Catching SQL Query Pattern using WAF

Apparently, someone is using SQL injection to attack and we aim to catch the pattern using WAF rules. What are your recommended setting for us to successfully catch the sql query? Thank you!

Do you have the WAF enabled? Do you have an example of requests you want to block?

Hi @cscharff WAF is enabled. Someone has used this SQL query XOR(if(now()=sysdate(),sleep(10),0)) and we want to filter this request. We may want to use rate limiting rules as well. Please let us know if this is possible and how to work this one out. Thanks!

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.