Anonymous
2026-07-06 20:16:59
(7 hours ago)
Fuzzing/Looking for credentials files.
Brute-Force
Web App Attack
๐บ๐ธ
Charlesiv
2026-07-06 18:02:19
(9 hours ago)
Triggered Cloudflare WAF (firewallCustom) from SG.
Action taken: BLOCK
ASN: 396982 (Google LLC)
Prot ...
show more
Triggered Cloudflare WAF (firewallCustom) from SG.
Action taken: BLOCK
ASN: 396982 (Google LLC)
Protocol: HTTP/1.1 (GET method)
Endpoint: /.git/config
Timestamp: 2026-07-06T17:12:37Z
Ray ID: a1703c3f780ace6a
UA: Empty string
show less
Bad Web Bot
๐จ๐ญ
4server
2026-07-06 17:42:43
(10 hours ago)
[MonJul0619:42:35.3764542026][security2:error][pid245193:tid245236][client34.143.246.15:0]ModSecurit ...
show more
[MonJul0619:42:35.3764542026][security2:error][pid245193:tid245236][client34.143.246.15:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"365\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"webdisk.aeapcl.ch\"][uri\"/.git/config\"][unique_id\"akvpC66NjYy-8PZOBvoSGgAAAVA\"]
show less
Hacking
Web App Attack
๐บ๐ธ
Epimetheus
2026-07-06 17:12:04
(10 hours ago)
Unauthorized access attempts:
[GET] /.git/config
UA: Unknown
Web App Attack
๐ณ๐ด
jad-abuse
2026-07-06 17:10:42
(10 hours ago)
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_expos ...
show more
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_exposure. Observed by 1 sensor(s); 1 hits.
show less
Web App Attack
๐ณ๐ฑ
wlt-blocker
2026-07-06 17:09:53
(10 hours ago)
Unauthorized access to webpage admin
Web App Attack
Anonymous
2026-07-06 17:00:08
(10 hours ago)
Blocked by siteaihub.com: live autoban: immediate: /.git/config
Hacking
Bad Web Bot
๐ฎ๐น
Inartis
2026-07-06 16:51:08
(10 hours ago)
34.143.246.15 - - [06/Jul/2026:18:51:08 +0200] "GET /.git/config HTTP/1.1" 404 3672 "-" "-"
...
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 16:50:48
(10 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.143.246.15 (15.246.143.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.143.246.15 (15.246.143.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 12:50:42.863330 2026] [security2:error] [pid 25776:tid 25776] [client 34.143.246.15:42104] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "web58.dnchosting.com"] [uri "/.git/config"] [unique_id "akvc4k8hKfYS-LpKTWu7vQAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
JustMeHere
2026-07-06 16:34:37
(11 hours ago)
[Mon Jul 06 12:34:32.346073 2026] [security2:error] [pid 4000:tid 4133] [client 34.143.246.15:40562] ...
show more
[Mon Jul 06 12:34:32.346073 2026] [security2:error] [pid 4000:tid 4133] [client 34.143.246.15:40562] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.15.0"] [tag "anomaly-evaluation"] [tag "OWASP_CRS"] [hostname "web2.yorknation.com"] [uri "/.git/config"] [unique_id "akvZGClugjGboz_6-UoAigAAAA4"]
...
show less
Web App Attack
๐ฎ๐น
Inartis
2026-07-06 16:33:43
(11 hours ago)
34.143.246.15 - - [06/Jul/2026:16:33:41 +0000] "GET /.git/config HTTP/1.1" 404 5159 "-" "-"
...
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
cmbplf
2026-07-06 16:31:40
(11 hours ago)
2.257 requests with url.path *.git/*
2.249 requests with url.path */.git/config
Brute-Force
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-06 16:22:36
(11 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.143.246.15 (15.246.143.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.143.246.15 (15.246.143.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 12:22:28.891753 2026] [security2:error] [pid 18177:tid 18177] [client 34.143.246.15:48758] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "web174.dnchosting.com"] [uri "/.git/config"] [unique_id "akvWRF8_JEqY6MALz-lREgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 16:07:01
(11 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.143.246.15 (15.246.143.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.143.246.15 (15.246.143.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 12:06:54.287108 2026] [security2:error] [pid 32524:tid 32524] [client 34.143.246.15:39792] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wealthsec.com"] [uri "/.git/config"] [unique_id "akvSnrH5joOmnPMyT8uVEwAAADE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 15:47:28
(11 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.143.246.15 (15.246.143.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.143.246.15 (15.246.143.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 11:47:21.719911 2026] [security2:error] [pid 16854:tid 16854] [client 34.143.246.15:35918] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "veneerdent.com"] [uri "/.git/config"] [unique_id "akvOCbuNK5hJOJlddGfNJQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack