This tweet provides a step-by-step guide on bypassing a WAF for XSS attacks. The payload uses various techniques like string concatenation, replacing spaces with slashes, and symbol encoding to evade detection. The payload itself is an XSS vector that triggers an alert pop-up. More details can be found in the tweet.
Check out the original tweet here: https://twitter.com/exploitdevs/status/1929912538260533698