๐ฌ๐ง
openstrike.co.uk
2026-07-04 05:14:46
(10 hours ago)
8 attacks on VC URLs:
GET /.git/config HTTP/1.1
Hacking
๐ณ๐ฑ
homeshowdomain.nl
2026-07-03 21:59:38
(17 hours ago)
Auto-ban: >3000 req/min op 2026-07-03
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-03 21:18:02
(18 hours ago)
(mod_security) mod_security (id:210492) triggered by 170.64.161.39 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 170.64.161.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 17:17:55.428212 2026] [security2:error] [pid 27658:tid 27658] [client 170.64.161.39:40824] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "visco174.com"] [uri "/.git/config"] [unique_id "akgnAwSjYqbF5pgsgWEfSQAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-03 20:20:04
(19 hours ago)
Bot / scanning and/or hacking attempts: GET /.git/config HTTP/1.1
Hacking
Web App Attack
๐บ๐ธ
Major Hostility
2026-07-03 19:45:07
(19 hours ago)
"GET /.git/config HTTP/1.1" 404
"GET /.git/config HTTP/1.1" 404
Web App Attack
๐ซ๐ท
masterguru
2026-07-03 18:55:39
(20 hours ago)
Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-196)
Hacking
Web App Attack
๐ฌ๐ง
thetomtaylor.co.uk
2026-07-03 18:08:02
(21 hours ago)
Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01,ice02,mx01,mx02,m ...
show more
Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01,ice02,mx01,mx02,mx03]
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 17:55:22
(21 hours ago)
(mod_security) mod_security (id:210492) triggered by 170.64.161.39 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 170.64.161.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 13:55:16.679562 2026] [security2:error] [pid 23555:tid 23972] [client 170.64.161.39:50954] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "2541marinersway.com"] [uri "/.git/config"] [unique_id "akf3hPplFvhSExlYsf7ARgAAANI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
ecode hosting
2026-07-03 17:39:04
(21 hours ago)
Domain : gnsskirala.com
Rule : config
2026-07-03 17:36:14 10.100.1.20 GET /.git/config - 443 - 170.6 ...
show more
Domain : gnsskirala.com
Rule : config
2026-07-03 17:36:14 10.100.1.20 GET /.git/config - 443 - 170.64.161.39 HTTP/1.1 Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36 - gnsskirala.com 404 8 0 1396 239 315 - -
show less
Hacking
SQL Injection
๐ฌ๐ง
thetomtaylor.co.uk
2026-07-03 16:05:03
(23 hours ago)
Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [wa01,wa02]
Hacking
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
Inartis
2026-07-03 16:00:20
(23 hours ago)
170.64.161.39 - - [03/Jul/2026:16:22:07 +0200] "GET /.git/config HTTP/1.1" 403 5581 "-" "Mozilla/5.0 ...
show more
170.64.161.39 - - [03/Jul/2026:16:22:07 +0200] "GET /.git/config HTTP/1.1" 403 5581 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
170.64.161.39 - - [03/Jul/2026:18:00:18 +0200] "GET /.git/config HTTP/1.1" 302 509 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
170.64.161.39 - - [03/Jul/2026:18:00:19 +0200] "GET /.git/config HTTP/1.1" 403 5581 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
...
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
infra-monitor
2026-07-03 16:00:03
(23 hours ago)
Automated ban via infra-monitor: mgmt-path-probe, suspicious-probe
Port Scan
Web App Attack
๐จ๐ญ
๐จ๐ญ Hosting
2026-07-03 16:00:03
(23 hours ago)
Automated security scanning detected: Git Repository Config Exposure. Systematic reconnaissance usin ...
show more
Automated security scanning detected: Git Repository Config Exposure. Systematic reconnaissance using automated tools.
show less
Web App Attack
๐ฆ๐บ
paulshipley.com.au
2026-07-03 15:24:13
(1 day ago)
[Sat Jul 04 01:24:12.632508 2026] [security2:error] [pid 677507] [client 170.64.161.39:39438] [clien ...
show more
[Sat Jul 04 01:24:12.632508 2026] [security2:error] [pid 677507] [client 170.64.161.39:39438] [client 170.64.161.39] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "mareeshefford.com"] [uri "/.git/config"] [unique_id "akfUHFj0IMv4b7zv9UVRsgAAAAw"]
...
show less
Web App Attack
๐บ๐ธ
RLDD
2026-07-03 14:52:28
(1 day ago)
WP probing for vulnerabilities -ove
Web App Attack