DevCourseWeb com Udemy Modern IBM QRadar SIEM Administration

/

Get Bonus Downloads Here.url

/1. Introduction & Installation/

1. A quick word from me to you.mp4

2. Introduction & About the instructor.mp4

3. Quick note about external resources - Important!.html

4. Introduction to SIEM.mp4

5. Introduction to QRadar.mp4

5.1 QRadar_Architecture_-_Deep_Dive.pdf

5.2 QRadar_Architecture_-_General.pdf

6. Installing QRadar.mp4

6.1 ISO Download Link.html

7. Ingesting events from a Windows machine.mp4

7.1 Wincollect Download Link.html

7.2 Wincollect IBM documentation.html

8. Ingesting events from PfSense firewall.mp4

8.1 Sending PfSense Logs to QRadar.html

/.../10. QRadar Administration - Reporting, Searching & Offense Management/

1. Managing reports.mp4

1.1 Report management.html

2. Utilizing different search types.mp4

2.1 AQL Query structure.html

2.2 AQL search string examples.html

2.3 Ariel Query Language.html

2.4 Converting a saved search to an AQL string.html

2.5 Querying with dynamic search.html

2.6 Sample AQL queries.html

3. Managing offenses.mp4

3.1 How QRadar Offense Renaming works.html

3.2 Offense management.html

4. Sharing content among users.mp4

4.1 Sharing Dashboard Items.html

4.2 Sharing report groups.html

/.../11. QRadar Administration - Tenants and Domains/

1. Differentiating between network hierarchy and domain definition.mp4

1.1 Guidelines for defining your network hierarchy.html

1.2 Network hierarchy updates in a multitenant deployment.html

2. Managing domains and tenants.mp4

2.1 Domain segmentation.html

2.2 Domains and log sources in multitenant environments.html

2.3 QRadar Multi-tenancy, Domains and Log Source Groups.html

3. Monitoring license usage.mp4

3.1 Monitoring license usage in multitenant deployments.html

4. Assigning users to tenants.mp4

4.1 Security profiles.html

4.2 User roles.html

/.../12. QRadar Administration - Troubleshooting/

1. Responding to and dealing with system notifications.mp4

1.1 QRadar system notifications.html

2. Troubleshooting common issues.html

3. Troubleshooting applications.mp4

3.1 How to use Recon to troubleshoot QRadar applications.html

4. Troubleshoot service performance.mp4

4.1 Using ThreadTop to determine QRadar process load.html

/.../13. Working with the QRadar Console/

1. Connecting to the Console.mp4

2. QRadar filesystem.html

3. Running AQL inside the Console.mp4

4. Troubleshooting services.mp4

4.1 Core services and the impact of restarting services.html

5. Troubleshooting events rate and connectivity.mp4

6. Performing a manual deploy.mp4

6.1 Full Deployment Failed.html

7. Reverting SSL certificate to locally signed.mp4

7.1 Reverting to certificates that are generated by the QRadar local CA.html

8. Deleting a rule directly from the console.mp4

9. Useful Console commands list.html

/.../14. Working with the API/

1. QRadar API basics.mp4

1.1 Python utility functions for QRadar.html

1.2 QRadar API endpoint documentation and supported versions.html

2. Example - Python script with QRadar API.mp4

2.1 QRadar API Example.html

/.../15. Practical Use Cases for NewExisting Deployments/

1. Alerting on non-reporting log sources.mp4

10. Mandatory steps after upgrading Console CPU.mp4

11. Logs are being truncated split.mp4

11.1 Truncated Logs.html

12. Section Notes.html

13. Notes about updating applications.html

2. Alerting on non-reporting domains.mp4

3. Alerting on disabled custom properties.mp4

4. Alerting on disk usage exceeded warningmaximum threshold.mp4

5. Alerting on events dropped.mp4

6. DSM Failed to load data error.mp4

7. Creating useful dashboards with Pulse.mp4

7.1 Monitor EPS and Log Sources (1).json

8. Working with Threat Intelligence.mp4

8.1 App Link.html

9. Working with QRadar Deployment Intelligence.mp4

9.1 App Link.html

/.../16. Course End - Congratulations!/

1. End Notes.mp4

/2. QRadar overview/

