![3a8c9b84381fdc2859e7a34130883a34.png](https://img-blog.csdnimg.cn/img_convert/3a8c9b84381fdc2859e7a34130883a34.png)
这一篇主要总结一下sqlilabs中advanced injection中的用到的各种绕过,也就是less21-less38。
目录
1)数据编码
2)特殊字符、语法关键字过滤
3)存储型注入
4)特殊字符转义与宽字节注入
5)防火墙保护与http参数污染
数据编码
http://111.231.88.117/sqli_lab/sqli-labs-php7/Less-21/ http://111.231.88.117/sqli_lab/sqli-labs-php7/Less-22/
这个是最简单的,就是在普通注入的基础上用响应的编码方式编码一下payload即可,比如sqlilabs上这两个靶站都是用的base64编码。
特殊字符、语法关键字过滤
http://111.231.88.117/sqli_lab/sqli-labs-php7/Less-23/ http://111.231.88.117/sqli_lab/sqli-labs-php7/Less-25/ http://111.231.88.117/sqli_lab/sqli-labs-php7/Less-25a/ http://111.231.88.117/sqli_lab/sqli-labs-php7/Less-26/ http://111.231.88.117/sqli_lab/sqli-labs-php7/Less-26a/ http://111.231.88.117/sqli_lab/s