Bug Bounty Hint
You can try to perform Scientific Notation Bug Attack when playing with number input fields. Money amounts, currency conversion, etc.
...June 17, 2022
Bug Bounty Hint
You can try to perform Scientific Notation Bug Attack when playing with number input fields. Money amounts, currency conversion, etc. ...June 14, 2022
Today I've been playing around with SQLMap's tamper scripts which allow you to bypass protections on a WAF by altering / encoding the injected data. ...June 8, 2022
WAF-A-MoLE
A guided mutation-based fuzzer for ML-based Web Application Firewalls.
Given an input SQL injection query, it tries to produce a semantic ...May 6, 2022
#GoogleAnalytics #JavaScript #MySQL Create a PHP GET Request and handle JWT (Cloudflare stream): I need to implement this API (Fetching per-video anal ...April 17, 2022
Trick to bypass waf, so I found a param it was vuln to SQLi but CF was also there, then I tried to exploit the same param on app and it did work there ...March 25, 2022
Imperva_gzip_WAF_Bypass
Imperva Web Application Firewall (WAF) POST Request Bypass
Imperva Cloud WAF was vulnerable to a bypass that allows attackers ...March 12, 2022
For this site, i cant bypass cloudflare, idk why, so ridiculus
From @Hacker0x01
#sqli
#bugbounty
#hackerone https://t.co/QxaNmtPjTx ...February 15, 2022
Does any one have an idea how can I bypass this.when I try UNION attack it's blocked by WAF(used sqlmap)and when I use boolean payload it gives this e ...January 5, 2022
for sqlmap bypass waf use this
--level=5 --risk=3 -p 'item1' --tamper=apostrophemask,apostrophenullencode,appendnullbyte,base64encode,between,bluecoa ...December 22, 2021