-
Hi Team,
We were not receiving all the logs in qradar. What could be the reason? we filtered with one of the site where multiple hits observed in portal but no logs seen in qradar end.
-
## SIEM Logging
-
When I do
"python3 OpenCTI_QRadar.py -d 2"
I received this.
Traceback (most recent call last):
File "/home/garellano/Documentos/qradar/openctiXqradar/OpenCTI_QRadar.py", line 510, in
main…
-
## Request Type
Feature
## Description
Adding a new analyzer for Cortex : IBM QRadar ([https://www.ibm.com/support/knowledgecenter/SS42VS_7.2.6/com.ibm.qradar.doc/c_rest_api_getting_started.htm…
-
Check https://twitter.com/b4kl4z4n/status/1724422932615541239
TL;DR - There seem to be a bug in one of the Qradar backends where the pipelines that are accepted by one are not compatible with the o…
-
Already Created a custom action and followed the documentation
![image](https://github.com/Shuffle/Shuffle/assets/117512659/b3837e5f-c490-48fc-af19-c7427bde82df)
![image](https://github.com/Shuffle…
-
I am new to all this so bear with me.
I have a nsclient deloyed to almost 100 hosts that talk to my nagiosXI environment. Can I leverage nsclient to push syslogging from a windows server to qradar?
…
-
As a MSSP we need to import offenses from multiple customer QRadar instances. I am missing a filed for distinguishing between different source in the alerts list. How about adding a tag or setting the…
-
Hi guys
I'm fairly new to this, I'm trying to integrate OTX feed using qradar's threat intelligence feed plugin.
However the connection page is asking for TAXIII endpoint?
Not sure which URL to put h…
-
## Description
We had the wrong default URL on our Github. With the current URL, we can only create data (so send IOCs) but not update.
README and conf file to modify
![image](https://github…