๐ฉ๐ช
ghostwarriors
2026-07-11 01:21:33
(1 hour ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-11 01:20:00
(1 hour ago)
Fail2Ban: WordPress XML-RPC brute-force attack detected.
Bad Web Bot
Web App Attack
๐ง๐ท
Peregrine
2026-07-10 03:17:04
(23 hours ago)
Fail2Ban Jail: tomcat-honeypot | Evidence: - 45.132.115.111 - - [07/Jul/2026:19:24:25 -0300] "POST / ...
show more
Fail2Ban Jail: tomcat-honeypot | Evidence: - 45.132.115.111 - - [07/Jul/2026:19:24:25 -0300] "POST /.env HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:26 -0300] "GET /.env HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:26 -0300] "GET /.env.prod HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:26 -0300] "GET /.env.production HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:27 -0300] "GET /redmine/.env HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:28 -0300] "GET /__tests__/test-become/.env HTTP/1.1" 404 414
show less
Bad Web Bot
๐ง๐ท
Peregrine
2026-07-09 03:10:41
(1 day ago)
Fail2Ban Jail: tomcat-honeypot | Evidence: - 45.132.115.111 - - [07/Jul/2026:19:24:25 -0300] "POST / ...
show more
Fail2Ban Jail: tomcat-honeypot | Evidence: - 45.132.115.111 - - [07/Jul/2026:19:24:25 -0300] "POST /.env HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:26 -0300] "GET /.env HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:26 -0300] "GET /.env.prod HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:26 -0300] "GET /.env.production HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:27 -0300] "GET /redmine/.env HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:28 -0300] "GET /__tests__/test-become/.env HTTP/1.1" 404 414
show less
Bad Web Bot
๐ง๐ท
Peregrine
2026-07-08 03:08:59
(2 days ago)
Fail2Ban Jail: tomcat-404 | Evidence: - 45.132.115.111 - - [07/Jul/2026:19:24:27 -0300] "GET /redmin ...
show more
Fail2Ban Jail: tomcat-404 | Evidence: - 45.132.115.111 - - [07/Jul/2026:19:24:27 -0300] "GET /redmine/.env HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:28 -0300] "GET /__tests__/test-become/.env HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:29 -0300] "GET /config/config.js HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:30 -0300] "GET /web/config.js HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:33 -0300] "GET /src/config.js HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:33 -0300] "GET /src/api/config.js HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:34 -0300] "GET /web/api/config.js HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:34 -0300] "GET /env.dev.js HTTP/1.1" 404 414
show less
Bad Web Bot
Web App Attack
๐ง๐ท
Peregrine
2026-07-07 22:24:35
(3 days ago)
Fail2Ban Jail: tomcat-honeypot | Evidence: - 45.132.115.111 - - [07/Jul/2026:19:24:25 -0300] "POST / ...
show more
Fail2Ban Jail: tomcat-honeypot | Evidence: - 45.132.115.111 - - [07/Jul/2026:19:24:25 -0300] "POST /.env HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:26 -0300] "GET /.env HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:26 -0300] "GET /.env.prod HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:26 -0300] "GET /.env.production HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:27 -0300] "GET /redmine/.env HTTP/1.1" 404 414
- 45.132.115.111 - - [07/Jul/2026:19:24:28 -0300] "GET /__tests__/test-become/.env HTTP/1.1" 404 414
show less
Bad Web Bot
๐บ๐ธ
zwebvigil
2026-07-07 18:19:12
(3 days ago)
45.132.115.111 [07/Jul/2026:11:18:17 -0700] "GET /.git/config HTTP/1.1" 401 381 "-" port=31193 "Moz ...
show more
45.132.115.111 [07/Jul/2026:11:18:17 -0700] "GET /.git/config HTTP/1.1" 401 381 "-" port=31193 "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0" "-" "-" "<ipaddr>" 577
45.132.115.111 [07/Jul/2026:11:19:10 -0700] "GET /..;/env.prod.js HTTP/1.1" 401 381 "-" port=31169 "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36" "-" "-" "<ipaddr>" 371
45.132.115.111 [07/Jul/2026:11:19:11 -0700] "GET /..;/env.production.js HTTP/1.1" 401 381 "-" port=31169 "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36" "-" "-" "<ipaddr>" 320
45.132.115.111 [07/Jul/2026:11:19:11 -0700] "GET /config.js HTTP/1.1" 401 381 "-" port=31169 "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36" "-" "-" "<ipaddr>" 447
45.132.115.111 [07/Jul/2026:11:19:11 -0700] "G
show less
Web App Attack
๐จ๐ฆ
Not Fake
2026-07-07 15:40:19
(3 days ago)
$f2bV_matches
Web App Attack
๐บ๐ธ
Matthew Ping
2026-07-07 13:45:03
(3 days ago)
ModSecurity rule 949110 triggered on banks. Web application attack blocked by CSF/LFD.
Web App Attack
Hacking
๐ณ๐ฑ
bazter.pro
2026-07-07 09:52:31
(3 days ago)
45.132.115.111 - - [07/Jul/2026:09:52:31 +0000] "GET /.env.prod HTTP/1.1" 404 419 "-" "Mozilla/5.0 ( ...
show more
45.132.115.111 - - [07/Jul/2026:09:52:31 +0000] "GET /.env.prod HTTP/1.1" 404 419 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36"
...
show less
Port Scan
Brute-Force
Bad Web Bot
Web App Attack
SSH
๐ฉ๐ช
barbarella
2026-07-06 15:49:11
(4 days ago)
Illegal http header (POST /)
Hacking
Web App Attack
๐บ๐ธ
Starburst SysOp Team
2026-07-06 01:11:07
(5 days ago)
Host header is a numeric IP address. Pattern match "(?:^( (920350-stl2-13)
Hacking
Bad Web Bot
๐ฌ๐ง
Oakley
2026-07-05 20:42:44
(5 days ago)
(confirmed_bot_sig) Confirmed bot
Hacking
๐ฉ๐ช
iNetWorker
2026-07-05 18:10:59
(5 days ago)
trolling for resource vulnerabilities
Web App Attack
๐บ๐ธ
nyt
2026-06-29 17:35:45
(1 week ago)
Repeated WordPress login POSTs blocked by WAF (3 in 6h)
Brute-Force
Web App Attack