This repository contains custom Splunk search commands.
This function will convert a integer entry in the infield (if exists) to a ISO-8601 formatted value (i.e. variants of 24 13:45:56 - where "24" is the number of days), and put the result into a field name given in outfield.
The latest version of this code is found at https://github.com/RubenOlsen/splunkcommands This is also the place where you can report bugs.
For each of the commands you want to install, you should follow the following procedure:
- Copy the content of the bin directory into $SPLUNK_HOME/etc/apps/search/bin/.
- Copy the content of the file(s) found in the local directory into the corresponding files in $SPLUNK_HOME/etc/apps/search/local/