How to download the SIEM connector for IBM QRadar
We use cookies to make your experience of our websites better. By using and further navigating this website you accept this. Detailed information about the use of cookies on this website is available by clicking on more information.
Accept and close

 

 

Kaspersky Threat Data Feeds

 
 
 
 

How to download the SIEM connector for IBM QRadar

Back to article list
2019 Feb 07 ID: 13854
 
 
 
 

Kaspersky CyberTrace for IBM QRadar (SIEM connector) allows you to check URLs, file hashes, and IP addresses contained in events that arrive in IBM QRadar. The URLs, file hashes, and IP addresses are checked against threat data feeds from Kaspersky Lab, or from other vendors or sources loaded to CyberTrace. During the matching process, Kaspersky CyberTrace determines the indicator category and an generates event supplemented with actionable context.

To install the SIEM connector for IBM QRadar:

  1. Download Kaspersky CyberTrace for IBM QRadar.
  2. Install the latest QRadar updates (optional).
  3. Follow the instructions in the product documentation to install the package.

You can also get the Kaspersky Threat Feed App installation package from the IBM Security App Exchange and install it to IBM QRadar. Kaspersky Threat Feed App provides the following features within the IBM QRadar GUI to always keep you informed:

  • The display and prioritization of information about URLs, IP addresses, and file hashes from events that match Kaspersky Threat Data Feeds.
  • The lookup of URLs, IP addresses, and hashes in Kaspersky Threat Data Feeds via the QRadar Search field.
  • Dashboards for at-a-glance overviews as well as more detailed information on matching events.

Download Kaspersky CyberTrace for IBM QRadar:

  • The .rpm file for Linux can be downloaded here.
  • The .deb file for Linux can be downloaded here.
  • The .tgz file for Linux can be downloaded here.

To install the Kaspersky Threat Feed App:

  1. Download the Kaspersky Threat Feed App from the IBM App Exchange.
  2. In QRadar Web Console, select Admin and then Extensions Management.
  3. In the Extensions Management form, click the Add button and select the application file archive.
 
 
 
 
Was this information helpful?
Yes No
Thank you
 
 
 

Back to article list
 
 

 
 

Have you found what you were looking for?

Please let us know how we can make this website more comfortable for you

Send feedback Send feedback

Thank you!

Thank you for submitting your feedback.
We will review your feedback shortly.

 

How can we improve this article?

We will not be able to contact you if you leave your email address or phone number. To contact technical support, please sign in to your Personal Account.

Submit Submit

Thank you for your feedback!

Your suggestions will help improve this article.

OK