How do I exclude one or more URLs from a web assessment?

You can exclude specific URLs from being scanned during the assessment. Note that only exact matches for the URL will be excluded.

For advanced exclusions using custom rules, see:

Create custom URL exclusion rules

Exclude URLs for a web application

1. Log in to your Security Center.

2. In the main navigation bar, hover over Assets.

3. From the dropdown menu, select Web applications & APIs.

4. Click Edit next to the web application you want to update.

5. Select the Crawl exclusion list section.

6. Under Blacklist, enable URLs.

7. Enter the URLs you want to exclude and press Enter to add each one. You can add multiple URLs.

   • If you want to exclude a form, it is recommended to add the form action URL. Example URLs:

     • http://www.yourbusiness.com/myform.html

     • https://www.yourbusiness.com/formmail.php

8. Click OK to save the changes.

How to find a form action URL using Chrome

1. Open Chrome and navigate to the web page with the form.

2. Right-click the form’s submit button and select Inspect.

3. In the inspection window, select the Network tab.

4. Submit the form.

5. In the Network tab, locate the request for the form submission.

6. Right-click the request and select Copy → Copy link address.

7. Paste this URL in the Blacklist URLs field as described in step 7 above.

Once configured, the scan will skip the specified URLs during the next assessment.