๐ณ๐ฑ
Linuxmalwarehuntingnl
2024-07-03 07:03:27
(2 years ago)
Unauthorized connection attempt
Brute-Force
๐ธ๐ช
mr_whitehat
2024-02-19 00:35:09
(2 years ago)
Probed for vulnerable web application: request line: /.git/config (Possible exploit:Scan for open gi ...
show more
Probed for vulnerable web application: request line: /.git/config (Possible exploit:Scan for open git repositories)
show less
Web App Attack
๐ซ๐ฎ
tjs
2024-02-18 22:51:00
(2 years ago)
web attack
Hacking
Web App Attack
๐ฉ๐ช
ut-addicted.com
2024-02-18 15:19:23
(2 years ago)
\[Sun Feb 18 16:19:21.833271 2024\] \[:error\] \[pid 3016:tid 140503259457280\] \[client 3.238.50.12 ...
show more
\[Sun Feb 18 16:19:21.833271 2024\] \[:error\] \[pid 3016:tid 140503259457280\] \[client 3.238.50.120:46268\] \[client 3.238.50.120\] ModSecurity: Access denied with code 403 \(phase 2\). Operator GE matched 5 at TX:anomaly_score. \[file "/usr/local/apache/modsecurity-owasp-latest/rules/REQUEST-949-BLOCKING-EVALUATION.conf"\] \[line "57"\] \[id "949110"\] \[msg "Inbound Anomaly Score Exceeded \(Total Score: 5\)"\] \[severity "CRITICAL"\] \[tag "application-multi"\] \[tag "language-multi"\] \[tag "platform-multi"\] \[tag "attack-generic"\] \[hostname "crx.it"\] \[uri "/.git/config"\] \[unique_id "ZdIf@e2EccDUPkTBnxtD6QAAANg"\]
show less
Brute-Force
Web App Attack
๐ฉ๐ช
HERA - Operations
2024-02-18 13:39:57
(2 years ago)
argeforum - searching for vulnerable scripts: config 2024/02/18 14:39:56
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-02-18 13:19:37
(2 years ago)
(mod_security) mod_security (id:210492) triggered by 3.238.50.120 (ec2-3-238-50-120.compute-1.amazon ...
show more
(mod_security) mod_security (id:210492) triggered by 3.238.50.120 (ec2-3-238-50-120.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 18 08:19:30.248976 2024] [security2:error] [pid 11056] [client 3.238.50.120:41258] [client 3.238.50.120] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arriagarealestate.com"] [uri "/.git/config"] [unique_id "ZdID4j7-zAIiHPCsmhUhAQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-02-18 12:54:30
(2 years ago)
(mod_security) mod_security (id:210492) triggered by 3.238.50.120 (ec2-3-238-50-120.compute-1.amazon ...
show more
(mod_security) mod_security (id:210492) triggered by 3.238.50.120 (ec2-3-238-50-120.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 18 07:54:26.622900 2024] [security2:error] [pid 26497] [client 3.238.50.120:33922] [client 3.238.50.120] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "495metro.com"] [uri "/.git/config"] [unique_id "ZdH-AkuHJWnPX2to65aKgQAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-02-18 11:36:50
(2 years ago)
[17/Feb/2024:16:04:40 -0500] \"GET /.git/config HTTP/1.1\" \"Mozilla/5.0 (Linux; Android 8.0.0; F512 ...
show more
[17/Feb/2024:16:04:40 -0500] \"GET /.git/config HTTP/1.1\" \"Mozilla/5.0 (Linux; Android 8.0.0; F5121) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.101 Mobile Safari/537.36\"
show less
Hacking
๐ฌ๐ท
JCB
2024-02-18 08:55:00
(2 years ago)
3.238.50.120 - - [18/Feb/2024:02:27:12 +0200] "GET /.git/config HTTP/1.1" 404 196 "-" "Mozilla/5.0 ( ...
show more
3.238.50.120 - - [18/Feb/2024:02:27:12 +0200] "GET /.git/config HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.88 Safari/537.36 Vivaldi/2.4.1488.36"
show less
Web App Attack
๐ฌ๐ง
openstrike.co.uk
2024-02-18 06:12:18
(2 years ago)
79 attacks on VC URLs:
GET /.git/config HTTP/1.1
Hacking
Anonymous
2024-02-18 04:00:37
(2 years ago)
/.git
Web App Attack
๐ซ๐ท
urmarcht
2024-02-18 00:45:55
(2 years ago)
Bot attack detected : webscan vurnerability
Web App Attack
๐ฌ๐ง
dwmosaics
2024-02-18 00:34:29
(2 years ago)
"GET /.git/config HTTP/1.1" 301 551 "-" "Mozilla/5.0 (X11; Linux i686; rv:2...
Brute-Force
Web App Attack
๐ฌ๐ง
myintarweb
2024-02-18 00:26:26
(2 years ago)
3.238.50.120 - - [18/Feb/2024:00:26:23 +0000] 443 "GET /.git/config HTTP/1.1" 404 31061 "-" "Mozilla ...
show more
3.238.50.120 - - [18/Feb/2024:00:26:23 +0000] 443 "GET /.git/config HTTP/1.1" 404 31061 "-" "Mozilla/5.0 (Linux; Android 8.1.0; GM 6 d) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36"
...
show less
Hacking
Bad Web Bot
Web App Attack
๐ฉ๐ช
โโโโโ
2024-02-18 00:24:48
(2 years ago)
WEB ๐ธ Honeypot: scanning-probing /.git/config
Bad Web Bot
Web App Attack