๐ณ๐ฑ
homeshowdomain.nl
2026-07-16 22:00:30
(1 day ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-07-15.
show less
Web App Attack
SSH
Hacking
๐จ๐ญ
zynex
2026-07-16 19:47:21
(1 day ago)
URL Probing: /server/.env
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 16:15:16
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 52.31.120.189 (ec2-52-31-120-189.eu-west-1.comp ...
show more
(mod_security) mod_security (id:210492) triggered by 52.31.120.189 (ec2-52-31-120-189.eu-west-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 12:15:08.404560 2026] [security2:error] [pid 24252:tid 24252] [client 52.31.120.189:48430] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "laecovillage.org"] [uri "/.git/config"] [unique_id "alkDjEHKwdwGk85_rmemaAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 15:45:06
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 52.31.120.189 (ec2-52-31-120-189.eu-west-1.comp ...
show more
(mod_security) mod_security (id:210492) triggered by 52.31.120.189 (ec2-52-31-120-189.eu-west-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 11:45:01.504419 2026] [security2:error] [pid 29211:tid 29211] [client 52.31.120.189:34424] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ladymcollection.com"] [uri "/.git/config"] [unique_id "alj8fbpAwdj2c6K1JV6v4gAAAFM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-07-16 12:29:04
(2 days ago)
Multiple WAF Violations
Web App Attack
๐ซ๐ท
Octopuce
2026-07-16 09:29:41
(2 days ago)
Aggressive web search of vulnerable pages: /.env /.env.local /app/.env /apps/.env /api/.env ...
Web App Attack
๐ฉ๐ช
LRob
2026-07-16 04:49:27
(2 days ago)
CrowdSec: crowdsecurity/http-sensitive-files | req: /.git/config | 5 distinct paths | UA: Mozilla/5. ...
show more
CrowdSec: crowdsecurity/http-sensitive-files | req: /.git/config | 5 distinct paths | UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
show less
Hacking
Anonymous
2026-07-16 02:22:23
(2 days ago)
Multiple web server 400 error codes from same source ip
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-07-15 22:00:35
(2 days ago)
Auto-ban: >3000 req/min op 2026-07-15
Web App Attack
SSH
Hacking
๐ฑ๐ป
garmtech.com
2026-07-15 13:00:21
(3 days ago)
IM360 WAF: RCE via prototype pollution in React Server Components < 19.0.1/19.1.2/19.2.1 or Next.js ...
show more
IM360 WAF: RCE via prototype pollution in React Server Components < 19.0.1/19.1.2/19.2.1 or Next.js < 15.0.5/16.0.7 (CVE-2025-55182, CVE-2025-66478)
show less
Hacking
๐ซ๐ฎ
inlink.ltd
2026-07-14 20:45:04
(3 days ago)
dot file probe
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-14 17:09:14
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 52.31.120.189 (ec2-52-31-120-189.eu-west-1.comp ...
show more
(mod_security) mod_security (id:210492) triggered by 52.31.120.189 (ec2-52-31-120-189.eu-west-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 13:09:07.020607 2026] [security2:error] [pid 31651:tid 31651] [client 52.31.120.189:48868] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "raystransmission.com"] [uri "/.git/config"] [unique_id "alZtM7jOZdrvhtgOA-_VzAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack