Below is a list of the last 500 suspicious interactions with this IP.
Last observed Tue, 14 Jul 2026 06:22:42 (Australia/Brisbane)
| Description | Count |
|---|---|
| ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | 128 |
| ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | 128 |
| ET WEB_SERVER Possible SQL Injection (exec) in HTTP URI | 74 |
| ET WEB_SERVER WebShell Generic - wget http - POST | 62 |
| ET WEB_SPECIFIC_APPS Geoserver Unsafe jxpath Evaluation RCE Attempt M5 (CVE-2024-36401) | 58 |
| ET WEB_SERVER PHP System Command in HTTP POST | 38 |
| ET WEB_SERVER PHP tags in HTTP POST | 38 |
| SERVER-WEBAPP GeoServer WFS remote code execution attempt | 34 |
| SERVER-WEBAPP PHPUnit PHP remote code execution attempt | 34 |
| SERVER-APACHE Apache Struts remote code execution attempt | 30 |
| ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 | 20 |
| ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 | 20 |
| ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) | 20 |
| ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M1 | 18 |
| SERVER-APACHE Apache Struts remote code execution attempt - GET parameter | 16 |
| ET EXPLOIT Apache Struts Possible OGNL Java Exec In URI | 12 |
| ET WEB_SERVER Apache Struts Possible xwork Disable Method Execution | 12 |
| ET WEB_SPECIFIC_APPS Apache Struts java.lang inbound OGNL injection remote code execution attempt | 12 |
| ET WEB_SPECIFIC_APPS Apache Struts inbound .getWriter OGNL injection remote code execution attempt | 12 |
| ET EXPLOIT Apache Struts Possible OGNL AllowStaticMethodAccess in URI | 12 |
| SERVER-WEBAPP Atlassian Confluence OGNL expression injection attempt | 8 |
| SERVER-APACHE Apache Struts allowStaticMethodAccess invocation attempt | 8 |
| SERVER-APACHE Apache Struts2 blacklisted method redirect | 8 |
| SERVER-WEBAPP Multiple products OGNL expression injection attempt | 8 |
| SERVER-APACHE Apache Struts OGNL getRuntime.exec static method access attempt | 8 |
| ET WEB_SPECIFIC_APPS Apache Struts memberAccess inbound OGNL injection remote code execution attempt | 4 |
| ET EXPLOIT Apache Struts getWriter and opensymphony inbound OGNL injection remote code execution attempt | 4 |
| ET WEB_SPECIFIC_APPS Apache Struts inbound .getClass OGNL injection remote code execution attempt | 4 |
| ET HUNTING .exec in HTTP URI Inbound - Possible Exploit Activity | 4 |
| ET EXPLOIT Apache Struts memberAccess and getWriter inbound OGNL injection remote code execution attempt | 4 |
| ET EXPLOIT Apache Struts memberAccess and opensymphony inbound OGNL injection remote code execution attempt | 4 |
| ET EXPLOIT Linksys E-Series Device RCE Attempt | 1 |
| ET WEB_SPECIFIC_APPS Linksys E-Series OS Command Injection (CVE-2025-34037) M1 | 1 |
| ET WORM TheMoon.linksys.router 2 | 1 |
| Timestamp | Description | Protocol | Destination Port |
|---|---|---|---|
| 2026-07-14 06:22:42 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 06:22:42 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 06:22:42 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 06:22:42 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 06:06:30 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 06:06:30 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 06:06:30 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 06:06:30 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 05:46:04 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 05:46:04 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 05:46:04 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 05:46:04 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 05:20:59 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 05:20:59 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 05:20:59 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 05:20:59 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 04:34:31 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 04:34:31 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 04:34:31 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 04:34:31 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 03:38:53 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 03:38:53 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 03:38:53 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 03:38:53 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 03:08:51 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 03:08:51 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 03:08:51 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 03:08:51 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 02:44:07 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 02:44:07 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 02:44:07 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 02:44:07 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 01:47:16 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 01:47:16 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 01:47:16 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 01:47:16 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 01:20:50 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 01:20:50 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 01:20:50 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 01:20:50 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 00:51:56 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 00:51:56 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 00:51:56 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 00:51:56 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 00:23:01 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 00:23:01 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-14 00:23:01 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-14 00:23:01 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 23:35:10 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 23:35:10 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 23:35:10 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 23:35:10 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 23:13:03 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 23:13:03 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 23:13:03 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 23:13:03 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 22:15:19 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 22:15:19 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 22:15:19 