Adding new modules 29,30,31,32 on WAF bypass

Less-27/index.php

@@ -66,8 +66,8 @@ function blacklist($id)
 $id= preg_replace('/select/s',"", $id);	    //Strip out select
 $id= preg_replace('/UNION/s',"", $id);	    //Strip out UNION
 $id= preg_replace('/SELECT/s',"", $id);	    //Strip out SELECT
-$id= preg_replace('/Union/s',"", $id);	    //Strip out SELECT
-$id= preg_replace('/Select/s',"", $id);	    //Strip out SELECT
+$id= preg_replace('/Union/s',"", $id);	    //Strip out Union
+$id= preg_replace('/Select/s',"", $id);	    //Strip out select
 return $id;
 }
 

Less-28/index.php

@@ -2,7 +2,7 @@
 <html xmlns="http://www.w3.org/1999/xhtml">
 <head>
 <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
-<title>Less-27 Trick with SELECT & UNION</title>
+<title>Less-28 Trick with SELECT & UNION</title>
 </head>
 
 <body bgcolor="#000000">

Less-29/index.php

@@ -0,0 +1,80 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml">
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+<title>Less-29 Protection with WAF</title>
+</head>
+
+<body bgcolor="#000000">
+<div style=" margin-top:70px;color:#FFF; font-size:40px; text-align:center">Welcome&nbsp;&nbsp;&nbsp;<font color="#FF0000"> Dhakkan </font><br>
+<font size="3" color="#FFFF00">
+
+
+<?php
+//including the Mysql connect parameters.
+include("../sql-connections/sql-connect.php");
+//disable error reporting
+error_reporting(0);
+
+// take the variables 
+if(isset($_GET['id']))
+{
+	$id=$_GET['id'];
+	//logging the connection parameters to a file for analysis.
+	$fp=fopen('result.txt','a');
+	fwrite($fp,'ID:'.$id."\n");
+	fclose($fp);
+
+	$qs = $_SERVER['QUERY_STRING'];
+	$hint=$qs;
+
+// connectivity 
+	$sql="SELECT * FROM users WHERE id='$id' LIMIT 0,1";
+	$result=mysql_query($sql);
+	$row = mysql_fetch_array($result);
+	if($row)
+	{
+	  	echo "<font size='5' color= '#99FF00'>";	
+	  	echo 'Your Login name:'. $row['username'];
+	  	echo "<br>";
+	  	echo 'Your Password:' .$row['password'];
+	  	echo "</font>";
+  	}
+	else 
+	{
+		echo '<font color= "#FFFF00">';
+		print_r(mysql_error());
+		echo "</font>";  
+	}
+}
+	else { echo "Please input the ID as parameter with numeric value";}
+
+
+
+
+
+
+
+?>
+</font> </div></br></br></br><center>
+<img src="../images/Less-29.jpg" />
+</br>
+</br>
+</br>
+<img src="../images/Less-29-1.jpg" />
+</br>
+</br>
+<font size='4' color= "#33FFFF">
+<?php
+echo "Hint: The Query String you input is: ".$hint;
+?>
+</font> 
+</center>
+</body>
+</html>
+
+
+
+
+
+

Less-30/index.php

@@ -0,0 +1,78 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml">
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+<title>Less-30</title>
+</head>
+
+<body bgcolor="#000000">
+<div style=" margin-top:70px;color:#FFF; font-size:40px; text-align:center">Welcome&nbsp;&nbsp;&nbsp;<font color="#FF0000"> Dhakkan </font><br>
+<font size="3" color="#FFFF00">
+
+
+<?php
+//including the Mysql connect parameters.
+include("../sql-connections/sql-connect.php");
+
+//disable error reporting
+error_reporting(0);
+
+// take the variables 
+if(isset($_GET['id']))
+{
+	$id=$_GET['id'];
+	//logging the connection parameters to a file for analysis.
+	$fp=fopen('result.txt','a');
+	fwrite($fp,'ID:'.$id."\n");
+	fclose($fp);
+
+	$qs = $_SERVER['QUERY_STRING'];
+	$hint=$qs;
+	$id = '"' .$id. '"';
+
+// connectivity 
+	$sql="SELECT * FROM users WHERE id=$id LIMIT 0,1";
+	$result=mysql_query($sql);
+	$row = mysql_fetch_array($result);
+	if($row)
+	{
+	  	echo "<font size='5' color= '#99FF00'>";	
+	  	echo 'Your Login name:'. $row['username'];
+	  	echo "<br>";
+	  	echo 'Your Password:' .$row['password'];
+	  	echo "</font>";
+  	}
+	else 
+	{
+		echo '<font color= "#FFFF00">';
+		//print_r(mysql_error());
+		echo "</font>";  
+	}
+}
+	else { echo "Please input the ID as parameter with numeric value";}
+
+
+
+?>
+</font> </div></br></br></br><center>
+<img src="../images/Less-30.jpg" />
+</br>
+</br>
+</br>
+<img src="../images/Less-30-1.jpg" />
+</br>
+</br>
+<font size='4' color= "#33FFFF">
+<?php
+echo "Hint: The Query String you input is: ".$hint;
+?>
+</font> 
+</center>
+</body>
+</html>
+
+
+
+
+
+

