Incidents Response Neptus Team
2024-11-11 22:26:00
(2 months ago)
Report Abuse IP
Hacking
Exploited Host
Web App Attack
Incidents Response Neptus Team
2024-11-11 22:26:00
(2 months ago)
Report Abuse IP
Hacking
Exploited Host
Web App Attack
el-brujo
2024-11-11 21:34:13
(2 months ago)
Cloudflare WAF: Request Path: /asset/.env Request Query: Host: foro.elhacker.net userAgent: Mozilla ... show more Cloudflare WAF: Request Path: /asset/.env Request Query: Host: foro.elhacker.net userAgent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.85 Safari/537.36 Action: block Source: firewallManaged ASN Description: TECHCREA-SOLUTIONS Country: FR Method: GET Timestamp: 2024-11-11T21:34:13Z ruleId: 23548ee2b36547a1be09bb2c0550c529. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less
Hacking
SQL Injection
Web App Attack
Anonymous
2024-11-11 21:17:13
(2 months ago)
$f2bV_matches
Web App Attack
COMAITE
2024-11-11 20:40:42
(2 months ago)
Multiple web server 400 error codes from same source ip 91.236.254.83.
Web App Attack
Information Security
2024-11-11 20:23:18
(2 months ago)
Web App Attack
Web App Attack
Savvii
2024-11-11 19:57:13
(2 months ago)
20 attempts against mh-misbehave-ban on corn
Brute-Force
Bad Web Bot
Web App Attack
el-brujo
2024-11-11 19:49:01
(2 months ago)
Cloudflare WAF: Request Path: /asset/.env Request Query: Host: warzone.elhacker.net userAgent: Mozi ... show more Cloudflare WAF: Request Path: /asset/.env Request Query: Host: warzone.elhacker.net userAgent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.85 Safari/537.36 Action: block Source: firewallManaged ASN Description: TECHCREA-SOLUTIONS Country: FR Method: GET Timestamp: 2024-11-11T19:49:01Z ruleId: 23548ee2b36547a1be09bb2c0550c529. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less
Hacking
SQL Injection
Web App Attack
Incidents Response Neptus Team
2024-11-11 17:42:00
(2 months ago)
Report Abuse IP
Hacking
Exploited Host
Web App Attack
Savvii
2024-11-11 14:55:15
(2 months ago)
20 attempts against mh_ha-misbehave-ban on ether
Brute-Force
Bad Web Bot
Web App Attack
el-brujo
2024-11-11 14:06:35
(2 months ago)
Cloudflare WAF: Request Path: /asset/.env Request Query: Host: foro.elhacker.net userAgent: Mozilla ... show more Cloudflare WAF: Request Path: /asset/.env Request Query: Host: foro.elhacker.net userAgent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.85 Safari/537.36 Action: block Source: firewallManaged ASN Description: TECHCREA-SOLUTIONS Country: FR Method: GET Timestamp: 2024-11-11T14:06:35Z ruleId: 23548ee2b36547a1be09bb2c0550c529. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less
Hacking
SQL Injection
Web App Attack
el-brujo
2024-11-11 12:49:47
(2 months ago)
Cloudflare WAF: Request Path: /asset/.env Request Query: Host: foro.elhacker.net userAgent: Mozilla ... show more Cloudflare WAF: Request Path: /asset/.env Request Query: Host: foro.elhacker.net userAgent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.85 Safari/537.36 Action: block Source: firewallManaged ASN Description: TECHCREA-SOLUTIONS Country: FR Method: GET Timestamp: 2024-11-11T12:49:47Z ruleId: 23548ee2b36547a1be09bb2c0550c529. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less
Hacking
SQL Injection
Web App Attack
Savvii
2024-11-11 12:30:57
(2 months ago)
21 attempts against mh-misbehave-ban on cedar
Brute-Force
Bad Web Bot
Web App Attack
PulseServers
2024-11-11 10:07:51
(2 months ago)
Malicious Web Traffic - Exploit probing, request floods, etc. on a server hosted by PulseServers.com ... show more Malicious Web Traffic - Exploit probing, request floods, etc. on a server hosted by PulseServers.com - ISCA1
... show less
DDoS Attack
Exploited Host
subnetprotocol
2024-11-11 08:15:37
(2 months ago)
11/Nov/2024:09:15:36.185427 +0100Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 11/Nov/2024:09:15:36.185427 +0100Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 91.236.254.83] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "mignonne.com"] [uri "/.env"] [unique_id "ZzG9KDiHU5H46faWdQhMOQAAARA"]
11/Nov/2024:09:15:36.459531 +0100Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 91.236.254.83] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-930-APPLICATION-ATTAC
... show less
Hacking
Web App Attack