Real Time Touch



new TOP 200 Companies filing patents this week

new Companies with the Most Patent Filings (2010+)




Real Time Touch

Splunk Inc patents


Recent patent applications related to Splunk Inc. Splunk Inc is listed as an Agent/Assignee. Note: Splunk Inc may have other listings under different names/spellings. We're not affiliated with Splunk Inc, we're just tracking patents.

ARCHIVE: New 2018 2017 2016 2015 2014 2013 2012 2011 2010 2009 | Company Directory "S" | Splunk Inc-related inventors


Proactive monitoring tree providing pinned performance information associated with a selected node

The disclosed embodiments relate to a system that displays performance data for a computing environment. During operation, the system first determines values for a performance metric for a plurality of entities that comprise the computing environment. Next, the system displays the computing environment as a set of nodes representing the... Splunk Inc

Hash bucketing of data

The disclosed embodiments include a method performed by a data intake and query system. The method includes ingesting metrics including respective key values and respective measured values, where the respective key values include a primary key value of a selected primary key. The method further includes generating a hash value... Splunk Inc

Resource allocation for multiple datasets

Systems and methods are disclosed for processing queries against multiple dataset sources. One dataset source can include indexers that index and store data. The system can receive a query that identifies a set of data to be processed and a manner of processing the set of data. The set of... Splunk Inc

External dataset capability compensation

Systems and methods are disclosed for processing queries against an external data source utilizing dynamically allocated partitions operating on one or more worker nodes. The external data source can include data that has not been processed by the system. To query the external data source, a query coordinator can generate... Splunk Inc

Dynamic resource allocation for common storage query

Systems and methods are disclosed for processing queries against a common storage utilizing dynamically allocated partitions operating on one or more worker nodes. The common storage can include one or more data stores, which collectively contain a data set divided across multiple buckets of data. To query the common storage,... Splunk Inc

Query processing using query-resource usage and node utilization data

Systems and methods are disclosed for processing queries against one or more dataset sources. The system tracks query resource data and resource utilization data. The query-resource usage data can indicate resources used to execute queries. The node resource utilization data can indicate current utilization of nodes in the system. Upon... Splunk Inc

Techniques for generating structured metrics from ingested events

The disclosed embodiments include a method performed by a data intake and query system. The method includes ingesting data including raw data obtained over a computer network from a plurality of remote computer systems, and generating events, where each event includes a segment of the raw data and a respective... Splunk Inc

Data conditioning for dataset destination

Systems and methods are disclosed for processing queries against one or more dataset sources utilizing dynamically allocated partitions operating on one or more worker nodes. The results of the processing are stored in a dataset destination. The queries can identify data in the one or more dataset sources for processing... Splunk Inc

Storing and querying metrics data

The disclosed embodiments include a method performed by a data intake and query system to store and query metrics data. The method includes ingesting metrics, where each metric includes key values and numerical value indicative of a measured characteristic of a computing resource. The method further includes populating a first... Splunk Inc

In-memory metrics catalog

The disclosed embodiments include a method performed by a data intake and query system. The method includes populating each metric including a measure value, cataloging metadata in an in-memory metrics catalog, where the metadata is related to the metrics. The method further includes receiving a search query including search criteria,... Splunk Inc

Metrics-aware user interface

The disclosed embodiments include a method performed by a data intake and query system. The method includes providing a user interface enabling access to a metrics store, where the metrics store maintains metrics stored in an index, each metric represents a measured value taken of a computing device, and the... Splunk Inc

Real-time search techniques

The disclosed embodiments include a method performed by a data intake and query system. The method includes receiving a real-time search query including search criteria, and receiving a stream of metrics, where each metric includes a measured value taken of a computing device. The method further includes filtering the metrics... Splunk Inc

Metrics store system

The disclosed embodiments include a method performed by a data intake and query system. The method includes ingesting each metric including at least one key value and a measured value taken of a computing resource, and storing each metric in an index of a metrics store, where the index defines... Splunk Inc

