meta data for this page
This is an old revision of the document!
Kibana
@timestamp >= “2023-01-01” | Timestamp |
| (X AND Y) OR Z |
Regex
- Turn off KQL to use the Lucene query syntax
Event_Type: /.*/ Description: /(s|m).*/
E-Bärs Xopedia
jump to: Search / User Tools / Main Content / Change Content Width
E-Bärs Xopedia
This is an old revision of the document!
@timestamp >= “2023-01-01” | Timestamp |
| (X AND Y) OR Z |
Event_Type: /.*/ Description: /(s|m).*/