在服务器日常巡检中发现一切异常请求日志如下,日志进行了精简,格式有三列,主要
- 请求方法 Method
- 请求地址 Url
- 前向代理 IP
- 请求 User-Agent
GET "https://xxx.com/xxx" "hJy0y3ne' OR 220=(SELECT 220 FROM PG_SLEEP(15))--" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36"
GET "https://xxx.com/xxx" "1'\x22" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36"
GET "https://xxx.com/xxx" "umtxGWus')) OR 737=(SELECT 737 FROM PG_SLEEP(15))--" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36"
GET "https://xxx.com/xxx" "1 \xC0\xA7\xC0\xA2%2527%2522" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36"
GET "http