BOT-block

irule: BOT-block

when HTTP_REQUEST { 
              if { [HTTP::header exists "CSRFChallengeToken"] && ([class match [HTTP::header value "CSRFChallengeToken"] equals dg.Blocked_CSRF_Tokens ]) } {
                #log local0. "Hacker hitting with CSRF token value [HTTP::header value "CSRFChallengeToken"] with [IP::client_addr]"
                drop;
                #log local0. "dropping Hacker with [IP::client_addr]"
                return;
             }
}

Data Group referenced: dg.Blocked_CSRF_Tokens

String: 

159358555436992871528600271497600970