Hi Community, I'm currently working on a custom parser for a customer and I realize the time date of the event is provied in Zulu format. I need to know how to properly parse it, because there is nothing documented on the NLPT User Guide about that kind of date format.
Here is an example of the logs:
2020-08-20T11:41:04Z 10.0.2.193 Agent Desc: "",Agent ID: "PBPS",Agent Ver: "6.9.0.712",Category: "System",Source Host: "host1",Event Desc: "System",Event Name: "Administrators",OS: "",Event Severity: "0",Source IP: "10.0.0.0",Event Subject: "127.0.0.1",Event Type: "0",User: "someadmin",Workgroup Desc: "",Workgroup ID: "",Workgroup Location: "",bt_Category: "System",LogID: "302506",Details: "some text here",UserName: "someadmin",RoleUsed: "Administrators",ObjectTypeID: "9",ObjectType: "Password",ObjectID: "55280",Operation: "Retrieve",Target: "Domain:domain.net",UserID: "1",IPAddress: "10.2.41.141"
Thanks!
