Common Field List
Posted on March 7th, 2008 | by Raffael Marty |Under the umbrella of the common event expression (CEE) effort, we just posted a proposal for a common field list for log files.
At this point, we are really interested in getting feedback from the community! Have a look at the post on the CEE list and the list itself. Let us know, on the CEE discussion list (CEE-DISCUSSION-LIST@LISTS.MITRE.ORG), what you like and what you don’t like about the approach!
A little more context on the field list can be found here also: Common Event Syntax and more about CEE is outlined here: CEE / CEF event interoperability standards.