Apache metron 0.4.1, git cloned. Not sure they version of Fireeye, but its NX data. Timestamp in the log is this format: "rt=Sep 25 2017 19:53:35"
Basic fireeye parser does not seem to be parsing the NX timestamp. Snippet: o.a.m.p.f.BasicFireEyeParser [WARN] Unable to find timestamp in message:
