How to mark a vulnerability as a false positive & exclude it from future scans
If you find that a vulnerability reported by the automated scanner is a false positive, you can report it to us and also exclude it from being flagged in subsequent scans.
Open the vulnerability that you believe is a false positive from the Vulnerabilities tab
From the vulnerability window, scroll down and click on the Mark false positive button
Now enter a note to help remember why it is a false positive. Keep the "Exclude scanning of this vulnerability in all future scans" box checked if required.
Click on "Add note and Mark false positive". Done!
To view and manage the excluded scan rules list, head over to the Settings page, and select Manage Excluded Scan Rules
How to report a false positive
Open the vulnerability that you believe is a false positive from the Vulnerabilities tab
From the vulnerability window, scroll down and click on the Mark false positive button
Now enter a note to help remember why it is a false positive. Keep the "Exclude scanning of this vulnerability in all future scans" box checked if required.
Click on "Add note and Mark false positive". Done!
How to Manage Excluded Scan Rules
To view and manage the excluded scan rules list, head over to the Settings page, and select Manage Excluded Scan Rules
Updated on: 24/10/2024
Thank you!