IBM QRadar

Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

View Only

Back to discussions

Expand all | Collapse all

Crowdstrike integration with Qradar

1. Crowdstrike integration with Qradar

Like
rahul dhiman
Posted Wed September 14, 2022 03:25 AM

Reply
Hello Community,

We have integrated crowdstrike with IBM Qradar and getting the logs as well.

However the logs that we get on Qradar are just the detection events however i am interested in getting USB access events as well from crowdstrike.

Is it possible to create detection event on crowdstrike based on these USB access logs. If that can be done, it will resolve my concern.

Thanks,
Rahul D

------------------------------
rahul dhiman
------------------------------

IBM QRadar

IBM QRadar

Crowdstrike integration with Qradar

1. Crowdstrike integration with Qradar

Additional
Resources

Office

Quick Links

IBM QRadar

IBM QRadar

Crowdstrike integration with Qradar

1. Crowdstrike integration with Qradar

Related Content

CrowdStrike and IBM Security Integrations: Delivering End-to-End Process Threat Management with CrowdStrike’s Falcon Platform and IBM Security’s Resilient and QRadar

Unleashing the Power of Advanced Threat Intelligence with CrowdStrike Falcon Data Replicator and IBM Security QRadar

Disconnected Log Collector uplink failure detection

Integrating unsupported Log source with IBM QRadar SIEM

Safeguarding Data With Proactive Threat Detection

Additional Resources

Office

Quick Links

Additional
Resources