← Back to IP report
Log Explorer
Fact drill-down for
45.148.10.35
Risk
100
HIGH
Scope
All time
All-time facts
12584
In-scope
12584
Filtered
12584
Seen
2025-02-21
→
2025-04-16
Freestyle query (contains)
Time (days, optional)
Page size
25
50
100
200
Apply
Reset (all-time)
Active
(none)
Clear
Faceted filters (facts-based)
exact core + snapshot + optional start/end
Annotation facets
Annotator (exact)
(any)
base — 6207
sfp — 4815
scan_velocity — 603
ua — 521
cred — 301
trav — 113
method — 21
proto — 2
bot — 1
Severity (exact)
(any)
(none) — 6537
24 — 4665
10 — 381
8 — 356
6 — 163
26 — 131
34 — 117
40 — 46
14 — 33
12 — 30
16 — 29
20 — 24
18 — 21
30 — 18
32 — 12
28 — 12
22 — 9
Label (exact)
(any)
observed — 6207
sensitive_file — 4815
scan_velocity — 603
ua — 521
cred — 301
trav — 113
method — 21
proto — 2
bot — 1
HTTP facets
Method (exact, case-insensitive)
(any)
GET — 12519
\x16\x03\x01\x00 — 65
HTTP status (exact)
(any)
301 — 6289
404 — 4866
400 — 735
(none) — 378
200 — 182
500 — 84
302 — 50
Snapshot facets
Subnet (exact)
(any)
45.148.10.0/24 — 12584
ASN (exact)
(any)
48090 — 12584
Country / Region / City (exact)
(any country)
The Netherlands — 12584
(any region)
North Holland — 12584
(any city)
Amsterdam — 12584
Org contains (ip_org or as_org_name)
Custom time window (optional override)
Provide start/end to scope time explicitly (overrides days). Leave blank for all-time.
Start
End
Tip: keep windows tight when you need speed, but the default is fact-complete.
Top annotators (facts, in-scope)
base
6207
sfp
4815
scan_velocity
603
ua
521
cred
301
trav
113
method
21
proto
2
bot
1
Top labels (facts, in-scope)
observed
6207
sensitive_file
4815
scan_velocity
603
ua
521
cred
301
trav
113
method
21
proto
2
bot
1
Click a pill to apply it as a filter.
Annotated access events
Showing page
1
/
252
— total
12584
rows
← Prev
Next →
#
1
2025-04-16 08:04:21
event
5618506
GET
404
bytes
7897
ann
base
label
observed
Request
event observed
/config/okta_oauth.yaml
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/config/okta_oauth.yaml
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
2
2025-04-16 08:04:21
event
5618505
GET
404
bytes
7897
ann
base
label
observed
Request
event observed
/config.js
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/config.js
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
3
2025-04-16 08:04:20
event
5618503
GET
404
bytes
7895
ann
base
label
observed
Request
event observed
/auth/oauth_config.ini
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/auth/oauth_config.ini
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
4
2025-04-16 08:04:20
event
5618502
GET
404
bytes
7896
ann
base
label
observed
Request
event observed
/secrets/auth.yaml
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/secrets/auth.yaml
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
5
2025-04-16 08:04:20
event
5618503
GET
404
bytes
7895
ann
cred
10
label
cred
Request
Auth request appears to use an automation-oriented user agent
/auth/oauth_config.ini
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
cred
rule
cred:scripted_user_agent
conf
70.00
details
Automation-ish UA strings are useful correlates when paired with failures or spraying patterns.
More (full fields + snapshot)
expand
url
/auth/oauth_config.ini
referer
-
UA
l9explore/1.2.2
summary
Auth request appears to use an automation-oriented user agent
details
Automation-ish UA strings are useful correlates when paired with failures or spraying patterns.
