1.TSRC挑战赛:WAF之SQL注入绕过挑战实录
https://security.tencent.com/index.php/blog/msg/66
2.深入了解SQL注入绕过waf和过滤机制
http://drops.wooyun.org/tips/968
3.见招拆招:绕过WAF继续SQL注入常用方法 
http://www.freebuf.com/articles/web/36683.html
4.waf绕过:WAF SQL防注入绕过方法
http://www.cnseay.com/1895/
5.在SQL注入中利用MySQL隐形的类型转换绕过WAF检测 
http://www.freebuf.com/articles/web/8773.html
6.sqlmap注入之tamper绕过WAF防火墙过滤
http://www.vuln.cn/2086
7.通用的关于sql注入的绕过waf的技巧(利用mysql的特性)
[link href="http://www.codefrom.com/paper/%E9%80%9A%E7%94%A8%E7%9A%84%E5%85%B3%E4%BA%8Esql  %E6%B3%A8%E5%85%A5%E7%9A%84%E7%BB%95%E8%BF%87waf%E7%9A%84%E6%8A%80%E5%B7%A7%EF  %BC%88%E5%88%A9%E7%94%A8mysql%E7%9A%84%E7%89%B9%E6%80%A7%EF%BC%89"]http://www.codefrom.com/paper/%E9%80%9A%E7%94%A8%E7%9A%84%E5%85%B3%E4%BA%8Esql

%E6%B3%A8%E5%85%A5%E7%9A%84%E7%BB%95%E8%BF%87waf%E7%9A%84%E6%8A%80%E5%B7%A7%EF

%BC%88%E5%88%A9%E7%94%A8mysql%E7%9A%84%E7%89%B9%E6%80%A7%EF%BC%89[/link]
8.TSRC挑战赛:WAF之SQL注入防御思路分享
https://security.tencent.com/index.php/blog/msg/65
9.看牛人怎么突破WAF防御
http://www.zhujiangroad.com/net/html/28306.html
10.利用搜索引擎蜘蛛绕过waf进行攻击
https://www.91ri.org/7655.html