Clustering events based on extraction rules

Systems and methods include causing presentation of a first cluster in association with an event of the first cluster, the first cluster from a first set of clusters of events. Each event includes a time stamp and event data. Based on the presentation of the first cluster, an extraction rule... Splunk Inc

Query acceleration data store

Systems and methods for a data index and query system that utilize a query acceleration data store. An example method includes receiving a query identifying a set of data to be processed and a manner of processing the set of data. A query processing scheme for obtaining and processing the... Splunk Inc

Multi-layer partition allocation for query execution

Systems and methods are disclosed for processing and executing queries against one or more dataset sources, where the queries identify a set of data to be processed and a manner of processing the set of data. To query the dataset sources, a query coordinator generates a query processing scheme that... Splunk Inc

Dynamic resource allocation for real-time search

Systems and methods are disclosed for utilizing an ingested data buffer operating according to a publish-subscribe messaging model as an intake mechanism for a query system. Data from various sources can be placed into the data buffer according to different topics. Indexers can subscribe to these topics in order to... Splunk Inc

Techniques for ingesting metrics data

The disclosed embodiments include a method performed by a data intake and query system. The method includes ingesting collected data including metrics data including key values and numerical values, where each numerical value is indicative of a measured characteristic of a computing resource (e.g., device), and populating a first portion... Splunk Inc

Managing process analytics across process components

Embodiments of the present invention are directed to managing process analytics across process components. In some embodiments, an indication of a state of a process instance associated with a process is determined by querying a process engine. In accordance with the indication of the state of the process instance, an... Splunk Inc

Automatically generating field extraction recommendations

Systems and methods include obtaining a set of events, each event in the set of events comprising a time-stamped portion of raw machine data, the raw machine data produced by one or more components within an information technology or security environment and reflects activity within the information technology or security... Splunk Inc

Generating augmented process models for process analytics

Embodiments of the present invention are directed to generating augmented process models for use in process analytics. In one embodiment, a process model, search indicators, composite attributes, and relationship indicators are received. The process model defines a process and includes a plurality of components of the process. Search indicators indicate... Splunk Inc

Configuring modular alert actions and reporting action performance information

Techniques and mechanisms are disclosed for configuring actions to be performed by a network security application in response to the detection of potential security incidents, and for causing a network security application to report on the performance of those actions. For example, users may use such a network security application... Splunk Inc

Correlating forensic data collected from endpoint devices with other non-forensic data

Techniques and mechanisms are disclosed enabling efficient collection of forensic data from client devices, also referred to herein as endpoint devices, of a networked computer system. Embodiments described herein further enable correlating forensic data with other types of non-forensic data from other data sources. A network security application described herein... Splunk Inc

Managing the collection of forensic data from endpoint devices

Techniques and mechanisms are disclosed enabling efficient collection of forensic data from client devices, also referred to herein as endpoint devices, of a networked computer system. Embodiments described herein further enable correlating forensic data with other types of non-forensic data from other data sources. A network security application described herein... Splunk Inc

Data visualization in a dashboard display using panel templates

Systems and methods provide a platform of at least partially pre-defined panel templates that a user can select and manipulate to customize the visualization of data of interest within an interactive dashboard. Each panel template may be defined by a developer in advance to include a set of inputs, a... Splunk Inc

Defining a new correlation search based on fluctuations in key performance indicators displayed in graph lanes

A system, method and graphical user interface (GUI) for creating a new correlation search based on fluctuations in key performance indicators (KPIs) displayed in a set of graph lanes. The graph lanes may provide graphical visualizations of the KPIs associated with one or more services and may assist a user... Splunk Inc

Monitoring data queues and providing alerts

A computer-implemented method, system, and computer-readable media are disclosed herein. In embodiments, the computer-implemented method may entail receiving, by a data service, live data associated with an entity. The entity may be, for example, a customer of the data service. The method may then route the live data to a... Splunk Inc

Storyboard displays of information technology investigative events along a timeline

