IP addresses for Pentest

Aikido uses dedicated IP addresses and request headers to perform pentesting of your environment. To prevent connectivity issues, rate limiting, or security blocks, add these IPs and headers to your firewall’s allowlist or other security software.

IP Addresses

EU-based IP addresses (default):

52.48.122.82
54.194.175.200
52.210.210.125
54.76.103.212
54.217.255.121
52.49.182.62
34.252.102.184
52.209.168.11

Optional IP addresses (used for troubleshooting with support):

79.127.239.171

Request Headers

All requests from Aikido's pentesting include one of the following headers, which can also be used for allowlisting:

aikido-pentest-agent
aikido-pentest-agent/1.0 (Agent <AGENT_UUID>)

Third party provider instructions

For instructions on adding IP addresses to allowlists with third-party providers, refer to the following resources:

Cloudflare WAF
- For Cloudflare Turnstile the IP's also need to be added to Cloudflare IP Access List. Aikido IP's should be in both lists for scan to work.
Azure WAF
AWS WAF.
- For WAFs behind Application Load Balancers or CloudFront, your WAF should check the last IP address in the X-Forwarded-For header.
Vercel WAF
- Use the "bypass" action for trusted IPs

Last updated 8 days ago

Was this helpful?