This tweet mentions a SQL Injection WAF bypass specifically for Ghauri WAF that blocks data extraction. The bypass payload used seems to be effective in evading the WAF's protection. It would be interesting to explore the details of this bypass in a blog post, highlighting the techniques used and how Ghauri WAF can be bypassed for SQL Injection attacks. The tweet indicates collaboration with @coffinxp7 and @lu3ky13 for ideas on the bypass.
For more insights, check out the original tweet here: https://twitter.com/Shad0wH3x/status/1800740190610493445. And don’t forget to follow @Shad0wH3x for more exciting updates in the world of cybersecurity.