← Back to IP report
Log Explorer
Fact drill-down for
20.221.204.54
Risk
98
HIGH
Scope
All time
All-time facts
2308
In-scope
2308
Filtered
2308
Seen
2024-01-04
→
2024-01-28
Freestyle query (contains)
Time (days, optional)
Page size
25
50
100
200
Apply
Reset (all-time)
Active
(none)
Clear
Faceted filters (facts-based)
exact core + snapshot + optional start/end
Annotation facets
Annotator (exact)
(any)
base — 1138
sfp — 1095
scan_velocity — 75
Severity (exact)
(any)
(none) — 1168
40 — 1086
16 — 15
10 — 15
20 — 8
14 — 8
12 — 4
22 — 2
18 — 2
Label (exact)
(any)
observed — 1138
sensitive_file — 1095
scan_velocity — 75
HTTP facets
Method (exact, case-insensitive)
(any)
GET — 2291
POST — 17
HTTP status (exact)
(any)
410 — 1602
301 — 680
403 — 14
404 — 9
200 — 3
Snapshot facets
Subnet (exact)
(any)
20.221.204.0/24 — 2308
ASN (exact)
(any)
8075 — 2308
Country / Region / City (exact)
(any country)
United States — 2308
(any region)
Illinois — 2308
(any city)
Chicago — 2308
Org contains (ip_org or as_org_name)
Custom time window (optional override)
Provide start/end to scope time explicitly (overrides days). Leave blank for all-time.
Start
End
Tip: keep windows tight when you need speed, but the default is fact-complete.
Top annotators (facts, in-scope)
base
1138
sfp
1095
scan_velocity
75
Top labels (facts, in-scope)
observed
1138
sensitive_file
1095
scan_velocity
75
Click a pill to apply it as a filter.
Annotated access events
Showing page
1
/
47
— total
2308
rows
← Prev
Next →
#
1
2024-01-28 01:16:47
event
1018256
GET
404
bytes
3868
ann
base
label
observed
Request
event observed
/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
2
2024-01-28 01:16:44
event
1018255
GET
410
bytes
545
ann
base
label
observed
Request
event observed
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
3
2024-01-28 01:16:44
event
1018255
GET
410
bytes
545
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
4
2024-01-28 01:16:44
event
1018255
GET
410
bytes
545
ann
scan_velocity
14
label
scan_velocity
Request
Scan-velocity indicator: scanv:rpm
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
scan_velocity
rule
scanv:rpm
conf
85.00
details
rpm_equiv=67.3; score=7; window=90s; total=101; rpm_equiv=67.3; upm_nonstatic_equiv=12.0; 404=0/101(0.00); ext_hits=68; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Scan-velocity indicator: scanv:rpm
details
rpm_equiv=67.3; score=7; window=90s; total=101; rpm_equiv=67.3; upm_nonstatic_equiv=12.0; 404=0/101(0.00); ext_hits=68; ua_sig=0; methods=['GET']
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
5
2024-01-28 01:16:44
event
1018255
GET
410
bytes
545
ann
scan_velocity
14
label
scan_velocity
Request
Scan-velocity indicator: scanv:ext_enum
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
scan_velocity
rule
scanv:ext_enum
conf
85.00
details
ext_hits=68; score=7; window=90s; total=101; rpm_equiv=67.3; upm_nonstatic_equiv=12.0; 404=0/101(0.00); ext_hits=68; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Scan-velocity indicator: scanv:ext_enum
details
ext_hits=68; score=7; window=90s; total=101; rpm_equiv=67.3; upm_nonstatic_equiv=12.0; 404=0/101(0.00); ext_hits=68; ua_sig=0; methods=['GET']
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
6
2024-01-28 01:16:44
event
1018255
GET
410
bytes
545
ann
scan_velocity
label
scan_velocity
Request
Scan-velocity window summary
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
scan_velocity
rule
scanv:window
conf
—
details
window=90s; total=101; rpm_equiv=67.3; upm_nonstatic_equiv=12.0; 404=0/101(0.00); ext_hits=68; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Scan-velocity window summary
details
window=90s; total=101; rpm_equiv=67.3; upm_nonstatic_equiv=12.0; 404=0/101(0.00); ext_hits=68; ua_sig=0; methods=['GET']
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
7
2024-01-28 01:16:43
event
1018254
GET
410
bytes
545
ann
base
label
observed
Request
event observed
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
8
2024-01-28 01:16:43
event
1018254
GET
410
bytes
545
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
9
2024-01-28 01:16:42
event
1018253
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
10
2024-01-28 01:16:42
event
1018253
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
11
2024-01-28 01:16:41
event
1018252
GET
410
bytes
545
ann
base
label
observed
Request
event observed
/database/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/database/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
12
2024-01-28 01:16:41
event
1018252
GET
410
bytes
545
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/database/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/database/.env'
More (full fields + snapshot)
expand
url
/database/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/database/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
13
2024-01-28 01:16:40
event
1018251
GET
410
bytes
545
ann
base
label
observed
Request
event observed
/database/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/database/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
14
2024-01-28 01:16:40
event
1018251
GET
410
bytes
545
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/database/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/database/.env'
More (full fields + snapshot)
expand
url
/database/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/database/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
15
2024-01-28 01:16:39
event
1018250
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/database/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/database/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
16
2024-01-28 01:16:39
event
1018250
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/database/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/database/.env'
More (full fields + snapshot)
expand
url
/database/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/database/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
17
2024-01-28 01:16:38
event
1018249
GET
410
bytes
545
ann
base
label
observed
Request
event observed
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
18
2024-01-28 01:16:38
event
1018248
GET
410
bytes
545
ann
base
label
observed
Request
event observed
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
19
2024-01-28 01:16:38
event
1018249
GET
410
bytes
545
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
