all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Do you whitelist scanner IP addresses when you conduct web application scan?

Add to bookmarks
April 30, 2023, 3:48 a.m. | /u/ongcs

cybersecurity www.reddit.com

We have a few internet facing websites that serve serve our customers for various purpose. We are using Tenable Nessus io to conduct web application scans on these websites. These sites are behind a CDN service and CDN vendor has WAF to protect the sites.

Every times when we conduct web application scan, we will inform CDN vendor to whitelist the scanner source IP ranges. The rationale from my boss is that “we want to scan our web app for …

addresses application cdn customers cybersecurity internet ip addresses nessus protect scan scanner scans service tenable vendor waf web web application websites whitelist

Visit resource

More from www.reddit.com / cybersecurity

how hard do you think is it to get into penetration testing nowadays 4 hours ago | www.reddit.com
cybersecurity hard penetration penetration testing +1
Building an SOC From Scratch: The Importance of Documentation and Network Segmentation 4 hours ago | www.reddit.com
analyst antivirus bank building +23
The Risks of Scattered Logs and Why Centralised SIEM Is Better for Security 7 hours ago | www.reddit.com
companies cybersecurity event event management +21
How-To Install and Setup: Azure Arc, (AMA) Azure Monitor Agent and (DCR) Data Collection Rules … 9 hours ago | www.reddit.com
agent ama arc article +28
Iranian hackers pose as journalists to push backdoor malware 9 hours ago | www.reddit.com
backdoor cybersecurity hackers iranian +3
How deep into certifications should you go at “entry level?” 11 hours ago | www.reddit.com
administration certifications cybersecurity entry +10
Is SOC 2 Report Sufficient for Vendor Risk Management? 18 hours ago | www.reddit.com
application cybersecurity deployment friends +18
Attackers Employ Microsoft Graph API to Evade Detection 20 hours ago | www.reddit.com
api attackers cybersecurity detection +4
Cybersecurity Stash: Your One-Stop Directory for Security Tools and Resources! 20 hours ago | www.reddit.com
cybersecurity directory hey hub +6

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Cybersecurity Consultant

@ Devoteam | Cité Mahrajène, Tunisia
View on infosec-jobs.com

GTI Manager of Cybersecurity Operations

@ Grant Thornton | Phoenix, AZ, United States
View on infosec-jobs.com

(Senior) Director of Information Governance, Risk, and Compliance

@ SIXT | Munich, Germany
View on infosec-jobs.com

Information System Security Engineer

@ Space Dynamics Laboratory | North Logan, UT
View on infosec-jobs.com

Intelligence Specialist (Threat/DCO) - Level 3

@ Constellation Technologies | Fort Meade, MD
View on infosec-jobs.com

Cybersecurity GRC Specialist (On-site)

@ EnerSys | Reading, PA, US, 19605
View on infosec-jobs.com
View more jobs