WAF Bypass

​Join Felipe Zipitria, OWASP Project leader for Core Rule Set, in this hands-on 2-hour workshop, where you will explore the fascinating and evolving world of Web Application Firewall (WAF) bypassing—a critical topic for penetration testers, red teamers, and security engineers.

​
Participants will be introduced to the fundamentals of WAFs, including how modern systems detect and block potentially malicious requests. You'll then dive into a range of realistic evasion techniques used to sneak past WAF protections and interact with protected applications - taught by the author of the firewall rules!