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 22:15:19 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 21:38:22 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 21:38:22 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 21:38:22 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 21:38:22 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 21:18:59 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 21:18:59 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 21:18:59 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 21:18:59 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 20:59:26 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 20:59:26 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 20:59:26 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 20:59:26 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 20:14:07 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 20:14:07 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 20:14:07 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 20:14:07 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 19:00:23 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 19:00:23 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 19:00:23 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 19:00:23 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 18:22:30 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 18:22:30 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 18:22:30 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 18:22:30 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 17:44:34 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 17:44:34 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 17:44:34 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 17:44:34 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 17:16:11 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 17:16:11 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 17:16:11 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 17:16:11 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 16:59:27 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 16:59:27 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 16:59:27 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 16:59:27 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 16:29:28 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 16:29:28 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 16:29:28 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 16:29:28 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 16:03:06 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 16:03:06 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 16:03:06 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 16:03:06 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 15:12:54 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 15:12:54 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 15:12:54 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 15:12:54 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 14:55:45 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 14:55:45 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 14:55:45 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 14:55:45 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 13:44:07 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 13:44:07 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 13:44:07 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 13:44:07 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 13:23:58 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 13:23:58 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 13:23:58 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 13:23:58 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 12:52:45 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 12:52:45 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 12:52:45 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 12:52:45 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 12:23:46 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 12:23:46 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 12:23:46 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 12:23:46 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 11:59:21 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 11:59:21 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 11:59:20 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 11:59:20 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 11:43:02 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 11:43:02 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 11:43:02 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 11:43:02 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 11:11:33 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 11:11:33 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 11:11:33 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 11:11:33 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 10:45:27 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 10:45:27 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 10:45:27 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 10:45:27 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 10:23:21 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 10:23:21 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 10:23:21 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 10:23:21 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 10:04:52 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 10:04:52 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 10:04:52 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 10:04:52 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 09:05:57 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 09:05:57 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 09:05:57 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 09:05:57 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 08:48:13 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 08:48:13 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 08:48:13 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 08:48:13 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 08:11:03 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 08:11:03 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 08:11:02 