Is it possible, for example, to allow SQL inject testing for our web app scanner and at the same time deny all others, to create a custom rule for just that particular sig? This would allow us to really ratchet down our systems utilizing the web app ...