Jump to content
mohammed.chemouri

Bypassing Web IDS

Recommended Posts

mohammed.chemouri

Hi Guys!

I hope you're doing well,

I'm facing some difficulty trying to penetrate a vulnerable web application,

An SQLi vulnerability found , but when I start injecting some stuff the firewall (IDS) filter everything !!!

As Example if you submit : ?id=-1 uNiOn Sel/*!*/Ct 1,2,3,4-- it will not work => 1,2,3,4-- (filtered)

I think it's ModSecurity !!!

do you have any idea ?

Share this post


Link to post
T0X1C

if you know it's modsecurity check the regex modsecurity is recognising. IDS's are stupid, so if 1,2,3,4 gets filtered there is a chance that for instance 9,10,11,12 is not.

Cheers,

T0X1C

Share this post


Link to post

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
×