The tweet mentions that different configurations have been tweaked and successfully bypassed in multiple websites using Cloudflare WAF. The payloads mentioned are mainly for Cloudflare, not CloudFront. The tweet also suggests upcoming XSS bypasses for CloudFront. Here is a sample XSS payload for Cloudflare: <script>alert('XSS bypassed!')</script>
Check out the original tweet here: https://twitter.com/Shad0wH3x/status/1823289644357951998