The tweet describes a bypass technique for WAF using Censys to find the original IP. This bypass technique involves IP Spoofing. The tweet suggests that 80% of the time, the original IP can be obtained using this method. An investigation into the vendor of the WAF would be needed for further details and specifics on the bypass.