Deployment Model in QRadar
QRadar can work in the Deployment Model which is master and slave environment. The single master is the console, which…
DSM Editor (part one)
DSM Editor is multi-task editor, which let you parse any event received by QRadar box. QRadar supports more than 1000…
Migrating from App Node to App Host
Please find below embedded three movies by Jose Bravo about migrating from App Node to App Host. App Host is…
Second part of QRadar 7.3.2 features
As promised in the last month, please find the second part of the QRadar 7.3.2 features article. As for today…
Sneak Peek at QRadar 7.3.2
Soon (the first quarter of 2019), we can expect a new version of QRadar. This is a sneak peek at…
Generating and receiving events with QRadar
QRadar is capable of receiving and parsing events from a variety of third-party security products. The full list of supported…
Changes in Traffic Analysis in 7.3.1
Among new features introduced in version 7.3.1, one of the most important would be a change in Traffic Analysis. Change reasons…
Event retention
Event retention helps QRadar administrators keep up and organize the data collected by their SIEM system. Retention window. Click the Admin tab…
QRadar backup
QRadar backup is one of the most important feature to use by each system administrator. There are two types of…
QRadar Network Activity
QRadar Network Activity is the second important tab in QRadar interface. Each flow is a record of the communication between…