← Back to IP report
Log Explorer
Fact drill-down for
204.137.14.104
Risk
5
LOW
Scope
All time
All-time facts
74
In-scope
74
Filtered
74
Seen
2023-11-14
→
2025-09-15
Freestyle query (contains)
Time (days, optional)
Page size
25
50
100
200
Apply
Reset (all-time)
Active
(none)
Clear
Faceted filters (facts-based)
exact core + snapshot + optional start/end
Annotation facets
Annotator (exact)
(any)
base — 42
sfp — 14
bot — 8
ua — 8
scan_velocity — 2
Severity (exact)
(any)
(none) — 43
40 — 14
10 — 9
12 — 8
Label (exact)
(any)
observed — 42
sensitive_file — 14
bot — 8
ua — 8
scan_velocity — 2
HTTP facets
Method (exact, case-insensitive)
(any)
GET — 74
HTTP status (exact)
(any)
301 — 32
200 — 28
404 — 14
Snapshot facets
Subnet (exact)
(any)
204.137.14.0/24 — 74
ASN (exact)
(any)
399820 — 74
Country / Region / City (exact)
(any country)
United States — 74
(any region)
Illinois — 74
(any city)
Chicago — 74
Org contains (ip_org or as_org_name)
Custom time window (optional override)
Provide start/end to scope time explicitly (overrides days). Leave blank for all-time.
Start
End
Tip: keep windows tight when you need speed, but the default is fact-complete.
Top annotators (facts, in-scope)
base
42
sfp
14
bot
8
ua
8
scan_velocity
2
Top labels (facts, in-scope)
observed
42
sensitive_file
14
bot
8
ua
8
scan_velocity
2
Click a pill to apply it as a filter.
Annotated access events
Showing page
1
/
2
— total
74
rows
← Prev
Next →
#
2025-09-15 15:41:14
event
17849824
GET
200
bytes
17071
ann
base
label
observed
Request
event observed
/blog/assembling-the-disciples-a-tale-of-redemption-and-unity-in-the-journey-to-the-west/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/blog/assembling-the-disciples-a-tale-of-redemption-and-unity-in-the-journey-to-the-west/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-09-15 15:41:14
event
17849819
GET
200
bytes
17071
ann
base
label
observed
Request
event observed
/blog/assembling-the-disciples-a-tale-of-redemption-and-unity-in-the-journey-to-the-west/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/blog/assembling-the-disciples-a-tale-of-redemption-and-unity-in-the-journey-to-the-west/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-09-09 17:32:03
event
20184488
GET
200
bytes
16088
ann
base
label
observed
Request
event observed
/blog/exploring-the-sephirot-a-deep-dive-into-hod/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/blog/exploring-the-sephirot-a-deep-dive-into-hod/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:27
event
9399763
GET
200
bytes
2
ann
ua
12
label
ua
Request
Headless browser/automation framework user-agent
/external_resources/get-cloud-resources/
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
ua
rule
ua:headless
conf
78.00
details
UA matched a headless/automation framework often seen in scripted browsing or scraping.
More (full fields + snapshot)
expand
url
/external_resources/get-cloud-resources/
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
Headless browser/automation framework user-agent
details
UA matched a headless/automation framework often seen in scripted browsing or scraping.
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:27
event
9399761
GET
200
bytes
866
ann
ua
12
label
ua
Request
Headless browser/automation framework user-agent
/static/js/cloud_animation.js
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
ua
rule
ua:headless
conf
78.00
details
UA matched a headless/automation framework often seen in scripted browsing or scraping.
More (full fields + snapshot)
expand
url
/static/js/cloud_animation.js
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
Headless browser/automation framework user-agent
details
UA matched a headless/automation framework often seen in scripted browsing or scraping.
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:27
event
9399760
GET
200
bytes
2
ann
ua
12
label
ua
Request
Headless browser/automation framework user-agent
/external_resources/get-cloud-resources/
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
ua
rule
ua:headless
conf
78.00
details
UA matched a headless/automation framework often seen in scripted browsing or scraping.
More (full fields + snapshot)
expand
url
/external_resources/get-cloud-resources/
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
Headless browser/automation framework user-agent
details
UA matched a headless/automation framework often seen in scripted browsing or scraping.
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:27
event
9399758
GET
200
bytes
866
ann
ua
12
label
ua
Request
Headless browser/automation framework user-agent
/static/js/cloud_animation.js
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
ua
rule
ua:headless
conf
78.00
details
UA matched a headless/automation framework often seen in scripted browsing or scraping.
More (full fields + snapshot)
expand
url
/static/js/cloud_animation.js
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
Headless browser/automation framework user-agent
details
UA matched a headless/automation framework often seen in scripted browsing or scraping.
