๐ง๐ท
SOC-BR
2026-07-09 07:20:37
(1 day ago)
Attack detected by Fortinet - tools: Nmap.Script.Scanner - 2026-07-08 09:19:03 - Source Port 23410
Port Scan
Hacking
๐บ๐ธ
gu-alvareza
2026-07-09 07:05:02
(1 day ago)
Nmap.Script.Scanner
Port Scan
๐บ๐ธ
NXTwoThou
2026-07-08 15:42:02
(1 day ago)
Verb
Web App Attack
๐ฑ๐น
NotACaptcha
2026-07-08 15:14:59
(1 day ago)
webserver:80 [08/Jul/2026] "NHST / HTTP/1.1" 501 404 "-" "Mozilla/5.0 (compatible)"
webserver:80 [0 ...
show more
webserver:80 [08/Jul/2026] "NHST / HTTP/1.1" 501 404 "-" "Mozilla/5.0 (compatible)"
webserver:80 [08/Jul/2026] "Unauthorised access type for resource"/
webserver:80 [08/Jul/2026] "\x16\x03" 400 392
show less
Web App Attack
๐ฉ๐ช
ManagedStack
2026-07-08 15:00:01
(1 day ago)
Probing access to unauthorized locations
Hacking
Exploited Host
Web App Attack
๐บ๐ธ
SketchyDude
2026-07-08 14:41:30
(1 day ago)
Banned by Fail2Ban jail: apache-auth
Brute-Force
Web App Attack
Anonymous
2026-07-08 14:13:26
(1 day ago)
34.76.219.168 - - [08/Jul/2026:16:13:26 +0200] "GET / HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 1 ...
show more
34.76.219.168 - - [08/Jul/2026:16:13:26 +0200] "GET / HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36"
34.76.219.168 - - [08/Jul/2026:16:13:26 +0200] "\x16\x03\x01\x05\xC4\x01\x00\x05\xC0\x03\x03\xE9\x1E8C\xEF\xF1\xF3\xAE\xD6p\xC2)\x1AL\x1D\xE6+9\x91|\xFDZR,\xB0\x9AkR\x1DJ\x88\x16 Dv\x0E\xDE\xAD\xBA\xE4\xA5\xF7\x82+\xA1\xABe\xF7[N\xAD9\x22\xC3;\xD7^b\xDE\x7F\xB1\xB9\xFA~\xE1\x002\xC0+\xC0/\xC0,\xC00\xCC\xA9\xCC\xA8\xC0\x09\xC0\x13\xC0" 400 150 "-" "-"
...
show less
Bad Web Bot
Web App Attack
๐ฎ๐ฉ
sockominfo
2026-07-08 14:00:53
(1 day ago)
Suspicious user agent detected Mozilla/5.0 (compatible; nmap-http-info). Threat Score: 3.7/10 (LOW). ...
show more
Suspicious user agent detected Mozilla/5.0 (compatible; nmap-http-info). Threat Score: 3.7/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT
show less
Hacking
Web App Attack
๐น๐ท
SeczarSecureOps
2026-07-08 13:32:31
(1 day ago)
Auto-blocked by Seczar SecureOps โ IPS Web Attack Signature (1 events in 5min) at 2026-07-08 13:32
Web App Attack
Bad Web Bot
๐ง๐ท
SOC Blue Team
2026-07-08 13:26:00
(1 day ago)
IPs get by Hunting on SIEM
Phishing
Web Spam
Port Scan
Hacking
๐จ๐ณ
WMK965
2026-07-08 13:18:44
(1 day ago)
34.76.219.168 - - [08/Jul/2026:21:18:36 +0800] "\x16\x03\x01\x05\xC4\x01\x00\x05\xC0\x03\x03'd\xBA6~ ...
