公开(公告)号：US20240146758A1

公开(公告)日：2024-05-02

申请号：US18393394

申请日：2023-12-21

申请人： Palantir Technologies Inc.

发明人： Elliot Colquhoun ,  Abhishek Agarwal ,  Andrew Eggleton ,  Brandon Helms ,  Carl Ambroselli ,  Cem Zorlular ,  Daniel Kelly ,  Gautam Punukollu ,  Jeffrey Tsui ,  Morten Kromann ,  Nikhil Seetharaman ,  Raj Krishnan ,  Samuel Jones ,  Tareq Alkhatib ,  Dayang Shi

IPC分类号： H04L9/40 ,  G06F8/65 ,  H04L67/75

CPC分类号： H04L63/1433 ,  G06F8/65 ,  H04L63/1441 ,  H04L67/75

摘要： A method, apparatus, and computer program are disclosed. The method may be performed by one or more processors and may comprise receiving first data representing an infrastructure of a computer network, the first data comprising an indication of hosts which form at least part of the computer network and one or more software resources on respective hosts. The method may also comprise receiving second data from a vulnerability scanning software, the second data comprising an indication of one or more vulnerabilities detected in the one or more software resources provided on at least some of the hosts of the computer network. Using a combination of the first data and the second data, output data may be generated representing a risk profile of the computer network infrastructure, the output data indicating one or more subsets of hosts, determined as being at risk of being affected by the detected vulnerabilities by virtue of the software resources they provide for output on a user interface.

公开(公告)号：US20160180557A1

公开(公告)日：2016-06-23

申请号：US14859882

申请日：2015-09-21

申请人： Palantir Technologies Inc.

发明人： Timothy Yousaf ,  Drew Dennison ,  Paul Thoren ,  Khoa Pham ,  Eliot Ball ,  Spencer Tank ,  John McRaven ,  Lucas Ray ,  Jeffrey Tsui

IPC分类号： G06T11/20 ,  G06F3/0481 ,  G06F17/30

摘要： Embodiments of the present disclosure relate to a data analysis system that may receive data comprising a plurality of raw data items from one or more data sources, such as a monitoring agent located in a monitored network. The received data may be scored using one or more scoring rules and/or algorithms, with raw data items satisfying a score threshold designated as “data item leads.” Raw data items associated with a data item lead may be searched and displayed to the user via an interactive user interface. The data analysis system may be used to execute searches and additional enrichments against the received raw data items. The data analysis system may group received raw data items based upon shared attribute values. The data analysis system may be used to categorize received data and construct timelines, histograms, and/or other visualizations based upon the various attributes of the raw data items.

摘要翻译： 本公开的实施例涉及一种数据分析系统，其可以从一个或多个数据源（例如位于被监视网络中的监视代理）接收包括多个原始数据项的数据。 可以使用一个或多个评分规则和/或算法对接收到的数据进行评分，其中原始数据项满足指定为“数据项引导”的分数阈值。可以搜索并显示与数据项引导相关联的原始数据项 通过交互式用户界面。 数据分析系统可用于对接收到的原始数据项执行搜索和附加的丰富。 数据分析系统可以基于共享的属性值对接收到的原始数据项进行分组。 数据分析系统可以用于基于原始数据项的各种属性对接收到的数据进行分类并构建时间线，直方图和/或其他可视化。

公开(公告)号：US11882145B2

公开(公告)日：2024-01-23

申请号：US17845514

申请日：2022-06-21

申请人： Palantir Technologies Inc.

发明人： Elliot Colquhoun ,  Abhishek Agarwal ,  Andrew Eggleton ,  Brandon Helms ,  Carl Ambroselli ,  Cem Zorlular ,  Daniel Kelly ,  Gautam Punukollu ,  Jeffrey Tsui ,  Morten Kromann ,  Nikhil Seetharaman ,  Raj Krishnan ,  Samuel Jones ,  Tareq Alkhatib ,  Dayang Shi

IPC分类号： H04L9/40 ,  G06F8/65 ,  H04L67/75

CPC分类号： H04L63/1433 ,  G06F8/65 ,  H04L63/1441 ,  H04L67/75

摘要： A method, apparatus, and computer program are disclosed. The method may be performed by one or more processors and may comprise receiving first data representing an infrastructure of a computer network, the first data comprising an indication of hosts which form at least part of the computer network and one or more software resources on respective hosts. The method may also comprise receiving second data from a vulnerability scanning software, the second data comprising an indication of one or more vulnerabilities detected in the one or more software resources provided on at least some of the hosts of the computer network. Using a combination of the first data and the second data, output data may be generated representing a risk profile of the computer network infrastructure, the output data indicating one or more subsets of hosts, determined as being at risk of being affected by the detected vulnerabilities by virtue of the software resources they provide for output on a user interface.

公开(公告)号：US10552994B2

公开(公告)日：2020-02-04

申请号：US14859882

申请日：2015-09-21

申请人： Palantir Technologies Inc.