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:27
event
9399763
GET
200
bytes
2
ann
base
label
observed
Request
event observed
/external_resources/get-cloud-resources/
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/external_resources/get-cloud-resources/
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:27
event
9399761
GET
200
bytes
866
ann
base
label
observed
Request
event observed
/static/js/cloud_animation.js
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/static/js/cloud_animation.js
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:27
event
9399760
GET
200
bytes
2
ann
base
label
observed
Request
event observed
/external_resources/get-cloud-resources/
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/external_resources/get-cloud-resources/
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:27
event
9399758
GET
200
bytes
866
ann
base
label
observed
Request
event observed
/static/js/cloud_animation.js
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/static/js/cloud_animation.js
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:27
event
9399763
GET
200
bytes
2
ann
bot
10
label
bot
Request
Bot user-agent detected: HeadlessChrome
/external_resources/get-cloud-resources/
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
bot
rule
bot:headlesschrome
conf
95.00
details
Matched bot signature (explicit). Token='HeadlessChrome'. UA='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36'
More (full fields + snapshot)
expand
url
/external_resources/get-cloud-resources/
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
Bot user-agent detected: HeadlessChrome
details
Matched bot signature (explicit). Token='HeadlessChrome'. UA='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36'
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:27
event
9399761
GET
200
bytes
866
ann
bot
10
label
bot
Request
Bot user-agent detected: HeadlessChrome
/static/js/cloud_animation.js
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
bot
rule
bot:headlesschrome
conf
95.00
details
Matched bot signature (explicit). Token='HeadlessChrome'. UA='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36'
More (full fields + snapshot)
expand
url
/static/js/cloud_animation.js
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
Bot user-agent detected: HeadlessChrome
details
Matched bot signature (explicit). Token='HeadlessChrome'. UA='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36'
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:27
event
9399760
GET
200
bytes
2
ann
bot
10
label
bot
Request
Bot user-agent detected: HeadlessChrome
/external_resources/get-cloud-resources/
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
bot
rule
bot:headlesschrome
conf
95.00
details
Matched bot signature (explicit). Token='HeadlessChrome'. UA='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36'
More (full fields + snapshot)
expand
url
/external_resources/get-cloud-resources/
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
Bot user-agent detected: HeadlessChrome
details
Matched bot signature (explicit). Token='HeadlessChrome'. UA='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36'
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:27
event
9399758
GET
200
bytes
866
ann
bot
10
label
bot
Request
Bot user-agent detected: HeadlessChrome
/static/js/cloud_animation.js
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
bot
rule
bot:headlesschrome
conf
95.00
details
Matched bot signature (explicit). Token='HeadlessChrome'. UA='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36'
More (full fields + snapshot)
expand
url
/static/js/cloud_animation.js
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
Bot user-agent detected: HeadlessChrome
details
Matched bot signature (explicit). Token='HeadlessChrome'. UA='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36'
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:26
event
9399756
GET
200
bytes
15075
ann
ua
12
label
ua
Request
Headless browser/automation framework user-agent
/static/styles/main.css
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
ua
rule
ua:headless
conf
78.00
details
UA matched a headless/automation framework often seen in scripted browsing or scraping.
More (full fields + snapshot)
expand
url
/static/styles/main.css
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
Headless browser/automation framework user-agent
details
UA matched a headless/automation framework often seen in scripted browsing or scraping.
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:26
event
9399755
GET
200
bytes
1582
ann
ua
12
label
ua
Request
Headless browser/automation framework user-agent
/accounts/signup/
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
ua
rule
ua:headless
conf
78.00
details
UA matched a headless/automation framework often seen in scripted browsing or scraping.
More (full fields + snapshot)
expand
url
/accounts/signup/
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
Headless browser/automation framework user-agent
details
UA matched a headless/automation framework often seen in scripted browsing or scraping.
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:26
event
9399753
GET
200
bytes
15075
ann
ua
12
label
ua
Request
Headless browser/automation framework user-agent
/static/styles/main.css
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
ua
rule
ua:headless
conf
78.00
details
UA matched a headless/automation framework often seen in scripted browsing or scraping.
More (full fields + snapshot)
expand
url
/static/styles/main.css
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
Headless browser/automation framework user-agent
details
UA matched a headless/automation framework often seen in scripted browsing or scraping.
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:26
event
9399752
GET
200
bytes
1582
ann
ua
12
label
ua
Request
Headless browser/automation framework user-agent
/accounts/signup/
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
ua
rule
ua:headless
conf
78.00
details
UA matched a headless/automation framework often seen in scripted browsing or scraping.
