Archive

WAF bypass by LanaJam88979549

The tweet suggests manual endpoint crawling to find parameters that can be exposed, such as 'index.php?I'd=', and manually checking the ... August 12, 2024

WAF bypass by Ahmed54528554

The tweet mentions a SQL injection (SQLi) bypass for WAF (Web Application Firewall). The bypass payload used is 'sqli bypass waf'. This bypa ... August 12, 2024

WAF bypass by 0vulns

The tweet suggests the possibility of manually bypassing a Web Application Firewall (WAF) and offers to code a tamper for that purpose. While the spec ... August 12, 2024

WAF bypass by coffinxp7 – August 11, 2024

This tweet suggests the need to scan ports on internal IP addresses and bypass a Web Application Firewall (WAF). Port scanning is commonly used to ide ... August 11, 2024

WAF bypass by r00tSid

The user encountered issues bypassing Cloudflare and Akamai WAFs while using a SQL injection tool. They were unable to bypass the WAFs using sqlmap or ... August 11, 2024

WAF bypass by MaconF67102

The tweet mentions a Stored XSS vulnerability and a Characters Limitation Bypass used to bypass a Web Application Firewall. The WAF vendor is unspecif ... August 10, 2024

WAF bypass by mqst_

The tweet provides a list of resources related to bypassing WAFs, including tools and websites. It seems to showcase different methods to bypass WAFs ... August 9, 2024

WAF bypass by CyberYetixx

A bypass for XSS has been discovered in Fortinet FortiGate WAF. The payload used for the bypass is <details open ontoggle="(()=>alert`ibrah ... August 9, 2024

WAF bypass by RafikAyari8

A tweet suggesting the creation of a tool to help bypass WAFs for SQL injection vulnerabilities using techniques similar to Atlas Quick SQLMap Tamper ... August 9, 2024

WAF bypass by coffinxp7 – August 8, 2024

The tweet mentions the need to bypass a Web Application Firewall (WAF). More details about the vulnerability type and WAF vendor are not provided. It& ... August 8, 2024

WAF bypass by mmrecon

A new tool called Unwaf has been developed to bypass Web Application Firewalls (WAFs) using passive techniques. This tool is designed for bug bounty h ... August 7, 2024

WAF bypass by nedustarboy88

A tweet mentioning the Agartha extension on BurpSuite to generate LFI payloads that bypass the WAF. The vendor of the WAF is unknown. The tweet sugges ... August 6, 2024

WAF bypass by 0xdabbad00

The tweet mentions that there was a misaligned expectation of what the WAF would do, rather than an actual WAF bypass. It highlights the importance of ... August 6, 2024

WAF bypass by bountyoverload

The tweet discusses bypassing a WAF to access the /etc/passwd file, indicating a potential File Inclusion vulnerability. It suggests that if the WAF i ... August 6, 2024

WAF bypass by BuraqGamerz

The tweet discusses the comparison of Open XSS Tools VS Paid XSS Tools for bypassing Cloudflare WAF. The tools mentioned are Dalfox vs Xss Strike and ... August 6, 2024

WAF bypass by seke4l

A bypass for Fortinet FortiGate WAF has been discovered for XSS vulnerability. The payload used for bypass is '<details open ontoggle="(( ... August 5, 2024

WAF bypass by it4chis3c

The tweet highlights mastering Stored XSS with advanced payloads and WAF bypass techniques. The blog provides expert tips and POCs for uncovering hidd ... August 5, 2024

WAF bypass by AbhijeetKumaw10

The tweet mentions mastering Stored XSS with expert tips, advanced payloads, and WAF bypass techniques. It provides a link to a blog with POCs. This c ... August 5, 2024

WAF bypass by 0xCobb

The WAF Bypass - Exclude spaces challenge on YesWeHack has been completed! This bypass focuses on XSS vulnerability and excludes spaces. Check it out ... August 5, 2024

WAF bypass by BuraqGamerz

A bypass has been discovered for Fortinet WAF affecting XSS vulnerabilities. The bypass payload used was Ibrahim Xss VS Knoxss VS Dalfox VS Xss Strike ... August 5, 2024

WAF bypass by ibrahimxss_

A recent tweet mentioned a successful XSS bypass on Fortinet WAF using the payload <script>alert('WAF Bypassed')</script>. This ... August 5, 2024

WAF bypass by HackingTeam777 – August 5, 2024

Fortinet FortiGate WAF XSS Bypass A recent bypass for Fortinet FortiGate WAF was discovered using the following payload: &lt;details open ontogg ... August 5, 2024

WAF bypass by WllGates

A new XSS bypass for Fortinet FortiGate WAF has been discovered. The payload used is <details open ontoggle="(()=>alert`ibrahimxss`)()" ... August 5, 2024

WAF bypass by sratarun

A new XSS bypass payload has been discovered for Imperva WAF. The payload is xss"&gt;&lt;input%20type=hidden%20oncontentvisibilityautosta ... August 4, 2024

WAF bypass by Supakiad_Mee

The tweet mentions a Stored XSS vulnerability affecting Microsoft Bing. The tweet indicates that there was no WAF (Web Application Firewall) in place ... August 4, 2024

WAF bypass by ibrahimxss_

The #IBRAHIMXSS Tool has successfully bypassed the Fortinet FortiGate Web Application Firewall (WAF) using an XSS payload. This showcases the tool ... August 4, 2024

WAF bypass by GREENSL31146133

A new XSS vulnerability has been discovered in Cloudflare's WAF. The bypass payload <Img Src=OnXSS OnError=confirm('OPENBUGBOUNTY')& ... August 4, 2024

WAF bypass by it4chis3c

The tweet discusses mastering reflected XSS and uncovering hidden XSS flaws with expert tips and advanced payloads. It also mentions WAF bypass techni ... August 4, 2024

WAF bypass by AbhijeetKumaw10

The tweet mentions mastering Reflected XSS and uncovering hidden XSS flaws with expert tips, advanced payloads, and WAF bypass techniques. This is a s ... August 4, 2024

WAF bypass by ibrahimxss_

A bypass for Fortinet FortiGate's XSS protection has been discovered. The payload used is &lt;details open ontoggle="(()=&gt;alert`i ... August 4, 2024