IP Addresses for Pentest

Aikido uses dedicated IP addresses and request headers to perform pentesting of your environment. To prevent connectivity issues, rate limiting, or security blocks, add these IPs and headers to your firewall’s allowlist or other security software.

IP Addresses

EU-based IP addresses

52.48.122.82
54.194.175.200
52.210.210.125
54.76.103.212
54.217.255.121
52.49.182.62
34.252.102.184
52.209.168.11

Optional IP addresses

Used for troubleshooting with support.

79.127.239.171

Request Headers

All requests from Aikido's pentesting include one of the following headers, which can also be used for allowlisting:

aikido-pentest-agent
aikido-pentest-agent/1.0 (Agent <AGENT_UUID>)

Third party provider instructions

For instructions on adding IP addresses to allowlists with third-party providers, refer to the following resources:

Cloudflare WAF
- Cloudflare Turnstile does not support allowlisting specific client IP addresses. If you need to bypass Turnstile for Aikido scanning traffic, you must do it in your application code. We recommend bypassing only when both conditions are true:
  1. The request originates from an Aikido IP range
  2. The request includes the aikido User Agent in headers as described above
Azure WAF
AWS WAF.
- For WAFs behind Application Load Balancers or CloudFront, your WAF should check the last IP address in the X-Forwarded-For header.
Vercel WAF
- Use the "bypass" action for trusted IPs

The IP address lists are also available as JSON arrays

Testing Internal Applications

If your application is hosted on a strictly private network, VPN, or intranet that cannot accept inbound traffic from the public internet, you can use the Aikido Broker for Internal Applications

The Broker requires installing an agent in your infrastructure. We recommend this only when standard IP allowlisting is not possible.

Last updated 1 day ago

Was this helpful?