  G06F2009/45587

Abstract: A playbook execution architecture used to efficiently execute playbooks by distributing the execution of playbook function blocks to multiple independent “worker” sub-processes is described. Each worker process hosts an independent execution environment used to execute playbook function blocks independently from other worker processes, where each worker process can host an execution environment that is the same as or different from execution environments hosted by other work processes, enabling the playbook execution engine to support function blocks written in multiple different programming language versions or programming languages entirely. The described playbook execution architecture enables an IT and security operations application to vertically scale the computing resources used to execute playbooks, provides users with more control over an amount of computing resources devoted to the execution of playbooks, and enables more expressiveness in the types of actions and efficiency of playbooks by providing support for multiple programming languages and programming language versions.

公开(公告)号：US11240120B2

公开(公告)日：2022-02-01

申请号：US17222785

申请日：2021-04-05

Applicant: Splunk Inc.

Inventor： Atif Mahadik ,  Ryan Connor Means ,  Govind Salinas ,  Sourabh Satish

IPC: H04L12/24

Abstract: Described herein are improvements for generating courses of action for an information technology (IT) environment. In one example, a method includes identifying a first course of action for responding to an incident type in an information technology environment and generating a simulated incident associated with the incident type. The method further includes initiating performance of the first course of action based on the generation of the simulated incident. The method also includes, upon reaching a particular step of the first course of action that prevents the performance of the first course of action from proceeding, providing a first simulated result that allows the performance of the first course of action to proceed.

公开(公告)号：US20210226852A1

公开(公告)日：2021-07-22

申请号：US17222785

申请日：2021-04-05

Applicant: Splunk Inc.

Inventor： Atif Mahadik ,  Ryan Connor Means ,  Govind Salinas ,  Sourabh Satish

IPC: H04L12/24

Abstract: Described herein are improvements for generating courses of action for an information technology (IT) environment. In one example, a method includes identifying a first course of action for responding to an incident type in an information technology environment and generating a simulated incident associated with the incident type. The method further includes initiating performance of the first course of action based on the generation of the simulated incident. The method also includes, upon reaching a particular step of the first course of action that prevents the performance of the first course of action from proceeding, providing a first simulated result that allows the performance of the first course of action to proceed.

公开(公告)号：US10985994B1

公开(公告)日：2021-04-20

申请号：US16051378

申请日：2018-07-31

Applicant: Splunk Inc.

Inventor： Atif Mahadik ,  Ryan Connor Means ,  Govind Salinas ,  Sourabh Satish

IPC: H04L12/24

Abstract: Described herein are improvements for generating courses of action for an information technology (IT) environment. In one example, a method includes identifying a first course of action for responding to an incident type in an information technology environment and generating a simulated incident associated with the incident type. The method further includes initiating performance of the first course of action based on the generation of the simulated incident. The method also includes, upon reaching a particular step of the first course of action that prevents the performance of the first course of action from proceeding, providing a first simulated result that allows the performance of the first course of action to proceed.