Qradar expects logs to be in a specific format.
Out of the box, InTrust includes support for SecureWorks while QRadar will require customization of the forwarding parser.
Forwarding parser for QRadar is included out-of-the-box in InTrust 11.0.5 and higher.
© ALL RIGHTS RESERVED. Feedback Terms of Use Privacy Cookie Preference Center