Hello, I'm new to Elastic, and I've been trying to create a custom dashboard that will show user activity after hours. I wanted to create a scripted field to filter by hour of day and I found this post Kibana Filter for a specific time range, however I want to use timestamp instead of @timestamp as mentioned in that post as we don't use the @timestamp field.
Additional info , we ship logs using Filebeat and not Logstash to Elasticsearch.
I wanted to extract the hour from the timestamp data using the below value
Something like
doc['timestamp'].date.hourOfDay - 4 for UTC−04:00
but that is causing index errors.