IBM Support

QRadar: Testing X-Force Rules

Question & Answer


Question

How can I test the Enhanced X-Force Rules?

Answer

You can safely use the below URLs to browse and thus test the interaction between the Rules and expected actions. A Blue Coat or Proxy server or other similar device is required to send the resolved URL to QRadar. Simply cut and paste one of these links in your browser that applies to the rule and the offence you want to leverage from the X-Force Feed.

Results: You now have a method to test your X-Force rules.



http://www.xforce-security.com/policy-check/url/testpage01.htm
    Categorization: Pornography
    Risk: 4

http://www.xforce-security.com/policy-check/url/testpage02.htm
    Categorization: Erotic / Sex
    Risk: 3

http://www.xforce-security.com/policy-check/url/testpage03.htm
    Categorization: Swimwear / Lingerie
    Risk: 3

http://www.xforce-security.com/policy-check/url/testpage04.htm
    Categorization: Shopping
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage05.htm
    Categorization: Auctions / Classified Ads
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage06.htm
    Categorization: Governmental Organizations
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage07.htm
    Categorization: Non-Governmental Organizations
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage08.htm
    Categorization: Cities / Regions / Countries
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage09.htm
    Categorization: Education
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage10.htm
    Categorization: Political Parties
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage11.htm
    Categorization: Religion
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage12.htm
    Categorization: Sects
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage13.htm
    Categorization: Illegal Activities
    Risk: 10

http://www.xforce-security.com/policy-check/url/testpage14.htm
    Categorization: Computer Crime / Hacking
    Risk: 10

http://www.xforce-security.com/policy-check/url/testpage15.htm
    Categorization: Political Extreme / Hate / Discrimination
    Risk: 4

http://www.xforce-security.com/policy-check/url/testpage16.htm
    Categorization: Warez / Software Piracy
    Risk: 10

http://www.xforce-security.com/policy-check/url/testpage17.htm
    Categorization: Violence / Extreme
    Risk: 10

http://www.xforce-security.com/policy-check/url/testpage18.htm
    Categorization: Gambling / Lottery
    Risk: 2

http://www.xforce-security.com/policy-check/url/testpage19.htm
    Categorization: Computer Games
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage20.htm
    Categorization: Toys
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage21.htm
    Categorization: Cinema / Television
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage22.htm
    Categorization: Recreational Facilities / Theme Parks
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage23.htm
    Categorization: Arts / Museums / Theaters
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage24.htm
    Categorization: Music / Radio Broadcast
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage25.htm
    Categorization: Literature / Books
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage26.htm
    Categorization: Humor / Cartoons
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage27.htm
    Categorization: News / Magazines
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage28.htm
    Categorization: Webmail / Unified Messaging
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage29.htm
    Categorization: Chat
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage30.htm
    Categorization: Blogs / Bulletin Boards
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage31.htm
    Categorization: Mobile Telephony
    Risk: 1

http://www.xforce-security.com/policy-check/url/testp_blankage32.htm
    Categorization: Digital Postcards
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage33.htm
    Categorization: Search Engines / Web Catalogs / Portals
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage34.htm
    Categorization: Software / Hardware
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage35.htm
    Categorization: Communication Services
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage36.htm
    Categorization: IT Security / IT Information
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage37.htm
    Categorization: Web Site Translation
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage38.htm
    Categorization: Anonymization Services
    Risk: 2

http://www.xforce-security.com/policy-check/url/testpage39.htm
    Categorization: Illegal Drugs
    Risk: 4

http://www.xforce-security.com/policy-check/url/testpage40.htm
    Categorization: Alcohol
    Risk: 2

http://www.xforce-security.com/policy-check/url/testpage41.htm
    Categorization: Tobacco
    Risk: 2

http://www.xforce-security.com/policy-check/url/testpage42.htm
    Categorization: Self-Help / Addiction
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage43.htm
    Categorization: Dating
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage44.htm
    Categorization: Restaurants / Entertainment Venues
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage45.htm
    Categorization: Travel
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage46.htm
    Categorization: Fashion / Cosmetics / Jewelry
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage47.htm
    Categorization: Sports
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage48.htm
    Categorization: Architecture / Construction / Furniture
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage49.htm
    Categorization: Environment / Climate / Pets
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage50.htm
    Categorization: Personal Web Sites
    Risk: 2

http://www.xforce-security.com/policy-check/url/testpage51.htm
    Categorization: Job Search
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage52.htm
    Categorization: Brokers / Stock Exchange
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage53.htm
    Categorization: Financial Services / Insurance / Real Estate
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage54.htm
    Categorization: Banking
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage55.htm
    Categorization: Vehicles
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage56.htm
    Categorization: Weapons / Military
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage57.htm
    Categorization: Health
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage58.htm
    Categorization: Abortion
    Risk: 1
http://www.xforce-security.com/policy-check/url/testpage60.htm
    Categorization: Spam URLs
    Risk: 10

http://www.xforce-security.com/policy-check/url/testpage61.htm
    Categorization: Malware
    Risk: 10

http://www.xforce-security.com/policy-check/url/testpage62.htm
    Categorization: Phishing URLs
    Risk: 10

http://www.xforce-security.com/policy-check/url/testpage63.htm
    Categorization: Instant Messaging
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage67.htm
    Categorization: General Business
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage74.htm
    Categorization: Banner Advertisements
    Risk: 2

http://www.xforce-security.com/policy-check/url/testpage78.htm
    Categorization: Business Networking
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage79.htm
    Categorization: Social Media
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage80.htm
    Categorization: Web Storage
    Risk: 1
http://www.xforce-security.com/policy-check/url/testpage82.htm
    Categorization: Botnet Command and Control Server
    Risk: 10

http://www.xforce-security.com/policy-check/url/testpage83.htm
    Categorization: Cloud
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage84.htm
    Categorization: Infrastructure as a Service
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage85.htm
    Categorization: Platform as a Service
    Risk: 1

http://www.xforce-security.com/policy-check/url/testpage86.htm
    Categorization: Software as a Service
    Risk: 1

Please visit https://exchange.xforce.ibmcloud.com/ to further investigate the URLs below for greater commentary on the URLs below and their meaning, should that be required.

QRadar: Verification that X-Force database updates are current

QRadar: How do enhanced X-Force Rules interact with the X-Force server


Where do you find more information?




[{"Product":{"code":"SSBQAC","label":"IBM Security QRadar SIEM"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Component":"VA Scanners","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"Version Independent","Edition":"","Line of Business":{"code":"LOB24","label":"Security Software"}}]

Document Information

Modified date:
16 June 2018

UID

swg21999044