Solved: Re: How to convert to date time from Epoch?

JoshiSri · ‎04-07-2023

I have a field named start_time on an artifact, and trying to send a mail to a team. But if I just choose the API name, it send the epoch time. It needs to be in the Readable format. Any child playbook or custom function for it please

JoshiSri · ‎04-19-2023

I had taken a look at it and it wont work the way it should, Instead I created a new custom code only one to convert the date format. Thanks Anyways

View solution in original post

phanTom · ‎04-11-2023

@JoshiSri there is a datetime_modify community custom function that may help:

-- If this helped please mark as a solution! Happy SOARing!

JoshiSri · ‎04-19-2023

I had taken a look at it and it wont work the way it should, Instead I created a new custom code only one to convert the date format. Thanks Anyways

prasanthkota · ‎07-13-2023

Hello Joshi,

We are having a similar issue. Is it possible to share the custom code?

ITWhisperer · ‎04-07-2023

Use the strftime() function to convert an epoch time to a readable format.

strftime

PickleRick · ‎04-07-2023

It's a Splunk SOAR (formerly Phantom) forum. I'm pretty sure SPL commands and functions don't work there 😉

How to convert to date time from Epoch?

development

Detecting Remote Code Executions With the Splunk Threat Research Team

Enter the Splunk Community Dashboard Challenge for Your Chance to Win!

.conf24 | Session Scheduler is Live!!