WAF Protection

["Mike G" <webappsectest () gmail com>]

Hello everyone,

I am investigating various WAF methods and need some help. I have
setup a site at http://webapp.selfip.net that includes a couple of
vulnerable pages. To begin with I have one that is vulnerable to XSS
and one that is vulnerable to SQL injection. I have implemented some
different types of protection on the site that I would like to try out
so I am inviting people to attempt to exploit the vulnerabilities on
the site in an attempt for me to learn from the various methods of
evasion etc and to see where my protection fails.

Cheers,

Mike