Solved: Re: How to query a field in DBXQuery that contains...

LearningGuy · ‎08-30-2023

Hello,
How to query a field in DBXQuery that contains colon?
I ran the following query and got an error. Thank you
| dbxquery connection=visibility query="select abc:def from tableCompany"
org.postgresql.util.PSQLException: ERROR: syntax error at or near ":" Position:

I tried to put single quote
| dbxquery connection=visibility query="select 'abc:def' from tableCompany"
but it gave me the following result

?column?

abc:def

etoombs · ‎08-31-2023

My bad. I didn't look to see what database you were using. You may need quotes around it = "abc:def". Since you're doing this inside a quoted string, you may need to escape them as \" in the string.

View solution in original post

etoombs · ‎08-31-2023

My bad. I didn't look to see what database you were using. You may need quotes around it = "abc:def". Since you're doing this inside a quoted string, you may need to escape them as \" in the string.

LearningGuy · ‎08-31-2023

Your suggestion worked. Thank you so much
| dbxquery connection=visibility query="select \"abc:def\" from tableCompany"

etoombs · ‎08-31-2023

Try brackets around the field name - [abc:def]

LearningGuy · ‎08-31-2023

Hello,
I put brackets around the field name [abc:def], but it still didn't work and got the following error
org.postgresql.util.PSQLException: ERROR: syntax error at or near "["

Thank you

How to query a field in DBXQuery that contains colon?

fields

table

Threat Hunting Unlocked: How to Uplevel Your Threat Hunting With the PEAK Framework ...

Splunk APM: New Product Features + Community Office Hours Recap!

Index This | Forward, I’m heavy; backward, I’m not. What am I?