-
公开(公告)号:US20210026952A1
公开(公告)日:2021-01-28
申请号:US16549261
申请日:2019-08-23
Applicant: Palantir Technologies Inc.
Inventor: Andrew Eggleton , Elliot Colquhoun , Ranec Highet , Xiao Tang , Tareq Alkhatib , Raj Krishnan , Nick Seetharaman , Brandon Helms , Daniel Kelly , Gautam Punukollu , Morten Kromann
Abstract: A method, performed by one or more processors, including receiving a plurality of system event records; processing the plurality of system event records using a set of event detectors to determine that a suspicious system event has occurred; sending, to a client device, a plurality of properties associated with the suspicious system event; receiving, from the client device, a selection indicator indicating a selected one or more properties of the plurality of properties; generating one or more new event detectors based on the selected one or more properties; and adding the one or more new event detectors to the set of event detectors.
Search Results
1
records
(took 0.036 seconds)
