SCARD

Suspicious activity by IP address 20.74.212.144

Below is a list of the last 500 suspicious interactions with this IP.

Last observed Wed, 20 May 2026 02:22:06 (Australia/Brisbane)

Summary of suspicious activity by IP address 20.74.212.144

Description	Count
SURICATA HTTP Host header invalid	264
ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	123
ET HUNTING Suspicious Chmod Usage in URI (Inbound)	106
ET WEB_SERVER WebShell Generic - wget http - POST	96
ET INFO F5 BIG-IP - Command Execution via util/bash	37
ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	37

Detailed activity by IP address 20.74.212.144

Timestamp	Description	Protocol	Destination Port
2026-05-20 02:22:06	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-20 02:22:06	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-20 02:22:06	SURICATA HTTP Host header invalid	TCP	80
2026-05-20 02:22:06	SURICATA HTTP Host header invalid	TCP	80
2026-05-20 02:22:06	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-20 02:22:06	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-19 18:49:15	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-19 18:49:15	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-19 18:49:15	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-19 18:49:15	SURICATA HTTP Host header invalid	TCP	80
2026-05-19 18:49:15	SURICATA HTTP Host header invalid	TCP	80
2026-05-19 18:49:15	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-19 06:01:17	SURICATA HTTP Host header invalid	TCP	80
2026-05-19 06:01:17	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-19 06:01:13	SURICATA HTTP Host header invalid	TCP	80
2026-05-19 06:01:13	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-18 10:33:05	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-05-18 10:33:05	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-05-18 10:29:30	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-18 10:29:30	SURICATA HTTP Host header invalid	TCP	80
2026-05-18 10:29:30	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-18 10:29:30	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-18 10:29:30	SURICATA HTTP Host header invalid	TCP	80
2026-05-18 10:29:30	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-18 10:05:16	SURICATA HTTP Host header invalid	TCP	80
2026-05-18 10:05:16	SURICATA HTTP Host header invalid	TCP	80
2026-05-18 10:05:16	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-18 10:05:16	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-18 05:20:21	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-05-18 05:20:21	SURICATA HTTP Host header invalid	TCP	443
2026-05-18 05:20:21	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-05-18 05:20:21	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-05-18 05:20:21	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-05-18 05:20:21	SURICATA HTTP Host header invalid	TCP	443
2026-05-18 05:20:21	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-05-18 05:20:21	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-05-18 00:49:42	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-17 22:07:16	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-17 22:07:16	SURICATA HTTP Host header invalid	TCP	80
2026-05-17 22:07:16	SURICATA HTTP Host header invalid	TCP	80
2026-05-17 22:07:16	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-17 21:29:29	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-17 21:29:29	SURICATA HTTP Host header invalid	TCP	80
2026-05-17 21:29:29	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-17 21:29:29	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-17 21:29:29	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-17 21:29:29	SURICATA HTTP Host header invalid	TCP	80
2026-05-17 14:16:42	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-17 14:16:42	SURICATA HTTP Host header invalid	TCP	80
2026-05-17 14:16:42	SURICATA HTTP Host header invalid	TCP	80
2026-05-17 14:16:42	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-17 12:39:56	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-05-17 12:39:56	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-05-17 12:39:56	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-05-17 12:39:56	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-05-17 12:39:56	SURICATA HTTP Host header invalid	TCP	443
2026-05-17 12:39:56	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-05-17 12:39:56	SURICATA HTTP Host header invalid	TCP	443
2026-05-17 12:39:56	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-05-17 07:38:43	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-16 18:37:27	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-05-16 18:37:27	SURICATA HTTP Host header invalid	TCP	443
2026-05-16 18:37:27	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-05-16 18:37:27	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-05-16 18:37:27	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-05-16 18:37:27	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-05-16 18:37:27	SURICATA HTTP Host header invalid	TCP	443
2026-05-16 18:37:27	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-05-16 14:06:59	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-05-16 14:06:59	SURICATA HTTP Host header invalid	TCP	443
2026-05-16 14:06:59	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-05-16 14:06:59	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-05-16 14:06:59	SURICATA HTTP Host header invalid	TCP	443
