I was wondering if there was a document or schema outlining the format/fields of the McAfee Event Format (MEF)? I'm trying to integrate a remote ePO which only has one way communications to my SIEM and the only event format suitable seems to be MEF (there is no access between the SIEM and ePO Database)
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.
Community Help Hub
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.