I understand that you would like to know if Azure WAF prevents from Client-side desync attacks (CSD) and if yes, you would like to know which OWASP ruleset and ruleID prevents this. I read a bit about Client-side desync attack and found that CSD attack involves two key techniques: JavaS...