Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

Introduction

The tables cef0.kaspersky.* identify events in CEF format generated by Kaspersky services.

Tag structure

Events in CEF format don't have a specific tag structure, as explained in Technologies supported in CEF syslog format. They are always sent to a table with the structure cef0.deviceVendor.deviceProduct.

In this case, the valid data tables are:

Tag

Data table

cef0.kaspersky.kaspersky

cef0.kaspersky.kaspersky

cef0.kasperskylab.securitycenter

cef0.kasperskylab.securitycenter

cef0.kaspersky.securityCenter

cef0.kaspersky.securityCenter

cef0.kaspersky.securityCenterNetworkAgent

cef0.kaspersky.securityCenterNetworkAgent

cef0.kaspersky.kasperskyAntivirusForWindowsServersEnterpriseEdition

cef0.kaspersky.kasperskyAntivirusForWindowsServersEnterpriseEdition

cef0.kaspersky.kasperskyEndpointSecurityForWindows

cef0.kaspersky.kasperskyEndpointSecurityForWindows

How is the data sent to Devo?

Logs must be sent to the Devo platform via the Devo Relay to secure communication.

  • No labels