I’m scanning a site. It has a EULA popup, which - if rejected - results in a parameter appearing in future POST requests which triggers a logoff. I would like for this parameter to never be sent. InsightAppSec has many advanced options but some of them - including ParameterParserConfig - aren’t documented.
Is it possible to achieve what I’ve described? i.e stripping a given POST x-www-form-urlencoded parameter (or even an arbitrary string based on regex) so that it’s never sent?
I’ve tried macro-based authentication in order to include clicking Accept on the EULA, but the parameter is still getting populated at some point.