DigitalOcean Referral Badge
cloud1
cloud2
cloud3
cloud4
cloud5
cloud6
← Back

COUNTRY REPORT — South Africa · south africa

Contextual Risk

Syndu matches the queried target properties against aggregated behavioral baselines across the IP hierarchy and calculates a contextual risk score from the matched dimensions.

Contextual Risk Score
--unknown

Computed instantly from Syndu's current trust-and-risk model.

Total Hits
339668
Total Errors
66172
First Seen
July 16, 2023, 3 a.m.
Last Seen
March 13, 2026, 2 a.m.
Risk Level
--
Risk Score
--

Dimension Baselines

In-scope matched dimensions contribute directly to the contextual score. Each value links to the corresponding report and latest computed baseline.

Create API Account Risk API Docs View Pricing
Briefing Notes
  • South Africa: risk 100 (high).
  • Risk rank #18 of 208 countries.
  • Coverage 100.0% geolocated, confidence 100/100.
  • Top organization: rain group holdings (pty) ltd (36,659 hits).
  • Top ASN: AS37105 (55,011 hits).
  • Push alert posture: Watch (Moderate risk or recent activity).

Behavioral Risk

Model: v1 Computed: 2026-03-18 09:02:09
Risk score
100
Risk gradient
Key drivers are enriched against the published annotator catalog when available; otherwise sensible defaults are used.
Annotator influence radar
Rendering annotator influence profile…
Normalized contribution (0..1) per annotator versus robust per-code envelope.
Key drivers
Credential brute forcing
Repeated authentication attempts consistent with password guessing or credential stuffing.
cred
Hits 7853
Points 25829.10
Sensitive file probing
Requests target commonly sensitive files, configs, backups, or administrative resources.
sfp
Hits 190
Points 1512.28
Path traversal attempts
Request paths/parameters resemble attempts to access files outside intended directories.
trav
Hits 43
Points 333.32
Command injection attempts
Request content resembles attempts to execute OS commands via an application.
cmdi
Hits 13
Points 307.70
Scan velocity
High request rate and broad endpoint coverage suggest scanning or automated enumeration.
scan_velocity
Hits 126
Points 133.20
Request size anomaly
Requests are unusually large or shaped in a way that suggests abuse or automation.
request_size
Hits 531
Points 110.04
User-Agent anomaly
User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.
ua
Hits 534
Points 74.52
SQL injection attempts
Input patterns resemble attempts to manipulate SQL queries via application parameters.
sqli
Hits 3
Points 70.00
Firewall/VPN Console Probing
Requests match known firewall, VPN, and gateway admin/login surfaces or client artifacts, indicating explicit probing of security-device endpoints.
fwprobe
Hits 5
Points 59.40
Protocol anomaly
Request structure or protocol-level signals deviate from typical browser HTTP traffic.
proto
Hits 17
Points 14.96
Automated client behavior
Traffic patterns strongly suggest automation rather than a human-operated browser.
bot
Hits 5
Points 2.50
HTTP method anomaly
Unusual or unexpected HTTP methods observed for the target endpoints.
method
Hits 6
Points 2.28

Top Organizations Operating In The Country

Most-observed organizations in this country
rain group holdings (pty) ltd mtn sa dimension data telkom sa limited herotel vodacom vox telecom (pty) ltd rain south african digital villages (pty) ltd afrihost sp (pty) ltd telkom internet broadband 105 net99 (pty) ltd telkom sa ltd hero telecoms (pty) ltd mfn-ip net99 bb rsaweb ikeja wireless (pty) ltd cipherwave vodacom ens echotel pty ltd too much wifi vodacom pretoria silverton cgnat allocation block 2 sa ftn cellc 3g level 7 wireless (pty) ltd jasco converged solutions (pty) ltd sadv (pty) ltd letabanetworks ftth gauteng vodacom mobile cgnat allocation block 1 midrand sa web telecom services (pty) ltd toomuchwifi (pty) ltd vodacom mobile cgnat allocation block 2 midrand sa baremetal computer traders home connect letaba networks (pty) ltd trusc capricom networks dimension data (pty) ltd - optinet

Traffic

Rollup

Daily activity (hits per day) and basic HTTP rollup counters for this country.

Loading activity…
Daily activity (hits per day). Total in window: .
Traffic rollup
HTTP status classes, URL diversity, and totals.
2xx
179665
3xx
92097
4xx
49055
5xx
17117
Unique URLs
0
Total hits
339668
First seen
July 16, 2023, 3 a.m.
Last seen
March 13, 2026, 2 a.m.

HTTP Status Breakdown

Response mix grouped by status class (2xx/3xx/4xx/5xx). Uses totals aggregation and renders a donut.

Loading status mix…
Running one aggregation and rendering the chart.

Geolocation

Live geolocation and map tiles auto-load for this country snapshot (peer IPs with coordinates).

Loading map…

Top Autonomous System Networks

Most-observed networks in this country
AS37105 RAIN GROUP HOLDINGS (PTY) LTD AS20011 Dimension Data AS328471 HERO TELECOMS (PTY) LTD AS12091 MTN SA AS37457 Telkom SA Ltd. AS11845 Vox Telecom Ltd AS37049 South African Digital Villages (Pty) Ltd AS29975 Vodacom AS5713 Telkom SA Ltd. AS36994 Vodacom AS37611 AFRIHOST SP (PTY) LTD AS328961 NET99 (PTY) LTD AS37645 Finstar - Sociedade de Investimento e Participacoes S.A AS16637 MTN SA AS327782 Metrofibre Networx AS37053 RSAWEB (PTY) LTD AS328510 Ikeja Wireless (Pty) Ltd AS328480 Too Much Wifi AS327693 Echotel Pty Ltd AS37168 Cell C (Pty) Ltd AS37315 Cipherwave AS328638 Letaba Networks (Pty) Ltd AS37680 Cool Ideas Service Provider (Pty) Ltd AS329126 IIP1 Pty Ltd AS37334 JASCO CONVERGED SOLUTIONS (Pty) Ltd AS327901 Level 7 Wireless (Pty) Ltd AS36937 Liquid Telecommunications South Africa (Pty) Ltd AS327804 Municipal Network Services AS329062 Baremetal Computer Traders AS328029 Web Telecom Services (PTY) Ltd AS328341 Capricom Networks AS137951 ASLINE LIMITED AS328178 The Computer Hut cc AS3741 Dimension Data AS327872 IBITS Internet (pty) Ltd AS37542 Iclix (PTY) Ltd AS329028 Rapid Networks (Pty) Ltd AS328399 Vaal Networking Consultants (PTY) LTD AS37358 BitCo AS327996 Accelerit Technologies PTY LTD