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 08:11:02 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 07:42:25 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 07:42:25 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 07:42:25 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 07:42:25 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 06:20:50 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 06:20:50 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 06:20:50 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 06:20:50 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 05:56:43 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 05:56:43 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 05:56:43 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 05:56:43 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 04:42:54 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 04:42:54 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 04:42:54 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 04:42:54 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 03:55:05 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 03:55:05 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 03:55:05 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 03:55:05 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 03:12:45 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 03:12:45 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 03:12:45 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 03:12:45 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 02:14:06 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 02:14:06 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 02:14:06 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 02:14:06 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 01:44:29 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 01:44:29 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 01:44:29 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 01:44:29 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 00:55:42 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 00:55:42 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 00:55:42 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 00:55:42 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 00:33:06 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-13 00:33:06 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 00:33:06 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-13 00:33:06 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 23:46:30 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 23:46:30 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 23:46:30 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 23:46:30 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 23:14:13 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 23:14:13 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 23:14:13 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 23:14:13 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 22:30:37 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 22:30:37 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 22:30:37 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 22:30:37 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 21:26:28 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 21:26:28 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 21:26:28 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 21:26:28 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 21:06:28 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 21:06:28 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 21:06:28 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 21:06:28 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 20:24:52 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 20:24:52 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 20:24:52 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 20:24:52 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 20:08:45 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 20:08:45 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 20:08:45 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 20:08:45 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 19:24:04 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 19:24:04 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 19:24:04 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 19:24:04 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 19:04:27 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 19:04:27 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 19:04:27 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 19:04:27 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 18:35:13 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 18:35:13 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 18:35:13 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 18:35:13 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 17:45:25 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 17:45:25 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 17:45:25 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 17:45:25 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 17:12:46 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 17:12:46 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 17:12:46 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 17:12:46 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 16:44:36 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 16:44:36 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 16:44:36 | ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body | TCP | 3000 |
| 2026-07-12 16:44:36 | ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) | TCP | 3000 |
| 2026-07-12 13:01:21 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M1 | TCP | 80 |
| 2026-07-12 13:01:21 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M1 | TCP | 80 |
| 2026-07-12 13:01:21 | ET WEB_SERVER WebShell Generic - wget http - POST | TCP | 80 |
| 2026-07-12 13:01:21 | ET WEB_SERVER WebShell Generic - wget http - POST | TCP | 80 |
| 2026-07-12 12:42:29 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M1 | TCP | 80 |
| 2026-07-12 12:42:29 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M1 | TCP | 80 |
