WAF bypass by yu1c1yu1c1 The tweet discusses a method to bypass IP restrictions and client authentication on the origin side by creating multiple tenan ... December 12, 2024
WAF bypass by __kokumoto The tweet discusses a widespread misconfiguration that impacts major WAF vendors like Akamai, Cloudflare, Fastly, and Imperva, ... December 12, 2024
WAF bypass by TheYasinSpace The tweet mentions advanced XSS payloads for Next.js which can potentially bypass the WAF. This is a critical vulnerability af ... December 12, 2024
WAF bypass by todiojisan The tweet highlights the challenges faced in bypassing a new WAF within a short time frame. It emphasizes that even with a spe ... December 12, 2024
WAF bypass by BRuteLogic A new XSS bypass technique was discovered for AWS WAF. The payload <script>alert('XSS bypass')</script> ... December 11, 2024
WAF bypass by _zwink When performing a WAF bypass using the origin IP address, you can add the IP address to Burp Network Connection 'Hostname ... December 11, 2024
WAF bypass by the_yellow_fall A major misconfiguration vulnerability has been discovered affecting top WAF vendors through CDN integrations. Attackers can e ... December 11, 2024
WAF bypass by seke4l A tweet by @BRuteLogic highlights a XSS bypass payload that can be used in URL context. The payload is JavaScript:"<Sv ... December 9, 2024
WAF bypass by mylinkingcom This tweet mentions the deployment of a bypass solution to distribute traffic to inline security tools such as SSL, IPS, WAF, ... December 9, 2024
WAF bypass by ryancbarnett The tweet mentions using a custom CDN WAF bypass as a temporary mitigation for customers while they fix their code. It emphasi ... December 8, 2024
WAF bypass by cyb3rf034r3ss Python scripting is a versatile tool for WAF bypasses across all vendors. Its flexibility allows pentesters to create custom s ... December 8, 2024
WAF bypass by 2301firoz The tweet mentions a WAF filter bypass related content. It is important for security professionals to stay updated with the la ... December 7, 2024
WAF bypass by evrnyalcin The tweet mentions using printf to bypass a WAF and receiving ANSI back in the terminal. This technique can be used for variou ... December 7, 2024
WAF bypass by CandidTodayTech A critical vulnerability in web application firewalls (WAFs) used by some of the world’s largest companies, including JPMorg ... December 6, 2024
WAF bypass by bountywriteups The tweet mentions a bypass using a link shortener to bypass a Web Application Firewall (WAF). This technique is interesting a ... December 6, 2024
WAF bypass by imooaaz The tweet describes a bypass using a Link Shortener to bypass a WAF. This bypass technique is not specific to any particular W ... December 6, 2024
WAF bypass by kira_321k The tweet suggests that there are multiple bypass techniques for WAFs, specifically mentioning SQL injection payloads like /** ... December 5, 2024
WAF bypass by AndreGironda BreakingWAF is a widespread WAF bypass that claims to impact nearly half of Fortune 100 companies. The specific details of the ... December 5, 2024
WAF bypass by Zafran_io The Zafran Research Team has uncovered a critical misconfiguration in popular web application firewall (WAF) services includin ... December 4, 2024
WAF bypass by ctbbpodcast Embedding payloads in credentials is an effective way to bypass WAF detection. When credentials are included in URLs, they are ... December 4, 2024
WAF bypass by BenSeri87 20% of Fortune1000 companies fail to properly configure their CDN-WAF solutions, leading to a widespread WAF bypass that can a ... December 4, 2024
WAF bypass by ruben_v_pina A bypass has been discovered for Amazon Cloudfront WAF using the %ff%00%ff sequence. This sequence terminates the string and s ... December 4, 2024
WAF bypass by RodoAssis The tweet mentions the importance of including a link to online test pages to demonstrate that a WAF bypass works. It highligh ... December 2, 2024
WAF bypass by MiniMjStar The tweet mentions a bypass using the payload 'exercises but brute gym' for CDN WAFs like Akamai. This bypass seems ... December 2, 2024
WAF bypass by MiniMjStar It seems like @RodoAssis is interested in famous CDN WAF tests and payloads for bypassing whitelist/blacklist. Let's expl ... December 2, 2024
WAF bypass by testtriage21277 A new Cloudflare WAF bypass for XSS has been discovered by xss0r. The payload used is <details open ontoggle=alert(document ... December 1, 2024
WAF bypass by PwnlabMe This tweet provides a Nuclei template that can be used for SSRF scanning and WAF bypass. The template can be utilized for secu ... December 1, 2024
WAF bypass by kCXYAks2BMZcpOi A new Cloudflare WAF bypass for XSS has been discovered by xss0r. The bypass payload is <details open ontoggle=alert(do ... November 29, 2024
WAF bypass by kCXYAks2BMZcpOi A new XSS bypass for Cloudflare WAF has been discovered by xss0r. The payload used is <details open ontoggle=alert(document ... November 29, 2024
WAF bypass by BRuteLogic The tweet mentions tricks to obfuscate alert, confirm, and prompt dialogs in order to bypass a filter or WAF for XSS attacks. ... November 28, 2024