WAF blocking Netsparker

The firewall seems to be blocking Netsparker so i cant scan my website.
Ive added a rule to allow it based on the ip address and this rule seems to trigger but then it blocks it anyway.
The website works fine from a browser it just seems to be requests from netsparker that are getting blocked.

Screenshot showing the allow rule triggering then the challenge triggers.

Screenshot showing the request info that results in the challenge.

You’ll want to whitelist the addresses from https://www.invicti.com/support/scanning-production-environment/#overloading-the-server-with-requests at https://dash.cloudflare.com/?to=/:account/:zone/security/waf/tools

1 Like

Thanks that worked!

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.