IBM QRadar: Ariel Query Language (AQL): Difference between revisions
| Line 18: | Line 18: | ||
[[Category:IBM QRadar]] | [[Category:IBM QRadar]] | ||
[[Category:IBM QRadar AQL]] | |||
Latest revision as of 12:36, 24 March 2025
Ariel Query Language (AQL)
- Use Ariel Query Language (AQL) to extract, filter, and perform actions on event and flow data
- Funções para transformação, agregação da AQL
ariel_query command line
ariel_query --no-verify -u admin --output table --query "select QIDNAME(QID) from EVENTS limit 10"