Thread: [sqlmap-users] Randomize payload with uppercase/lowercase

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

hello

I can manually bypass an WAF/filter with this trick: uNiOn aLl sElEcT... and
so on.

Is there an option like this in sqlmap?

Thanks!

-- 
Vinícius

You can use a tamper. Check the tampers folder. You can create your own une
to achieve that if there isn't one for it.
El 08/10/2011 12:37, "Vinícius K-Max" <vin...@gm...>
escribió:

> hello
>
> I can manually bypass an WAF/filter with this trick: uNiOn aLl sElEcT...
> and so on.
>
> Is there an option like this in sqlmap?
>
> Thanks!
>
> --
> Vinícius
>
>
> ------------------------------------------------------------------------------
> All of the data generated in your IT infrastructure is seriously valuable.
> Why? It contains a definitive record of application performance, security
> threats, fraudulent activity, and more. Splunk takes this data and makes
> sense of it. IT sense. And common sense.
> http://p.sf.net/sfu/splunk-d2dcopy2
> _______________________________________________
> sqlmap-users mailing list
> sql...@li...
> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
>
>

Hi.

You can use --tamper=randomcase for your case.

Kind regards,
Miroslav Stampar
On 8.10.2011. 12:37, "Vinícius K-Max" <vin...@gm...> wrote:

Ignacio and Miroslav, thank you guys!

Em 8 de outubro de 2011 10:04, Miroslav Stampar
<mir...@gm...>escreveu:

> Hi.
>
> You can use --tamper=randomcase for your case.
>
> Kind regards,
> Miroslav Stampar
> On 8.10.2011. 12:37, "Vinícius K-Max" <vin...@gm...> wrote:
>

-- 
Vinícius