Techniques and mechanisms are disclosed that enable network security analysts and other users to efficiently conduct network security investigations and to produce useful representations of investigation results. As used herein, a network security investigation generally refers to an analysis by an analyst (or team of analysts) of one or more... Splunk Inc

Configuring the generation of event data based on a triggering search query

The disclosed embodiments provide a system that facilitates the processing of network data. During operation, the system provides a risk-identification mechanism for identifying a security risk from time-series event data generated from network packets captured by one or more remote capture agents distributed across a network. Next, the system provides... Splunk Inc

Identity resolution in data intake of a distributed data processing system

A security platform employs a variety techniques and mechanisms to detect security related anomalies and threats in a computer network environment. The security platform is “big data” driven and employs machine learning to perform security analytics. The security platform performs user/entity behavioral analytics (UEBA) to detect the security related anomalies... Splunk Inc

Instantiating data queues for management of remote data stores

A computer-implemented method, system, and computer-readable media are disclosed herein. In embodiments, the computer-implemented method may entail receiving, by a data service, live data associated with an entity. The entity may be, for example, a customer of the data service. The method may then route the live data to a... Splunk Inc

Defining fields from particular occurences of field labels in events

First one or more values are extracted from a plurality of events using a first extraction rule. The extracted first one or more values are assigned to a first field of the plurality of events as a first set of field-data item pairs and a field label is assigned to... Splunk Inc

Central registry for binding features using dynamic pointers

A first feature (e.g., chart or table) includes a reference to a dynamic pointer. Independently, the pointer is defined to point to a second feature (e.g., a query). The first feature is automatically updated to reflect a current value of the second feature. The reference to the pointer and pointer... Splunk Inc

Monitoring it services from machine data with time varying static thresholds

One or more processing devices derive values indicative of various aspects of how a particular service in an information technology (IT) environment is performing at a point in time or for a period of time. The values are derived by a search query over machine data associated with the one... Splunk Inc

User activity monitoring

Systems and methods are disclosed for associating an entity with a risk score that may indicate a security threat associated with the entity's activity. An exemplary method may involve monitoring the activity of a subset of the set of entities (e.g., entities included in a watch list) by executing a... Splunk Inc

02/22/18 / #20180053342

Efficient polygon-clipping technique to reduce data transfer requirements for a viewport

A system that displays a set of polygons is described. This system obtains a set of line segments that defines the set of polygons. The system forms a horizontal index that keeps track of where line segments vertically project onto a horizontal reference line and similarly forms a vertical index... Splunk Inc

02/22/18 / #20180054377

Monitoring network traffic in association with an application

Various methods and systems for facilitating network traffic monitoring in association with an application running on a client device are provided. In this regard, aspects of the invention facilitate monitoring network traffic being transmitted to and/or from a client device, such as a mobile device, so that network performance can... Splunk Inc

02/22/18 / #20180054452

Model workflow control in a distributed computation system

A security platform employs a variety techniques and mechanisms to detect security related anomalies and threats in a computer network environment. The security platform is “big data” driven and employs machine learning to perform security analytics. The security platform performs user/entity behavioral analytics (UEBA) to detect the security related anomalies... Splunk Inc

02/22/18 / #20180054474

Dynamically instantiating and terminating data queues

A computer-implemented method, system, and computer-readable media are disclosed herein. In embodiments, the computer-implemented method may entail receiving, by a data service, live data associated with an entity. The entity may be, for example, a customer of the data service. The method may further include determining that a dual-queue node... Splunk Inc

02/15/18 / #20180046829

Anonymizing machine data events

Components of a system for generating anonymized data from timestamped event data are disclosed. The generation of anonymized data is performed in accordance with an anonymization configuration. The anonymization configuration includes information regarding the source of the event data, particulars about the anonymization process that transforms the clear event data... Splunk Inc

02/15/18 / #20180048741

Configuring generation of multiple event streams from a packet flow

The disclosed embodiments provide a system that processes network data. During operation, the system obtains, at a remote capture agent, a first protocol classification for a first packet flow captured by the remote capture agent. Next, the system uses configuration information associated with the first protocol classification to build a... Splunk Inc

