gotestwaf: test different web application firewalls (WAF) for detection logic and bypasses