Patents by Inventor Sarah Addis
Sarah Addis has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Publication number: 20240155006Abstract: New intrusion detection system (IDS) rules to be deployed on an IDS that generates alerts based on an applied ruleset are accessed. A trial window that includes incorporating the new IDS rules into a candidate list to enable summarization and filtering of the alerts is started and the applied ruleset that includes existing IDS rules is supplemented with the candidate list that includes the new IDS rules. The applied ruleset is transmitted to a network sensor associated with the IDS upon the supplementation and alerts generated based on network events implicated by both the existing IDS rules and the new IDS rules in the applied ruleset are received from the IDS. Upon completion of the trial window, a set of alerts generated only by the new IDS rules in the applied ruleset are designated as suppressed alerts and a set of new IDS rules is eliminated from the applied ruleset upon determining that the set of new IDS rules generate a subset of alerts that exceed an alert threshold.Type: ApplicationFiled: December 12, 2023Publication date: May 9, 2024Applicant: Rapid7, Inc.Inventors: Luis Lopes, Sarah Addis, Martin Hutchings, Ralph McTeggart, Niall Cochrane
-
Patent number: 11876834Abstract: A modification to an applied ruleset intended for consumption by intrusion detection systems (IDSs) is detected. A service event that is configured to push the applied ruleset to a set of test network sensors associated with the IDSs is triggered. A service subscribed to the service event updates the set of test network sensors with the applied ruleset and designates a configuration version to the applied ruleset. A notification is received from the set of test network sensors that the applied ruleset has been tested and is ready for deployment to other network sensors and a request is received to deploy the applied ruleset to a set of network sensors. A determination is made whether the request includes the configuration version designated to the applied ruleset by the service. If the request includes the configuration version designated to the applied ruleset, the request to deploy the applied ruleset to the set of network sensors is authorized.Type: GrantFiled: August 11, 2021Date of Patent: January 16, 2024Assignee: Rapid7, Inc.Inventors: Sarah Addis, Martin Hutchings, Ralph McTeggart, Niall Cochrane, Luis Lopes
-
Patent number: 11855869Abstract: Disclosed herein are methods, systems, and processes for centralized containerized deployment of network traffic sensors to network sensor hosts for deep packet inspection (DPI) that supports various other cybersecurity operations. A network sensor package containing a pre-configured network sensor container is received by a network sensor host from a network sensor deployment server. Installation of the network sensor package on the network sensor host causes execution of the network sensor container that further causes deployment of an on-premise network sensor along with a network sensor management system, a DPI system, and an intrusion detection/prevention (IDS/IPS) system. The configurable on-premise network sensor is deployed on multiple operating system distributions of the network sensor host and generates actionable network metadata using DPI techniques for optimized log search and management and improved intrusion detection and response (IDR) operations.Type: GrantFiled: June 29, 2022Date of Patent: December 26, 2023Assignee: Rapid7, Inc.Inventors: John Brosnan, Jeff Myers, Andriy Lyubka, Darragh Delaney, Erran Carey, Martin Hutchings, Ralph McTeggart, Ryan Williams, Daniel Skelton, Luke Coughlan, Gianpaolo Tedesco, Luis Ramos Dos Santos Lopes, Lars-Kristian Svenoy, Dan-Adrian Moinescu, Niall Cochrane, Morgan Doyle, Sarah Addis
-
Patent number: 11838329Abstract: New intrusion detection system (IDS) rules to be deployed on an IDS that generates alerts based on an applied ruleset are accessed. A trial window that includes incorporating the new IDS rules into a candidate list to enable summarization and filtering of the alerts is started and the applied ruleset that includes existing IDS rules is supplemented with the candidate list that includes the new IDS rules. The applied ruleset is transmitted to a network sensor associated with the IDS upon the supplementation and alerts generated based on network events implicated by both the existing IDS rules and the new IDS rules in the applied ruleset are received from the IDS. Upon completion of the trial window, a set of alerts generated only by the new IDS rules in the applied ruleset are designated as suppressed alerts and a set of new IDS rules is eliminated from the applied ruleset upon determining that the set of new IDS rules generate a subset of alerts that exceed an alert threshold.Type: GrantFiled: August 11, 2021Date of Patent: December 5, 2023Assignee: Rapid7, Inc.Inventors: Luis Lopes, Sarah Addis, Martin Hutchings, Ralph McTeggart, Niall Cochrane