More (full fields + snapshot)
expand
url
/accounts/signup/
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
Headless browser/automation framework user-agent
details
UA matched a headless/automation framework often seen in scripted browsing or scraping.
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:26
event
9399756
GET
200
bytes
15075
ann
base
label
observed
Request
event observed
/static/styles/main.css
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/static/styles/main.css
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:26
event
9399755
GET
200
bytes
1582
ann
base
label
observed
Request
event observed
/accounts/signup/
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/accounts/signup/
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:26
event
9399753
GET
200
bytes
15075
ann
base
label
observed
Request
event observed
/static/styles/main.css
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/static/styles/main.css
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:26
event
9399752
GET
200
bytes
1582
ann
base
label
observed
Request
event observed
/accounts/signup/
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/accounts/signup/
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:26
event
9399756
GET
200
bytes
15075
ann
bot
10
label
bot
Request
Bot user-agent detected: HeadlessChrome
/static/styles/main.css
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
bot
rule
bot:headlesschrome
conf
95.00
details
Matched bot signature (explicit). Token='HeadlessChrome'. UA='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36'
More (full fields + snapshot)
expand
url
/static/styles/main.css
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
Bot user-agent detected: HeadlessChrome
details
Matched bot signature (explicit). Token='HeadlessChrome'. UA='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36'
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:26
event
9399755
GET
200
bytes
1582
ann
bot
10
label
bot
Request
Bot user-agent detected: HeadlessChrome
/accounts/signup/
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
bot
rule
bot:headlesschrome
conf
95.00
details
Matched bot signature (explicit). Token='HeadlessChrome'. UA='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36'
More (full fields + snapshot)
expand
url
/accounts/signup/
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
Bot user-agent detected: HeadlessChrome
details
Matched bot signature (explicit). Token='HeadlessChrome'. UA='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36'
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:26
event
9399753
GET
200
bytes
15075
ann
bot
10
label
bot
Request
Bot user-agent detected: HeadlessChrome
/static/styles/main.css
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
bot
rule
bot:headlesschrome
conf
95.00
details
Matched bot signature (explicit). Token='HeadlessChrome'. UA='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36'
More (full fields + snapshot)
expand
url
/static/styles/main.css
referer
https://syndu.com/accounts/signup/
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
Bot user-agent detected: HeadlessChrome
details
Matched bot signature (explicit). Token='HeadlessChrome'. UA='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36'
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-30 12:01:26
event
9399752
GET
200
bytes
1582
ann
bot
10
label
bot
Request
Bot user-agent detected: HeadlessChrome
/accounts/signup/
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
Annotation
facts
label
bot
rule
bot:headlesschrome
conf
95.00
details
Matched bot signature (explicit). Token='HeadlessChrome'. UA='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36'
More (full fields + snapshot)
expand
url
/accounts/signup/
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36
summary
Bot user-agent detected: HeadlessChrome
details
Matched bot signature (explicit). Token='HeadlessChrome'. UA='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/127.0.6533.88 Safari/537.36'
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:44
event
5967949
GET
404
bytes
7946
ann
base
label
observed
Request
event observed
/database/db.sql
referer
-
UA
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:115.0) Gecko/20100101 Firefox/115.0
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/database/db.sql
referer
-
UA
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:115.0) Gecko/20100101 Firefox/115.0
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:44
event
5967947
GET
404
bytes
7946
ann
base
label
observed
Request
event observed
/database/db.sql
referer
-
UA
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:115.0) Gecko/20100101 Firefox/115.0
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/database/db.sql
referer
-
UA
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:115.0) Gecko/20100101 Firefox/115.0
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:43
event
5967946
GET
404
bytes
7942
ann
base
label
observed
Request
event observed
/database/backup.sql
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/database/backup.sql
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:43
event
5967945
GET
404
bytes
7944
ann
base
label
observed
Request
event observed
/data.sql
referer
-
UA
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:115.0) Gecko/20100101 Firefox/115.0
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/data.sql
referer
-
UA
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:115.0) Gecko/20100101 Firefox/115.0
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:43
event
5967944
GET
404
bytes
7942
ann
base
label
observed
Request
event observed
/database/backup.sql
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/database/backup.sql
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:43
event
5967943
GET
404
bytes
7944
ann
base
label
observed
Request
event observed
/data.sql
referer
-
UA
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:115.0) Gecko/20100101 Firefox/115.0
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/data.sql
referer
-
UA
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:115.0) Gecko/20100101 Firefox/115.0
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:42
event
5967941
GET
404
bytes
7945
ann
scan_velocity
10
label
scan_velocity
Request
Scan-velocity indicator: scanv:ext_enum