20
2024-01-28 01:16:38
event
1018248
GET
410
bytes
545
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
21
2024-01-28 01:16:36
event
1018247
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
22
2024-01-28 01:16:36
event
1018246
GET
410
bytes
545
ann
base
label
observed
Request
event observed
/conf/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/conf/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
23
2024-01-28 01:16:36
event
1018247
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
24
2024-01-28 01:16:36
event
1018246
GET
410
bytes
545
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/conf/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/conf/.env'
More (full fields + snapshot)
expand
url
/conf/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/conf/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
25
2024-01-28 01:16:35
event
1018245
GET
410
bytes
545
ann
base
label
observed
Request
event observed
/conf/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/conf/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
26
2024-01-28 01:16:35
event
1018245
GET
410
bytes
545
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/conf/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/conf/.env'
More (full fields + snapshot)
expand
url
/conf/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/conf/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
27
2024-01-28 01:16:34
event
1018244
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/conf/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/conf/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
28
2024-01-28 01:16:34
event
1018244
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/conf/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/conf/.env'
More (full fields + snapshot)
expand
url
/conf/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/conf/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
29
2024-01-28 01:16:33
event
1018243
GET
410
bytes
545
ann
base
label
observed
Request
event observed
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
30
2024-01-28 01:16:33
event
1018243
GET
410
bytes
545
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
31
2024-01-28 01:16:32
event
1018242
GET
410
bytes
545
ann
base
label
observed
Request
event observed
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
32
2024-01-28 01:16:32
event
1018242
GET
410
bytes
545
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
33
2024-01-28 01:16:31
event
1018241
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
34
2024-01-28 01:16:31
event
1018241
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
35
2024-01-28 01:16:30
event
1018240
GET
410
bytes
545
ann
base
label
observed
Request
event observed
/api/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/api/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
36
2024-01-28 01:16:30
event
1018240
GET
410
bytes
545
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/api/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/api/.env'
More (full fields + snapshot)
expand
url
/api/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/api/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
37
2024-01-28 01:16:29
event
1018239
GET
410
bytes
545
ann
base
label
observed
Request
event observed
/api/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/api/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
38
2024-01-28 01:16:29
event
1018239
GET
410
bytes
545
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/api/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/api/.env'
More (full fields + snapshot)
expand
url
/api/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/api/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
39
2024-01-28 01:16:28
event
1018238
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/api/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/api/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
40
2024-01-28 01:16:28
event
1018238
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/api/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/api/.env'
More (full fields + snapshot)
expand
url
/api/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/api/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
41
2024-01-28 01:16:27
event
1018237
GET
410
bytes
545
ann
base
label
observed
Request
event observed
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
42
2024-01-28 01:16:27
event
1018236
GET
410
bytes
545
ann
base
label
observed
Request
event observed
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
43
2024-01-28 01:16:27
event
1018237
GET
410
bytes
545
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
44
2024-01-28 01:16:27
event
1018236
GET
410
bytes
545
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
45
2024-01-28 01:16:25
event
1018235
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
46
2024-01-28 01:16:25
event
1018234
GET
410
bytes
545
ann
base
label
observed
Request
event observed
/app/config/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/app/config/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
47
2024-01-28 01:16:25
event
1018235
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
48
2024-01-28 01:16:25
event
1018234
GET
410
bytes
545
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/app/config/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/app/config/.env'
More (full fields + snapshot)
expand
url
/app/config/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/app/config/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
49
2024-01-28 01:16:24
event
1018233
GET
410
bytes
545
ann
base
label
observed
Request
event observed
/app/config/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/app/config/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
event observed
details
—
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
50
2024-01-28 01:16:24
event
1018233
GET
410
bytes
545
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/app/config/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/app/config/.env'
More (full fields + snapshot)
expand
url
/app/config/.env
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/app/config/.env'
subnet
20.221.204.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
×
This is a custom alert message.
×
Confirm Action
Are you sure you want to proceed?
