Bypass WAF/IDS with SQLMAP?

Question

How can I use SQLMAP to run tests on a website with a WAF/IDS? Suppose I want to run something like this:

python sqlmap.py -u http://www.xxxxxxxxxxxxxx.com/standard.html&id=30 --dbs

How can I test against WAF/IDs in this case?

There is a lot of documentation for sqlmap. Start [here](http://sqlmap.org/) and come back with more specific questions. — Tom K., Mar 26 '18 at 07:37

CipherX · Answer 1 · 2018-12-01T12:08:54.860

1

Basically, you should use the option -tamper and use the tamper scripts. However, please consult the command line helper, or visit the SQLmap wiki page.

edited Dec 01 '18 at 12:08

answered Mar 26 '18 at 06:32

CipherX

190
1
8

Bypass WAF/IDS with SQLMAP?

1 Answers1