Some WAFs may ignore non-standard headers like X-Forwarded-For, X-Originating-IP, and X-Client-IP. Injecting payloads in these headers could potentially bypass WAF filters. This could be a useful technique for bypassing WAF protection. #CyberSecurity #WAFBypass #InfoSec
For more insights, check out the original tweet here: https://twitter.com/yogsec/status/1888826369179787362. And don’t forget to follow @yogsec for more exciting updates in the world of cybersecurity.