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
6
2025-04-16 08:04:20
event
5618503
GET
404
bytes
7895
ann
cred
label
cred
Request
Auth endpoint request observed
/auth/oauth_config.ini
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
cred
rule
cred:auth_hit:oauth_oidc
conf
55.00
details
Row-level auth primitive for downstream aggregation (no velocity logic here).
More (full fields + snapshot)
expand
url
/auth/oauth_config.ini
referer
-
UA
l9explore/1.2.2
summary
Auth endpoint request observed
details
Row-level auth primitive for downstream aggregation (no velocity logic here).
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
7
2025-04-16 08:04:19
event
5618500
GET
404
bytes
7899
ann
scan_velocity
32
label
scan_velocity
Request
Scan-velocity indicator: scanv:rpm
/vault/oauth.yaml
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
scan_velocity
rule
scanv:rpm
conf
90.00
details
rpm_equiv=58.7; score=16; window=90s; total=88; rpm_equiv=58.7; upm_nonstatic_equiv=58.0; 404=86/88(0.98); ext_hits=9; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/vault/oauth.yaml
referer
-
UA
l9explore/1.2.2
summary
Scan-velocity indicator: scanv:rpm
details
rpm_equiv=58.7; score=16; window=90s; total=88; rpm_equiv=58.7; upm_nonstatic_equiv=58.0; 404=86/88(0.98); ext_hits=9; ua_sig=0; methods=['GET']
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
8
2025-04-16 08:04:19
event
5618500
GET
404
bytes
7899
ann
scan_velocity
32
label
scan_velocity
Request
Scan-velocity indicator: scanv:unique_paths
/vault/oauth.yaml
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
scan_velocity
rule
scanv:unique_paths
conf
90.00
details
upm_nonstatic_equiv=58.0; score=16; window=90s; total=88; rpm_equiv=58.7; upm_nonstatic_equiv=58.0; 404=86/88(0.98); ext_hits=9; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/vault/oauth.yaml
referer
-
UA
l9explore/1.2.2
summary
Scan-velocity indicator: scanv:unique_paths
details
upm_nonstatic_equiv=58.0; score=16; window=90s; total=88; rpm_equiv=58.7; upm_nonstatic_equiv=58.0; 404=86/88(0.98); ext_hits=9; ua_sig=0; methods=['GET']
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
9
2025-04-16 08:04:19
event
5618500
GET
404
bytes
7899
ann
scan_velocity
32
label
scan_velocity
Request
Scan-velocity indicator: scanv:ext_enum
/vault/oauth.yaml
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
scan_velocity
rule
scanv:ext_enum
conf
90.00
details
ext_hits=9; score=16; window=90s; total=88; rpm_equiv=58.7; upm_nonstatic_equiv=58.0; 404=86/88(0.98); ext_hits=9; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/vault/oauth.yaml
referer
-
UA
l9explore/1.2.2
summary
Scan-velocity indicator: scanv:ext_enum
details
ext_hits=9; score=16; window=90s; total=88; rpm_equiv=58.7; upm_nonstatic_equiv=58.0; 404=86/88(0.98); ext_hits=9; ua_sig=0; methods=['GET']
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
10
2025-04-16 08:04:19
event
5618500
GET
404
bytes
7899
ann
scan_velocity
32
label
scan_velocity
Request
Scan-velocity indicator: scanv:404_ratio
/vault/oauth.yaml
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
scan_velocity
rule
scanv:404_ratio
conf
90.00
details
404=86/88(0.98); score=16; window=90s; total=88; rpm_equiv=58.7; upm_nonstatic_equiv=58.0; 404=86/88(0.98); ext_hits=9; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/vault/oauth.yaml
referer
-
UA
l9explore/1.2.2
summary
Scan-velocity indicator: scanv:404_ratio
details
404=86/88(0.98); score=16; window=90s; total=88; rpm_equiv=58.7; upm_nonstatic_equiv=58.0; 404=86/88(0.98); ext_hits=9; ua_sig=0; methods=['GET']
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
11
2025-04-16 08:04:19
event
5618500
GET
404
bytes
7899
ann
scan_velocity
label
scan_velocity
Request
Scan-velocity window summary
/vault/oauth.yaml
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
scan_velocity
rule
scanv:window
conf
—
details
window=90s; total=88; rpm_equiv=58.7; upm_nonstatic_equiv=58.0; 404=86/88(0.98); ext_hits=9; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/vault/oauth.yaml
