This repository has been archived by the owner on Sep 13, 2023. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 0
/
AntiExploit.txt
1 lines (1 loc) · 3.69 KB
/
AntiExploit.txt
1
(http.request.uri.query contains ")/*") or (http.request.uri.query contains ")--") or (http.request.uri.query contains "benchmark(") or (http.request.uri.query contains "'0:0:20'") or (http.request.uri.query contains "MD5(") or (http.request.uri.query contains "%20waitfor%20delay%20") or (http.request.uri.query contains "%22") or (http.request.uri.query contains "%20/*") or (http.request.uri.query contains "%20--") or (http.request.uri.query contains "%20%23") or (http.request.uri.query contains ")%23") or (http.request.uri.query contains "script>") or (http.request.uri.query contains "%40") or (http.request.uri.query contains "%00") or (http.request.uri.query contains "<?php") or (http.request.uri.query contains "0x00") or (http.request.uri.query contains "0x08") or (http.request.uri.query contains "0x09") or (http.request.uri.query contains "0x0a") or (http.request.uri.query contains "0x0d") or (http.request.uri.query contains "0x1a") or (http.request.uri.query contains "0x22") or (http.request.uri.query contains "0x25") or (http.request.uri.query contains "0x27") or (http.request.uri.query contains "0x5c") or (http.request.uri.query contains "0x5f") or (http.request.uri.query contains "SELECT") or (http.request.uri.query contains "concat") or (http.request.uri.query contains "union") or (http.request.uri.query contains "0x50") or (http.request.uri.query contains "DROP") or (http.request.uri.query contains "WHERE") or (http.request.uri.query contains "ONION") or (http.request.uri.query contains "0x3c62723e3c62723e3c62723e") or (http.request.uri.query contains "0x3c696d67207372633d22") or (http.request.uri.query contains "OR") or (http.request.uri.query contains "0x3e") or (http.request.uri.query contains "<img") or (http.request.uri.query contains "<image") or (http.request.uri.query contains "document.cookie") or (http.request.uri.query contains "onerror()") or (http.request.uri.query contains "alert(") or (http.request.uri.query contains "window.") or (http.request.uri.query contains "String.fromCharCode(") or (http.request.uri.query contains "javascript:") or (http.request.uri.query contains "onmouseover=") or (http.request.uri.query contains "<BODY onload") or (http.request.uri.query contains "<style") or (http.request.uri.query contains "svg onload") or (http.request.uri.path contains "/manual") or (http.request.uri.path contains "/content") or (http.request.uri.path eq "/images") or (http.user_agent contains "cms") or (http.user_agent contains "detector") or (http.request.uri.path contains "01") or (http.request.uri.path contains "+") or (http.request.uri.path contains "*") or (http.request.uri.path eq "/tables") or (http.request.uri.path contains "(") or (http.request.uri.path contains "concat") or (http.request.uri.path contains "@") or (http.request.uri.path contains "CONCAT") or (http.request.uri.path contains "!") or (http.request.uri.path contains ")") or (http.request.uri.path contains ",") or (http.request.uri.path eq "MOD") or (http.request.uri.path contains "AND") or (http.request.uri.path contains "_") or (http.cookie contains "bns=") or (http.user_agent contains "[object]") or (http.user_agent contains "Spider") or (http.user_agent contains "Baidu") or (ip.geoip.asnum eq 397630) or (http.user_agent eq "Chrome/56") or (http.user_agent contains "Chrome/51") or (http.user_agent contains "Chrome/55") or (http.user_agent contains "Chrome/54") or (ip.geoip.asnum eq 27813) or (ip.geoip.asnum eq 328218) or (ip.geoip.asnum eq 41508) or (http.user_agent contains "Dalvik") or (http.user_agent contains "DMAbaMP3-57") or (http.user_agent contains "THEWORLD") or (http.user_agent contains "YaApp") or (http.request.uri.path eq "//") or (http.request.uri.path eq "///") or (http.request.uri.path eq "////")