1. User Interface.mp4

2. Log Activity basic searching.mp4

3. QRadar Services.mp4

3.1 QRadar Core Services.html

/3. Rules/

1. Requirements for upcoming application installations.mp4

2. Use Case Manager, Rules and Building Blocks.mp4

2.1 Everything you need to know about QRadar Rules.html

2.2 Investigating QRadar rules and building blocks.html

2.3 QRadar building blocks.html

2.4 Use Case Manager.html

3. Using AQL inside rules.mp4

4. Troubleshooting rules.mp4

4.1 Troubleshooting rules.html

5. Optimizing rules.mp4

5.1 Optimizing Rules.html

6. Identifying expensive rules.mp4

6.1 Troubleshooting Custom Rule performance.html

7. Practical Example #1 - SIGMA rules.mp4

7.1 SIGMA Rules Github.html

8. Practical Example #2 - Firewall rules.mp4

/.../4. Working with Reference Data/

1. Different types of Reference Data.mp4

1.1 Creating reference data collections by using the command line.html

1.2 Reference data query examples.html

1.3 Types of reference data collections.html

2. Using Reference Data with the default user interface.mp4

3. Integrating Reference Data and Rules.mp4

4. Advice on dealing with massive amounts of Reference Data.mp4

/.../5. QRadar Administration - System Configuration/

1. Managed hosts.mp4

1.1 Managed hosts.html

2. Network hierarchy.mp4

2.1 Defining your network hierarchy.html

3. Automatic updates.mp4

3.1 Automatic updates.html

3.2 Configuring automatic update settings.html

3.3 Important auto update server changes for administrators.html

4. Event retention.mp4

4.1 About event retention buckets.html

5. Backup and recovery.mp4

5.1 Backup QRadar configurations and data.html

6. Custom offense Email templates.mp4

6.1 Configuring event and flow custom email notifications.html

/.../6. QRadar Administration - Performance Optimization/

1. Index management.mp4

1.1 Configuring the retention period for payload indexes.html

1.2 Enabling indexes.html

1.3 Enabling payload indexing to optimize search times.html

2. Configuring resource restrictions.mp4

2.1 Resource restrictions in distributed environments.html

2.2 Restrictions to prevent resource-intensive searches.html

3. Routing Rules.mp4

3.1 Configuring routing rules to forward data.html

3.2 Routing options for rules.html

/.../7. QRadar Administration - Data Source Configuration/

1. XPath queries.mp4

1.1 How to use Microsoft Event Viewer to create an XPath Query.html

1.2 XPath Query Troubleshooting.html

2. Log source management.mp4

2.1 Adding a log source to receive events.html

2.2 Protocol configuration options.html

2.3 Testing log sources.html

3. Event coalescing.mp4

3.1 How does coalescing work in QRadar.html

4. Log source groups.mp4

4.1 Log source groups.html

5. Exporting event data.mp4

5.1 Exporting events.html

6. Custom log source types (DSM) Event Mappings.mp4

6.1 DSM Editor overview.html

7. Custom AQL Properties.mp4

7.1 QRadar AQL Custom Properties.html

8. Custom event properties.mp4

8.1 Creating a custom property.html

8.2 Custom event and flow properties.html

8.3 Defining custom properties by using custom property expressions.html

8.4 Modifying or deleting a custom property.html

/.../8. QRadar Administration - Accuracy Tuning/

1. Configuring MaxMind GeoIP.mp4

1.1 Configuring a MaxMind account for geographic data updates.html

2. Verifying GeoIP Changes.mp4

2.1 Configuring a MaxMind account for geographic data updates.html

3. Configuring X-Force Integration.mp4

3.1 Enabling the X-Force Threat Intelligence feed.html

3.2 IBM X-Force Exchange plug-in for QRadar.html

3.3 IBM X-Force integration.html

/.../9. QRadar Administration - User Management/

1. Managing users.mp4

1.1 User accounts.html

2. User roles.mp4

2.1 User roles.html

3. Security profiles.mp4

3.1 Security profiles.html

4. Managing user authentication & authorization.mp4

4.1 User authentication.html

/~Get Your Files Here !/

Bonus Resources.txt

Total files 174