referer
-
UA
l9explore/1.2.2
summary
Scan-velocity window summary
details
window=90s; total=88; rpm_equiv=58.7; upm_nonstatic_equiv=58.0; 404=86/88(0.98); ext_hits=9; ua_sig=0; methods=['GET']
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
12
2025-04-16 08:04:19
event
5618501
GET
404
bytes
7897
ann
base
label
observed
Request
event observed
/app/auth/config.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/app/auth/config.json
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
13
2025-04-16 08:04:19
event
5618500
GET
404
bytes
7899
ann
base
label
observed
Request
event observed
/vault/oauth.yaml
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/vault/oauth.yaml
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
14
2025-04-16 08:04:19
event
5618501
GET
404
bytes
7897
ann
cred
10
label
cred
Request
Auth request appears to use an automation-oriented user agent
/app/auth/config.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
cred
rule
cred:scripted_user_agent
conf
70.00
details
Automation-ish UA strings are useful correlates when paired with failures or spraying patterns.
More (full fields + snapshot)
expand
url
/app/auth/config.json
referer
-
UA
l9explore/1.2.2
summary
Auth request appears to use an automation-oriented user agent
details
Automation-ish UA strings are useful correlates when paired with failures or spraying patterns.
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
15
2025-04-16 08:04:19
event
5618501
GET
404
bytes
7897
ann
cred
label
cred
Request
Auth endpoint request observed
/app/auth/config.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
cred
rule
cred:auth_hit:auth_other
conf
55.00
details
Row-level auth primitive for downstream aggregation (no velocity logic here).
More (full fields + snapshot)
expand
url
/app/auth/config.json
referer
-
UA
l9explore/1.2.2
summary
Auth endpoint request observed
details
Row-level auth primitive for downstream aggregation (no velocity logic here).
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
16
2025-04-16 08:04:18
event
5618499
GET
404
bytes
7895
ann
base
label
observed
Request
event observed
/secrets/secrets.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/secrets/secrets.json
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
17
2025-04-16 08:04:18
event
5618497
GET
404
bytes
7898
ann
base
label
observed
Request
event observed
/config/auth.yaml
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/config/auth.yaml
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
18
2025-04-16 08:04:18
event
5618496
GET
404
bytes
7900
ann
base
label
observed
Request
event observed
/auth/keys.ini
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/auth/keys.ini
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
19
2025-04-16 08:04:18
event
5618496
GET
404
bytes
7900
ann
cred
10
label
cred
Request
Auth request appears to use an automation-oriented user agent
/auth/keys.ini
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
cred
rule
cred:scripted_user_agent
conf
70.00
details
Automation-ish UA strings are useful correlates when paired with failures or spraying patterns.
More (full fields + snapshot)
expand
url
/auth/keys.ini
referer
-
UA
l9explore/1.2.2
summary
Auth request appears to use an automation-oriented user agent
details
Automation-ish UA strings are useful correlates when paired with failures or spraying patterns.
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
20
2025-04-16 08:04:18
event
5618496
GET
404
bytes
7900
ann
cred
label
cred
Request
Auth endpoint request observed
/auth/keys.ini
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
cred
rule
cred:auth_hit:auth_other
conf
55.00
details
Row-level auth primitive for downstream aggregation (no velocity logic here).
More (full fields + snapshot)
expand
url
/auth/keys.ini
referer
-
UA
l9explore/1.2.2
summary
Auth endpoint request observed
details
Row-level auth primitive for downstream aggregation (no velocity logic here).
