[Zeek] zeek ts conversion
venkatesh bandari
austin522 at gmail.com
Tue Oct 29 20:31:39 PDT 2019
Hello team,
we are doing a zeek poc.iam doing the integration with splunk.in the spunk
logs i see the ts value which is not in human readable
format.zeek-cut/bro-cut on the box can be used to convert ts to human
readable format using -d
the question is how can i do this before sending the json logs to splunk.is
there a way
Thanks
Venkatesh
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/zeek/attachments/20191030/8da3eb23/attachment.html
More information about the Zeek
mailing list