Less-31/index.php

@@ -0,0 +1,78 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml">
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+<title>Less-31 FUN with WAF</title>
+</head>
+
+<body bgcolor="#000000">
+<div style=" margin-top:70px;color:#FFF; font-size:40px; text-align:center">Welcome&nbsp;&nbsp;&nbsp;<font color="#FF0000"> Dhakkan </font><br>
+<font size="3" color="#FFFF00">
+
+
+<?php
+//including the Mysql connect parameters.
+include("../sql-connections/sql-connect.php");
+
+// take the variables 
+if(isset($_GET['id']))
+{
+	$id=$_GET['id'];
+	//logging the connection parameters to a file for analysis.
+	$fp=fopen('result.txt','a');
+	fwrite($fp,'ID:'.$id."\n");
+	fclose($fp);
+
+	$qs = $_SERVER['QUERY_STRING'];
+	$hint=$qs;
+	$id = '"'.$id.'"';
+
+// connectivity 
+	$sql="SELECT * FROM users WHERE id= ($id) LIMIT 0,1";
+	$result=mysql_query($sql);
+	$row = mysql_fetch_array($result);
+	if($row)
+	{
+	  	echo "<font size='5' color= '#99FF00'>";	
+	  	echo 'Your Login name:'. $row['username'];
+	  	echo "<br>";
+	  	echo 'Your Password:' .$row['password'];
+	  	echo "</font>";
+  	}
+	else 
+	{
+		echo '<font color= "#FFFF00">';
+		print_r(mysql_error());
+		echo "</font>";  
+	}
+}
+	else { echo "Please input the ID as parameter with numeric value";}
+
+
+
+
+
+
+?>
+</font> </div></br></br></br><center>
+<img src="../images/Less-31.jpg" />
+</br>
+</br>
+</br>
+<img src="../images/Less-31-1.jpg" />
+</br>
+</br>
+<font size='4' color= "#33FFFF">
+<?php
+echo "Hint: The Query String you input is: ".$hint;
+?>
+</font> 
+</center>
+</body>
+</html>
+
+
+
+
+
+

