Crafting a payload that can bypass WAF for XSS vulnerabilities can be challenging. The use of a 'pickle' payload can sometimes be effective in evading WAF protections. It's important for organizations to continuously update their security measures to defend against such bypasses.
Check out the original tweet here: https://twitter.com/TrQuilox87/status/1925997946589368393