We are running IBM Qradar as our SIEM solution. But we are planning to add ELK stack as well for dashboard creation and some particular application review.
Ours is a distributed environment , We have couple of event collectors distributed around the network for Qradar. Is it possible for us to collect the logs from those event collectors using elastic search and show that in Kibana? does we require to install logstash?
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.