-
Patent number: 11838195Abstract: Disclosed herein are methods, systems, and processes for centralized containerized deployment of network traffic sensors to network sensor hosts for deep packet inspection (DPI) that supports various other cybersecurity operations. A network sensor package containing a pre-configured network sensor container is received by a network sensor host from a network sensor deployment server. Installation of the network sensor package on the network sensor host causes execution of the network sensor container that further causes deployment of an on-premise network sensor along with a network sensor management system, a DPI system, and an intrusion detection/prevention (IDS/IPS) system. The configurable on-premise network sensor is deployed on multiple operating system distributions of the network sensor host and generates actionable network metadata using DPI techniques for optimized log search and management and improved intrusion detection and response (IDR) operations.Type: GrantFiled: June 29, 2022Date of Patent: December 5, 2023Assignee: Rapid7, Inc.Inventors: John Brosnan, Jeff Myers, Andriy Lyubka, Darragh Delaney, Erran Carey, Martin Hutchings, Ralph McTeggart, Ryan Williams, Daniel Skelton, Luke Coughlan, Gianpaolo Tedesco, Luis Ramos dos Santos Lopes, Lars-Kristian Svenoy, Dan-Adrian Moinescu, Niall Cochrane, Morgan Doyle, Sarah Addis
-
Publication number: 20230065596Abstract: Disclosed herein are methods, systems, and processes for centralized containerized deployment of network traffic sensors to network sensor hosts for deep packet inspection (DPI) that supports various other cybersecurity operations. A network sensor package containing a preconfigured network sensor container is received by a network sensor host from a network sensor deployment server. Installation of the network sensor package on the network sensor host causes execution of the network sensor container that further causes deployment of an on-premise network sensor along with a network sensor management system, a DPI system, and an intrusion detection/prevention (IDS/IPS) system. The configurable on-premise network sensor is deployed on multiple operating system distributions of the network sensor host and generates actionable network metadata using DPI techniques for optimized log search and management and improved intrusion detection and response (IDR) operations.Type: ApplicationFiled: June 29, 2022Publication date: March 2, 2023Applicant: Rapid7, Inc.Inventors: John Brosnan, Jeff Myers, Andriy Lyubka, Darragh Delaney, Erran Carey, Martin Hutchings, Ralph McTeggart, Ryan Williams, Daniel Skelton, Luke Coughlan, Gianpaolo Tedesco, Luis Ramos dos Santos Lopes, Lars-Kristian Svenoy, Dan-Adrian Moinescu, Niall Cochrane, Morgan Doyle, Sarah Addis
-
Publication number: 20230064145Abstract: Disclosed herein are methods, systems, and processes for centralized containerized deployment of network traffic sensors to network sensor hosts for deep packet inspection (DPI) that supports various other cybersecurity operations. A network sensor package containing a pre-configured network sensor container is received by a network sensor host from a network sensor deployment server. Installation of the network sensor package on the network sensor host causes execution of the network sensor container that further causes deployment of an on-premise network sensor along with a network sensor management system, a DPI system, and an intrusion detection/prevention (IDS/IPS) system. The configurable on-premise network sensor is deployed on multiple operating system distributions of the network sensor host and generates actionable network metadata using DPI techniques for optimized log search and management and improved intrusion detection and response (IDR) operations.Type: ApplicationFiled: June 29, 2022Publication date: March 2, 2023Applicant: Rapid7, Inc.Inventors: John Brosnan, Jeff Myers, Andriy Lyubka, Darragh Delaney, Erran Carey, Martin Hutchings, Ralph McTeggart, Ryan Williams, Daniel Skelton, Luke Coughlan, Gianpaolo Tedesco, Luis Ramos dos Santos Lopes, Lars-Kristian Svenoy, Dan-Adrian Moinescu, Niall Cochrane, Morgan Doyle, Sarah Addis
-