| 2026-07-12 12:42:29 | ET WEB_SERVER WebShell Generic - wget http - POST | TCP | 80 |
| 2026-07-12 12:42:29 | ET WEB_SERVER WebShell Generic - wget http - POST | TCP | 80 |
| 2026-07-12 12:29:08 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M1 | TCP | 80 |
| 2026-07-12 12:25:00 | ET WEB_SERVER WebShell Generic - wget http - POST | TCP | 80 |
| 2026-07-12 12:25:00 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M1 | TCP | 80 |
| 2026-07-12 12:25:00 | ET WEB_SERVER WebShell Generic - wget http - POST | TCP | 80 |
| 2026-07-12 12:25:00 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M1 | TCP | 80 |
| 2026-07-12 12:05:22 | ET WEB_SERVER WebShell Generic - wget http - POST | TCP | 80 |
| 2026-07-12 12:05:22 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M1 | TCP | 80 |
| 2026-07-12 12:05:22 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M1 | TCP | 80 |
| 2026-07-12 12:05:22 | ET WEB_SERVER WebShell Generic - wget http - POST | TCP | 80 |
| 2026-07-12 11:49:32 | ET WEB_SERVER WebShell Generic - wget http - POST | TCP | 80 |
| 2026-07-12 11:49:32 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M1 | TCP | 80 |
| 2026-07-12 11:49:32 | ET WEB_SERVER WebShell Generic - wget http - POST | TCP | 80 |
| 2026-07-12 11:49:32 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M1 | TCP | 80 |
| 2026-07-12 11:33:27 | ET WEB_SERVER WebShell Generic - wget http - POST | TCP | 80 |
| 2026-07-12 11:33:27 | ET WEB_SERVER WebShell Generic - wget http - POST | TCP | 80 |
| 2026-07-12 11:33:27 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M1 | TCP | 80 |
| 2026-07-12 11:33:27 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M1 | TCP | 80 |
| 2026-07-12 11:22:26 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M1 | TCP | 80 |
| 2026-07-12 11:16:52 | ET WEB_SERVER WebShell Generic - wget http - POST | TCP | 80 |
| 2026-07-12 11:16:52 | ET WEB_SERVER WebShell Generic - wget http - POST | TCP | 80 |
| 2026-07-12 11:16:52 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M1 | TCP | 80 |
| 2026-07-12 11:16:52 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M1 | TCP | 80 |
| 2026-07-12 10:52:58 | ET WEB_SERVER WebShell Generic - wget http - POST | TCP | 8080 |
| 2026-07-12 10:52:58 | ET WEB_SERVER WebShell Generic - wget http - POST | TCP | 8080 |
| 2026-07-12 10:52:58 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M1 | TCP | 8080 |
| 2026-07-12 10:52:58 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M1 | TCP | 8080 |
| 2026-07-12 10:24:26 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) | TCP | 80 |
| 2026-07-12 10:24:26 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 | TCP | 80 |
| 2026-07-12 10:24:26 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 | TCP | 80 |
| 2026-07-12 10:24:26 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 | TCP | 80 |
| 2026-07-12 10:24:26 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 10:24:26 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 10:24:26 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 | TCP | 80 |
| 2026-07-12 10:24:26 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) | TCP | 80 |
| 2026-07-12 10:08:57 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 10:08:57 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) | TCP | 80 |
| 2026-07-12 10:08:57 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 | TCP | 80 |
| 2026-07-12 10:08:57 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 | TCP | 80 |
| 2026-07-12 10:08:57 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 | TCP | 80 |
| 2026-07-12 10:08:57 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 10:08:57 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 | TCP | 80 |
| 2026-07-12 10:08:57 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) | TCP | 80 |
| 2026-07-12 10:00:45 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 | TCP | 80 |
| 2026-07-12 10:00:45 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) | TCP | 80 |
| 2026-07-12 10:00:45 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 | TCP | 80 |
| 2026-07-12 09:52:08 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) | TCP | 80 |
| 2026-07-12 09:52:08 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 | TCP | 80 |
| 2026-07-12 09:52:08 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 | TCP | 80 |
| 2026-07-12 09:52:08 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 | TCP | 80 |
| 2026-07-12 09:52:08 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 | TCP | 80 |
| 2026-07-12 09:52:08 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 09:52:08 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) | TCP | 80 |
| 2026-07-12 09:52:08 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 09:36:56 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 | TCP | 80 |
| 2026-07-12 09:36:56 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 09:36:56 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 | TCP | 80 |
| 2026-07-12 09:36:56 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) | TCP | 80 |
| 2026-07-12 09:36:56 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 | TCP | 80 |
| 2026-07-12 09:36:56 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) | TCP | 80 |
| 2026-07-12 09:36:56 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 09:36:56 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 | TCP | 80 |
| 2026-07-12 09:20:45 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 | TCP | 80 |
| 2026-07-12 09:20:45 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) | TCP | 80 |
| 2026-07-12 09:20:45 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 | TCP | 80 |
| 2026-07-12 09:20:45 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 | TCP | 80 |
| 2026-07-12 09:20:45 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 | TCP | 80 |
| 2026-07-12 09:20:45 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) | TCP | 80 |
| 2026-07-12 09:20:45 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 09:20:45 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 09:03:55 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 | TCP | 80 |
| 2026-07-12 09:03:55 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 | TCP | 80 |
| 2026-07-12 09:03:55 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 | TCP | 80 |
| 2026-07-12 09:03:55 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 09:03:55 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 | TCP | 80 |
| 2026-07-12 09:03:55 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) | TCP | 80 |