02/08/18 / #20180041402

Monitoring service-level performance using key performance indicators derived from machine data

One or more processing devices create one or more entity definitions that each associate an entity with machine data pertaining to that entity and create a service definition for a service provided by one or more entities. The service definition includes an entity definition for each of the one or... Splunk Inc

02/01/18 / #20180032363

Systems and methods for determining parent states of parent components in a virtual-machine environment based on performance states of related child components and component state criteria during a user-selected time period

Techniques promote monitoring of hypervisor systems by presenting dynamic representations of hypervisor architectures that include performance indicators. A reviewer can interact with the representation to progressively view select lower-level performance indicators. Higher level performance indicators can be determined based on lower level state assessments. A reviewer can also view historical... Splunk Inc

02/01/18 / #20180032557

Event-based correlation of non-text machine data

Described herein are technologies that facilitate effective use (e.g., indexing and searching) of non-text machine data (e.g., audio/visual data) in an event-based machine-data intake and query system.... Splunk Inc

02/01/18 / #20180032570

Search point management

A method includes causing display to a user of at least one event of a first result set from a first pipelined search on events at an event source. Each event comprises a time stamp and a portion of machine data. A selection of a command is received from the... Splunk Inc

02/01/18 / #20180032908

Machine learning in edge analytics

Disclosed is a technique that can be performed by an electronic device. The technique can include generating raw data based on inputs to the electronic device, and sending the raw data or data items over a network to a server computer system. The sent raw data or the data items... Splunk Inc

02/01/18 / #20180032915

Transmitting machine learning models to edge devices for edge analytics

Disclosed is a technique that can be performed by a server computer system. The technique can include executing a machine learning process to generate a machine learning model based on global data collected from one or more electronic devices, wherein the machine learning model is described by model data. The... Splunk Inc

02/01/18 / #20180034715

Analytics for edge devices

Disclosed is a technique that can be performed by an electronic device. The technique can include generating timestamped events, where the timestamped events include raw data generated by electronic device. The technique can further include obtaining results by performing a operation on the timestamped events, in accordance with instructions. The... Splunk Inc

02/01/18 / #20180032512

Event-based data intake and query system employing non-text machine data

Described herein are technologies that facilitate effective use (e.g., indexing and searching) of non-text machine data (e.g., audio/visual data) with text-based indexes of an event-based machine-data intake and query system.... Splunk Inc

02/01/18 / #20180032558

Searching non-text machine data

Described herein are technologies that facilitate effective use (e.g., indexing and searching) of non-text machine data (e.g., audio/visual data) in an event-based machine-data intake and query system.... Splunk Inc

02/01/18 / #20180032861

Automated data-generation for event-based system

Described herein is a technology that facilitates the production of and the use of automated datagens for event-based. A datagen (i.e., data-generator or data generation system) is a component, module, or subsystem of computer systems that searches, monitors, and analyzes machine data. A datagen produces events that are further processed... Splunk Inc

02/01/18 / #20180032862

Automated anomaly detection for event-based system

Described herein is a technology that facilitates the production of and the use of automated datagens for event-based systems. A datagen (i.e., data-generator or data generation system) is a component, module, or subsystem of computer systems that searches, monitors, and analyzes machine data. Existing datagens are not capable of detecting... Splunk Inc

01/25/18 / #20180024702

Concurrent display of search results from differing time-based search queries executed across event data

A visualization can include a set of swim lanes, each swim lane representing information about an event type. An event type can be specified, e.g., as those events having certain keywords and/or having specified value(s) for specified field(s). The swim lane can plot when (within a time range) events of... Splunk Inc

01/25/18 / #20180024901

Automatic entity control in a machine data driven service monitoring system

Automated discovery of relationships between entities within an IT environment. A technique is performed by a relationship module that performs a discovery search for entity relationships to produce a set of relationship search results. The relationship module then generates a set of relationship definitions from the set of relationship search... Splunk Inc

