QRadar upgrade – Parallel upgrade vs. Patch all
There are two methods commonly used for the QRadar upgrade. These methods apply to the distributed deployment only but not to the All-in-One installation. By default, the QRadar console has…
New version of Splunk forwarder app
Recently IBM has provided the new version of Splunk forwarder app. This is a very useful tool for anybody using both systems. As we know Splunk and IBM QRadar are…
Customising QRadar interface
Customising QRadar interface, after issuing version 7.3.0, is rather a simple task. Users, willing to do it, don’t need to have more skills than editing and copying files in Linux.…
Generating and receiving events with QRadar
QRadar is capable of receiving and parsing events from a variety of third-party security products. The full list of supported devices is available in the documentation and the several formats…