writeups.xyz
/
Andrea Menin (@AndreaTheMiddle)
Title
Vulnerabilities
Programs
Authors
Response Filter Denial of Service (RFDoS): shut down a website by triggering WAF rule
DoS
RFDoS
Undisclosed
Andrea Menin (@AndreaTheMiddle)
ModSecurity: Path Confusion and really easy bypass on v2 and v3
WAF Bypass
Path Confusion
ModSecurity
Andrea Menin (@AndreaTheMiddle)
AWS WAF Bypass: invalid JSON object and unicode escape sequences
WAF Bypass
AWS
Andrea Menin (@AndreaTheMiddle)
Page 1 of 1
writeups.xyz
/
Andrea Menin (@AndreaTheMiddle)