WAF Evavasion Techniques #3 Posted on September 2, 2018 By admin No Comments on WAF Evavasion Techniques #3 pentesting Part 3 of a series of posts by @TheMiddle, using uninitialized Bash variable to bypass Web Application Firewalls, tested on CloudFlare WAF and ModSecurity OWASP CRS. Chck it out ::HERE::