2026-05-16 14:06:59	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-05-16 14:06:59	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-05-16 14:06:59	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-05-16 07:54:31	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-16 07:54:31	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-16 07:54:31	SURICATA HTTP Host header invalid	TCP	80
2026-05-16 07:54:31	SURICATA HTTP Host header invalid	TCP	80
2026-05-16 05:12:15	SURICATA HTTP Host header invalid	TCP	80
2026-05-16 05:12:15	SURICATA HTTP Host header invalid	TCP	80
2026-05-16 02:20:44	SURICATA HTTP Host header invalid	TCP	80
2026-05-16 02:20:44	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-16 02:20:44	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-16 02:20:44	SURICATA HTTP Host header invalid	TCP	80
2026-05-15 13:41:12	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-15 13:41:12	SURICATA HTTP Host header invalid	TCP	80
2026-05-15 13:41:12	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-15 13:41:12	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-15 13:41:12	SURICATA HTTP Host header invalid	TCP	80
2026-05-15 13:41:12	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-15 07:02:46	SURICATA HTTP Host header invalid	TCP	80
2026-05-15 07:02:46	SURICATA HTTP Host header invalid	TCP	80
2026-05-15 05:14:43	SURICATA HTTP Host header invalid	TCP	80
2026-05-15 05:14:43	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-15 05:14:43	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-15 05:14:43	SURICATA HTTP Host header invalid	TCP	80
2026-05-15 05:14:43	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-15 05:14:43	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-14 16:04:12	SURICATA HTTP Host header invalid	TCP	80
2026-05-14 16:04:12	SURICATA HTTP Host header invalid	TCP	80
2026-05-14 16:04:12	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-14 16:04:12	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-14 14:51:20	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-05-14 14:51:20	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-05-14 14:51:20	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-05-14 14:51:20	SURICATA HTTP Host header invalid	TCP	443
2026-05-14 14:51:20	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-05-14 14:51:20	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-05-14 14:51:20	SURICATA HTTP Host header invalid	TCP	443
2026-05-14 14:51:20	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-05-14 13:27:21	SURICATA HTTP Host header invalid	TCP	80
2026-05-14 13:27:21	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-14 13:27:21	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-14 13:27:21	SURICATA HTTP Host header invalid	TCP	80
2026-05-13 11:54:38	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-13 11:54:38	SURICATA HTTP Host header invalid	TCP	80
2026-05-13 11:54:38	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-13 11:54:38	SURICATA HTTP Host header invalid	TCP	80
2026-05-13 10:30:02	SURICATA HTTP Host header invalid	TCP	80
2026-05-13 10:30:02	SURICATA HTTP Host header invalid	TCP	80
2026-05-13 04:04:14	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-12 20:06:32	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-12 20:06:32	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-12 20:06:32	SURICATA HTTP Host header invalid	TCP	80
2026-05-12 20:06:32	SURICATA HTTP Host header invalid	TCP	80
2026-05-12 16:02:17	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-12 16:02:17	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-12 10:20:29	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-12 02:36:08	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-12 02:36:08	SURICATA HTTP Host header invalid	TCP	80
2026-05-12 02:36:08	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-12 02:36:08	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-12 02:36:08	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-12 02:36:08	SURICATA HTTP Host header invalid	TCP	80
2026-05-12 00:16:33	SURICATA HTTP Host header invalid	TCP	80
2026-05-12 00:16:33	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-12 00:16:33	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-12 00:16:33	SURICATA HTTP Host header invalid	TCP	80
2026-05-11 23:32:50	SURICATA HTTP Host header invalid	TCP	80
2026-05-11 23:32:50	SURICATA HTTP Host header invalid	TCP	80
2026-05-11 19:43:22	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-11 19:43:22	SURICATA HTTP Host header invalid	TCP	80
2026-05-11 19:43:22	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-11 19:43:22	SURICATA HTTP Host header invalid	TCP	80
2026-05-11 19:43:22	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-11 19:43:22	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-11 08:05:06	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-11 08:05:06	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-11 06:13:41	SURICATA HTTP Host header invalid	TCP	80
2026-05-11 06:13:41	SURICATA HTTP Host header invalid	TCP	80
2026-05-11 06:13:41	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-11 06:13:41	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-11 01:04:44	SURICATA HTTP Host header invalid	TCP	80
2026-05-11 01:04:44	SURICATA HTTP Host header invalid	TCP	80
2026-05-10 18:41:52	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-10 10:39:56	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-10 10:39:56	SURICATA HTTP Host header invalid	TCP	80