SQL Injections-1.mm

@@ -27,7 +27,7 @@
 </node>
 <node CREATED="1324137319383" HGAP="11" ID="ID_853573586" MODIFIED="1352118867003" POSITION="right" TEXT="Less - 25a" VSHIFT="-3">
 <icon BUILTIN="pencil"/>
-<node CREATED="1324137333904" HGAP="17" ID="ID_429405468" MODIFIED="1352121375421" TEXT="GET - Error based - All your OR &amp; AND belong to us- Intiger based" VSHIFT="14">
+<node CREATED="1324137333904" HGAP="17" ID="ID_429405468" MODIFIED="1354444177636" TEXT="GET - Blind Based - All your OR &amp; AND belong to us- Intiger based" VSHIFT="14">
 <icon BUILTIN="penguin"/>
 </node>
 </node>
@@ -39,7 +39,7 @@
 </node>
 <node CREATED="1324137707627" HGAP="15" ID="ID_1410936587" MODIFIED="1352118833323" POSITION="right" TEXT="Less - 26a" VSHIFT="-1">
 <icon BUILTIN="pencil"/>
-<node CREATED="1324137874201" HGAP="21" ID="ID_1403477223" MODIFIED="1352121805167" TEXT="GET - Error based - All your SPACES and COMMENTS belong to us -String-single quotes-Parenthesis" VSHIFT="18">
+<node CREATED="1324137874201" HGAP="21" ID="ID_1403477223" MODIFIED="1354444184305" TEXT="GET - Blind Based - All your SPACES and COMMENTS belong to us -String-single quotes-Parenthesis" VSHIFT="18">
 <icon BUILTIN="penguin"/>
 </node>
 </node>
@@ -51,7 +51,7 @@
 </node>
 <node CREATED="1324137714364" HGAP="16" ID="ID_188847598" MODIFIED="1352118864836" POSITION="right" TEXT="Less - 27a" VSHIFT="4">
 <icon BUILTIN="pencil"/>
-<node CREATED="1324137878394" HGAP="18" ID="ID_1523865604" MODIFIED="1352122414644" TEXT="GET - Error Based- All your UNION &amp; SELECT Belong to us - Intiger based" VSHIFT="17">
+<node CREATED="1324137878394" HGAP="18" ID="ID_1523865604" MODIFIED="1354444360799" TEXT="GET - Blind Based- All your UNION &amp; SELECT Belong to us - Double Quotes" VSHIFT="17">
 <icon BUILTIN="penguin"/>
 </node>
 </node>
@@ -63,7 +63,7 @@
 </node>
 <node CREATED="1337259455429" HGAP="14" ID="ID_466917223" MODIFIED="1352118865949" POSITION="right" TEXT="Less - 28a" VSHIFT="8">
 <icon BUILTIN="pencil"/>
-<node CREATED="1337259473888" ID="ID_962658043" MODIFIED="1352120315689" TEXT="GET - Error Based- All your UNION &amp; SELECT Belong to us" VSHIFT="21">
+<node CREATED="1337259473888" ID="ID_962658043" MODIFIED="1354444425788" TEXT="GET - Blind Based- All your UNION &amp; SELECT Belong to us -single quote-parenthesis" VSHIFT="21">
 <icon BUILTIN="penguin"/>
 </node>
 </node>
@@ -73,61 +73,61 @@
 <icon BUILTIN="penguin"/>
 </node>
 </node>
-<node CREATED="1337259743007" HGAP="25" ID="ID_889999997" MODIFIED="1352118890066" POSITION="right" TEXT="Less - 29a" VSHIFT="2">
+<node CREATED="1337259743007" HGAP="25" ID="ID_889999997" MODIFIED="1354483118095" POSITION="right" TEXT="Less - 30" VSHIFT="2">
 <icon BUILTIN="pencil"/>
-<node CREATED="1337260036723" HGAP="23" ID="ID_470682976" MODIFIED="1352120351456" TEXT="POST - " VSHIFT="21">
+<node CREATED="1337260036723" HGAP="23" ID="ID_470682976" MODIFIED="1354484645340" TEXT="GET - BLIND - IMPIDENCE MISMATCH- Having a WAF in front of web application." VSHIFT="21">
 <icon BUILTIN="penguin"/>
 </node>
 </node>
-<node CREATED="1337259745713" HGAP="8" ID="ID_1208232472" MODIFIED="1352118886025" POSITION="left" TEXT="Less - 29" VSHIFT="-13">
+<node CREATED="1337259745713" HGAP="10" ID="ID_1208232472" MODIFIED="1354447785882" POSITION="left" TEXT="Less - 29" VSHIFT="1">
 <icon BUILTIN="pencil"/>
-<node CREATED="1337260017152" ID="ID_778159028" MODIFIED="1352120345771" TEXT="POST - " VSHIFT="15">
+<node CREATED="1337260017152" HGAP="22" ID="ID_778159028" MODIFIED="1354484720984" TEXT="GET -Error based- IMPIDENCE MISMATCH- Having a WAF in front of web application. " VSHIFT="13">
 <icon BUILTIN="penguin"/>
 </node>
 </node>
