Contextual Risk Score
--unknown
Computed instantly from Syndu's current trust-and-risk model.
Behavioral baseline and contextual score for this IP address.
Access Mode
Visitor mode shows a reduced view for performance and keeps raw log access behind the operator boundary. Log in or create an account to unlock full-history report analysis, product surfaces, training, and richer context.
sqli, cmdi, trav, sfp).
Totals and breakdowns are derived from rollups and explainability tables only.
| Severity | Hits | Labels | Weighted | Top labels |
|---|---|---|---|---|
| 40 | 2072 | 1 | 18233.60 |
{'count': 2072, 'label': 'sensitive_file'}
|
| 24 | 183 | 1 | 966.24 |
{'count': 183, 'label': 'sensitive_file'}
|
| 16 | 86 | 1 | 302.72 |
{'count': 86, 'label': 'sensitive_file'}
|
| 36 | 24 | 1 | 190.08 |
{'count': 24, 'label': 'sensitive_file'}
|
| 34 | 8 | 1 | 59.84 |
{'count': 8, 'label': 'sensitive_file'}
|
| 30 | 7 | 1 | 46.20 |
{'count': 7, 'label': 'sensitive_file'}
|
| 22 | 7 | 1 | 33.88 |
{'count': 7, 'label': 'sensitive_file'}
|
| 44 | 2 | 1 | 19.36 |
{'count': 2, 'label': 'sensitive_file'}
|
| 42 | 2 | 1 | 18.48 |
{'count': 2, 'label': 'sensitive_file'}
|
| Severity | Hits | Labels | Weighted | Top labels |
|---|---|---|---|---|
| 36 | 308 | 1 | 1995.84 |
{'count': 308, 'label': 'scan_velocity'}
|
| 34 | 24 | 1 | 146.88 |
{'count': 24, 'label': 'scan_velocity'}
|
| 28 | 20 | 1 | 100.80 |
{'count': 20, 'label': 'scan_velocity'}
|
| 26 | 19 | 1 | 88.92 |
{'count': 19, 'label': 'scan_velocity'}
|
| 30 | 15 | 1 | 81.00 |
{'count': 15, 'label': 'scan_velocity'}
|
| 32 | 14 | 1 | 80.64 |
{'count': 14, 'label': 'scan_velocity'}
|
| 22 | 20 | 1 | 79.20 |
{'count': 20, 'label': 'scan_velocity'}
|
| 24 | 18 | 1 | 77.76 |
{'count': 18, 'label': 'scan_velocity'}
|
| 20 | 7 | 1 | 25.20 |
{'count': 7, 'label': 'scan_velocity'}
|
| 18 | 4 | 1 | 12.96 |
{'count': 4, 'label': 'scan_velocity'}
|
| 16 | 2 | 1 | 5.76 |
{'count': 2, 'label': 'scan_velocity'}
|
| 14 | 2 | 1 | 5.04 |
{'count': 2, 'label': 'scan_velocity'}
|
| 12 | 1 | 1 | 2.16 |
{'count': 1, 'label': 'scan_velocity'}
|
| 0 | 126 | 1 | 0.00 |
{'count': 126, 'label': 'scan_velocity'}
|
| Severity | Hits | Labels | Weighted | Top labels |
|---|---|---|---|---|
| 14 | 7326 | 1 | 2051.28 |
{'count': 7326, 'label': 'ua'}
|
| 8 | 101 | 1 | 16.16 |
{'count': 101, 'label': 'ua'}
|
| Severity | Hits | Labels | Weighted | Top labels |
|---|---|---|---|---|
| 30 | 72 | 1 | 1836.00 |
{'count': 72, 'label': 'cmdi'}
|
| Severity | Hits | Labels | Weighted | Top labels |
|---|---|---|---|---|
| 34 | 91 | 1 | 804.44 |
{'count': 91, 'label': 'trav'}
|
| 26 | 14 | 1 | 94.64 |
{'count': 14, 'label': 'trav'}
|
| 28 | 4 | 1 | 29.12 |
{'count': 4, 'label': 'trav'}
|
| Severity | Hits | Labels | Weighted | Top labels |
|---|---|---|---|---|
| 10 | 84 | 1 | 462.00 |
{'count': 84, 'label': 'cred'}
|
| 8 | 26 | 1 | 114.40 |
{'count': 26, 'label': 'cred'}
|
| 12 | 2 | 1 | 13.20 |
{'count': 2, 'label': 'cred'}
|
| 0 | 84 | 1 | 0.00 |
{'count': 84, 'label': 'cred'}
|
| Severity | Hits | Labels | Weighted | Top labels |
|---|---|---|---|---|
| 24 | 51 | 1 | 97.92 |
{'count': 51, 'label': 'proto'}
|
| 12 | 50 | 1 | 48.00 |
{'count': 50, 'label': 'proto'}
|
| Severity | Hits | Labels | Weighted | Top labels |
|---|---|---|---|---|
| 32 | 1 | 1 | 14.40 |
{'count': 1, 'label': 'fwprobe'}
|
Daily activity with stacked HTTP response classes plus a total-hits trend line from the traffic rollup.
Activity Access
VisitorVisitor mode is limited to the most recent 30 days for performance. Log in or create an account to unlock the full activity history and deeper analysis.
Response mix grouped by status class (2xx/3xx/4xx/5xx). Auto-loads a single aggregation and renders a donut.
Live geolocation and map tiles auto-load for this IP.
The raw Log Explorer remains a real boundary in the system, but Syndu no longer serves annotated access logs outside the admin channel now that the platform carries commercial traffic. The reports and the contextual score still derive from that underlying evidence.