2026-05-10 10:39:56	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-10 10:39:56	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-10 10:39:56	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-10 10:39:56	SURICATA HTTP Host header invalid	TCP	80
2026-05-10 08:26:14	SURICATA HTTP Host header invalid	TCP	80
2026-05-10 08:26:14	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-10 08:26:13	SURICATA HTTP Host header invalid	TCP	80
2026-05-10 08:26:13	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-10 02:36:55	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-10 02:36:55	SURICATA HTTP Host header invalid	TCP	80
2026-05-10 02:36:55	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-10 02:36:55	SURICATA HTTP Host header invalid	TCP	80
2026-05-09 23:50:54	SURICATA HTTP Host header invalid	TCP	80
2026-05-09 23:50:54	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-09 23:50:54	SURICATA HTTP Host header invalid	TCP	80
2026-05-09 23:50:54	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-09 20:44:17	SURICATA HTTP Host header invalid	TCP	80
2026-05-09 20:44:17	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-09 20:44:17	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-09 20:44:17	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-09 20:44:17	SURICATA HTTP Host header invalid	TCP	80
2026-05-09 20:44:17	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-09 11:47:18	SURICATA HTTP Host header invalid	TCP	80
2026-05-09 11:47:18	SURICATA HTTP Host header invalid	TCP	80
2026-05-09 10:23:39	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-05-09 10:23:39	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-05-09 10:23:39	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-05-09 10:23:39	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-05-09 10:23:39	SURICATA HTTP Host header invalid	TCP	443
2026-05-09 10:23:39	SURICATA HTTP Host header invalid	TCP	443
2026-05-09 10:23:39	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-05-09 10:23:39	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-05-09 08:55:45	SURICATA HTTP Host header invalid	TCP	80
2026-05-09 08:55:45	SURICATA HTTP Host header invalid	TCP	80
2026-05-08 16:18:51	SURICATA HTTP Host header invalid	TCP	80
2026-05-08 16:18:51	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-08 16:18:51	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-08 16:18:51	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-08 16:18:51	SURICATA HTTP Host header invalid	TCP	80
2026-05-08 16:18:51	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-08 15:08:42	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-08 15:08:42	SURICATA HTTP Host header invalid	TCP	80
2026-05-08 15:08:42	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-08 15:08:42	SURICATA HTTP Host header invalid	TCP	80
2026-05-08 06:04:31	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-08 06:04:31	SURICATA HTTP Host header invalid	TCP	80
2026-05-08 06:03:54	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-08 06:03:54	SURICATA HTTP Host header invalid	TCP	80
2026-05-07 18:08:10	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-07 18:08:10	SURICATA HTTP Host header invalid	TCP	80
2026-05-07 18:08:10	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-07 18:08:10	SURICATA HTTP Host header invalid	TCP	80
2026-05-07 04:34:49	SURICATA HTTP Host header invalid	TCP	80
2026-05-07 04:34:49	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-07 04:34:49	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-07 04:34:49	SURICATA HTTP Host header invalid	TCP	80
2026-05-06 22:28:26	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-06 22:28:26	SURICATA HTTP Host header invalid	TCP	80
2026-05-06 22:28:26	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-06 22:28:26	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-06 22:28:26	SURICATA HTTP Host header invalid	TCP	80
2026-05-06 22:28:26	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-06 11:30:13	SURICATA HTTP Host header invalid	TCP	80
2026-05-06 11:30:13	SURICATA HTTP Host header invalid	TCP	80
2026-05-05 23:45:31	SURICATA HTTP Host header invalid	TCP	80
2026-05-05 23:45:31	SURICATA HTTP Host header invalid	TCP	80
2026-05-05 23:45:31	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-05 23:45:31	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-05 21:19:51	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-05 21:19:51	SURICATA HTTP Host header invalid	TCP	80
2026-05-05 21:19:51	SURICATA HTTP Host header invalid	TCP	80
2026-05-05 21:19:51	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-05-05 06:39:29	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-04 23:29:47	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-05-04 23:29:47	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-05-04 23:29:47	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-05-04 23:29:47	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-05-04 23:29:47	SURICATA HTTP Host header invalid	TCP	443
2026-05-04 23:29:47	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-05-04 23:29:47	SURICATA HTTP Host header invalid	TCP	443
2026-05-04 23:29:47	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-05-04 18:57:16	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-05-04 18:57:16	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-05-04 18:57:16	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-05-04 18:57:16	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-05-04 18:57:16	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-05-04 18:57:16	SURICATA HTTP Host header invalid	TCP	443
