You can bypass WAFs using a simple Match&Replace rule in Burp Suite, I used it and I simply bypassed a WAF restriction just now.
I Covered the Syntax and the Headers you can use.

#BugBounty #BugBountyTip #BugBountyTips #TogetherWeHitHarder #InfoSec https://t.co/lrmw0vX7QJ

The… https://t.co/nmofXM5Xbi