IBM Security QRadar

 View Only

Highlights of QRadar Content (Blog Posts references)

By Gladys Koskas posted Wed May 25, 2022 05:44 AM

  
Hi guys


This post is meant to be a central place where you can find all the blog posts related to QRadar Content.
If there is one page to bookmark, it is this one !

I added a table with all the quick links to the blog posts, then a summary of their content.

Content pack related (general)

Endpoint Monitoring

Diving into Windows UAC Bypasses

Link

QRadar YARA Rule Manager App awesome updates

X-Force

Threat Hunting

Content pack related (general)


This blog is a review of H1 2021. It shows:
- The new content for Hybrid-Cloud environments
- CEP Rebaselining
- The new Custom Properties that have been released
- And other essentials

Diving into Windows UAC Bypasses

Link
This blog explains how the Endpoint content extension can help detection dozens of exploitation of the Windows User Access Control.

QRadar YARA Rule Manager App awesome updates

Link
This blog shows the updates that have been made in the version 1.2.0 of the app, with an improvement of the searching capabilities and namespaces update.


X-Force


This blog explains how X-Force and QRadar integrate with each other as well as the different service options available

Threat Hunting



#Spotlight
#QRadar
0 comments
1394 views

Permalink