๐ช๐ธ
el-brujo
2024-12-29 04:15:12
(1 year ago)
Cloudflare WAF: Request Path: /.env Request Query: Host: hwagm.elhacker.net userAgent: python-reque ...
show more
Cloudflare WAF: Request Path: /.env Request Query: Host: hwagm.elhacker.net userAgent: python-requests/2.26.0 Action: block Source: firewallManaged ASN Description: OVH Country: FR Method: GET Timestamp: 2024-12-29T04:15:12Z ruleId: 23548ee2b36547a1be09bb2c0550c529. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB).
show less
Hacking
SQL Injection
Web App Attack
๐ช๐ธ
el-brujo
2024-12-29 03:40:41
(1 year ago)
Cloudflare WAF: Request Path: /.env Request Query: Host: www.elhacker.net userAgent: python-request ...
show more
Cloudflare WAF: Request Path: /.env Request Query: Host: www.elhacker.net userAgent: python-requests/2.26.0 Action: block Source: firewallManaged ASN Description: OVH Country: FR Method: GET Timestamp: 2024-12-29T03:40:41Z ruleId: 23548ee2b36547a1be09bb2c0550c529. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB).
show less
Hacking
SQL Injection
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-12-29 02:31:46
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 57.128.132.216 (ip216.ip-57-128-132.eu): 1 in t ...
show more
(mod_security) mod_security (id:210492) triggered by 57.128.132.216 (ip216.ip-57-128-132.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 28 21:31:41.737524 2024] [security2:error] [pid 22031:tid 22031] [client 57.128.132.216:50133] [client 57.128.132.216] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.151.7"] [uri "/.env"] [unique_id "Z3C0jVX8dkSVxfYHBk8FagAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-12-29 01:50:40
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 57.128.132.216 (ip216.ip-57-128-132.eu): 1 in t ...
show more
(mod_security) mod_security (id:210492) triggered by 57.128.132.216 (ip216.ip-57-128-132.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 28 20:50:34.531687 2024] [security2:error] [pid 1816:tid 1816] [client 57.128.132.216:63655] [client 57.128.132.216] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.151.5"] [uri "/.env"] [unique_id "Z3Cq6gxTbCbEranx9Aq0WgAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-12-29 01:19:42
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 57.128.132.216 (ip216.ip-57-128-132.eu): 1 in t ...
show more
(mod_security) mod_security (id:210492) triggered by 57.128.132.216 (ip216.ip-57-128-132.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 28 20:19:37.275796 2024] [security2:error] [pid 32515:tid 32515] [client 57.128.132.216:54332] [client 57.128.132.216] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.151.4"] [uri "/.env"] [unique_id "Z3CjqeIN2BCAogCPfycrUAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-12-28 23:16:22
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 57.128.132.216 (ip216.ip-57-128-132.eu): 1 in t ...
show more
(mod_security) mod_security (id:210492) triggered by 57.128.132.216 (ip216.ip-57-128-132.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 28 18:16:19.003333 2024] [security2:error] [pid 1102821:tid 1102821] [client 57.128.132.216:59413] [client 57.128.132.216] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.wooferhound.com"] [uri "/.env"] [unique_id "Z3CGw3tkYq-PLkXVZjy2EAAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-12-28 20:03:54
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 57.128.132.216 (ip216.ip-57-128-132.eu): 1 in t ...
show more
(mod_security) mod_security (id:210492) triggered by 57.128.132.216 (ip216.ip-57-128-132.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 28 15:03:46.579181 2024] [security2:error] [pid 21939:tid 21939] [client 57.128.132.216:52337] [client 57.128.132.216] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.theoaktree.org"] [uri "/.env"] [unique_id "Z3BZonKcfHXN051mdIKYAwAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-12-28 19:43:27
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 57.128.132.216 (ip216.ip-57-128-132.eu): 1 in t ...
show more
(mod_security) mod_security (id:210492) triggered by 57.128.132.216 (ip216.ip-57-128-132.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 28 14:43:21.451828 2024] [security2:error] [pid 15614:tid 15614] [client 57.128.132.216:57942] [client 57.128.132.216] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dmasoftlab.com"] [uri "/.env"] [unique_id "Z3BU2Y0m-_7CrQJMv-O67AAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-12-28 18:56:20
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 57.128.132.216 (ip216.ip-57-128-132.eu): 1 in t ...
show more
(mod_security) mod_security (id:210492) triggered by 57.128.132.216 (ip216.ip-57-128-132.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 28 13:56:16.307172 2024] [security2:error] [pid 18229:tid 18229] [client 57.128.132.216:61877] [client 57.128.132.216] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.151.23"] [uri "/.env"] [unique_id "Z3BJ0Arj5bU-0LRefFnBQQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-12-28 16:49:23
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 57.128.132.216 (ip216.ip-57-128-132.eu): 1 in t ...
show more
(mod_security) mod_security (id:210492) triggered by 57.128.132.216 (ip216.ip-57-128-132.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 28 11:49:18.660215 2024] [security2:error] [pid 32349:tid 32349] [client 57.128.132.216:61770] [client 57.128.132.216] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ohiobabe.com"] [uri "/.env"] [unique_id "Z3AsDlbC31tY2YmrmcAe7AAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
cmbplf
2024-12-28 02:23:31
(1 year ago)
151 requests to *.env
Brute-Force
Bad Web Bot
๐ช๐ธ
el-brujo
2024-12-28 00:23:17
(1 year ago)
Cloudflare WAF: Request Path: /.env Request Query: Host: elhacker.net userAgent: python-requests/2. ...
show more
Cloudflare WAF: Request Path: /.env Request Query: Host: elhacker.net userAgent: python-requests/2.26.0 Action: block Source: firewallManaged ASN Description: OVH Country: FR Method: GET Timestamp: 2024-12-28T00:23:17Z ruleId: 23548ee2b36547a1be09bb2c0550c529. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB).
show less
Hacking
SQL Injection
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-12-27 23:52:10
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 57.128.132.216 (ip216.ip-57-128-132.eu): 1 in t ...
show more
(mod_security) mod_security (id:210492) triggered by 57.128.132.216 (ip216.ip-57-128-132.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 27 18:52:06.307578 2024] [security2:error] [pid 1985496:tid 1985496] [client 57.128.132.216:53085] [client 57.128.132.216] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.konahawaii.com"] [uri "/.env"] [unique_id "Z289pvZhcAWqBLnD-8ZStwAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
el-brujo
2024-12-27 23:33:51
(1 year ago)
Cloudflare WAF: Request Path: /.env Request Query: Host: web.elhacker.net userAgent: python-request ...
show more
Cloudflare WAF: Request Path: /.env Request Query: Host: web.elhacker.net userAgent: python-requests/2.26.0 Action: block Source: firewallManaged ASN Description: OVH Country: FR Method: GET Timestamp: 2024-12-27T23:33:51Z ruleId: 23548ee2b36547a1be09bb2c0550c529. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB).
show less
Hacking
SQL Injection
Web App Attack
๐ณ๐ฟ
Tripwire
2024-12-27 20:52:13
(1 year ago)
Scanning for exploits - /.env
Web App Attack