2026-05-04 18:57:16	SURICATA HTTP Host header invalid	TCP	443
2026-05-04 18:57:16	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-05-04 15:28:41	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-05-04 15:28:41	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-05-04 15:28:41	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-05-04 15:28:41	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-05-04 15:28:41	SURICATA HTTP Host header invalid	TCP	443
2026-05-04 15:28:41	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-05-04 15:28:41	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-05-04 15:28:41	SURICATA HTTP Host header invalid	TCP	443
2026-05-04 14:38:50	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-05-04 14:38:50	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-05-04 14:38:50	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-05-04 14:38:50	SURICATA HTTP Host header invalid	TCP	443
2026-05-04 14:38:50	SURICATA HTTP Host header invalid	TCP	443
2026-05-04 14:38:50	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-05-04 14:38:50	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-05-04 14:38:50	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-05-04 08:15:13	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-03 14:41:12	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-03 14:41:12	SURICATA HTTP Host header invalid	TCP	80
2026-05-03 14:41:12	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-03 14:41:12	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-03 14:41:12	SURICATA HTTP Host header invalid	TCP	80
2026-05-03 14:41:12	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-02 05:20:10	SURICATA HTTP Host header invalid	TCP	80
2026-05-02 05:20:10	SURICATA HTTP Host header invalid	TCP	80
2026-05-02 05:20:10	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-02 05:20:10	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-01 23:00:58	SURICATA HTTP Host header invalid	TCP	80
2026-05-01 23:00:58	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-01 23:00:58	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-01 23:00:58	SURICATA HTTP Host header invalid	TCP	80
2026-05-01 20:59:27	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-01 08:01:42	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-01 08:01:42	SURICATA HTTP Host header invalid	TCP	80
2026-05-01 08:01:42	SURICATA HTTP Host header invalid	TCP	80
2026-05-01 08:01:42	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-01 08:01:42	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-01 08:01:42	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-01 04:07:11	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-01 04:07:11	SURICATA HTTP Host header invalid	TCP	80
2026-05-01 04:07:11	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-05-01 04:07:11	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-01 04:07:11	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-05-01 04:07:11	SURICATA HTTP Host header invalid	TCP	80
2026-04-30 19:03:54	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-30 19:03:54	SURICATA HTTP Host header invalid	TCP	80
2026-04-30 19:03:54	SURICATA HTTP Host header invalid	TCP	80
2026-04-30 19:03:54	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-30 14:27:10	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-30 14:27:10	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-30 14:27:10	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-30 14:27:10	SURICATA HTTP Host header invalid	TCP	80
2026-04-30 14:27:10	SURICATA HTTP Host header invalid	TCP	80
2026-04-30 14:27:10	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-30 13:15:37	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-30 13:15:37	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-30 06:23:41	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-04-30 06:23:41	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-04-30 06:23:41	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-04-30 06:23:41	SURICATA HTTP Host header invalid	TCP	443
2026-04-30 06:23:41	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-04-30 06:23:41	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-04-30 06:23:41	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-04-30 06:23:41	SURICATA HTTP Host header invalid	TCP	443
2026-04-30 03:16:41	SURICATA HTTP Host header invalid	TCP	80
2026-04-30 03:16:41	SURICATA HTTP Host header invalid	TCP	80
2026-04-29 16:57:47	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-29 09:17:31	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-29 09:17:31	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-29 09:17:31	SURICATA HTTP Host header invalid	TCP	80
2026-04-29 09:17:31	SURICATA HTTP Host header invalid	TCP	80
2026-04-29 07:15:00	SURICATA HTTP Host header invalid	TCP	80
2026-04-29 07:15:00	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-29 07:15:00	SURICATA HTTP Host header invalid	TCP	80
2026-04-29 07:15:00	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-28 21:56:55	SURICATA HTTP Host header invalid	TCP	80
2026-04-28 21:56:55	SURICATA HTTP Host header invalid	TCP	80
2026-04-28 11:28:47	SURICATA HTTP Host header invalid	TCP	80
2026-04-28 11:28:47	SURICATA HTTP Host header invalid	TCP	80
2026-04-28 11:28:47	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-28 11:28:47	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-28 10:54:06	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-28 10:54:06	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-28 10:54:06	SURICATA HTTP Host header invalid	TCP	80
