ASM Removing Login Body

ASM policy might inject specific JavaScript into requests/responses which may interfere with JavaScript in your application and break the page rendering. Your description is quite generic, so it is not quite possible to figure out exactly what is going on, it might be as simply as ASM just doing its job and blocking the automated requests and your Selenium scripts are simply seeing the ASM blocking page which has just a simple one-liner of a body "The requested URL was rejected. Please consult with your administrator. Your Support ID is: 1234"

DDoS, Bot detection and Web Scraping features inject custom JavaScript which detects things like mouse movements and keypresses to decide whether it is a human or a bot. As you are complaining about automated testing looks like your Selenium suite is taken by the WAF for what it actually is - a bot.

DOS protection may Block the requests even if the ASM policy is in transparent mode - all depends on your specific configuration.