show more
34.76.219.168 - - [08/Jul/2026:21:18:36 +0800] "\x16\x03\x01\x05\xC4\x01\x00\x05\xC0\x03\x03'd\xBA6~\x8C\x9F\xD8\xFA{\xA6\xC4\xBEt\x9E\xEB4\xEB.\x8D\x5Cr\xF7\x83\xD1\xEF\xB1\xAC\x9E\x86\xD5Q $Z\xB1\xC3+1\x97s\x8D\xA2\xAA\xAA\xF3T\x10\xFD\xBA\x9E\xEB\xCDD\xEE-\xC2&\xE3\xE6\xC7\xC2\xCE,\x0B\x002\xC0+\xC0/\xC0,\xC00\xCC\xA9\xCC\xA8\xC0\x09\xC0\x13\xC0" 400 154 "-" "-" "-"
34.76.219.168 - - [08/Jul/2026:21:18:42 +0800] ";\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x00\xD4\x07\x00\x00\x00\x00\x00\x00admin.$cmd\x00\x00\x00\x00\x00\xFF\xFF\xFF\xFF\x14\x00\x00\x00\x01hello\x00\x00\x00\x00\x00\x00\x00\xF0?\x00" 400 154 "-" "-" "-"
34.76.219.168 - - [08/Jul/2026:21:18:43 +0800] "4/\xF2i\xBA}Z\x05Tw\x12\xB9m\xF5MU\xCA\xE1\x05B\xDC\xCA\x04/\x10Q\xC3z\x84l!$V\xDFj\x0C3\x8E\x00z\xF2\x09z\xC6^\x22\xE6\x81\xC3x\xB0\xB5,\xE9v\x7Fq\x16\x87g\x1D\xF6\xD5j" 400 154 "-" "-" "-"
show less
Port Scan
Web App Attack
๐ฎ๐ฉ
sockominfo
2026-07-08 13:00:52
(1 day ago)
Suspicious user agent detected Mozilla/5.0 (compatible; nmap-http-info). Threat Score: 3.8/10 (LOW). ...
show more
Suspicious user agent detected Mozilla/5.0 (compatible; nmap-http-info). Threat Score: 3.8/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT
show less
Hacking
Web App Attack
๐ฉ๐ช
MaxMeier
2026-07-08 12:59:49
(1 day ago)
34.76.219.168 - - [08/Jul/2026:14:58:47 +0200] "GET / HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 1 ...
show more
34.76.219.168 - - [08/Jul/2026:14:58:47 +0200] "GET / HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36"
34.76.219.168 - - [08/Jul/2026:14:58:49 +0200] "\x16\x03\x01\x05\xC4\x01\x00\x05\xC0\x03\x03\x91\x92\xC4\xF5Q\xA5\xB2L\xBF\x8B\x05, \xEDO\xBD\xC4\xE4\xBE0\xBDe\xD5:-l={\x8F\xC0:_ \xD8\x8D\xA3\x02&\xAE\xF5n\xD9\xCF\x8E8v0\x96 )\xC1\x03n\xB6c\x05\x83\xAD\x95\x1EH\xFE\xB6\xD4\xD3\x002\xC0+\xC0/\xC0,\xC00\xCC\xA9\xCC\xA8\xC0\x09\xC0\x13\xC0" 400 150 "-" "-"
34.76.219.168 - - [08/Jul/2026:14:58:50 +0200] "GET / HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36"
34.76.219.168 - - [08/Jul/2026:14:58:55 +0200] ";\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x00\xD4\x07\x00\x00\x00\x00\x00\x00admin.$cmd\x00\x00\x00\x00\x00\xFF\xFF\xFF\xFF\x14\x00\x00\x00\x01hello\x00\x00\x00\x00\x00\x00\x00\xF0?\x00" 400 150 "-" "-"
34.76.219.168 - -
...
show less
Bad Web Bot
Web App Attack
๐ฌ๐ง
essinghigh
2026-07-08 12:51:43
(1 day ago)
IPS Detection: 34.76.219.168 -> DPT: 80
Port Scan
๐ฆ๐บ
gregoo23
2026-07-08 12:39:51
(1 day ago)
34.76.219.168 - - [08/Jul/2026:22:39:49 +1000] "GET / HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 1 ...
show more
34.76.219.168 - - [08/Jul/2026:22:39:49 +1000] "GET / HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36"
34.76.219.168 - - [08/Jul/2026:22:39:49 +1000] "\x16\x03\x01\x05\xC4\x01\x00\x05\xC0\x03\x03W'\xCFw\x10\xAAtb\x18~\xEBhi\xCB\xCD\x9F\xA2\xB6\x9E\xA86`o\xC0\xE6\xB1\x22|\x12O\x93\x14 AVqT\xE7\xF6r\xCA\xF7\x8Fx\xD1r\xA3 D\x98X[W\x9E!\xE6\x9C\xCC\xA4\xD5\x1B\xFE'\xF0\xC8\x002\xC0+\xC0/\xC0,\xC00\xCC\xA9\xCC\xA8\xC0\x09\xC0\x13\xC0" 400 154 "-" "-"
34.76.219.168 - - [08/Jul/2026:22:39:50 +1000] "GET / HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36"
...
show less
Bad Web Bot
Web App Attack