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
21
2025-04-16 08:04:17
event
5618494
GET
404
bytes
7898
ann
base
label
observed
Request
event observed
/config/auth_override.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/config/auth_override.json
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
22
2025-04-16 08:04:17
event
5618492
GET
404
bytes
7898
ann
base
label
observed
Request
event observed
/services/auth/config.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/services/auth/config.json
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
23
2025-04-16 08:04:17
event
5618492
GET
404
bytes
7898
ann
cred
10
label
cred
Request
Auth request appears to use an automation-oriented user agent
/services/auth/config.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
cred
rule
cred:scripted_user_agent
conf
70.00
details
Automation-ish UA strings are useful correlates when paired with failures or spraying patterns.
More (full fields + snapshot)
expand
url
/services/auth/config.json
referer
-
UA
l9explore/1.2.2
summary
Auth request appears to use an automation-oriented user agent
details
Automation-ish UA strings are useful correlates when paired with failures or spraying patterns.
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
24
2025-04-16 08:04:17
event
5618492
GET
404
bytes
7898
ann
cred
label
cred
Request
Auth endpoint request observed
/services/auth/config.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
cred
rule
cred:auth_hit:auth_other
conf
55.00
details
Row-level auth primitive for downstream aggregation (no velocity logic here).
More (full fields + snapshot)
expand
url
/services/auth/config.json
referer
-
UA
l9explore/1.2.2
summary
Auth endpoint request observed
details
Row-level auth primitive for downstream aggregation (no velocity logic here).
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
25
2025-04-16 08:04:16
event
5618491
GET
404
bytes
7897
ann
scan_velocity
30
label
scan_velocity
Request
Scan-velocity indicator: scanv:unique_paths
/settings.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
scan_velocity
rule
scanv:unique_paths
conf
90.00
details
upm_nonstatic_equiv=54.0; score=15; window=90s; total=82; rpm_equiv=54.7; upm_nonstatic_equiv=54.0; 404=80/82(0.98); ext_hits=8; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/settings.json
referer
-
UA
l9explore/1.2.2
summary
Scan-velocity indicator: scanv:unique_paths
details
upm_nonstatic_equiv=54.0; score=15; window=90s; total=82; rpm_equiv=54.7; upm_nonstatic_equiv=54.0; 404=80/82(0.98); ext_hits=8; ua_sig=0; methods=['GET']
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
26
2025-04-16 08:04:16
event
5618491
GET
404
bytes
7897
ann
scan_velocity
30
label
scan_velocity
Request
Scan-velocity indicator: scanv:rpm
/settings.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
scan_velocity
rule
scanv:rpm
conf
90.00
details
rpm_equiv=54.7; score=15; window=90s; total=82; rpm_equiv=54.7; upm_nonstatic_equiv=54.0; 404=80/82(0.98); ext_hits=8; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/settings.json
referer
-
UA
l9explore/1.2.2
summary
Scan-velocity indicator: scanv:rpm
details
rpm_equiv=54.7; score=15; window=90s; total=82; rpm_equiv=54.7; upm_nonstatic_equiv=54.0; 404=80/82(0.98); ext_hits=8; ua_sig=0; methods=['GET']
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
27
2025-04-16 08:04:16
event
5618491
GET
404
bytes
7897
ann
scan_velocity
30
label
scan_velocity
Request
Scan-velocity indicator: scanv:ext_enum
/settings.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
scan_velocity
rule
scanv:ext_enum
conf
90.00
details
ext_hits=8; score=15; window=90s; total=82; rpm_equiv=54.7; upm_nonstatic_equiv=54.0; 404=80/82(0.98); ext_hits=8; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/settings.json
referer
-
UA
l9explore/1.2.2
summary
Scan-velocity indicator: scanv:ext_enum
details
ext_hits=8; score=15; window=90s; total=82; rpm_equiv=54.7; upm_nonstatic_equiv=54.0; 404=80/82(0.98); ext_hits=8; ua_sig=0; methods=['GET']
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
28
2025-04-16 08:04:16
event
5618491
GET
404
bytes
7897
ann
scan_velocity
30
label
scan_velocity
Request
Scan-velocity indicator: scanv:404_ratio
/settings.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
scan_velocity
rule
scanv:404_ratio
conf
90.00
details
404=80/82(0.98); score=15; window=90s; total=82; rpm_equiv=54.7; upm_nonstatic_equiv=54.0; 404=80/82(0.98); ext_hits=8; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/settings.json
referer
-
UA
l9explore/1.2.2
