๐จ๐ฆ
polycoda
2026-06-30 10:03:39
(2 days ago)
โจ๏ธ Probes for /.git/config everywhere
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 21:45:07
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 34.177.110.252 (252.110.177.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.177.110.252 (252.110.177.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 17:45:03.995663 2026] [security2:error] [pid 12989:tid 12989] [client 34.177.110.252:38720] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mininoarg.com"] [uri "/.git/config"] [unique_id "akLnX31od_Q_860ksPEFDQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
2000cn.com.au
2026-06-29 21:25:30
(3 days ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-29 21:10:00
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 34.177.110.252 (252.110.177.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.177.110.252 (252.110.177.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 17:09:55.927680 2026] [security2:error] [pid 3375:tid 3375] [client 34.177.110.252:40280] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mindbodyrestored.com"] [uri "/.git/config"] [unique_id "akLfIwW6IaM6bGVCDZiMDgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ฆ
Olexiy Backend
2026-06-29 21:02:09
(3 days ago)
34.177.110.252
...
Bad Web Bot
Web App Attack
๐ณ๐ฑ
MM-bot
2026-06-29 20:45:58
(3 days ago)
URL-probe: HTTP/1.1 GET request on /.git/config (2026-06-29 22:45:58 UTC+2)
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-29 20:41:03
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 34.177.110.252 (252.110.177.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.177.110.252 (252.110.177.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 16:40:57.878281 2026] [security2:error] [pid 3167:tid 3167] [client 34.177.110.252:56236] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "millergrain.com"] [uri "/.git/config"] [unique_id "akLYWTNUaAKxL7nQdbZXdQAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
consul.to
2026-06-29 20:32:08
(3 days ago)
Web attack/malicious scanning detected
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 20:17:48
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 34.177.110.252 (252.110.177.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.177.110.252 (252.110.177.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 16:17:43.512430 2026] [security2:error] [pid 25294:tid 25310] [client 34.177.110.252:47586] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mikrotikindonesia.dcs.co.id"] [uri "/.git/config"] [unique_id "akLS56sSeohnDgRjW7PkeAAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ต๐ฑ
srebrakowski.com
2026-06-29 20:16:39
(3 days ago)
crowdsec/waf-detected-exploits
Brute-Force
๐ฉ๐ช
joharikop
2026-06-29 20:11:08
(3 days ago)
Nginx: credential/secret file probe (/.env, /.git, /.aws etc). Automated ban via fail2ban nginx-cred ...
show more
Nginx: credential/secret file probe (/.env, /.git, /.aws etc). Automated ban via fail2ban nginx-credential-probes jail.
show less
Web App Attack
๐จ๐ฆ
polycoda
2026-06-29 20:10:23
(3 days ago)
AutoBlock: โ๏ธ Configuration File Access (Non Decay-Based)
Hacking
Web App Attack
๐ง๐ช
voormedia
2026-06-29 20:02:34
(3 days ago)
Accessed trap at '/.git/config'
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 20:01:31
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 34.177.110.252 (252.110.177.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.177.110.252 (252.110.177.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 16:01:27.958889 2026] [security2:error] [pid 32378:tid 32378] [client 34.177.110.252:33524] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mijnlevensverhaal.com"] [uri "/.git/config"] [unique_id "akLPFwVk71Ps8IdaXzjgJQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-29 19:40:02
(3 days ago)
suspicious request in access.log
Web App Attack