A small helper for formatting ArcSight Common Event Format (CEF) compliant messages
Project description
format_cef
format_cef is a little helper library for producing ArcSight Common Event
Format (CEF) compliant messages from structured arguments. You can use it
like this:
>>> from format_cef import format_cef
>>> format_cef(
'acme corp', 'TNT', 1.0, '404 | not found', 'Explosives not found', 10
oextensions={'deviceAction': 'bang = !'})
'CEF:0|acme corp|TNT|1.0|404 \| not found|Explosives not found|10|act=bang \= !'
Notice how the format format_cef takes care of escaping delimiters correctly.
It will also ensure that each CEF extension complies to the restrictions
outlined in the CEF documentation.
This module deliberately remains agnostic as to the log message transport protocol (as does CEF itself). It is also designed to remain stateless so as to easy to test and use as a building block in larger systems.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
format_cef-0.0.4.tar.gz
(7.0 kB
view hashes)
Built Distribution
Close
Hashes for format_cef-0.0.4-py2.py3-none-any.whl
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | c7ef490b75f9c624359a6f87c905a5764c86a48332d10e957deaea93cba90bbf |
|
| MD5 | 520581ccfe504f4fc3c9a8063990c0e1 |
|
| BLAKE2b-256 | 76e619c01b8322b48ef14af2e30d256cf9ee9df3fa69b814a86d11e455982291 |
