公开(公告)号：US20240111809A1

公开(公告)日：2024-04-04

申请号：US18525710

申请日：2023-11-30

Applicant: Palantir Technologies Inc.

Inventor： Andrew Eggleton ,  Alexandra Serenhov ,  Ankit Shankar ,  Brandon Helms ,  Brian Keohane ,  Darren Zhao ,  Elliot Colquhoun ,  Gautam Punukollu ,  Morten Kromann ,  Nikhil Seetharaman ,  Ranec Highet ,  Raj Krishnan ,  Xiao Tang ,  Sriram Krishnan ,  Simon Vahr ,  Tareq Alkhatib ,  Thomas Mathew

IPC: G06F16/901 ,  G06F21/55 ,  H04L9/40

CPC classification number: G06F16/9024 ,  G06F21/552 ,  G06F21/554 ,  H04L63/1416 ,  H04L63/1425 ,  H04L63/1433 ,  H04L63/20

Abstract: A method, performed by one or more processors, including: receiving one or more event records; generating, using the one or more event records, an event descriptor object descriptive of one or more events occurring in a networked system, wherein the event descriptor object comprises a plurality of event properties; receiving one or more entity records; generating, using the one or more entity records, an entity descriptor object descriptive of one or more entities relevant to the security of the networked system, wherein the entity descriptor object comprises a plurality of entity properties; incorporating, into an object graph, the event descriptor object and the entity descriptor object; and associating, in the object graph, the event descriptor object with the entity descriptor object using at least one of the plurality of event properties and at least one of the plurality of entity properties.

公开(公告)号：US11874872B2

公开(公告)日：2024-01-16

申请号：US16660217

申请日：2019-10-22

Applicant: Palantir Technologies Inc.

Inventor： Andrew Eggleton ,  Alexandra Serenhov ,  Ankit Shankar ,  Brandon Helms ,  Brian Keohane ,  Darren Zhao ,  Elliot Colquhoun ,  Gautam Punukollu ,  Morten Kromann ,  Nikhil Seetharaman ,  Ranec Highet ,  Raj Krishnan ,  Xiao Tang ,  Sriram Krishnan ,  Simon Vahr ,  Tareq Alkhatib ,  Thomas Mathew

IPC: G06F21/00 ,  G06F16/901 ,  H04L9/40 ,  G06F21/55

CPC classification number: G06F16/9024 ,  G06F21/552 ,  G06F21/554 ,  H04L63/1416 ,  H04L63/1425 ,  H04L63/1433 ,  H04L63/20

Abstract: A method, performed by one or more processors, including: receiving one or more event records; generating, using the one or more event records, an event descriptor object descriptive of one or more events occurring in a networked system, wherein the event descriptor object comprises a plurality of event properties; receiving one or more entity records; generating, using the one or more entity records, an entity descriptor object descriptive of one or more entities relevant to the security of the networked system, wherein the entity descriptor object comprises a plurality of entity properties; incorporating, into an object graph, the event descriptor object and the entity descriptor object; and associating, in the object graph, the event descriptor object with the entity descriptor object using at least one of the plurality of event properties and at least one of the plurality of entity properties.

公开(公告)号：US20210026952A1

公开(公告)日：2021-01-28

申请号：US16549261

申请日：2019-08-23

Applicant: Palantir Technologies Inc.

Inventor： Andrew Eggleton ,  Elliot Colquhoun ,  Ranec Highet ,  Xiao Tang ,  Tareq Alkhatib ,  Raj Krishnan ,  Nick Seetharaman ,  Brandon Helms ,  Daniel Kelly ,  Gautam Punukollu ,  Morten Kromann

IPC: G06F21/55 ,  G06F21/57

Abstract: A method, performed by one or more processors, including receiving a plurality of system event records; processing the plurality of system event records using a set of event detectors to determine that a suspicious system event has occurred; sending, to a client device, a plurality of properties associated with the suspicious system event; receiving, from the client device, a selection indicator indicating a selected one or more properties of the plurality of properties; generating one or more new event detectors based on the selected one or more properties; and adding the one or more new event detectors to the set of event detectors.

公开(公告)号：US10509844B1

公开(公告)日：2019-12-17

申请号：US15642820

申请日：2017-07-06

Applicant: Palantir Technologies Inc.

