Can I exclude a cookie from being scanned

alyasgul's Avatar

alyasgul

12 Feb, 2020 01:22 PM

Hi all;

I am running the following;

arachni --checks=insecure_cookies --platforms=linux,php --scope-directory-depth-limit=blahblah --timeout blahblah url

Ths above works but I need to exclude a certain cookie (_hjid).

Is there any way for me to create an exclusion file/list, or does the command have an exclusion flag etc...

I have read somewhere that exclude_cookies is an option...if so what is the syntax?

Thanks, any help would be appreciated.

Reply to this discussion

Internal reply

Formatting help / Preview (switch to plain text) No formatting (switch to Markdown)

Attaching KB article:

»

Attached Files

You can attach files up to 10MB

If you don't have an account yet, we need to confirm you're human and not a machine trying to post spam.

Keyboard shortcuts

Generic

? Show this help
ESC Blurs the current field

Comment Form

r Focus the comment reply box
^ + ↩ Submit the comment

You can use Command ⌘ instead of Control ^ on Mac