https://waf.cumulusfire.net/

<html><head>
        <meta charset="utf-8">
        <title>CumulusFire</title>
        <link rel="shortcut icon" type="image/x-icon" href="https://storage.googleapis.com/cumulusfire_greeting/img/favicon.ico">
        <link rel="stylesheet" type="text/css" href="https://storage.googleapis.com/cumulusfire_greeting/img/layout.css">
      </head>
      <body>
      <h1> Welcome WAF Tester </h1>
      <ul> 
        <li> The Cloudflare Web Application Firewall (Cloudflare WAF) checks incoming web and API requests and filters undesired traffic based on sets of rules called rulesets.</li>
        <li> Learn more about the product <a href="https://developers.cloudflare.com/waf/">here</a> </li>
      </ul>
      <h3> Query parameter names for XSS</h3>
      <ul> 
        <li> XSS in HTML context - <a href="/?globalHtml=payload">?globalHtml=payload</a> </li>
        <li> XSS in HTML attribute context - <a href="?attributeHtml=payload">?attributeHtml=payload</a> </li>
      </ul>
      <h3> Mandatory Requirement </h3>
      <ul> 
        <li> Test report should clearly show evidence of bypass </li>
        <li> Example: for XSS bypass, you must execute arbitrary Javascript. This means an alert(1) pop-up at minumum.</li>
      </ul>

        <div>
          
        </div>

        <div>
          <input type="text" value="">
        </div>
        <footer class="footer">
          <div class="main-footer__container">
            <div class="main-footer__menu_bottom">
              <div class="main-footer__menu_bottom__container">
                <div class="main-footer__menu_bottom__copyright">
                  <span>© 2019 Cloudflare, Inc.</span>
                  <div align="left">
                    <a href="https://cumulusfire.net">Back to CumulusFire</a>
                  </div>
                  <div>
                    <a href="https://www.cloudflare.com/privacypolicy/">Privacy Policy</a>
                    <a href="https://www.cloudflare.com/website-terms/">Terms of Use</a>
                    <a href="https://www.cloudflare.com/abuse/">Trust &amp; Safety</a>
                    <a href="https://www.cloudflare.com/trademark/">Trademark</a>
                  </div>
                </div>
              </div>
            </div>
          </div>
        </footer>
      
    </body></html>