Archive

XSS

WAF bypass XSS by AmoloHT

New Bug Bounty Tool! TTWAF, or Test This WAF, is a Web Application Firewall (WAF) bypass testing tool. You can test a list of payloads like XSS, LFI, ... June 15, 2022

SQL injection

WAF bypass SQL injection by therceman

Bug Bounty Hint You can try to perform Scientific Notation Bug Attack when playing with number input fields. Money amounts, currency conversion, etc. ... June 14, 2022

CloudFlare

CloudFlare bypass by Blackhat010101

Bypass protegida por cloudflare https://t.co/NMlM0VRXbt #BlackHat ... June 14, 2022

CloudFlare , SQL injection

CloudFlare bypass SQL injection by m_lathof

SQLMAP Powerful tools Bypass Cloudflare Waf https://t.co/iI9MjZ6LdH @sqlmap #sqlmap ... June 14, 2022

F5

F5 bypass by Trellix_JP

???????2022?5???????????CVE-2022-1388: F5 BIG-IP Authentication bypass,CVE-2022-22972: VMware authentication bypass, CVE-2022-26925: Windows LSA Spoof ... June 14, 2022

WAF bypass by SecureOwl

Bug bounty submission: I was able do discover a domain via CT logs and bypass the WAF to connect to it Me: you discovered a public website and connec ... June 13, 2022

Imperva , XSS

Imperva bypass XSS by brutelogic

Imperva WAF #XSS #Bypass <svg><set onbegin=d=document,b='`',d['loca'+'tion']='javascript&colon;aler'+'t'+b+domain+b> https://t.co/c ... June 13, 2022

WAF bypass by _Y000_

Que bonito es ver mis payloads en algunos escritos ? https://t.co/MiqdFzP3dJ ... June 13, 2022

WAF bypass by spider_sec

Bug Bounty Tips Explanation : Bypass WAF Tags: #cybersecurity #hacking #hacker #ethicalhacking #infosec #cybersecurity #kalilinux #pentesting #malwar ... June 13, 2022

WAF bypass by 1877team

If you bypass their Firewall and WAF and then scan without them, you'll see almost Iraqi banks, telephone companies, and online markets are vuln -_- ... June 12, 2022

WAF bypass by MalwareJake

WAF set to bypass mode https://t.co/IoOvGGLNE1 ... June 11, 2022

Akamai , XXE

Akamai bypass XXE by rajraj64180

You can bypass Akamai WAF's XXE filters by HTML encoding the SYSTEM entity within a payload like this: <!DOCTYPE foo [<!ENTITY % a "&#x3c; ... June 11, 2022

Akamai , XXE

Akamai bypass XXE by infosec_au

You can bypass Akamai WAF's XXE filters by HTML encoding the SYSTEM entity within a payload like this: <!DOCTYPE foo [<!ENTITY % a "&#x3c; ... June 11, 2022

WAF bypass by OPOSEC

Abusing PHP query string parser to bypass IDS, IPS, and WAF. https://t.co/437ST1bGB4 #Security #282 (2019) ... June 11, 2022

CloudFlare , XSS

CloudFlare bypass XSS by Gamliel_InfoSec

#XSS is about to control user actions. The cited tweet + https://t.co/8itR4RuXwn helped me to have #XSS done Payload: '"><p only=1337 onmouseen ... June 10, 2022

CloudFlare

CloudFlare bypass by FreelanceJobRSS

#WebHosting #WebsiteManagement Cloudflare help: I need to get a backup of my website off my hosting plan with cloudflare. (Budget: £10 - £20 GBP, Jo ... June 10, 2022

WAF bypass by jstnkndy

When life gives you lemons: I found it was possible to bypass the WAF by using the X-Forwarded-For header. More impactful was that it was possible to ... June 10, 2022

F5

F5 bypass by z3r082

el %$#@ WAF BIG-IP F5 me está consumiendo la vida. Tengo LFI y upload, y no hay forma de hacerle bypass.... ... June 10, 2022

AWS WAF , CloudFlare

CloudFlare bypass by FreelanceJobRSS

#AmazonWebServices #Cloudflare Need help getting a website back up: The site is running on aws ec2 on nginx server and served through cloudflare (Budg ... June 9, 2022

SQL injection

WAF bypass SQL injection by KaitlynGuru

Today I've been playing around with SQLMap's tamper scripts which allow you to bypass protections on a WAF by altering / encoding the injected data. ... June 8, 2022

CloudFlare

CloudFlare bypass by FreelanceJobRSS

#DNS #EmailHandling DKIM, SPF, BIMI, DMARC - cloudflare/mailerlite: I need assistance setting these up properly. Please see: https://t.co/OPvlBTpQj3 ( ... June 8, 2022

F5

F5 bypass by FreelanceJobRSS

#Azure F5 BigIP LTM and ASM HA pair in azure setup and configuration: F5 BigIP LTM and ASM HA pair in azure setup and configuration setup of a 2 bigIP ... June 7, 2022

Akamai , XSS

Akamai bypass XSS by drak3hft7

Just got a reward for a vulnerability submitted on @yeswehack. #YesWeRHackers xss with bypass akamai waf ? ... June 7, 2022

WAF bypass by spider_sec

Bug Bounty Tips Explanation : WAF Bypass Tags: #cybersecurity #bugbounty #bugbountytips #hacking #security #offsec #googledorks #wafbypass https://t ... June 7, 2022

CloudFlare

CloudFlare bypass by cxaqhq

cloudflare 5s bypass????????? ... June 6, 2022

Akamai

Akamai bypass by awsmje

Buying Px, akamai and shape bypass, DM (not overpaying) ... June 6, 2022

AWS WAF , CloudFlare

CloudFlare bypass by akaclandestine

GitHub - HyukIsBack/KARMA-DDoS: DDoS Script (DDoS Panel) with Multiple Bypass ( Cloudflare UAM,CAPTCHA,BFM,NOSEC / DDoS Guard / Google Shield / V Shie ... June 4, 2022

WAF bypass by bararchy

I still hold the maybe unpopular opinion that WAF products have done more damage to AppSec than they actually help, more times than not they are used ... June 4, 2022

CloudFlare

CloudFlare bypass by creadpag

BYPASS Cloudflare Block: https://t.co/27G7mZDAIw View: https://t.co/plpPP5yjxP ... June 4, 2022

CloudFlare

CloudFlare bypass by heypankaj_

? Package of the Day ? cloudflare-bypasser https://t.co/GCc1fr8fLu A simple enough module to bypass Cloudflare's anti-bot page ("I'm Under Attack Mo ... June 4, 2022