Miroslav Stampar
|
83972d405f
|
Trivial text update
|
2018-12-28 17:54:58 +01:00 |
|
Miroslav Stampar
|
e7ed2bbcbb
|
Fixes #3391)
|
2018-11-30 11:29:17 +01:00 |
|
Miroslav Stampar
|
abb911d741
|
Just for the sake of #3377
|
2018-11-19 09:53:09 +01:00 |
|
Miroslav Stampar
|
dc5edf1a86
|
Patch regarding #3377
|
2018-11-19 09:52:09 +01:00 |
|
Miroslav Stampar
|
f2035145fe
|
Another update related to the #3316
|
2018-10-26 12:10:22 +02:00 |
|
Jennifer Torres
|
4466504f30
|
Lua-Nginx WAFs Bypass (#3316)
* Lua-Nginx WAFs Bypass
Lua-Nginx WAFs doesn't support processing for more than 100 parameters.
https://www.youtube.com/watch?v=JUvro7cqidY
* Update luanginxwafbypass.py
* Update luanginxwafbypass.py
* Update luanginxwafbypass.py
* Update luanginxwafbypass.py
Update header.
* Update luanginxwafbypass.py
|
2018-10-26 12:04:37 +02:00 |
|
Miroslav Stampar
|
03bbfdbc56
|
Can't work out of the box (too many unknowns)
|
2018-10-02 14:11:26 +02:00 |
|
Miroslav Stampar
|
1b6365b195
|
Minor cleanup
|
2018-10-02 14:07:14 +02:00 |
|
Miroslav Stampar
|
a8a7dee800
|
Fixes #3239
|
2018-09-15 21:36:21 +02:00 |
|
xxbing
|
db8bcd1d2e
|
update xforwarder tamper (#3236)
|
2018-09-13 10:50:58 +02:00 |
|
Miroslav Stampar
|
1f9bf587b5
|
Implementation for an Issue #3108
|
2018-07-31 02:18:33 +02:00 |
|
Miroslav Stampar
|
f0e4c20004
|
First commit related to the #3108
|
2018-07-31 01:17:11 +02:00 |
|
Miroslav Stampar
|
cef416559a
|
Minor update
|
2018-07-31 00:20:52 +02:00 |
|
Miroslav Stampar
|
c268663bd9
|
Minor code style updates
|
2018-06-09 23:38:00 +02:00 |
|
Miroslav Stampar
|
694b5bb5c0
|
New tamper script (per user request)
|
2018-05-30 15:48:16 +02:00 |
|
Miroslav Stampar
|
fa4c1c5251
|
Some more PEPing (I hope that I haven't broke anything)
|
2018-03-13 13:45:42 +01:00 |
|
Miroslav Stampar
|
365fa5a52a
|
Fixes #2923
|
2018-02-10 11:06:31 +01:00 |
|
Miroslav Stampar
|
56a4e507e8
|
Minor refactoring
|
2018-02-08 16:49:16 +01:00 |
|
Miroslav Stampar
|
5b99180ffe
|
Update for an Issue #806
|
2018-02-08 00:04:04 +01:00 |
|
Miroslav Stampar
|
061c8da36b
|
Proper overlongutf8.py (Issue #806)
|
2018-02-07 23:59:36 +01:00 |
|
Miroslav Stampar
|
8a122401aa
|
Update of copyright years
|
2018-01-02 00:48:10 +01:00 |
|
Miroslav Stampar
|
5326df1071
|
Minor grammar fix
|
2017-12-13 13:49:55 +01:00 |
|
Miroslav Stampar
|
bf8b2eb21e
|
Minor update regarding #2791
|
2017-11-22 13:29:39 +01:00 |
|
Vitaly Salnikov
|
1436333960
|
Add new tamper script witch can Replaces instances like 'IFNULL(A, B)' with 'CASE WHEN ISNULL(A) THEN (B) ELSE (A) END', it could be usefull for bypass some weak WAFs that filter the 'IFNULL' and 'IF' functions (#2791)
