https://github.com/lmangani/kibana-kable

Frankenstein, Experimental Kable App for Kibana 6.x
https://github.com/lmangani/kibana-kable

app elastic elasticsearch elk experimental kable kibana plugin query

Last synced: about 2 months ago
JSON representation

Frankenstein, Experimental Kable App for Kibana 6.x

• Host: GitHub
• URL: https://github.com/lmangani/kibana-kable
• Owner: lmangani
• License: mit
• Created: 2018-08-02T16:04:12.000Z (almost 7 years ago)
• Default Branch: master
• Last Pushed: 2018-08-14T17:21:27.000Z (over 6 years ago)
• Last Synced: 2025-02-26T07:01:42.590Z (2 months ago)
• Topics: app, elastic, elasticsearch, elk, experimental, kable, kibana, plugin, query
• Language: JavaScript
• Homepage:
• Size: 20.8 MB
• Stars: 7
• Watchers: 4
• Forks: 1
• Open Issues: 2
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

        


# Kable 6.2 

Does stuff with like, fields, and expressions, and stuff. Also things.

Not the [Real Kable](https://github.com/rashidkpc/kable) 

![ezgif com-optimize 9](https://user-images.githubusercontent.com/1423657/43684130-9b963b0c-989a-11e8-9196-f35c7e14fdcb.gif)

## Installation

```

kibana-plugin install https://github.com/lmangani/kibana-kable/raw/master/dist/kable-6.2.4.zip

```

#### Custom Release

```

./release.sh

```

### Kable Functions

| name  | description | param  |

|---|---|---|

| add  | Add one column, or number, by another  | `col1`,`col2`,`dest`  |

| bottom  | Find the least common values for a field  | `field`,`count`#  |

| display | Specify the index to search  | `display`,`columns`[]  |

| divide  | Divide one column, or number, by another  | `dividend`,`divisor`,`dest`  |

| docs  | Make with the querying  | `count`#  |

| exregex  | Inline Regex functions  | `src`,`replace`,`with`,`dest`  |

| exsplit  | Split a field at a delimiter  | `src`,`separator`,`index`#,`dest`  |

| finalize | Finalizes a chain. Optional. |   |

| index | Specify the index to search  | `index`,`timefield`  |

| latest  | Get the latest value of some field  | `field`,`by`  |

| multiply  | Multiply one column, or number, by another  | `col1`,`col2`,`dest`   |

| search  | Filter Search  | `search`  |

| stats  | Calculate Statistic Aggs  | `stats`[],`field`  |

| substract  | Subtract one column, or number, by another  | `col1`,`col2`,`dest`   |

| table  | Select columns in a table, and optionally rename them  | `columns`[],`as`[]  |

| timeseries  | Create timeseries   | `field`,`interval`,`format`  |

| top  | Select top results  | `field`,`count`#  |

### Timelion Functions

Kable provides an experimental integration with Timelion for Kable `.timeseries` output.

```

.kable(expression=".index(_all).timeseries(field=@timestamp,interval=5m)")

```



#### Pro tips

You need to turn on regexs in Painless if you want any of the field extraction stuff

```

./bin/elasticsearch -Escript.painless.regex.enabled=true

```

Also, you need to extract from the `.keyword` version of fields for Search

---------

### Acknowledgements

This is an extended Fork of the [Real Kable](https://github.com/rashidkpc/kable) by [Rashid Khan](https://github.com/rashidkpc)

Elasticsearch and Kibana are trademarks of Elasticsearch BV, registered in the U.S. and in other countries.