Extract time hour with runtime field

ima · February 14, 2022, 10:14am

Hello everyone,

I wanna extract the time hour from the @timestamp field in winlogbeat using runtime field. is there any way to do that. thank you in advance for your help.

Tomo_M · February 14, 2022, 10:48am

Hello,
Using Datetime in Painless is a document for you.

Try: doc['@timestamp'].value.getHour()

system · March 14, 2022, 10:48am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.