Inventor： Thomas Mcintyre ,  Carl Rosen ,  Eliot Ball ,  John Chakerian ,  Joseph Carter ,  Kevin Today ,  Marvel Church ,  Michal Stojek ,  Ranec Highet ,  Ronald Highet ,  Maciej Laska

IPC: G06F16/957 ,  G06F17/27 ,  G06T11/20 ,  G06F3/0484

Abstract: An approach for processing node data from code repository websites to generate patterns is disclosed. Node data can be parsed from a projects webpage or received from a code repository server hosting the repository website. Visualizations can be generated in a browser from the node data. The visualizations can be displayed within the browser and further be used to receive filter instructions. Refined node data can then be exported for further analysis.

公开(公告)号：US20240161648A1

公开(公告)日：2024-05-16

申请号：US18388549

申请日：2023-11-10

Applicant: Palantir Technologies Inc.

Inventor： Anna Davies ,  Benjamin Ahnert ,  Bo Chen ,  Cameron Douglas ,  Cathleen Jia ,  Daniel Davies ,  Dominic Hillier ,  Isobel Lynch ,  Jason Lipowicz ,  James Lowenthal ,  Marvin Christopher Bornstein ,  Mahmoud Ghanem ,  Ranec Highet ,  Thomas Ayles ,  Tamar Gomez ,  Theo Merten-Mancer

IPC: G09B7/00

CPC classification number: G09B7/00

Abstract: Methods and systems for generating customized learning programs include performing the operations of: receiving learning materials for a target platform; selecting a first set of learning materials based at least in part upon a first role; generating a first customized learning program which includes one or more first learning steps using the first set of learning materials; selecting a second set of learning materials based at least in part upon a second role, the second role being different from the first role, the second set of learning materials being different from the first set of learning materials; generating a second customized learning program which includes one or more second learning steps using the second set of learning materials; and deploying customized learning programs which include the first customized learning program and the second customized learning program.

公开(公告)号：US20230394083A1

公开(公告)日：2023-12-07

申请号：US16660217

申请日：2019-10-22

Applicant: Palantir Technologies Inc.

Inventor： Andrew Eggleton ,  Alexandra Serenhov ,  Ankit Shankar ,  Brandon Helms ,  Brian Keohane ,  Darren Zhao ,  Elliot Colquhoun ,  Gautam Punukollu ,  Morten Kromann ,  Nikhil Seetharaman ,  Ranec Highet ,  Raj Krishnan ,  Xiao Tang ,  Sriram Krishnan ,  Simon Vahr ,  Tareq Alkhatib ,  Thomas Mathew

IPC: H04L9/40

CPC classification number: H04L63/205 ,  H04L63/1425 ,  H04L63/1416 ,  H04L63/145

Abstract: A method, performed by one or more processors, including: receiving one or more event records; generating, using the one or more event records, an event descriptor object descriptive of one or more events occurring in a networked system, wherein the event descriptor object comprises a plurality of event properties; receiving one or more entity records; generating, using the one or more entity records, an entity descriptor object descriptive of one or more entities relevant to the security of the networked system, wherein the entity descriptor object comprises a plurality of entity properties; incorporating, into an object graph, the event descriptor object and the entity descriptor object; and associating, in the object graph, the event descriptor object with the entity descriptor object using at least one of the plurality of event properties and at least one of the plurality of entity properties.

公开(公告)号：US11698961B2

公开(公告)日：2023-07-11

申请号：US16549261

申请日：2019-08-23

Applicant: Palantir Technologies Inc.

Inventor： Andrew Eggleton ,  Elliot Colquhoun ,  Ranec Highet ,  Xiao Tang ,  Tareq Alkhatib ,  Raj Krishnan ,  Nik Seetharaman ,  Brandon Helms ,  Gautam Punukollu ,  Morten Kromann

IPC: G06F21/00 ,  G06F21/55 ,  G06F21/57

CPC classification number: G06F21/552 ,  G06F21/577 ,  G06F2221/034

Abstract: A method, performed by one or more processors, including receiving a plurality of system event records; processing the plurality of system event records using a set of event detectors to determine that a suspicious system event has occurred; sending, to a client device, a plurality of properties associated with the suspicious system event; receiving, from the client device, a selection indicator indicating a selected one or more properties of the plurality of properties; generating one or more new event detectors based on the selected one or more properties; and adding the one or more new event detectors to the set of event detectors.