dpinse
2024-11-07 02:35:44
(2 months ago)
teler detected Directory Bruteforce against resource /.git/config from 44.210.83.24
Bad Web Bot
quicksand
2024-11-07 02:30:49
(2 months ago)
Malicious URI path [GET /.git/config] [Adobe Application Manager 2.0]
Bad Web Bot
Web App Attack
Burayot
2024-11-07 02:11:54
(2 months ago)
LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 44.210.83.24 (US/United States/ec2-4 ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 44.210.83.24 (US/United States/ec2-44-210-83-24.compute-1.amazonaws.com): 2 in the last 3600 secs show less
Web App Attack
Epimetheus
2024-11-07 01:26:25
(2 months ago)
Unauthorized access attempts:
From:
44.210.83.24
Method:
HTT ... show more Unauthorized access attempts:
From:
44.210.83.24
Method:
HTTPS GET
URI Path:
/.git/config
UA:
"wii libnup/1.0" show less
Web App Attack
Anonymous
2024-11-07 01:12:03
(2 months ago)
Malicious activity detected
Hacking
Web App Attack
NXTwoThou
2024-11-07 01:09:17
(2 months ago)
/.git/config
Web App Attack
TPI-Abuse
2024-11-07 01:02:34
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 44.210.83.24 (ec2-44-210-83-24.compute-1.amazon ... show more (mod_security) mod_security (id:210492) triggered by 44.210.83.24 (ec2-44-210-83-24.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 06 20:02:30.327918 2024] [security2:error] [pid 23118:tid 23118] [client 44.210.83.24:36154] [client 44.210.83.24] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.northfultonneurology.com"] [uri "/.git/config"] [unique_id "ZywRppYZLF_uU7_ahUvZPAAAAAA"] show less
Brute-Force
Bad Web Bot
Web App Attack
etu brutus
2024-11-07 01:02:23
(2 months ago)
44.210.83.24 Blocked by [Attack Vector List]
...
Hacking
Brute-Force
Exploited Host
quicksand
2024-11-07 00:45:08
(2 months ago)
Malicious URI path & Amazon AWS User Agent Spoofing [GET /.git/config] [Mozilla/5.0 (Windows NT 6.3; ... show more Malicious URI path & Amazon AWS User Agent Spoofing [GET /.git/config] [Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.142 Safari/537.36 OPR/62.0.3331.116] show less
Bad Web Bot
Web App Attack
kumiko
2024-11-07 00:28:35
(2 months ago)
[2024-11-07 00:28:35] Probing for dotfiles
"GET /.git/config HTTP/1.1" 403
Bad Web Bot
Web App Attack
Epimetheus
2024-11-07 00:28:25
(2 months ago)
Unauthorized access attempts:
From:
44.210.83.24
Method:
HTT ... show more Unauthorized access attempts:
From:
44.210.83.24
Method:
HTTPS GET
URI Path:
/.git/config
UA:
"Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.87 Safari/537.36" show less
Web App Attack
TPI-Abuse
2024-11-07 00:22:17
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 44.210.83.24 (ec2-44-210-83-24.compute-1.amazon ... show more (mod_security) mod_security (id:210492) triggered by 44.210.83.24 (ec2-44-210-83-24.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 06 19:22:12.964162 2024] [security2:error] [pid 3901:tid 3901] [client 44.210.83.24:41822] [client 44.210.83.24] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.multimediaperformances.com"] [uri "/.git/config"] [unique_id "ZywINGnEnDXB-cvNjTuYSwAAABY"] show less
Brute-Force
Bad Web Bot
Web App Attack
tecnicorioja
2024-11-06 23:02:04
(2 months ago)
(Mod_security) [06/Nov/2024:19:07:46.315735
Brute-Force
Bad Web Bot
Web App Attack
mescribano
2024-11-06 20:10:01
(2 months ago)
Bad Web Bot
Web App Attack
polycoda
2024-11-06 20:02:43
(2 months ago)
⌨️ Probes for /.git/config everywhere
Hacking
Web App Attack