01/11/18 / #20180012405

Three-dimensional point-in-polygon operation to facilitate visualizing data points bounded by 3d geometric regions

A system, a method and instructions embodied on a non-transitory computer-readable storage medium that solve a 3D point-in-polygon (PIP) problem is presented. This system projects polygons that comprise a set of polyhedra onto projected polygons in a reference plane. Next, the system projects a data point onto the reference plane,... Splunk Inc

01/04/18 / #20180004785

Generating and storing summarization tables for searchable events

Embodiments are directed are towards the transparent summarization of events. Queries directed towards summarizing and reporting on event records may be received at a search head. Search heads may be associated with one more indexers containing event records. The search head may forward the query to the indexers the can... Splunk Inc

01/04/18 / #20180006911

Transforming event data using remote capture agents and transformation servers

The disclosed embodiments provide a method and system for processing network data. During operation, the system obtains, at a remote capture agent, configuration information for the remote capture agent from a configuration server over a network. Next, the system uses the configuration information to configure the generation of event data... Splunk Inc

01/04/18 / #20180007180

Priority-based processing of messages from multiple servers

Systems and methods for priority-based processing of messages received from multiple servers. An example method comprises: receiving a plurality of network packets from one or more servers; processing the plurality of network packets to produce a first message associated with a first timestamp and a second message associated with a... Splunk Inc

12/28/17 / #20170371979

Creating and testing a correlation search

One or more processing devices receive a definition of a search query for a correlation search of a data store, the data store comprising time-stamped events that each comprise a portion of raw machine data reflecting activity in an information technology environment and produced by a component of the information... Splunk Inc

12/14/17 / #20170357554

Data forwarding using multiple data pipelines

In accordance with implementations of the present disclosure, a backup of live data received by a data forwarder is generated at the data forwarder while the live data is provided to a real-time data pipeline for forwarding from the data forwarder. A a first portion of the live data is... Splunk Inc

12/14/17 / #20170359371

Performing rule-based actions based on accessed domain name registrations

Domain names are determined for each computational event in a set, each event detailing requests or posts of webpages. A number of events or accesses associated with each domain name within a time period is determined. A registrar is further queried to determine when the domain name was registered. An... Splunk Inc

12/07/17 / #20170351720

Automatic associations in an i.t. monitoring system

A computer system exposes an interface for the specification of filter criteria. The filter criteria may identify control information of a service monitoring system (SMS) that defines entities in an IT environment monitored by the SMS. An association of identified entities with a monitored service may be made to direct... Splunk Inc

11/30/17 / #20170344576

Periodically processing data in files identified using checksums

Embodiments are directed towards managing and tracking item identification of a plurality of items to determine if an item is a new or existing item, where an existing item has been previously processed. In some embodiments, two or more item identifiers may be generated. In one embodiment, generating the two... Splunk Inc

11/30/17 / #20170344591

Storing log data as events and performing a search on the log data and data obtained from a real-time monitoring environment

Methods and apparatus consistent with the invention provide the ability to organize, index, search, and present time series data based on searches. Time series data are sequences of time stamped records occurring in one or more usually continuous streams, representing some type of activity. In one embodiment, time series data... Splunk Inc

11/23/17 / #20170337230

Storing and executing a search on log data and data obtained from a real-time monitoring environment

Methods and apparatus consistent with the invention provide the ability to organize, index, search, and present time series data based on searches. Time series data are sequences of time stamped records occurring in one or more usually continuous streams, representing some type of activity. In one embodiment, time series data... Splunk Inc

Patent Packs
11/23/17 / #20170337231

Log data time stamp extraction and search on log data and data obtained from a real-time monitoring environment

Methods and apparatus consistent with the invention provide the ability to organize, index, search, and present time series data based on searches. Time series data are sequences of time stamped records occurring in one or more usually continuous streams, representing some type of activity. In one embodiment, time series data... Splunk Inc