-<node CREATED="1337259760351" HGAP="18" ID="ID_1236630160" MODIFIED="1352118921560" POSITION="right" TEXT="Less - 30a" VSHIFT="4">
+<node CREATED="1337259760351" HGAP="18" ID="ID_1236630160" MODIFIED="1354483238450" POSITION="right" TEXT="Less - 32" VSHIFT="4">
 <icon BUILTIN="pencil"/>
 <node CREATED="1337260042429" ID="ID_1831469301" MODIFIED="1352120356684" TEXT="POST - " VSHIFT="16">
 <icon BUILTIN="penguin"/>
 </node>
 </node>
-<node CREATED="1337259762765" HGAP="-2" ID="ID_1521023455" MODIFIED="1352118911478" POSITION="left" TEXT="Less - 30" VSHIFT="-9">
+<node CREATED="1337259762765" HGAP="3" ID="ID_1521023455" MODIFIED="1354483122526" POSITION="left" TEXT="Less - 31" VSHIFT="-14">
 <icon BUILTIN="pencil"/>
-<node CREATED="1337260056500" ID="ID_1620579356" MODIFIED="1352120361636" TEXT="POST - " VSHIFT="15">
+<node CREATED="1337260056500" HGAP="18" ID="ID_1620579356" MODIFIED="1354484858206" TEXT="GET - BLIND - IMPIDENCE MISMATCH- Having a WAF in front of web application." VSHIFT="15">
 <icon BUILTIN="penguin"/>
 </node>
 </node>
-<node CREATED="1337259768974" HGAP="13" ID="ID_1264770325" MODIFIED="1337286648840" POSITION="right" TEXT="Less - 18" VSHIFT="-1">
+<node CREATED="1337259768974" HGAP="13" ID="ID_1264770325" MODIFIED="1354483249462" POSITION="right" TEXT="Less - 34" VSHIFT="-1">
 <icon BUILTIN="pencil"/>
 <node CREATED="1337260049111" HGAP="22" ID="ID_1399680041" MODIFIED="1352120372098" TEXT="POST - " VSHIFT="18">
 <icon BUILTIN="penguin"/>
 </node>
 </node>
-<node CREATED="1337259771723" HGAP="-10" ID="ID_371433913" MODIFIED="1337286802127" POSITION="left" TEXT="Less - 17" VSHIFT="-9">
+<node CREATED="1337259771723" HGAP="-3" ID="ID_371433913" MODIFIED="1354483152433" POSITION="left" TEXT="Less - 33" VSHIFT="-19">
 <icon BUILTIN="pencil"/>
 <node CREATED="1337260061967" HGAP="23" ID="ID_1507876679" MODIFIED="1352120367013" TEXT="POST - " VSHIFT="15">
 <icon BUILTIN="penguin"/>
 </node>
 </node>
-<node CREATED="1337286635272" HGAP="8" ID="ID_1025670211" MODIFIED="1337287024986" POSITION="right" TEXT="Less-20" VSHIFT="5">
+<node CREATED="1337286635272" HGAP="8" ID="ID_1025670211" MODIFIED="1354483293657" POSITION="right" TEXT="Less-36" VSHIFT="5">
 <icon BUILTIN="pencil"/>
 <node CREATED="1337286752435" ID="ID_586679887" MODIFIED="1352120389324" TEXT="POST - " VSHIFT="20">
 <icon BUILTIN="penguin"/>
 </node>
 </node>
-<node CREATED="1337286664875" HGAP="-16" ID="ID_622646021" MODIFIED="1337287122201" POSITION="left" TEXT="Less-19" VSHIFT="-1">
+<node CREATED="1337286664875" HGAP="-16" ID="ID_622646021" MODIFIED="1354483261494" POSITION="left" TEXT="Less-35" VSHIFT="-1">
 <icon BUILTIN="pencil"/>
 <node CREATED="1337286733038" HGAP="19" ID="ID_1658696559" MODIFIED="1352120377728" TEXT="POST " VSHIFT="18">
 <icon BUILTIN="penguin"/>
 </node>
 </node>
-<node CREATED="1337286811307" HGAP="-13" ID="ID_675480068" MODIFIED="1337287057328" POSITION="right" TEXT="Less-22" VSHIFT="-184">
+<node CREATED="1337286811307" HGAP="-13" ID="ID_675480068" MODIFIED="1354483306552" POSITION="right" TEXT="Less-38" VSHIFT="-184">
 <icon BUILTIN="pencil"/>
 <node CREATED="1337287084942" HGAP="21" ID="ID_471107631" MODIFIED="1337342719626" TEXT="Future Editions" VSHIFT="18">
 <icon BUILTIN="penguin"/>
 </node>
 </node>
-<node CREATED="1337286920172" HGAP="-35" ID="ID_38136745" MODIFIED="1337287052421" POSITION="left" TEXT="Less-21" VSHIFT="-500">
+<node CREATED="1337286920172" HGAP="-35" ID="ID_38136745" MODIFIED="1354483299766" POSITION="left" TEXT="Less-37" VSHIFT="-500">
 <icon BUILTIN="pencil"/>
 <node CREATED="1337287063065" HGAP="16" ID="ID_58695417" MODIFIED="1352120441298" TEXT="POST- " VSHIFT="18">
 <icon BUILTIN="penguin"/>