Hello everyone,
I wanna extract the time hour from the @timestamp field in winlogbeat using runtime field. is there any way to do that. thank you in advance for your help.
Hello,
Using Datetime in Painless is a document for you.
Try: doc['@timestamp'].value.getHour()
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.