11/23/17 / #20170337252

Incident review interface

A computing machine performs a correlation search against KPI data for one or more services using a selection criteria and a triggering condition. When the triggering condition is satisfied a notable event or incident is created and information about the notable event is presented using a user interface that may... Splunk Inc

11/23/17 / #20170339024

Thresholds for key performance indicators derived from machine data

One or more processing devices access a service definition for a service provided by one or more entities that each produce machine data or about which machine data is generated. The service definition identifies the entities that provide the service and, for each entity, identifying information for locating machine data... Splunk Inc

11/23/17 / #20170339029

Monitoring it services at an individual overall level from machine data

One or more processing devices derive values indicative of various aspects of how a particular service in an information technology (IT) environment is performing at a point in time or for a period of time. The values are derived by a search query over machine data associated with the one... Splunk Inc

11/16/17 / #20170329462

Graphical user interface for static and adaptive thresholds

Techniques are disclosed for providing a graphical user interface (GUI) for displaying and configuring adaptive or static thresholds for Key Performance Indicators (KPIs). The GUI may include one or more presentation schedules that may display threshold information associated with time policies. Each presentation schedule may include multiple time slots and... Splunk Inc

11/16/17 / #20170329662

Correlating application errors with incomplete transactions

Various methods and systems for tracking incomplete purchases in correlation with application performance, such as application errors or crashes, are provided. In this regard, aspects of the invention facilitate monitoring transaction and application error events and analyzing data associated therewith to identify data indicating an impact of incomplete purchases in... Splunk Inc

11/16/17 / #20170329853

Techniques for curating data for query processing

Improved crawling and curation of data and metadata from diverse data sources is described. In some embodiments, improvements are achieved by interpreting the context, vocabulary and relationships of data element, to enable relational data search capability for users. The user querying process is improved by systematic identification of the data... Splunk Inc

11/16/17 / #20170329854

Techniques for compiling and presenting query results

Improved crawling and curation of data and metadata from diverse data sources is described. In some embodiments, improvements are achieved by interpreting the context, vocabulary and relationships of data element, to enable relational data search capability for users. The user querying process is improved by systematic identification of the data... Splunk Inc

11/16/17 / #20170330309

Aligning a result image with a source image to create a blur effect for the source image

A processing device receives input representing a selection of a first area of a source image. The processing device identifies a result image that corresponds to the source image. The result image is previously created for the source image using a blur operation. The processing device aligns the selected first... Splunk Inc

11/16/17 / #20170331930

Configuring generation of event streams by remote capture agents

The disclosed embodiments provide a system that processes network data. During operation, the system obtains, at a remote capture agent, a first protocol classification for a first packet flow captured by the remote capture agent. Next, the system uses configuration information associated with the first protocol classification to build a... Splunk Inc

11/16/17 / #20170329800

Efficient point-in-polygon indexing technique to visualize data points bounded by geometric regions

A system that displays geographic data is disclosed. The system obtains polygons that define a set of geographic regions. Then, the system projects rays from endpoints of the line segments that define the polygons onto a reference line to form intersection points. For each interval between pairs of consecutive intersection... Splunk Inc

11/09/17 / #20170322985

Creating an entity definition from a search result set

A processing device performs a search query to produce a search result set having entries having data items. A table, having rows and columns, is displayed in a user interface. Each data item of a particular entry appears in a respective column of the same row of the table. Each... Splunk Inc

11/02/17 / #20170316337

Dynamic search guidance for machine data indexing and search system

Disclosed is a guidance technique that can be applied to guide search and analysis of stored data by a user. The technique can include inputting from a user a portion of a search query expressed in a pipelined search language, at a system for indexing and searching machine data. The... Splunk Inc

11/02/17 / #20170317882

Central repository for storing configuration files of a distributed computer system

In a computer-implemented method for configuring a distributed computer system comprising a plurality of nodes of a plurality of node classes, configuration files for a plurality of nodes of each of the plurality of node classes are stored in a central repository. The configuration files include information representing a desired... Splunk Inc

