...ent:
2018-02-08T10:09:02.000+13:00
How can I format this time/date to be as follows YYYY-MM e.g. 2018-02?
Or one step further would be to do current month minus 1 month e.g. 2018-01?
I was t...
I have a form that allows the user to input a text token. The idea is the user will input dateandtime information. I then would like to have a search on the form run starting 10 minutes before t...
...osts about how to do this based on _time and appending a word to the date ("overdue", for example), but I can't seem to make this work in my case. The field I'm working with is dueDate (not based on _...
My apologies i was using "eventTimestamp" instead of "@timestamp" in my rex command i just realized and its working now , However i do not need date in last column need o...
I would like to create an alert when new QID from qualys is published. For that I'm using FIRST_FOUND_DATETIME field and comparing it with today's date. The dateformat for that field result i...
Hello Splunk Community, Can anyone help me build a query based on the below; I want to convert a field (Fri Oct 8 23:15:05 AEDT 2021) into timeformat & then calculate the duration b...
I have a file that I am monitoring has time in epoch format milliseconds .What setting should be placed in the props.conf to convert it to human readable