This tweet discusses an attempt to execute a Cross-Site Scripting (XSS) attack that was blocked by the Akamai Web Application Firewall (WAF). The user tried multiple payloads, but the Akamai WAF prevented any of them from passing through. This indicates the robustness of Akamai's WAF in defending against XSS attacks. The user is requesting information on effective bypass techniques for Akamai's WAF to successfully execute XSS payloads. Unfortunately, no payload details are provided in this tweet, so no specific bypass method can be analyzed or shared here.
!!!! Next step, I tried to escalate it to XSS, but Akamai WAF was blocking everything. Couldn’t get any payload through.
If anyone knows a solid bypass, hit me up.— Unknown (@unknown0x3a) August 30, 2025