2026-04-28 10:54:06	SURICATA HTTP Host header invalid	TCP	80
2026-04-28 10:17:14	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-28 02:17:12	SURICATA HTTP Host header invalid	TCP	80
2026-04-28 02:17:12	SURICATA HTTP Host header invalid	TCP	80
2026-04-28 02:17:12	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-28 02:17:12	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-27 06:44:08	SURICATA HTTP Host header invalid	TCP	80
2026-04-27 06:44:08	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-27 06:44:08	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-27 06:44:08	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-27 06:44:08	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-27 06:44:08	SURICATA HTTP Host header invalid	TCP	80
2026-04-26 23:44:27	SURICATA HTTP Host header invalid	TCP	80
2026-04-26 23:44:27	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-26 23:44:27	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-26 23:44:27	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-26 23:44:27	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-26 23:44:27	SURICATA HTTP Host header invalid	TCP	80
2026-04-26 18:37:27	SURICATA HTTP Host header invalid	TCP	80
2026-04-26 18:37:27	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-26 18:37:27	SURICATA HTTP Host header invalid	TCP	80
2026-04-26 18:37:27	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-26 15:02:12	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-26 15:02:12	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-26 15:02:12	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-26 15:02:12	SURICATA HTTP Host header invalid	TCP	80
2026-04-26 15:02:12	SURICATA HTTP Host header invalid	TCP	80
2026-04-26 15:02:12	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-26 12:05:37	SURICATA HTTP Host header invalid	TCP	80
2026-04-26 12:05:37	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-26 12:05:37	SURICATA HTTP Host header invalid	TCP	80
2026-04-26 12:05:37	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-26 06:07:44	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-26 01:53:45	SURICATA HTTP Host header invalid	TCP	80
2026-04-26 01:53:45	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-26 01:53:45	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-26 01:53:45	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-26 01:53:45	SURICATA HTTP Host header invalid	TCP	80
2026-04-26 01:53:45	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-25 23:22:30	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-04-25 23:22:30	SURICATA HTTP Host header invalid	TCP	443
2026-04-25 23:22:30	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-04-25 23:22:30	SURICATA HTTP Host header invalid	TCP	443
2026-04-25 23:22:30	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	443
2026-04-25 23:22:30	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-04-25 23:22:30	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-04-25 23:22:30	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-04-25 19:20:36	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-25 19:20:36	SURICATA HTTP Host header invalid	TCP	80
2026-04-25 19:20:36	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-25 19:20:36	SURICATA HTTP Host header invalid	TCP	80
2026-04-25 08:26:37	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-25 08:26:37	SURICATA HTTP Host header invalid	TCP	80
2026-04-25 08:26:37	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-25 08:26:37	SURICATA HTTP Host header invalid	TCP	80
2026-04-25 06:42:03	SURICATA HTTP Host header invalid	TCP	80
2026-04-25 06:42:03	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-25 06:42:03	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-25 06:42:03	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-25 06:42:03	SURICATA HTTP Host header invalid	TCP	80
2026-04-25 06:42:03	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-25 03:32:39	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-25 03:32:39	SURICATA HTTP Host header invalid	TCP	80
2026-04-25 03:32:39	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-25 03:32:21	SURICATA HTTP Host header invalid	TCP	80
2026-04-25 03:32:21	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-25 03:32:21	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-24 22:14:24	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-24 22:14:24	SURICATA HTTP Host header invalid	TCP	80
2026-04-24 22:14:24	SURICATA HTTP Host header invalid	TCP	80
2026-04-24 22:14:24	SURICATA HTTP Host header invalid	TCP	80
2026-04-24 22:14:24	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-24 22:14:24	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-23 10:17:40	SURICATA HTTP Host header invalid	TCP	80
2026-04-23 10:17:40	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-23 10:17:40	SURICATA HTTP Host header invalid	TCP	80
2026-04-23 10:17:40	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-22 21:52:23	SURICATA HTTP Host header invalid	TCP	80
2026-04-22 21:52:22	SURICATA HTTP Host header invalid	TCP	80
2026-04-22 02:06:21	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-22 02:06:21	SURICATA HTTP Host header invalid	TCP	80
2026-04-22 02:06:21	SURICATA HTTP Host header invalid	TCP	80
2026-04-22 02:06:21	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-21 09:16:15	SURICATA HTTP Host header invalid	TCP	80
