๐ณ๐ฑ
jjnxpct
2026-05-01 03:51:37
(2 months ago)
Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ...
show more
Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.env (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .env found within REQUEST_FILENAME: /.env]
show less
Web App Attack
Hacking
๐ง๐ช
voormedia
2026-04-30 15:46:16
(2 months ago)
Accessed trap at '/.env'
Web App Attack
๐ซ๐ท
conseilgouz
2026-04-30 15:35:33
(2 months ago)
joe-17 : Block hidden directories=>/.env(/)
Hacking
๐ช๐ธ
el-brujo
2026-04-30 15:34:18
(2 months ago)
Cloudflare WAF: Request Path: /.env Request Query: Host: www.elhacker.net userAgent: Mozilla/5.0 (X ...
show more
Cloudflare WAF: Request Path: /.env Request Query: Host: www.elhacker.net userAgent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:131.0) Gecko/20100101 Firefox/131.0 Action: block Source: firewallManaged ASN Description: NODE HOST LIMITED Country: SE Method: GET Timestamp: 2026-04-30T15:34:18Z ruleId: 23548ee2b36547a1be09bb2c0550c529. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB).
show less
Hacking
SQL Injection
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-04-30 15:31:11
(2 months ago)
2.27.14.0 - - [30/Apr/2026:18:31:10 +0300] "GET /.env HTTP/1.1" 404 3076 "-" "Mozilla/5.0 (X11; Linu ...
show more
2.27.14.0 - - [30/Apr/2026:18:31:10 +0300] "GET /.env HTTP/1.1" 404 3076 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:128.0) Gecko/20100101 Firefox/128.0"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-30 15:29:41
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 2.27.14.0 (-): 1 in the last 300 secs; Ports: * ...
show more
(mod_security) mod_security (id:210492) triggered by 2.27.14.0 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 11:29:24.400857 2026] [security2:error] [pid 5428:tid 5446] [client 2.27.14.0:44738] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.icecc.com"] [uri "/.env"] [unique_id "afN1VLgFwf2Zs7I1pN08CwAAAYw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฒ๐พ
Devarajan Mathavan
2026-04-30 06:57:00
(2 months ago)
Illegal Resource Access
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-04-30 02:33:43
(2 months ago)
2.27.14.0 - - [30/Apr/2026:05:29:30 +0300] "GET /.env HTTP/1.1" 404 707 "-" "Mozilla/5.0 (Macintosh; ...
show more
2.27.14.0 - - [30/Apr/2026:05:29:30 +0300] "GET /.env HTTP/1.1" 404 707 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
2.27.14.0 - - [30/Apr/2026:05:33:41 +0300] "GET /.env HTTP/1.1" 404 711 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:131.0) Gecko/20100101 Firefox/131.0"
...
show less
Web App Attack
๐ณ๐ฑ
informedclearly.com
2026-04-30 02:31:03
(2 months ago)
WAF_BAN reason=ENV_PROBE rule=ENV_PATH hits=1 path=/.env? ua=Mozilla/5.0 (Macintosh; Intel Mac OS X ...
show more
WAF_BAN reason=ENV_PROBE rule=ENV_PATH hits=1 path=/.env? ua=Mozilla/5.0 (Macintosh; Intel Mac OS X 14.6; rv:131.0) Gecko/20100101 Firefox/131.0
show less
Hacking
๐บ๐ธ
Rayulcifer
2026-04-30 02:30:15
(2 months ago)
2.27.14.0 - - [29/Apr/2026:21:30:13 -0500] "GET /.env HTTP/1.1" 200 5547 "-" "Mozilla/5.0 (Windows N ...
show more
2.27.14.0 - - [29/Apr/2026:21:30:13 -0500] "GET /.env HTTP/1.1" 200 5547 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36"
...
show less
Open Proxy
Port Scan
Hacking
Web App Attack
SSH
๐ฏ๐ต
VXG-NET
2026-04-30 02:25:26
(2 months ago)
port=80, indicator_type=info-leak
Hacking
๐ช๐ธ
bohl-aiG5aef
2026-04-30 02:21:06
(2 months ago)
Suricata Alert [SID:2031502] ET INFO Request to Hidden Environment File - Inbound
Hacking