Events exported to LEEF format

To filter the event logs sent to Syslog, create a log category notification with a defined filter.

LEEF format is a customized event format for IBM® Security QRadar®. Events have standard and custom attributes:

•ESET PROTECT uses some of standard attributes described in official IBM documentation.

•Custom attributes are the same as in JSON format.

Event categories:

•Detection

•Firewall

•Filtered websites

•HIPS

•Audit

•Enterprise Inspector Alerts

•Blocked files