/backup.sql
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
Annotation
facts
label
scan_velocity
rule
scanv:ext_enum
conf
85.00
details
ext_hits=5; score=5; window=90s; total=19; rpm_equiv=12.7; upm_nonstatic_equiv=6.7; 404=5/19(0.26); ext_hits=5; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/backup.sql
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
summary
Scan-velocity indicator: scanv:ext_enum
details
ext_hits=5; score=5; window=90s; total=19; rpm_equiv=12.7; upm_nonstatic_equiv=6.7; 404=5/19(0.26); ext_hits=5; ua_sig=0; methods=['GET']
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:42
event
5967941
GET
404
bytes
7945
ann
scan_velocity
label
scan_velocity
Request
Scan-velocity window summary
/backup.sql
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
Annotation
facts
label
scan_velocity
rule
scanv:window
conf
—
details
window=90s; total=19; rpm_equiv=12.7; upm_nonstatic_equiv=6.7; 404=5/19(0.26); ext_hits=5; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/backup.sql
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
summary
Scan-velocity window summary
details
window=90s; total=19; rpm_equiv=12.7; upm_nonstatic_equiv=6.7; 404=5/19(0.26); ext_hits=5; ua_sig=0; methods=['GET']
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:42
event
5967942
GET
404
bytes
7949
ann
base
label
observed
Request
event observed
/db.sql
referer
-
UA
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:115.0) Gecko/20100101 Firefox/115.0
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/db.sql
referer
-
UA
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:115.0) Gecko/20100101 Firefox/115.0
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:42
event
5967941
GET
404
bytes
7945
ann
base
label
observed
Request
event observed
/backup.sql
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/backup.sql
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:42
event
5967939
GET
404
bytes
7944
ann
base
label
observed
Request
event observed
/database.sql
referer
-
UA
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:115.0) Gecko/20100101 Firefox/115.0
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/database.sql
referer
-
UA
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:115.0) Gecko/20100101 Firefox/115.0
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:42
event
5967938
GET
404
bytes
7949
ann
base
label
observed
Request
event observed
/db.sql
referer
-
UA
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:115.0) Gecko/20100101 Firefox/115.0
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/db.sql
referer
-
UA
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:115.0) Gecko/20100101 Firefox/115.0
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:42
event
5967937
GET
404
bytes
7945
ann
base
label
observed
Request
event observed
/backup.sql
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/backup.sql
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:42
event
5967935
GET
404
bytes
7944
ann
base
label
observed
Request
event observed
/database.sql
referer
-
UA
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:115.0) Gecko/20100101 Firefox/115.0
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/database.sql
referer
-
UA
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:115.0) Gecko/20100101 Firefox/115.0
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:41
event
5967933
GET
301
bytes
178
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/.env.qa
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/.env.qa'
More (full fields + snapshot)
expand
url
/.env.qa
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/.env.qa'
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:41
event
5967931
GET
301
bytes
178
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/.env.qa
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/.env.qa'
More (full fields + snapshot)
expand
url
/.env.qa
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/.env.qa'
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:41
event
5967933
GET
301
bytes
178
ann
base
label
observed
Request
event observed
/.env.qa
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/.env.qa
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:41
event
5967931
GET
301
bytes
178
ann
base
label
observed
Request
event observed
/.env.qa
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/.env.qa
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:40
event
5967928
GET
301
bytes
178
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/.env.prod
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/.env.prod'
More (full fields + snapshot)
expand
url
/.env.prod
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/.env.prod'
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:40
event
5967925
GET
301
bytes
178
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/.env.prod
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/.env.prod'
More (full fields + snapshot)
expand
url
/.env.prod
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/.env.prod'
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:40
event
5967928
GET
301
bytes
178
ann
base
label
observed
Request
event observed
/.env.prod
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/.env.prod
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:40
event
5967925
GET
301
bytes
178
ann
base
label
observed
Request
event observed
/.env.prod
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/.env.prod
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
summary
event observed
details
—
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
#
2025-05-26 16:56:39
event
5967923
GET
301
bytes
178
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/.env.dev
referer
-
UA
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:115.0) Gecko/20100101 Firefox/115.0
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/.env.dev'
More (full fields + snapshot)
expand
url
/.env.dev
referer
-
UA
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:115.0) Gecko/20100101 Firefox/115.0
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/.env.dev'
subnet
204.137.14.0/24
asn
399820 — Atomic Networks LLC
geo
United States, Illinois, Chicago
org
Atomic Holdings LLC
×
This is a custom alert message.
×
Confirm Action
Are you sure you want to proceed?
