f2b08e12fa
|
||
|---|---|---|
| .. | ||
| README.md | ||
| TimeGenerated.py | ||
| cef_gather_info.py | ||
| cef_installer.py | ||
| cef_troubleshoot.py | ||
README.md
Common Event Format
Common Event Format (CEF) is an industry standard format on top of Syslog messages, used by many security vendors to allow event interoperability among different platforms. By connecting your CEF logs to Azure Sentinel, you can take advantage of search & correlation, alerting, and threat intelligence enrichment for each log.
CEF Scripts
The scripts found under this directory would be used to install the CEF agent on any Linux machine having rsyslog or syslog-ng.