Parameters in the customized error page:
Transaction ID = 4433885-PPE1
Session ID = AAE7FE6ZaDt4AAAAAAAAADtjGHZT4TuiWcrLOwY5g5Kwfzhp2muUPsdIur5l5bdDOw==
Violation Category = APPFW_STARTURL
Violation Log = CEF:0|Citrix|NetScaler|NS14.1|APPFW|APPFW_STARTURL|6|src=52.15.55.198 geolocation=Unknown spt=25326 method=GET request=https://service.ireks.com/sitemap.xml msg=Disallow Illegal URL. cn1=570023 cn2=4433885 cs1=waf-pro_service.ireks.com cs2=PPE1 cs3=AAE7FE6ZaDt4AAAAAAAAADtjGHZT4TuiWcrLOwY5g5Kwfzhp2muUPsdIur5l5bdDOw== cs4=ALERT cs5=2025 act=blocked
Session Cookie : -