发明人： Timothy Yousaf ,  Drew Dennison ,  Paul Thoren ,  Khoa Pham ,  Eliot Ball ,  Spencer Tank ,  John McRaven ,  Lucas Ray ,  Jeffrey Tsui

IPC分类号： G06T11/20 ,  G06F3/0481 ,  G06F16/332 ,  G06F16/33 ,  G06F16/338

摘要： Embodiments of the present disclosure relate to a data analysis system that may receive data comprising a plurality of raw data items from one or more data sources, such as a monitoring agent located in a monitored network. The received data may be scored using one or more scoring rules and/or algorithms, with raw data items satisfying a score threshold designated as “data item leads.” Raw data items associated with a data item lead may be searched and displayed to the user via an interactive user interface. The data analysis system may be used to execute searches and additional enrichments against the received raw data items. The data analysis system may group received raw data items based upon shared attribute values. The data analysis system may be used to categorize received data and construct timelines, histograms, and/or other visualizations based upon the various attributes of the raw data items.

公开(公告)号：US11580680B2

公开(公告)日：2023-02-14

申请号：US16714283

申请日：2019-12-13

申请人： Palantir Technologies Inc.

发明人： Timothy Yousaf ,  Drew Dennison ,  Paul Thoren ,  Khoa Pham ,  Eliot Ball ,  Spencer Tank ,  John McRaven ,  Lucas Ray ,  Jeffrey Tsui

IPC分类号： G06F3/0481 ,  G06F16/33 ,  G06F16/332 ,  G06F16/338 ,  G06T11/20 ,  G06F21/55 ,  G06F21/50

摘要： Embodiments of the present disclosure relate to a data analysis system that may receive data comprising a plurality of raw data items from one or more data sources, such as a monitoring agent located in a monitored network. The received data may be scored using one or more scoring rules and/or algorithms, with raw data items satisfying a score threshold designated as “data item leads.” Raw data items associated with a data item lead may be searched and displayed to the user via an interactive user interface. The data analysis system may be used to execute searches and additional enrichments against the received raw data items. The data analysis system may group received raw data items based upon shared attribute values. The data analysis system may be used to categorize received data and construct timelines, histograms, and/or other visualizations based upon the various attributes of the raw data items.

公开(公告)号：US20220321595A1

公开(公告)日：2022-10-06

申请号：US17845514

申请日：2022-06-21

申请人： Palantir Technologies Inc.

发明人： Elliot Colquhoun ,  Abhishek Agarwal ,  Andrew Eggleton ,  Brandon Helms ,  Carl Ambroselli ,  Cem Zorlular ,  Daniel Kelly ,  Gautam Punukollu ,  Jeffrey Tsui ,  Morten Kromann ,  Nikhil Seetharaman ,  Raj Krishnan ,  Samuel Jones ,  Tareq Alkhatib ,  Dayang Shi

IPC分类号： H04L9/40 ,  G06F8/65 ,  H04L67/75

摘要： A method, apparatus, and computer program are disclosed. The method may be performed by one or more processors and may comprise receiving first data representing an infrastructure of a computer network, the first data comprising an indication of hosts which form at least part of the computer network and one or more software resources on respective hosts. The method may also comprise receiving second data from a vulnerability scanning software, the second data comprising an indication of one or more vulnerabilities detected in the one or more software resources provided on at least some of the hosts of the computer network. Using a combination of the first data and the second data, output data may be generated representing a risk profile of the computer network infrastructure, the output data indicating one or more subsets of hosts, determined as being at risk of being affected by the detected vulnerabilities by virtue of the software resources they provide for output on a user interface.

公开(公告)号：US11418529B2

公开(公告)日：2022-08-16

申请号：US16293690

申请日：2019-03-06

申请人： Palantir Technologies Inc.

发明人： Elliot Colquhoun ,  Abhishek Agarwal ,  Andrew Eggleton ,  Brandon Helms ,  Carl Ambroselli ,  Cem Zorlular ,  Daniel Kelly ,  Gautam Punukollu ,  Jeffrey Tsui ,  Morten Kromann ,  Nikhil Seetharaman ,  Raj Krishnan ,  Samuel Jones ,  Tareq Alkhatib ,  Dayang Shi

IPC分类号： G06F11/00 ,  H04L9/40 ,  G06F8/65 ,  H04L67/75

摘要： A method, apparatus, and computer program are disclosed. The method may be performed by one or more processors and may comprise receiving first data representing an infrastructure of a computer network, the first data comprising an indication of hosts which form at least part of the computer network and one or more software resources on respective hosts. The method may also comprise receiving second data from a vulnerability scanning software, the second data comprising an indication of one or more vulnerabilities detected in the one or more software resources provided on at least some of the hosts of the computer network. Using a combination of the first data and the second data, output data may be generated representing a risk profile of the computer network infrastructure, the output data indicating one or more subsets of hosts, determined as being at risk of being affected by the detected vulnerabilities by virtue of the software resources they provide for output on a user interface.