08/Aug/2024:11:27:33 UTC start; 08/Aug/2024:11:29:20 UTC stop; 6859 hits in under 2 mins = 527/sec ...
show more08/Aug/2024:11:27:33 UTC start; 08/Aug/2024:11:29:20 UTC stop; 6859 hits in under 2 mins = 527/sec; probing for URL that will penetrate site looking for backups or secret passwords
show less
Brute-Force
Web App Attack
Anonymous
Aggressive web scan
Web App Attack
Anonymous
44.200.26.38 - - [08/Aug/2024:19:19:49 +0000] "GET / HTTP/1.1" 403 564 "-" "Mozilla/5.0 (Macintosh; ...
show more44.200.26.38 - - [08/Aug/2024:19:19:49 +0000] "GET / HTTP/1.1" 403 564 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Safari/537.36"
44.200.26.38 - - [08/Aug/2024:19:19:49 +0000] "GET /.env HTTP/1.1" 403 564 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Safari/537.36"
44.200.26.38 - - [08/Aug/2024:19:19:49 +0000] "GET /.remote HTTP/1.1" 403 564 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Safari/537.36"
44.200.26.38 - - [08/Aug/2024:19:19:49 +0000] "GET /.local HTTP/1.1" 403 564 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Safari/537.36"
44.200.26.38 - - [08/Aug/2024:19:19:49 +0000] "GET /.production HTTP/1.1" 403 564 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.
...
show less
FTP Brute-Force
Port Scan
Hacking
Brute-Force
Bad Web Bot
Web App Attack
SSH
Anonymous
44.200.26.38 - - [08/Aug/2024:16:33:30 +0000] "GET /.env HTTP/1.1" 404 3265 "-" "Mozilla/5.0 (Macint ...
show more44.200.26.38 - - [08/Aug/2024:16:33:30 +0000] "GET /.env HTTP/1.1" 404 3265 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Safari/537.36"
44.200.26.38 - - [08/Aug/2024:16:33:30 +0000] "GET /.remote HTTP/1.1" 404 3274 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Safari/537.36"
44.200.26.38 - - [08/Aug/2024:16:33:30 +0000] "GET /.local HTTP/1.1" 404 3271 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Safari/537.36"
44.200.26.38 - - [08/Aug/2024:16:33:30 +0000] "GET /.production HTTP/1.1" 404 3286 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Safari/537.36"
44.200.26.38 - - [08/Aug/2024:16:33:30 +0000] "GET /vendor/.env HTTP/1.1" 404 3286 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_3) AppleWebKit/537.36 (KHTML, like Gecko) C
...
show less
Spamming more than 1000 requests within 2 minutes & Amazon AWS User Agent Spoofing [GET /adm/info.ph ...
show moreSpamming more than 1000 requests within 2 minutes & Amazon AWS User Agent Spoofing [GET /adm/info.php] [Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Safari/537.36] **Reported from WAF sampled requests**
show less