The tweet mentions using custom XOR payloads added to sqlmap's boolean_blind.xml file to bypass WAF protection for SQL Injection. This technique seems to work effectively. Consider writing a blog post detailing the process, including the product (sqlmap), vendor (Universal), type of bypass (SQLi), and technical implementation of XOR payloads for bypassing WAF protection.