This tweet is a question from a user asking about how others are able to bypass Web Application Firewalls (WAFs) such as Cloudflare and ModSecurity when crafting XSS payloads. The user is struggling because their XSS payloads are still being blocked by these WAFs. The tweet does not provide a specific bypass payload or technique but highlights a common challenge in web security: evading WAF protections to test or exploit cross-site scripting vulnerabilities.
For more insights, check out the original tweet here: https://twitter.com/Terminal0987/status/1956581817936429347. And don’t forget to follow @Terminal0987 for more exciting updates in the world of cybersecurity.