WAF bypass by nemesida_waf

The tweet mentions that a new bypass has been added to a WAF Bypass Tool. This tool can potentially bypass various Web Applica ... February 18, 2024

WAF bypass by SVR_JS

The WAF successfully blocked a path traversal bypass attempt, resulting in a 403 Forbidden code. The specific WAF vendor is un ... February 18, 2024

WAF bypass by rekdt

EC2 instances in the 'Public' zone acting as web servers should still be considered risky despite being behind a load balancer ... February 18, 2024

WAF bypass by securitynl

A bug in ModSecurity allows for a WAF bypass. This vulnerability affects all types of vulnerabilities that ModSecurity is mean ... February 6, 2024

WAF bypass by RootMoksha

A bypass technique for the Cloudflare WAF was discovered, allowing for XSS attacks without the use of parentheses. The payload ... February 5, 2024

WAF bypass by ksg93rd

ModSecurity v3 is vulnerable to a WAF bypass vulnerability (CVE-2024-1019). This vulnerability allows an attacker to bypass th ... February 2, 2024

WAF bypass by the_yellow_fall

This tweet highlights a flaw in ModSecurity that allows a WAF bypass for path-based payloads in request URLs. The vulnerabilit ... February 2, 2024

WAF bypass by KoppeDavid

The Sysdig Threat Research Team recently discovered a vulnerability in AWS WAF that allowed bypassing its defenses using an au ... February 2, 2024

WAF bypass by uMdaliWethu

This tweet discusses bypassing Imperva WAF using a Boolean-based SQL injection payload. The author suspects that they are unab ... February 2, 2024

WAF bypass by U3nerd

The tweet mentions a blog post about exploiting blind SQL Injection manually and learning about mod_waf bypass. The blog post ... February 2, 2024

WAF bypass by DanielCm1410

The Sysdig Threat Research Team recently discovered a vulnerability in AWS WAF that allowed bypassing its defenses using an au ... February 2, 2024

WAF bypass by rachelhilll

The Sysdig Threat Research Team recently discovered a vulnerability in AWS WAF that allowed bypassing its defenses using an au ... February 2, 2024

WAF bypass by seke4l

I discovered a bypass for KNOXSS WAF that allows an XSS attack by using the payload '</<K<Svg Onload=alert(1)>'. T ... February 2, 2024

N/A

The Mystery of WAF Bypassing: A Discussion Sparked by @xAkshayTalekar

In a recent tweet, security researcher @xAkshayTalekar raised an interesting question about WAF (Web Application Firewall) byp ... August 1, 2023

N/A

Bypassing WAFs: A Compilation of Payloads Shared on Twitter by Vahidnameni

In a recent tweet, security researcher Vahidnameni shared a valuable resource for anyone interested in bypassing Web Applicati ... August 1, 2023

CloudFlare , XSS

Cloudflare Bypass for XSS Vulnerabilities Shared by Anastasis_King

In a recent tweet, security researcher Anastasis_King shared a Cloudflare bypass for Cross-Site Scripting (XSS) vulnerabilitie ... August 1, 2023

AWS WAF , JSON-Based hpp-like method

Unveiling a Unique AWS WAF Bypass Technique by rbidou

In a recent tweet, rbidou shared a unique AWS WAF bypass technique. This method is JSON-Based hpp-like, a vulnerability type t ... July 31, 2023

AWS WAF , JSON-Based hpp-like technique

Exploring a Unique AWS WAF Bypass Technique: A Tweet Analysis by @rbidou

In a recent tweet, security researcher @rbidou shared an interesting AWS WAF bypass technique. This method is a JSON-Based hpp ... July 31, 2023

N/A

Hacking Tips from a Japanese User: Bypassing WAF and More

In a recent tweet, Japanese user asadamyouji shared some interesting insights into the world of hacking. While we don't condon ... July 31, 2023

WAF bypass by d0znpp

? Check out the great resource @d0znpp has put together! It's a collection of WAF bypasses from the Twitter community. ? A mus ... July 30, 2023

SQL injection

WAF bypass SQL injection by Barbarossa0x

@Barbarossa0x just shared a great list of ways to bypass WAF & compromise SQL injection: whitespace alternatives, comments, pa ... July 30, 2023

WAF bypass by waf_bypass

RT @waf_bypass: ¡AndalusiaHacker ?? ha descubierto una herramienta ? para buscar Local File Inclusión's: LFI-FINDER! ? Prueb ... July 30, 2023

WAF bypass by andalusiahacker

s @andalusiahacker ?? descubre una ? herramienta para encontrar Local File Inclusión's: LFI-FINDER. Pruébala para detectar ... July 30, 2023

WAF bypass by waf_bypass

AnonymousH4ck35 has the goods! ? If you're into #pentesting & #hacking, @waf_bypass has put together an awesome cheat sheet, W ... July 30, 2023

WAF bypass by AnonymousH4ck35

@AnonymousH4ck35 has the goods! ? If you're into #pentesting & #hacking, check out their cheat sheet, WAF bypass tool & method ... July 30, 2023

mod_security

WAF bypass by CVEnew

@CVEnew reports that CVE-2023-38199 coreruleset (aka OWASP ModSecurity Core Rule Set) has an issue that could allow attackers ... July 13, 2023

Akamai , XSS

Akamai bypass XSS by kaungmyatmeow

@kaungmyatmeow was surprised to find out that Akamai WAF is easy to bypass ? Not a good sign for security ? Maybe it's time to ... July 13, 2023

WAF bypass by waf_bypass

@waf_bypass Don't let bad actors take control! ??? Mark_Hellyer has the tips you need to secure your applications & keep them ... July 13, 2023

Imperva

Imperva bypass by Mark_Hellyer

???? Protecting applications from bad actors isn't easy, but @Mark_Hellyer has the answers! Check out his blog to find out how ... July 13, 2023

WAF bypass by waf_bypass

@waf_bypass just announced a new security vulnerability found in #coreruleset. Attackers can bypass a WAF with crafted payload ... July 13, 2023