Publication number: 20230064731Abstract: Disclosed herein are methods, systems, and processes for centralized containerized deployment of network traffic sensors to network sensor hosts for deep packet inspection (DPI) that supports various other cybersecurity operations. A network sensor package containing a pre-configured network sensor container is received by a network sensor host from a network sensor deployment server. Installation of the network sensor package on the network sensor host causes execution of the network sensor container that further causes deployment of an on-premise network sensor along with a network sensor management system, a DPI system, and an intrusion detection/prevention (IDS/IPS) system. The configurable on-premise network sensor is deployed on multiple operating system distributions of the network sensor host and generates actionable network metadata using DPI techniques for optimized log search and management and improved intrusion detection and response (IDR) operations.Type: ApplicationFiled: June 29, 2022Publication date: March 2, 2023Applicant: Rapid7, Inc.Inventors: John Brosnan, Jeff Myers, Andriy Lyubka, Darragh Delaney, Erran Carey, Martin Hutchings, Ralph McTeggart, Ryan Williams, Daniel Skelton, Luke Coughlan, Gianpaolo Tedesco, Luis Ramos dos Santos Lopes, Lars-Kristian Svenoy, Dan-Adrian Moinescu, Niall Cochrane, Morgan Doyle, Sarah Addis
-
Patent number: 11411851Abstract: Disclosed herein are methods, systems, and processes for centralized containerized deployment of network traffic sensors to network sensor hosts for deep packet inspection (DPI) that supports various other cybersecurity operations. A network sensor package containing a pre-configured network sensor container is received by a network sensor host from a network sensor deployment server. Installation of the network sensor package on the network sensor host causes execution of the network sensor container that further causes deployment of an on-premise network sensor along with a network sensor management system, a DPI system, and an intrusion detection/prevention (IDS/IPS) system. The configurable on-premise network sensor is deployed on multiple operating system distributions of the network sensor host and generates actionable network metadata using DPI techniques for optimized log search and management and improved intrusion detection and response (IDR) operations.Type: GrantFiled: August 31, 2021Date of Patent: August 9, 2022Assignee: Rapid7, Inc.Inventors: John Brosnan, Jeff Myers, Andriy Lyubka, Darragh Delaney, Erran Carey, Martin Hutchings, Ralph McTeggart, Ryan Williams, Daniel Skelton, Luke Coughlan, Gianpaolo Tedesco, Luis Ramos dos Santos Lopes, Lars-Kristian Svenoy, Dan-Adrian Moinescu, Niall Cochrane, Morgan Doyle, Sarah Addis
-
Publication number: 20210399969Abstract: Disclosed herein are methods, systems, and processes for centralized containerized deployment of network traffic sensors to network sensor hosts for deep packet inspection (DPI) that supports various other cybersecurity operations. A network sensor package containing a pre-configured network sensor container is received by a network sensor host from a network sensor deployment server. Installation of the network sensor package on the network sensor host causes execution of the network sensor container that further causes deployment of an on-premise network sensor along with a network sensor management system, a DPI system, and an intrusion detection/prevention (IDS/IPS) system. The configurable on-premise network sensor is deployed on multiple operating system distributions of the network sensor host and generates actionable network metadata using DPI techniques for optimized log search and management and improved intrusion detection and response (IDR) operations.Type: ApplicationFiled: August 31, 2021Publication date: December 23, 2021Applicant: Rapid7, Inc.Inventors: John Brosnan, Jeff Myers, Andriy Lyubka, Darragh Delaney, Erran Carey, Martin Hutchings, Ralph McTeggart, Ryan Williams, Daniel Skelton, Luke Coughlan, Gianpaolo Tedesco, Luis Ramos dos Santos Lopes, Lars-Kristian Svenoy, Dan-Adrian Moinescu, Niall Cochrane, Morgan Doyle, Sarah Addis
-
Patent number: 11133999Abstract: Disclosed herein are methods, systems, and processes for centralized containerized deployment of network traffic sensors to network sensor hosts for deep packet inspection (DPI) that supports various other cybersecurity operations. A network sensor package containing a pre-configured network sensor container is received by a network sensor host from a network sensor deployment server. Installation of the network sensor package on the network sensor host causes execution of the network sensor container that further causes deployment of an on-premise network sensor along with a network sensor management system, a DPI system, and an intrusion detection/prevention (IDS/IPS) system. The configurable on-premise network sensor is deployed on multiple operating system distributions of the network sensor host and generates actionable network metadata using DPI techniques for optimized log search and management and improved intrusion detection and response (IDR) operations.Type: GrantFiled: May 15, 2020Date of Patent: September 28, 2021Assignee: Rapid7, Inc.Inventors: John Brosnan, Jeff Myers, Andriy Lyubka, Darragh Delaney, Erran Carey, Martin Hutchings, Ralph McTeggart, Ryan Williams, Daniel Skelton, Luke Coughlin, Gianni Tedesco, Luis Ramos dos Santos Lopes, Lars-Kristian Svenoy, Dan-Adrian Moinescu, Niall Cochrane, Morgan Doyle, Sarah Addis