WAF bypass by kakpozvonitru

The tweet mentions a WAF bypass by HoiyaOCE, highlighting the importance of understanding WAF filters and techniques used by d ... March 6, 2025

WAF bypass by kakpozvonitru

A SQL injection bypass technique was discovered by mmffkkdd where the SQLi payload is prefixed with JSON syntax to evade detec ... March 6, 2025

WAF bypass by kakpozvonitru

A tutorial on bypassing Huawei WAF has been mentioned in a tweet by ridingwithmopz. Stay tuned for further updates as we analy ... March 6, 2025

WAF bypass by _4ft3rd4rk

When injecting angular brackets or double quotes without encoding, basic payloads like <script>alert(1)</script> c ... March 6, 2025

WAF bypass by BjoernKraus

A SQL Injection bypass attempt was detected in the log with the payload ticks or backticks. The matched data was `600Jq6u` fou ... March 5, 2025

WAF bypass by coffinxp7

The tweet mentions a Cloudflare XSS and SQLi bypass. Depending on the WAF rules and filtering used by Cloudflare, the effectiv ... March 5, 2025

WAF bypass by Oluwakomiyo_

The tweet mentions the use of Ghauri payloads and advanced techniques to bypass a WAF. The vendor of the WAF is unknown. The b ... March 5, 2025

WAF bypass by hackprove_

An Akamai WAF bypass was discovered that led to the discovery of 30 XSS bugs. This vulnerability affects XSS and specifically ... March 4, 2025

WAF bypass by HoiyaOCE

When learning about WAF filters and how to bypass them, it's important to understand the underlying technology and techni ... March 4, 2025

WAF bypass by LahsenNoua97684

A Cloudflare XSS WAF bypass was discovered using the payload: &gt;&lt;Svg Only=1 OnLoad=confirm(atob("Q2xvdWRmbGF ... March 3, 2025

WAF bypass by viehgroup

Crazy Aliyun WAF Bypass: Payloads 'cat /etc/hosts' and 'tac /etc/hosts' trigger the WAF. This bypass affec ... March 2, 2025

WAF bypass by mainbadguy

Cloudflare whitelists their own bots and fetchers in the WAF to bypass captchas. This allows their internal tools to navigate ... March 2, 2025

WAF bypass by bug_vs_me

A tweet indicating interest in collaborating for escalating XSS attacks and bypassing WAF or CSP restrictions. The provided pa ... February 28, 2025

WAF bypass by mmffkkdd

The tweet mentions that by prefixing the SQLi payload with JSON syntax, the WAF can be bypassed. This technique can be effecti ... February 28, 2025

WAF bypass by 0x0_mdshakib

A command injection bypass was discovered that exploits the WAF by using the payload '`cat /et$()c/pa's'swd`� ... February 28, 2025

WAF bypass by JustWantToQ1

The tweet mentions the frustration of not being able to receive proper support for finding a WAF bypass. It highlights the dif ... February 28, 2025

WAF bypass by theXSSrat

This tweet provides a methodology for XSS bug bounty hunting. It includes steps for reconnaissance, identifying injection poin ... February 28, 2025

WAF bypass by tmz900

This tweet mentions a bug fix that didn't entirely fix the XSS vulnerability, leading to a second report. Although it ... February 27, 2025

WAF bypass by 1hehaq

Wafmap is a tool that includes most bypass techniques for automation. It utilizes lambda algorithms to adapt to WAF behavior. ... February 26, 2025

WAF bypass by ridingwithmopz

The tweet mentions a tutorial on bypassing Huawei WAF. The bypass method is not specified in the tweet. Further analysis is ne ... February 26, 2025

WAF bypass by vcantry

An XSS bypass technique was identified using the payload 'onerror=alert;throw 123;' which can bypass various WAFs. T ... February 25, 2025

WAF bypass by MiniMjStar

This tweet describes an XSS WAF bypass using the payload '10006630~!~/[redacted]/a/unix/apps/WAS/FileService/files/[redac ... February 24, 2025

WAF bypass by elmehdimee

The tweet describes a successful bypass of a WAF using a XSS payload. The attacker was unable to bypass the WAF by extracting ... February 23, 2025

WAF bypass by ryancbarnett

The tweet mentions a WAF bypass XSS challenge from 2013 that included MentalJS and Dompurify. It states that despite being a d ... February 21, 2025

WAF bypass by YoyoDavelion

The tweet describes an XSS WAF bypass that escalated to a PII (Personally Identifiable Information) leak and authenticated sen ... February 21, 2025

WAF bypass by OludareEzekiel9

The tweet mentions that it is hard to find XSS vulnerabilities unless you can bypass the Web Application Firewall (WAF). The m ... February 21, 2025

WAF bypass by Barbarossa404

The tweet mentions a custom XSS payload developed for bypassing Akamai and Cloudflare WAFs. The payload targets XSS vulnerabil ... February 21, 2025

WAF bypass by 0xnuy

This method utilizes TOR to rotate IPs during fuzzing, allowing for the bypass of rate limits and avoidance of WAF blocks. It ... February 19, 2025

WAF bypass by m1ru1

The tweet suggests using a commercial WAF for better telemetry and protection at scale. It mentions the use of ModSecurity and ... February 18, 2025

WAF bypass by w0rms3c

The tweet mentions a WAF bypass related to XSS. It includes references to HackerOne, BugCrowd, and nuclei templates. The post ... February 17, 2025