2026-04-21 09:16:15	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-21 09:16:15	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-21 09:16:15	SURICATA HTTP Host header invalid	TCP	80
2026-04-20 23:25:50	SURICATA HTTP Host header invalid	TCP	80
2026-04-20 23:25:50	SURICATA HTTP Host header invalid	TCP	80
2026-04-19 20:52:41	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-19 20:52:41	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-19 20:52:41	SURICATA HTTP Host header invalid	TCP	80
2026-04-19 20:52:41	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-19 20:52:41	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-19 20:52:41	SURICATA HTTP Host header invalid	TCP	80
2026-04-19 13:26:29	SURICATA HTTP Host header invalid	TCP	80
2026-04-19 13:26:29	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-19 13:26:29	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-19 13:26:29	SURICATA HTTP Host header invalid	TCP	80
2026-04-19 11:10:41	SURICATA HTTP Host header invalid	TCP	80
2026-04-19 11:10:41	SURICATA HTTP Host header invalid	TCP	80
2026-04-19 09:11:45	SURICATA HTTP Host header invalid	TCP	80
2026-04-19 09:11:45	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-19 09:11:45	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-19 09:11:45	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-19 09:11:45	SURICATA HTTP Host header invalid	TCP	80
2026-04-19 09:11:45	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-18 11:55:34	SURICATA HTTP Host header invalid	TCP	80
2026-04-18 11:55:34	SURICATA HTTP Host header invalid	TCP	80
2026-04-18 11:55:34	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-18 11:55:34	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-18 05:35:53	SURICATA HTTP Host header invalid	TCP	80
2026-04-18 05:35:53	SURICATA HTTP Host header invalid	TCP	80
2026-04-18 05:35:53	SURICATA HTTP Host header invalid	TCP	80
2026-04-17 15:39:42	SURICATA HTTP Host header invalid	TCP	80
2026-04-17 15:39:42	SURICATA HTTP Host header invalid	TCP	80
2026-04-17 15:39:42	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-17 15:39:42	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-16 23:03:36	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-16 23:03:36	SURICATA HTTP Host header invalid	TCP	80
2026-04-16 23:03:36	SURICATA HTTP Host header invalid	TCP	80
2026-04-16 23:03:36	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-16 20:21:09	ET EXPLOIT F5 BIG-IP iControl REST Authentication Bypass Attempt (CVE-2022-1388) M3	TCP	443
2026-04-16 20:21:09	ET INFO F5 BIG-IP - Command Execution via util/bash	TCP	443
2026-04-16 19:28:44	SURICATA HTTP Host header invalid	TCP	80
2026-04-16 19:28:44	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-16 19:28:44	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-16 19:28:44	SURICATA HTTP Host header invalid	TCP	80
2026-04-15 06:11:26	SURICATA HTTP Host header invalid	TCP	80
2026-04-15 06:11:26	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-15 06:11:26	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-15 06:11:26	SURICATA HTTP Host header invalid	TCP	80
2026-04-14 23:44:13	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-14 18:21:31	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-14 18:21:31	SURICATA HTTP Host header invalid	TCP	80
2026-04-14 18:21:31	SURICATA HTTP Host header invalid	TCP	80
2026-04-14 18:21:31	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-14 16:57:18	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-14 16:57:18	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-14 16:57:18	SURICATA HTTP Host header invalid	TCP	80
2026-04-14 16:57:18	SURICATA HTTP Host header invalid	TCP	80
2026-04-14 15:11:45	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-14 03:49:22	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-14 03:49:22	SURICATA HTTP Host header invalid	TCP	80
2026-04-14 03:49:22	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-14 03:49:22	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-14 03:49:22	SURICATA HTTP Host header invalid	TCP	80
2026-04-14 03:49:22	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-13 19:21:26	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-13 19:21:26	SURICATA HTTP Host header invalid	TCP	80
2026-04-13 19:21:26	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-13 19:21:26	SURICATA HTTP Host header invalid	TCP	80
2026-04-12 22:46:02	SURICATA HTTP Host header invalid	TCP	80
2026-04-12 22:46:02	SURICATA HTTP Host header invalid	TCP	80
2026-04-12 22:46:02	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-12 22:46:02	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-12 22:12:18	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-12 22:12:18	SURICATA HTTP Host header invalid	TCP	80
2026-04-12 22:12:18	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-12 22:12:18	SURICATA HTTP Host header invalid	TCP	80
2026-04-12 09:15:30	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-12 09:15:30	ET WEB_SERVER WebShell Generic - wget http - POST	TCP	80
2026-04-12 09:15:30	SURICATA HTTP Host header invalid	TCP	80
2026-04-12 09:15:30	SURICATA HTTP Host header invalid	TCP	80
2026-04-12 05:44:47	ET HUNTING Suspicious Chmod Usage in URI (Inbound)	TCP	80
2026-04-12 05:44:47	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80
2026-04-12 05:44:47	SURICATA HTTP Host header invalid	TCP	80
2026-04-12 05:44:47	ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Default Credentials	TCP	80