Skip to content

Latest commit

 

History

History
39 lines (34 loc) · 1.99 KB

README.md

File metadata and controls

39 lines (34 loc) · 1.99 KB

IP_Context_Menu

Custom IP Context Menu for QRadar (Right Click Menu)

This repo contains the custom IP context menu I utilize with my QRadar instance running in my homelab. These OSINT sources I utilize daily when performing incident response. If you have any questions you can create an issue for the GitHub project or open a question/reply on the IBM QRadar CE forms located at: https://ibm.biz/qradarceforums

OSINT Sources:

Install Guide

  1. Using SSH, log in to the QRadar Console as the root user.
  2. cp /opt/qradar/conf/ip_context_menu.xml /opt/qradar/conf/ip_context_menu.xml.bak
  3. wget -nv -O /opt/qradar/conf/ip_context_menu.xml https://raw.githubusercontent.com/Xboarder56/IP_Context_Menu/master/ip_context_menu.xml
  4. systemctl restart tomcat

Change Log

  • 30-11-2022 - Added Criminalip Search Engines
  • 05-22-2019 - Fixed mapping greynoise and google to the wrong lookup links
  • 04-18-2019 - Added MxToolbox ARIN Lookup and HackerTarget ReverseIP Lookup
  • 04-14-2019 - Initial creation of custom IP Context Menu

Sources/References