Defensive Validation
What the defensive helper path still covers in the current codebase and what it does not.
Defensive Validation
The defensive path still exists, but it is a narrow helper compared with the main v4 offensive workflow.
What It Is Good For
The current defensive helper path is still useful for:
- CSWSH and origin-validation style checks
- simple bot-detection validation
- narrow DNS exfiltration helper scenarios
What Not to Assume
Do not confuse the defensive path with the full v4 platform workflow.
It is not the main replay/AuthZ diff/race/evidence path, and older documentation often overstated how broad it was.
When to Use It
Use it when you need a quick helper check against a defensive control. Use the desktop and project-backed workflow when you need a deeper offensive review.