|
2017-11-22 13:27:49 +01:00 |
|
Miroslav Stampar
|
8c6b761044
|
Replacing doc/COPYING to LICENSE
|
2017-10-11 14:50:46 +02:00 |
|
Miroslav Stampar
|
b7db28a89b
|
Minor refactoring (unused imports)
|
2017-10-10 16:14:39 +02:00 |
|
Miroslav Stampar
|
09ddb3bd8b
|
Minor update for #2731 (--smoke-test failed)
|
2017-10-04 14:02:47 +02:00 |
|
europa
|
3fbe2f645a
|
Added Unicode-escape tamper script
|
2017-10-04 12:22:31 +02:00 |
|
Miroslav Stampar
|
2496db9d96
|
Update for #2690
|
2017-09-08 11:59:26 +02:00 |
|
Miroslav Stampar
|
a3249019d9
|
Patch for an Issue #2690
|
2017-09-08 11:43:10 +02:00 |
|
Miroslav Stampar
|
d038d027f9
|
Minor updates
|
2017-07-05 13:51:48 +02:00 |
|
neargle
|
ca24509e19
|
append %A0 to space2mysqlblank
|
2017-06-19 22:39:09 +08:00 |
|
Miroslav Stampar
|
c198fd7939
|
Update for an Issue #13
|
2017-04-12 10:54:29 +02:00 |
|
Miroslav Stampar
|
98e449e38c
|
Adding plus2fnconcat tamper script (Issue #2396)
|
2017-02-17 10:26:25 +01:00 |
|
Miroslav Stampar
|
9acf122ba6
|
Patch for an Issue #2396
|
2017-02-16 16:56:54 +01:00 |
|
Daniel Almeida
|
aa9989ff90
|
[add] new space 2 more comment bypass
|
2017-01-31 10:50:14 -02:00 |
|
Miroslav Stampar
|
55272f7a3b
|
New version preparation
|
2017-01-02 14:19:18 +01:00 |
|
Miroslav Stampar
|
4ac319b074
|
Adding new tamper script plus2concat (thank you Luka Pusic)
|
2016-12-01 22:28:07 +01:00 |
|
Miroslav Stampar
|
b3b5bd267d
|
Adding new tamper script (on request from @MilanGabor)
|
2016-09-15 17:59:01 +02:00 |
|
Miroslav Stampar
|
0c5965c7b8
|
Minor patches
|
2016-04-19 13:13:37 +02:00 |
|
Miroslav Stampar
|
074fbbcea5
|
Implementation for an Issue #1776
|
2016-03-23 15:45:49 +01:00 |
|
Miroslav Stampar
|
f190327da3
|
Minor update
|
2016-02-27 15:41:15 +01:00 |
|
Miroslav Stampar
|
cedfdc78f4
|
Adding escapequotes.py (utility tamper script)
|
2016-02-05 12:00:57 +01:00 |
|
Miroslav Stampar
|
d0d676ccce
|
Update of copyright string
|
2016-01-06 00:06:12 +01:00 |
|
Miroslav Stampar
|
bae9db65ab
|
Minor update
|
2015-10-31 16:33:48 +01:00 |
|
Miroslav Stampar
|
2642e453b5
|
New tamper script
|
2015-10-31 16:24:32 +01:00 |
|
Miroslav Stampar
|
12b9939baa
|
Minor refactoring
|
2015-09-24 10:24:37 +02:00 |
|
Miroslav Stampar
|
158ae501c1
|
Bug fix for tamper script equaltolike (has been doing problems when used with MsSQL)
|
2015-09-22 14:32:52 +02:00 |
|
Miroslav Stampar
|
5ce3306114
|
Adding new tamper script (Issue #1247)
|
2015-09-13 14:47:27 +02:00 |
|
Miroslav Stampar
|
f494004f44
|
Switching to the getSafeExString (where it can be used)
|
2015-09-10 15:51:33 +02:00 |
|