Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.

Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform

The Project can be used to integrate QRadar with MISP Threat Sharing Platform

NHSuite allows users to efficiently manage their QRadar Network Hierarchy. Utilizing the provided QRadar API, users can seamlessly export, import, and fetch domain information in a CSV format.

Using QRadar API

PulseQueryViewer is a Python script for parsing QRadar PULSE Dashboard JSON exports, displaying the results in a color-coded console output or saving them to a CSV file or MD file

Python Script for integrating IBM QRadar SIEM with Jira Ticketing System, in order to open tickets automatically on Jira.

Python wrappers for NSOC tools

QRadar Offense Tools (Viewer)

Statistics for QRadar SOAR / Resilient using API

In this repository, I'll share my special scripts and tools for IBM QRadar SIEM.

Tools to get Metrics from QRadar SIEM, for complementary monitoring of SNMP metrics of QRadar.

Provide a ready-built dataset of matched Sigma-AQL rule files, generated using rules provided in SigmaHQ/sigma and the field-level PySigma IBM QRadar AQL backend.

Conversion Scripts to ingest McAfee Cloud Proxy logs into IBM Qradar. This requires pulling the websaas CSV files from the McAfee CSR Server to be converted into an ingestible format

Portable python QRadar client with all endpoints covered

Wraps an executable binary file inside a Python source file, to be used as a script in a closed system.

Send incoming detections in Axur Platform to your IBM Qradar SIEM

QRadar to Redmine(as Ticketing System) Integration with API CALLS written in Python

Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform

QRadar, Jira, NNMi examples of using the API