hi im trying to port the answer given here [image] Checking Field Length Logstash I'm still relatively new to Logstash, and I'm looking to find a way to check the length of an error message within a filter. If the message exceeds a defined number of characters, I want to…

Count length of field / number of characters in a field and add the result into a new field

Eniqmatic (Lewis Barclay) November 22, 2018, 2:19pm 8

Can you try this:

filter {
   if [log_name] == "Microsoft-Windows-Sysmon/Operational" {
      ruby {
	     code => "event['processcreate'] = event['process_command_line'].length"
	  }   
   }
}

Change a Number Field Value

Topic		Replies	Views
Adding field for string length Logstash	3	4061	July 6, 2017
Checking Field Length Logstash	8	8548	November 4, 2022
Add message_length field Logstash	3	284	June 8, 2021
Any way to limit field length? Logstash	5	9404	July 6, 2017
Checking length of a message Logstash	5	2371	November 26, 2018

Count length of field / number of characters in a field and add the result into a new field

Related topics