๐ฟ๐ฆ
conure
2026-07-14 12:14:32
(5 hours ago)
csagent: score 20.1: secrets grab x2, 404 noise floor x2; 2 domain(s) in 7s
Web App Attack
๐ฉ๐ช
Ba-Yu
2026-07-13 20:38:30
(20 hours ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
๐ฉ๐ช
AetherFox
2026-07-13 20:31:49
(21 hours ago)
AetherFox VoidGuard detected: [Mon Jul 13 20:31:47.051991 2026] [authz_core:error] [pid 879717:tid 8 ...
show more
AetherFox VoidGuard detected: [Mon Jul 13 20:31:47.051991 2026] [authz_core:error] [pid 879717:tid 879729] [client 146.70.193.29:48478] AH01630: client denied by server configuration: proxy:https://[MASKED]/.git/index
[Mon Jul 13 20:31:47.508103 2026] [authz_core:error] [pid 879717:tid 879746] [client 146.70.193.29:48488] AH01630: client denied by server configuration: proxy:https://[MASKED]/.git/index
[Mon Jul 13 20:31:47.732338 2026] [authz_core:error] [pid 879717:tid 879738] [client 146.70.193.29:34164] AH01630: client denied by server configuration: proxy:http://[MASKED]/.git/index
[Mon Jul 13 20:31:47.732458 2026] [authz_core:error] [pid 879717:tid 879738] [client 146.70.193.29:34164] AH01630: client denied by server configuration: /var/www/html/ERRORpages/403.html
[Mon Jul 13 20:31:48.612452 2026] [authz_core:error] [pid 879717:tid 879731] [client 146.70.193.29:48496] AH01630: client denied by server configuration: proxy:https://[MASKED]/.git/index
...
show less
Bad Web Bot
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-13 20:19:42
(21 hours ago)
Try to access /.git/index
Web App Attack
๐ง๐ช
cmbplf
2026-07-13 19:47:27
(21 hours ago)
319 requests with url.path *.git/*
Brute-Force
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-13 19:11:31
(22 hours ago)
(mod_security) mod_security (id:210492) triggered by 146.70.193.29 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 146.70.193.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 15:11:27.700025 2026] [security2:error] [pid 11240:tid 11240] [client 146.70.193.29:56128] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "digifonics.com"] [uri "/.git/index"] [unique_id "alU4X3jg8Dv4HpAHDMbSTwAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 18:42:48
(22 hours ago)
(mod_security) mod_security (id:210492) triggered by 146.70.193.29 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 146.70.193.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 14:42:42.458220 2026] [security2:error] [pid 9477:tid 9477] [client 146.70.193.29:33564] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ctrussell.us"] [uri "/.git/index"] [unique_id "alUxohHwxABQsP6icbWC_AAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ut-addicted.com
2026-07-13 18:31:53
(23 hours ago)
\[Mon Jul 13 20:31:52.299373 2026\] \[:error\] \[pid 31067:tid 139785967077120\] \[client 146.70.193 ...
show more
\[Mon Jul 13 20:31:52.299373 2026\] \[:error\] \[pid 31067:tid 139785967077120\] \[client 146.70.193.29:58268\] \[client 146.70.193.29\] ModSecurity: Access denied with code 403 \(phase 2\). Operator GE matched 5 at TX:anomaly_score. \[file "/usr/local/apache/modsecurity-owasp-latest/rules/REQUEST-949-BLOCKING-EVALUATION.conf"\] \[line "57"\] \[id "949110"\] \[msg "Inbound Anomaly Score Exceeded \(Total Score: 5\)"\] \[severity "CRITICAL"\] \[tag "application-multi"\] \[tag "language-multi"\] \[tag "platform-multi"\] \[tag "attack-generic"\] \[hostname "crx.it"\] \[uri "/.git/index"\] \[unique_id "alUvGPoUQh1jWrLL0UzyjgAAAME"\]
show less
Brute-Force
Web App Attack
๐ฌ๐ง
Oakley
2026-07-13 18:27:51
(23 hours ago)
(confirmed_bot_sig) Confirmed bot
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-13 18:24:11
(23 hours ago)
(mod_security) mod_security (id:210492) triggered by 146.70.193.29 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 146.70.193.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 14:24:03.205997 2026] [security2:error] [pid 32165:tid 32165] [client 146.70.193.29:43074] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "crochetdoilies.com"] [uri "/.git/index"] [unique_id "alUtQ437Kuf-Rhx-8fInXgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฑ๐ป
garmtech.com
2026-07-13 17:31:04
(1 day ago)
IM360 WAF: Direct access to sensitive file or dotfile MV:/.git/index
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 17:28:09
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 146.70.193.29 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 146.70.193.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 13:28:02.318913 2026] [security2:error] [pid 10124:tid 10124] [client 146.70.193.29:54918] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "coolingsprings.org"] [uri "/.git/index"] [unique_id "alUgIngWuJ5uwXwnoUa5uwAAACM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฟ๐ฆ
conure
2026-07-13 17:21:20
(1 day ago)
csagent: score 20.5: secrets grab x2, 404 noise floor x2; 1 domain(s) in 0s
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 17:10:31
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 146.70.193.29 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 146.70.193.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 13:10:25.781817 2026] [security2:error] [pid 981:tid 981] [client 146.70.193.29:59416] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "34thprs.org"] [uri "/.git/index"] [unique_id "alUcAeCiUgbpDB1Y4xFtlAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
afleventoffice.com.au
2026-07-13 08:19:07
(1 day ago)
GET /.git/index HTTP/1.1
Web App Attack