sqlmap绕过waf
时间: 2023-08-10 10:07:00 浏览: 73
回答: 为了绕过Web应用程序防火墙(WAF),可以使用sqlmap工具的一些技巧和参数。其中一种方法是使用`--tamper`参数,通过指定一个或多个tamper脚本来修改SQL语句,以绕过WAF的检测。例如,可以使用`space2morehash.py` tamper脚本来将空格字符转换为其他字符,使WAF无法检测到SQL注入。<em>1</em><em>2</em><em>3</em>
#### 引用[.reference_title]
- *1* *2* [sqlmap 绕过WAF](https://blog.csdn.net/weixin_43304436/article/details/130776891)[target="_blank" data-report-click={"spm":"1018.2226.3001.9630","extra":{"utm_source":"vip_chatgpt_common_search_pc_result","utm_medium":"distribute.pc_search_result.none-task-cask-2~all~insert_cask~default-1-null.142^v92^chatsearchT3_1"}} ] [.reference_item]
- *3* [sqlmap之绕过云锁waf](https://blog.csdn.net/qq_50854662/article/details/128565820)[target="_blank" data-report-click={"spm":"1018.2226.3001.9630","extra":{"utm_source":"vip_chatgpt_common_search_pc_result","utm_medium":"distribute.pc_search_result.none-task-cask-2~all~insert_cask~default-1-null.142^v92^chatsearchT3_1"}} ] [.reference_item]
[ .reference_list ]