summary
Scan-velocity indicator: scanv:404_ratio
details
404=80/82(0.98); score=15; window=90s; total=82; rpm_equiv=54.7; upm_nonstatic_equiv=54.0; 404=80/82(0.98); ext_hits=8; ua_sig=0; methods=['GET']
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
29
2025-04-16 08:04:16
event
5618491
GET
404
bytes
7897
ann
scan_velocity
label
scan_velocity
Request
Scan-velocity window summary
/settings.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
scan_velocity
rule
scanv:window
conf
—
details
window=90s; total=82; rpm_equiv=54.7; upm_nonstatic_equiv=54.0; 404=80/82(0.98); ext_hits=8; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/settings.json
referer
-
UA
l9explore/1.2.2
summary
Scan-velocity window summary
details
window=90s; total=82; rpm_equiv=54.7; upm_nonstatic_equiv=54.0; 404=80/82(0.98); ext_hits=8; ua_sig=0; methods=['GET']
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
30
2025-04-16 08:04:16
event
5618491
GET
404
bytes
7897
ann
base
label
observed
Request
event observed
/settings.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/settings.json
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
31
2025-04-16 08:04:16
event
5618489
GET
404
bytes
7896
ann
base
label
observed
Request
event observed
/vault/config.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/vault/config.json
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
32
2025-04-16 08:04:15
event
5618487
GET
404
bytes
7896
ann
base
label
observed
Request
event observed
/config/security.ini
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/config/security.ini
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
33
2025-04-16 08:04:15
event
5618486
GET
404
bytes
7896
ann
base
label
observed
Request
event observed
/config/integration.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/config/integration.json
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
34
2025-04-16 08:04:14
event
5618485
GET
404
bytes
7898
ann
base
label
observed
Request
event observed
/config/base.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/config/base.json
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
35
2025-04-16 08:04:14
event
5618483
GET
404
bytes
7894
ann
base
label
observed
Request
event observed
/test/settings.yaml
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/test/settings.yaml
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
36
2025-04-16 08:04:13
event
5618481
GET
404
bytes
7899
ann
base
label
observed
Request
event observed
/config/credentials.yml
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/config/credentials.yml
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
37
2025-04-16 08:04:13
event
5618480
GET
404
bytes
7897
ann
base
label
observed
Request
event observed
/config/external_auth.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/config/external_auth.json
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
38
2025-04-16 08:04:12
event
5618479
GET
404
bytes
7899
ann
base
label
observed
Request
event observed
/scripts/secrets.yaml
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/scripts/secrets.yaml
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
39
2025-04-16 08:04:12
event
5618477
GET
404
bytes
7899
ann
base
label
observed
Request
event observed
/src/config/api_keys.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/src/config/api_keys.json
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
40
2025-04-16 08:04:11
event
5618476
GET
404
bytes
7895
ann
base
label
observed
Request
event observed
/config/app_config.yaml
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/config/app_config.yaml
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
41
2025-04-16 08:04:11
event
5618474
GET
404
bytes
7895
ann
base
label
observed
Request
event observed
/config/client_oauth.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/config/client_oauth.json
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
42
2025-04-16 08:04:09
event
5618472
GET
404
bytes
7895
ann
base
label
observed
Request
event observed
/src/auth/config.yaml
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/src/auth/config.yaml
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
43
2025-04-16 08:04:09
event
5618472
GET
404
bytes
7895
ann
cred
10
label
cred
Request
Auth request appears to use an automation-oriented user agent
/src/auth/config.yaml
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
cred
rule
cred:scripted_user_agent
conf
70.00
details
Automation-ish UA strings are useful correlates when paired with failures or spraying patterns.
