Google Cloud WAF

Introduction

This section covers an introduction to the GCP Web Application Firewall and shows how to bypass GCP WAF protection with a request body larger than 8KB.

GCP WAF is a web application firewall that helps protect your web applications or APIs against common web exploits and bots that may affect availability, compromise security, or consume excessive resources.

What are we going to cover

This chapter will primarily cover

Take a quick look at how WAF works
The documented limitation within the GCP WAF
Inspecting a request body
What particular configurations are vulnerable and how an attacker can take advantage of this limitation

PreviousAWS WAF Byte Size Bypass NextGoogle Cloud WAF Bypass

Last updated 2 years ago