QLED Log Source EPS Details
Schedule a call
QLED Log Source EPS Details for IBM Security QRadar SIEM is an application that allows users to easily monitor the number of events received by each log source and exceeding a configurable EPS threshold.
QLED does not utilize heavy AQL queries, but rather requests data via QRadar API, stores EPS statistics data in a built-in database and visualizes it via charts in a new QRadar tab.
QRadar Native Alternatives
The native Top Log Sources dashboard shows the number of events instead of EPS (conversion/calculation is needed), does not allow drilling down to details of specific event types – manual searching is required, and utilizes heavy AQL queries.
License
Open Source / Apache 2.
IBM App Exchange
Available as a complimentary app within a commercial tool purchase.