11/02/17 / #20170315796

Application deployment for data intake and query system

An application development and deployment system allows an application developer to develop applications for a distributed data intake and query system. The application may include information that associates portions of the application with particular server groups of the distributed data intake and query system. The application may be partitioned to... Splunk Inc

Patent Packs
10/19/17 / #20170300585

Previewing raw data parsing

Embodiments are directed towards previewing results generated from indexing data raw data before the corresponding index data is added to an index store. Raw data may be received from a preview data source. After an initial set of configuration information may be established, the preview data may be submitted to... Splunk Inc

10/19/17 / #20170301136

Conveying state-on-state data to a user via hierarchical clusters in a three-dimensional model

Systems and methods according to various embodiments enable a user to view three-dimensional representations of data objects (“nodes”) within a 3D environment from a first person perspective. The system may be configured to allow the user to interact with the nodes by moving a virtual camera through the 3D environment.... Splunk Inc

10/19/17 / #20170302514

Automatically determining unpopulated entries of a provisioning template for a hosted computing environment

Systems and methods are provided for provisioning a hosted computing environment in accordance with customer requirements relating to a service. In some embodiments, a computer-implemented method is provided. The method includes generating a graphical interface on a computing device and receiving input corresponding to an indication of one or more... Splunk Inc

10/05/17 / #20170286038

Technology add-on control console

The operation of an automatic data input and query system is controlled by well-defined control data. The system exposes user interfaces enabling an administrator to interact with control data to modify the ongoing operation of the system. Certain control data determines the collection and treatment of data from various technology... Splunk Inc

10/05/17 / #20170286455

Technology add-on packages controlling a data input and query system

The operation of an automatic data input and query system is controlled by well-defined control data. Technology Add-On (TA) control data extends the operations of the system to gather and process machine data from additional sources. A user interface is exposed enabling a user who may be agnostic of requirements... Splunk Inc

10/05/17 / #20170286499

Query-triggered processing of performance data and log data from an information technology environment

The disclosed system and method acquire and store performance measurements relating to performance of a component in an information technology (IT) environment and log data produced by the IT environment, in association with corresponding time stamps. The disclosed system and method correlate at least one of the performance measurements with... Splunk Inc

10/05/17 / #20170286525

Field extraction rules from clustered data samples

The operation of an automatic data input and query system is controlled by well-defined control data. Certain control data may relate to data schemas and direct operations performed by the system to extract fields from machine data. Automatic methods may determine proper field extraction control information by analyzing a sample... Splunk Inc

10/05/17 / #20170286505

Event limited field picker

An event limited field picker for a search user interface is described. In one or more implementations, a service may operate to collect and store data as events each of which includes a portion of the data correlated with a point in time. Clients may use a search user interface... Splunk Inc

09/21/17 / #20170270132

File browser user interface

A search support system allows a customer to browse data contained in files stored on an external storage system. The search support system allows a customer to specify data processing tasks to be performed on raw data retrieved from a file stored on the external storage system. The customer specifies... Splunk Inc

09/21/17 / #20170272458

Network security system with real-time and batch paths

A security platform employs a variety techniques and mechanisms to detect security related anomalies and threats in a computer network environment. The security platform is “big data” driven and employs machine learning to perform security analytics. The security platform performs user/entity behavioral analytics (UEBA) to detect the security related anomalies... Splunk Inc

09/21/17 / #20170270088

Automatic rule modification

Embodiments are directed towards real time display of event records and extracted values based on at least one extraction rule, such as a regular expression. A user interface may be employed to enable a user to have an extraction rule automatically generate and/or to manually enter an extraction rule. The... Splunk Inc

09/21/17 / #20170270186

Generating statistics

Embodiments are directed towards real time display of event records and extracted values based on at least one extraction rule, such as a regular expression. A user interface may be employed to enable a user to have an extraction rule automatically generate and/or to manually enter an extraction rule. The... Splunk Inc

