The IP has been blocked multiple times by AWS WAF for attempting Local File Inclusion (LFI) attacks. ...
show moreThe IP has been blocked multiple times by AWS WAF for attempting Local File Inclusion (LFI) attacks. The requests targeted various paths using directory traversal techniques, such as:
- `/img../.git/config`
- `/js../.git/config`
- `/static../.git/config`
- `/events../.git/config`
- `/css../.git/config`
- `/assets../.git/config`
- `/images../.git/config`
- `/content../.git/config`
- `/media../.git/config`
These requests indicate an attempt to exploit misconfigured servers to access `.git/config` files, which can contain sensitive repository metadata. The activity was blocked under the AWS WAF Managed Core Rule Set (`GenericLFI_URIPATH`).
This behavior is consistent with automated scanning for vulnerable directories and is considered malicious.
show less