More (full fields + snapshot)
expand
url
/src/auth/config.yaml
referer
-
UA
l9explore/1.2.2
summary
Auth request appears to use an automation-oriented user agent
details
Automation-ish UA strings are useful correlates when paired with failures or spraying patterns.
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
44
2025-04-16 08:04:09
event
5618472
GET
404
bytes
7895
ann
cred
label
cred
Request
Auth endpoint request observed
/src/auth/config.yaml
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
cred
rule
cred:auth_hit:auth_other
conf
55.00
details
Row-level auth primitive for downstream aggregation (no velocity logic here).
More (full fields + snapshot)
expand
url
/src/auth/config.yaml
referer
-
UA
l9explore/1.2.2
summary
Auth endpoint request observed
details
Row-level auth primitive for downstream aggregation (no velocity logic here).
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
45
2025-04-16 08:04:08
event
5618471
GET
404
bytes
7894
ann
base
label
observed
Request
event observed
/settings/api_config.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/settings/api_config.json
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
46
2025-04-16 08:04:08
event
5618469
GET
404
bytes
7899
ann
base
label
observed
Request
event observed
/db/settings.ini
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/db/settings.ini
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
47
2025-04-16 08:04:07
event
5618468
GET
404
bytes
7899
ann
base
label
observed
Request
event observed
/config/db.json
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/config/db.json
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
48
2025-04-16 08:04:07
event
5618466
GET
404
bytes
7896
ann
base
label
observed
Request
event observed
/config/database.yml
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/config/database.yml
referer
-
UA
l9explore/1.2.2
summary
event observed
details
—
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
49
2025-04-16 08:04:06
event
5618464
GET
404
bytes
7895
ann
scan_velocity
28
label
scan_velocity
Request
Scan-velocity indicator: scanv:rpm
/app/secrets/oauth.yaml
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
scan_velocity
rule
scanv:rpm
conf
90.00
details
rpm_equiv=43.3; score=14; window=90s; total=65; rpm_equiv=43.3; upm_nonstatic_equiv=42.7; 404=63/65(0.97); ext_hits=6; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/app/secrets/oauth.yaml
referer
-
UA
l9explore/1.2.2
summary
Scan-velocity indicator: scanv:rpm
details
rpm_equiv=43.3; score=14; window=90s; total=65; rpm_equiv=43.3; upm_nonstatic_equiv=42.7; 404=63/65(0.97); ext_hits=6; ua_sig=0; methods=['GET']
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
#
50
2025-04-16 08:04:06
event
5618464
GET
404
bytes
7895
ann
scan_velocity
28
label
scan_velocity
Request
Scan-velocity indicator: scanv:unique_paths
/app/secrets/oauth.yaml
referer
-
UA
l9explore/1.2.2
Annotation
facts
label
scan_velocity
rule
scanv:unique_paths
conf
90.00
details
upm_nonstatic_equiv=42.7; score=14; window=90s; total=65; rpm_equiv=43.3; upm_nonstatic_equiv=42.7; 404=63/65(0.97); ext_hits=6; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/app/secrets/oauth.yaml
referer
-
UA
l9explore/1.2.2
summary
Scan-velocity indicator: scanv:unique_paths
details
upm_nonstatic_equiv=42.7; score=14; window=90s; total=65; rpm_equiv=43.3; upm_nonstatic_equiv=42.7; 404=63/65(0.97); ext_hits=6; ua_sig=0; methods=['GET']
subnet
45.148.10.0/24
asn
48090 — TECHOFF SRV LIMITED
geo
The Netherlands, North Holland, Amsterdam
org
Techoff SRV Limited
×
This is a custom alert message.
×
Confirm Action
Are you sure you want to proceed?
