DigitalOcean Referral Badge
cloud1
cloud2
cloud3
cloud4
cloud5
cloud6
← Back

ORG REPORT — Anthropic, PBC · anthropic, pbc

First sighted: April 22, 2025, 3 a.m. · Last sighted: Sept. 20, 2025, 3 a.m.

Risk
100 (high)
Total hits
1336081
Total errors
196112
Distinct IPs
348
Distinct ASNs
1
Top country
United States
Top city
Columbus
Top region
Ohio

Risk

Model: v1 Computed: 2026-01-15 08:32:00
Risk score
100
High
Risk gradient
Key drivers are enriched against the published annotator catalog when available; otherwise sensible defaults are used.
Key drivers
Automated client behavior
Traffic patterns strongly suggest automation rather than a human-operated browser.
bot
Hits 1310918
Points 655459.00
Scan velocity
High request rate and broad endpoint coverage suggest scanning or automated enumeration.
scan_velocity
Hits 47250
Points 50549.04
User-Agent anomaly
User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.
ua
Hits 25163
Points 3019.56
Request size anomaly
Requests are unusually large or shaped in a way that suggests abuse or automation.
request_size
Hits 3957
Points 2924.88
Command injection attempts
Request content resembles attempts to execute OS commands via an application.
cmdi
Hits 5
Points 93.50

Traffic

Rollup

Daily activity (hits per day) and basic HTTP rollup counters for this organization.

Loading activity…
Daily activity (hits per day). Total in window: .
Traffic rollup
HTTP status classes, URL diversity, and totals.
2xx
614816
3xx
472529
4xx
195984
5xx
128
Unique URLs
897639
Total hits
1336081
First seen
April 22, 2025, 3 a.m.
Last seen
Sept. 20, 2025, 3 a.m.

Annotators (All-time)

Heatmap of annotator × severity. Darker cells mean more volume in that band. Tip: switch to Weighted points to see what drives impact (not just noise).

Severity →
Low High
Automated client behavior bot
Traffic patterns strongly suggest automation rather than a human-operated browser.
hits 1310918 pts 655459.00
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
10 1310918 1 655459.00 April 22, 2025, 11:50 p.m. Sept. 19, 2025, 9:47 a.m.
bot 1310918
Scan velocity scan_velocity
High request rate and broad endpoint coverage suggest scanning or automated enumeration.
hits 47250 pts 50549.04
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
10 25308 1 45554.40 May 13, 2025, 2:23 a.m. Sept. 12, 2025, 3:55 p.m.
scan_velocity 25308
12 674 1 1455.84 May 13, 2025, 3:36 a.m. Sept. 10, 2025, 7:30 a.m.
scan_velocity 674
14 412 1 1038.24 May 13, 2025, 3:36 a.m. Sept. 10, 2025, 7:30 a.m.
scan_velocity 412
16 260 1 748.80 May 13, 2025, 9:38 a.m. July 30, 2025, 1:13 p.m.
scan_velocity 260
18 148 1 479.52 May 18, 2025, 3:27 a.m. July 30, 2025, 1:14 p.m.
scan_velocity 148
20 92 1 331.20 May 18, 2025, 3:27 a.m. July 30, 2025, 1:14 p.m.
scan_velocity 92
22 74 1 293.04 May 18, 2025, 3:27 a.m. July 30, 2025, 1:14 p.m.
scan_velocity 74
24 46 1 198.72 May 19, 2025, 6:11 a.m. July 30, 2025, 1:14 p.m.
scan_velocity 46
26 34 1 159.12 May 19, 2025, 6:11 a.m. June 27, 2025, 2:15 a.m.
scan_velocity 34
28 22 1 110.88 May 20, 2025, 2:08 p.m. June 27, 2025, 2:15 a.m.
scan_velocity 22
32 18 1 103.68 May 20, 2025, 2:08 p.m. June 27, 2025, 2:16 a.m.
scan_velocity 18
30 14 1 75.60 May 20, 2025, 2:08 p.m. June 27, 2025, 2:15 a.m.
scan_velocity 14
0 20148 1 0.00 May 13, 2025, 2:23 a.m. Sept. 12, 2025, 3:55 p.m.
scan_velocity 20148
User-Agent anomaly ua
User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.
hits 25163 pts 3019.56
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
6 25163 1 3019.56 May 19, 2025, 8:48 a.m. Sept. 8, 2025, 10:39 a.m.
ua 25163
Request size anomaly request_size
Requests are unusually large or shaped in a way that suggests abuse or automation.
hits 3957 pts 2924.88
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
14 3482 1 2924.88 June 19, 2025, 3:47 p.m. Sept. 8, 2025, 10:18 a.m.
request_size 3482
0 475 1 0.00 June 19, 2025, 3:59 p.m. Sept. 8, 2025, 10:33 a.m.
request_size 475
Command injection attempts cmdi
Request content resembles attempts to execute OS commands via an application.
hits 5 pts 93.50
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
22 5 1 93.50 June 21, 2025, 11:55 p.m. Aug. 13, 2025, 1:31 p.m.
cmdi 5

HTTP Status Breakdown

Response mix grouped by status class (2xx/3xx/4xx/5xx). Uses totals aggregation and renders a donut.

Loading status mix…
Running one aggregation and rendering the chart.

Geolocation

Live geolocation and map tiles auto-load for this Org snapshot (peer IPs with coordinates).

Loading map…

ASNs held by this org

Derived from IP rollups (IPReportTotal). Grouped by (asn, as_org_name).
Loading…

Interesting IPs

Top risky peers inside this org (latest snapshot). Sorted by risk score, then hits.

No matching IP rows available for this org.