QLEAN for QRadar tuning, health check & LEAN SOC automation

Best app to optimize your cyber TCO and accelerate ROI

About QLEAN

Best app for QRadar SIEM health check

QLEAN is the most advanced QRadar health check solution on the market containing more than 50 vital performance metrics

Best app for QRadar LEAN SOC Automation

Saves up to 300 hours or about 30000 dollars for each average QRadar deployment shaving off up to 30% of security admin time

Best tech support guaranteed

That’s why our goal is to provide a high-quality product that aligns with your company’s needs. No matter the budget, we pride ourselves on providing professional customer service. We guarantee you will be satisfied with our work. We deliver on-demand custom features to our clients worldwide.

Download QLEAN

Instant free trial license

Fill out the form below to instantly get your free 3-day QLEAN license.

If you need an extended license or have any questions, please contact us.
QRoC users should contact IBM representatives to get the UUID and install the application.

Company:
Full name:
Business email:
Total licensed EPS capacity: Run on Console: dmidecode -s system-uuid
QRadar Console UUID:
Trial start date:
Phone number:

Please fill out all fields

Contact us

We’re Here to Help!

Videos

IBM QRadar Health Optimization & Tuning Services

Benefit from integrated advanced tuning and performance optimization from IBM and ScienceSoft

IBM Security Expert Labs (SEL) will use QLEAN to assess your QRadar deployment and prepare a detailed health check report and recommendations for any necessary fixes and enhancements

30 day evaluation, POC Support, and license/support sale available from IBM

Solution content and deliverables

Conduct a review of your current QRadar environment
Prepare a Health Assessment Report
Perform tuning and configuration services

For more information contact:

qlean@scnsoft.com

QLEAN App suite

QLEAN for advanced QRadar assessment

The most advanced app for QRadar fine tuning and health check

Incident Notifier

Highly customizable offense notifications

WinCollect Assisted Deployment

Automatic installation, patching and configuration of unmanaged WinCollect agents and corresponding Log Sources

QArtifact

Enables analysts to attach evidence (artifacts) such as files, images, URLs to offenses

Microsoft Exchange Audit

MS Exchange Admin and Mailbox Audit export via Syslog

Network Hierarchy Management

Backup and restore QRadar network hierarchy objects

Session Manager

Makes it easy to manage user sessions and investigate security events using session information even if user name is not available in log messages

VirusTotal Integration

Checks process hashes against VirusTotal database

LDAP Data Enrichment

AD/LDAP synchronization with QRadar Reference Sets or tables

TOR Darknet Monitoring

Monitor inbound/outbound connections to Darknet via TOR relay and exit nodes

Dynamic License Allocator

Automatically re-allocate licenses across Managed hosts to handle EPS and FPM spikes

Missing Logs Alert

Notifies when Log Sources stop receiving events

DGA Analyzer

Detects suspicious domain names created by Domain Generation Algorithms

Slow Search Alert

Detects and notifies about long-lasting active searches

Log Source Inventory

Generates Excel reports for Log Sources by schedule and sends then via email

Log Source EPS Details

Shows EPS consumption per Log Source

Offense Reporter

Generates Excel reports for Offenses by schedule and sends them via email

Find Similar Offenses button

List all offenses generated by specific rule

Exclude from Correlation button

Temporarily stop generating offenses for specific Users, IP addresses, etc.

MITRE ATT&CK for Windows

Provides a set of correlation rules based on Sysmon logs

MITRE ATT&CK for Linux

Provides a set of correlation rules based on auditd logs

For more information contact:

qlean@scnsoft.com

Testimonials

Large Government Agency

«If you’re looking for a perfect QRadar health check app, look no further than QLEAN. My product’s interface is intuitive and easy-to-use. I can’t imagine using anyone else for my SIEM health check needs!»

Global MSSP

«I am a security professional and ScienceSoft worked closely with me throughout the entire process to develop the custom QLEAN MSSP package. I love the solution because it saves 300 hours of my time per year.»

Major American bank

«Tech support was beyond helpful in answering all of my questions. I’m so glad I went with them, my environment looks great!»

Top 100 Global Law Firm

QLEAN worked like a charm, and a much better architecture without the distributed server requirement. The SOC KPI tab in the XLS report is AMAZING. We run metrics monthly for compliance.»

IS Services Company

«I have had a chance to review the information that you’ve sent, and think your tool would be very helpful. It’s definitely something that I would recommend to customers, as your tool addresses a lot of the frustrations that customers have (missing devices, metrics, missed system messages).»

Top 20 MSSP

«Our SOC Team runs the reports almost every day, and really really happy and impressed with what they see. We are estimating the man hours saving that we receive from the tool and saving we get.»

Government Agency

«We needed a tool to help us show value out of QRadar and we found it. We need a tool to show us that QRadar is doing a good job for us and doing what it is supposed to do. That really a draw for us & your tool is really crafted to analyze the scene. Awesome, very nice tighty, QRadar centric tool. The team is excellent too – a true services organization, with tech experts. I like your humble attitude and really enjoy our interaction.»

Large Energy Operator

«All info you will possibly need is directly at your fingertips. The drill-down functionality on the log sources is fantastic. Cleared up a bunch of issues very quickly with that and appreciate the filtering functionality.»