Acunetix Scans being Blocked by Cloudflare Human Verification
Hi all our Acunetix scans are being blocked by the Humand Verification page for our site behind cloudflare. Which rule is best suited in WAF to bypass this?
6 Replies
Do you have some way of identifying a scan from a request? Does it come from a specific IP address?
Yes there are several source IPs i could add
Yeah, so adding those IPs(along with a UserAgent, if you have it) in a WAF
Allow rule should allow Acunetix to bypass checksone small problem with that, Allow Rules don't exist anymore ;p
Wait wut
Rlly?
that's all old Custom Rules lol, now it's just skip action
I would check Security -> Events and see what is blocking it first, and then use Skip action in a rule matching IPs or whatever you need to skip that specific feature. If it's Bot Fight mode on free for example you can't skip it