pamircil
2024-12-02 03:29:11
(1 month ago)
💀 pamircil.com.tr has been identified as the target of suspicious web traffic from this IP addres ... show more 💀 pamircil.com.tr has been identified as the target of suspicious web traffic from this IP address. show less
Hacking
Web App Attack
el-brujo
2024-12-02 00:43:37
(1 month ago)
Cloudflare WAF: Request Path: /.env Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Macin ... show more Cloudflare WAF: Request Path: /.env Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0 Action: block Source: firewallManaged ASN Description: NL-811-40021 Country: US Method: GET Timestamp: 2024-12-02T00:43:37Z ruleId: 23548ee2b36547a1be09bb2c0550c529. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less
Hacking
SQL Injection
Web App Attack
el-brujo
2024-12-01 19:12:50
(1 month ago)
01/Dec/2024:20:12:49.590668 +0100Apache-Error: [file "apache2_util.c"] [line 271] [level 3] [client ... show more 01/Dec/2024:20:12:49.590668 +0100Apache-Error: [file "apache2_util.c"] [line 271] [level 3] [client 212.56.40.215] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "hostench.eu"] [uri "/.env"] [unique_id "Z0y1McBPRpf6llcJI6MnFwADoyE"]
... show less
Hacking
Web App Attack
teamsecure
2024-12-01 11:02:41
(1 month ago)
Banned for trying to access env
Web App Attack
Hydra-Shield.fr
2024-12-01 10:01:32
(1 month ago)
Directory Traversal on: /.env
Web App Attack
BlueWire Hosting
2024-12-01 05:10:17
(1 month ago)
Scanning for Laravel vulnerabilities
Web App Attack
Anonymous
2024-12-01 02:02:25
(1 month ago)
Infected user bad webscan
Exploited Host
el-brujo
2024-11-30 14:16:30
(1 month ago)
30/Nov/2024:15:16:30.372656 +0100Apache-Error: [file "apache2_util.c"] [line 271] [level 3] [client ... show more 30/Nov/2024:15:16:30.372656 +0100Apache-Error: [file "apache2_util.c"] [line 271] [level 3] [client 212.56.40.215] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "hostench.eu"] [uri "/.env"] [unique_id "Z0sePg1hIG-meyCcebVuLQAAGDM"]
... show less
Hacking
Web App Attack
teamsecure
2024-11-30 10:45:52
(1 month ago)
Banned for trying to access env
Web App Attack
advena
2024-11-30 09:45:55
(1 month ago)
212.56.40.215 (AS40021 NL-811-40021) was intercepted at 2024-11-30T09:40:30Z after violating WAF dir ... show more 212.56.40.215 (AS40021 NL-811-40021) was intercepted at 2024-11-30T09:40:30Z after violating WAF directive: 874a3e315c344b1281ad4f00046aab6f. Pre-cautionary/corrective action applied: block. show less
Web Spam
Hacking
Brute-Force
Web App Attack
el-brujo
2024-11-30 09:40:50
(1 month ago)
30/Nov/2024:10:40:49.910901 +0100Apache-Error: [file "apache2_util.c"] [line 271] [level 3] [client ... show more 30/Nov/2024:10:40:49.910901 +0100Apache-Error: [file "apache2_util.c"] [line 271] [level 3] [client 212.56.40.215] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "hostench.eu"] [uri "/.env"] [unique_id "Z0rdoX-6lASKz2vpyNtdHgACTyA"]
... show less
Hacking
Web App Attack
sefinek.net
2024-11-30 08:21:29
(1 month ago)
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: BLOCK
ASN: 40021 (NL-81 ... show more Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: BLOCK
ASN: 40021 (NL-811-40021)
Protocol: HTTP/1.1 (GET method)
Zone: sefinek.net
Endpoint: /.env
Timestamp: 2024-11-30T07:00:49Z
Ray ID: 8ea8f66fab57d30b
UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0
Report generated by Cloudflare-WAF-To-AbuseIPDB:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less
Bad Web Bot
el-brujo
2024-11-30 07:56:51
(1 month ago)
30/Nov/2024:08:56:51.038612 +0100Apache-Error: [file "apache2_util.c"] [line 271] [level 3] [client ... show more 30/Nov/2024:08:56:51.038612 +0100Apache-Error: [file "apache2_util.c"] [line 271] [level 3] [client 212.56.40.215] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "hostench.eu"] [uri "/.env"] [unique_id "Z0rFQxKwGHf6v_VsWka02QACmBM"]
... show less
Hacking
Web App Attack
pamircil
2024-11-30 02:38:23
(1 month ago)
💀 pamircil.com.tr has been identified as the target of suspicious web traffic from this IP addres ... show more 💀 pamircil.com.tr has been identified as the target of suspicious web traffic from this IP address. show less
Hacking
Web App Attack
Anonymous
2024-11-29 22:50:47
(1 month ago)
Infected user bad webscan
Exploited Host