09/21/17 / #20170270219

Advanced field extractor

Embodiments are directed towards a graphical user interface identify locations within event records with splittable timestamp information. A display of event records is provided using any of a variety of formats. A splittable timestamp selector allows a user to select one or more locations within event records as having time... Splunk Inc

09/14/17 / #20170264512

Systems and methods for monitoring and analyzing performance in a computer system with state distribution ring

A system that displays performance data for a computing environment. During operation, the system determines performance states for a plurality of entities that comprise the computing environment based on values of a performance metric for the entities. Next, the system displays the computing environment as a tree comprising nodes representing... Splunk Inc

09/07/17 / #20170255349

Systems and methods for monitoring and analyzing performance in a computer system with node pinning for concurrent comparison of nodes

In some embodiments, in response to the user selecting a first node in the tree to be pinned, the system displays a first detail panel for the first node, wherein the first detail panel displays state information for the first node, wherein the state information is frozen at the time... Splunk Inc

09/07/17 / #20170255481

Systems and methods for automatically characterizing performance of a hypervisor system

Techniques promote monitoring of hypervisor systems by presenting dynamic representations of hypervisor architectures that include performance indicators. A reviewer can interact with the representation to progressively view select lower-level performance indicators. Higher level performance indicators can be determined based on lower level state assessments. A reviewer can also view historical... Splunk Inc

09/07/17 / #20170255683

Processing of performance data and structure data by thresholding log data

The disclosed system and method acquire and store performance measurements relating to performance of a component in an information technology (IT) environment and log data produced by the IT environment, in association with corresponding time stamps. The disclosed system and method correlate at least one of the performance measurements with... Splunk Inc

09/07/17 / #20170255711

Processing of performance data and raw log data from an information technology environment

The disclosed system and method acquire and store performance measurements relating to performance of a component in an information technology (IT) environment and log data produced by the IT environment, in association with corresponding time stamps. The disclosed system and method correlate at least one of the performance measurements with... Splunk Inc

09/07/17 / #20170257292

Systems and methods for displaying metrics on real-time data in an environment

A system and computer-implemented is provided for displaying a configurable metric relating to an environment in a graphical display along with a value of the metric calculated over a configurable time period. The metric is used to identify events of interest in the environment based on processing real time machine... Splunk Inc

09/07/17 / #20170257293

Systems and methods for monitoring and analyzing performance in a computer system with severity-state sorting

The disclosed embodiments relate to a system that displays performance data for a computing environment. During operation, the system first determines values for a performance metric for entities that comprise the computing environment. Next, the system displays the computing environment as a tree comprising nodes representing the entities and edges... Splunk Inc

09/07/17 / #20170255601

Determining events associated with a value

Embodiments are directed towards real time display of event records and extracted values based on at least one extraction rule, such as a regular expression. A user interface may be employed to enable a user to have an extraction rule automatically generate and/or to manually enter an extraction rule. The... Splunk Inc

09/07/17 / #20170255606

Determining events having a value

Embodiments are directed towards real time display of event records and extracted values based on at least one extraction rule, such as a regular expression. A user interface may be employed to enable a user to have an extraction rule automatically generate and/or to manually enter an extraction rule. The... Splunk Inc

09/07/17 / #20170255695

Determining rules based on text

Embodiments are directed towards real time display of event records and extracted values based on at least one extraction rule, such as a regular expression. A user interface may be employed to enable a user to have an extraction rule automatically generate and/or to manually enter an extraction rule. The... Splunk Inc








ARCHIVE: New 2018 2017 2016 2015 2014 2013 2012 2011 2010 2009



###

This listing is an abstract for educational and research purposes is only meant as a recent sample of applications filed, not a comprehensive history. Freshpatents.com is not affiliated or associated with Splunk Inc in any way and there may be associated servicemarks. This data is also published to the public by the USPTO and available for free on their website. Note that there may be alternative spellings for Splunk Inc with additional patents listed. Browse our Agent directory for other possible listings. Page by FreshPatents.com

###