Solved: remove characters in field results

numeroinconnu12 · ‎06-15-2020

Morning, everyone,

Thank you in advance for your help.

I would like to remove a part of a character from my results.

My query results look like this:

TRERY\j2874ac
TRERY\k5846de

I'd like to delete the "TRERY\" to get it:

j2874ac
k5846de

How do I proceed? Thank you very much.

bowesmana · ‎06-15-2020

The rex statement below will work

| makeresults
| eval result=split("TRERY\j2874ac,TRERY\k5846de",",")
| mvexpand result
| rex field=result mode=sed "s/^TRERY\\\//"

You can run the above example

bowesmana · ‎06-15-2020

The rex statement below will work

| makeresults
| eval result=split("TRERY\j2874ac,TRERY\k5846de",",")
| mvexpand result
| rex field=result mode=sed "s/^TRERY\\\//"

You can run the above example

numeroinconnu12 · ‎06-15-2020

Thank you @bowesmana it works.

remove characters in field results