最近在看脚本,感觉想用什么不太好找,整理了一下,也分享给大家。整理不易,感谢大家点个赞或者在看word文档排版可能更好一点:后台回复221019领取替换替换单引号1、apostrophemask.py : 用UTF-8全角字符替换单引号字符" Replaces apostrophe character with its UTF-8 full width counterpart "‘替换为%EF%BC%87tamper("1 AND '1'='1") '1 AND %EF%BC%871%EF%BC%87=%EF%BC%871'2、apostrophenullencode.py : 用非法双字节unicode字符替换单引号字符" Replaces apostrophe character with its illegal double unicode counterpart "tamper("1 AND '1'='1") '1 AND %00%271%00%27=%00%271'替换UNION57.dunion.py:将空格UNION替换为DUNION Replaces instances of UNION with DUNIONhttps://media.blackhat.com/us-13/US-13-Salgado-SQLi-Optimization-and-Obfuscation-Techniques-Slides.pdf tamper('1 UNION ALL SELECT') '1DUNION ALL SELECT'64、misunion.py:替换空格UNION为-.1UNIONReplaces instances of UNION with -.1UNIONhttps
………………………………