| 2026-07-12 09:03:55 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 09:03:55 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) | TCP | 80 |
| 2026-07-12 08:53:07 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) | TCP | 80 |
| 2026-07-12 08:53:07 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 | TCP | 80 |
| 2026-07-12 08:53:07 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 | TCP | 80 |
| 2026-07-12 08:47:56 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 08:47:56 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 | TCP | 80 |
| 2026-07-12 08:47:56 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 | TCP | 80 |
| 2026-07-12 08:47:56 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) | TCP | 80 |
| 2026-07-12 08:47:56 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 | TCP | 80 |
| 2026-07-12 08:47:56 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) | TCP | 80 |
| 2026-07-12 08:47:56 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 08:47:56 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 | TCP | 80 |
| 2026-07-12 08:29:15 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 | TCP | 8080 |
| 2026-07-12 08:29:15 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 | TCP | 8080 |
| 2026-07-12 08:29:15 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 | TCP | 8080 |
| 2026-07-12 08:29:15 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 | TCP | 8080 |
| 2026-07-12 08:29:15 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) | TCP | 8080 |
| 2026-07-12 08:29:15 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) | TCP | 8080 |
| 2026-07-12 08:01:10 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 | TCP | 8080 |
| 2026-07-12 08:01:10 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) | TCP | 8080 |
| 2026-07-12 08:01:10 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 | TCP | 8080 |
| 2026-07-12 08:01:10 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 | TCP | 8080 |
| 2026-07-12 08:01:10 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 | TCP | 8080 |
| 2026-07-12 08:01:10 | ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) | TCP | 8080 |
| 2026-07-12 07:31:27 | ET EXPLOIT Apache Struts getWriter and opensymphony inbound OGNL injection remote code execution attempt | TCP | 8080 |
| 2026-07-12 07:31:27 | ET EXPLOIT Apache Struts Possible OGNL AllowStaticMethodAccess in URI | TCP | 8080 |
| 2026-07-12 07:31:27 | ET WEB_SERVER Possible SQL Injection (exec) in HTTP URI | TCP | 8080 |
| 2026-07-12 07:31:27 | ET EXPLOIT Apache Struts Possible OGNL Java Exec In URI | TCP | 8080 |
| 2026-07-12 07:31:27 | ET EXPLOIT Apache Struts memberAccess and opensymphony inbound OGNL injection remote code execution attempt | TCP | 8080 |
| 2026-07-12 07:31:27 | ET WEB_SPECIFIC_APPS Apache Struts memberAccess inbound OGNL injection remote code execution attempt | TCP | 8080 |
| 2026-07-12 07:31:27 | ET WEB_SPECIFIC_APPS Apache Struts inbound .getClass OGNL injection remote code execution attempt | TCP | 8080 |
| 2026-07-12 07:31:27 | ET EXPLOIT Apache Struts memberAccess and getWriter inbound OGNL injection remote code execution attempt | TCP | 8080 |
| 2026-07-12 07:31:27 | ET WEB_SPECIFIC_APPS Apache Struts inbound .getWriter OGNL injection remote code execution attempt | TCP | 8080 |
| 2026-07-12 07:31:27 | ET WEB_SERVER Apache Struts Possible xwork Disable Method Execution | TCP | 8080 |
| 2026-07-12 07:31:27 | ET HUNTING .exec in HTTP URI Inbound - Possible Exploit Activity | TCP | 8080 |
| 2026-07-12 07:31:27 | ET WEB_SPECIFIC_APPS Apache Struts java.lang inbound OGNL injection remote code execution attempt | TCP | 8080 |
| 2026-07-12 07:31:21 | ET EXPLOIT Apache Struts memberAccess and opensymphony inbound OGNL injection remote code execution attempt | TCP | 8080 |
| 2026-07-12 07:31:21 | ET HUNTING .exec in HTTP URI Inbound - Possible Exploit Activity | TCP | 8080 |
| 2026-07-12 07:31:21 | ET EXPLOIT Apache Struts memberAccess and getWriter inbound OGNL injection remote code execution attempt | TCP | 8080 |
| 2026-07-12 07:31:21 | ET WEB_SPECIFIC_APPS Apache Struts memberAccess inbound OGNL injection remote code execution attempt | TCP | 8080 |
| 2026-07-12 07:31:21 | ET EXPLOIT Apache Struts Possible OGNL Java Exec In URI | TCP | 8080 |
| 2026-07-12 07:31:21 | ET WEB_SERVER Possible SQL Injection (exec) in HTTP URI | TCP | 8080 |
| 2026-07-12 07:31:21 | ET EXPLOIT Apache Struts getWriter and opensymphony inbound OGNL injection remote code execution attempt | TCP | 8080 |
| 2026-07-12 07:31:21 | ET EXPLOIT Apache Struts memberAccess and getWriter inbound OGNL injection remote code execution attempt | TCP | 8080 |
| 2026-07-12 07:31:21 | ET WEB_SPECIFIC_APPS Apache Struts inbound .getClass OGNL injection remote code execution attempt | TCP | 8080 |
| 2026-07-12 07:31:21 | ET EXPLOIT Apache Struts Possible OGNL Java Exec In URI | TCP | 8080 |
| 2026-07-12 07:31:21 | ET WEB_SPECIFIC_APPS Apache Struts inbound .getWriter OGNL injection remote code execution attempt | TCP | 8080 |
| 2026-07-12 07:31:21 | ET WEB_SERVER Apache Struts Possible xwork Disable Method Execution | TCP | 8080 |
| 2026-07-12 07:31:21 | ET WEB_SERVER Possible SQL Injection (exec) in HTTP URI | TCP | 8080 |
| 2026-07-12 07:31:21 | ET EXPLOIT Apache Struts memberAccess and opensymphony inbound OGNL injection remote code execution attempt | TCP | 8080 |
| 2026-07-12 07:31:21 | ET EXPLOIT Apache Struts getWriter and opensymphony inbound OGNL injection remote code execution attempt | TCP | 8080 |
| 2026-07-12 07:31:21 | ET WEB_SPECIFIC_APPS Apache Struts memberAccess inbound OGNL injection remote code execution attempt | TCP | 8080 |
| 2026-07-12 07:31:21 | ET WEB_SPECIFIC_APPS Apache Struts java.lang inbound OGNL injection remote code execution attempt | TCP | 8080 |
| 2026-07-12 07:31:21 | ET EXPLOIT Apache Struts Possible OGNL AllowStaticMethodAccess in URI | TCP | 8080 |
| 2026-07-12 07:31:21 | ET WEB_SERVER Apache Struts Possible xwork Disable Method Execution | TCP | 8080 |
| 2026-07-12 07:31:21 | ET WEB_SPECIFIC_APPS Apache Struts java.lang inbound OGNL injection remote code execution attempt | TCP | 8080 |
| 2026-07-12 07:31:21 | ET WEB_SPECIFIC_APPS Apache Struts inbound .getClass OGNL injection remote code execution attempt | TCP | 8080 |
| 2026-07-12 07:31:21 | ET WEB_SPECIFIC_APPS Apache Struts inbound .getWriter OGNL injection remote code execution attempt | TCP | 8080 |
| 2026-07-12 07:31:21 | ET EXPLOIT Apache Struts Possible OGNL AllowStaticMethodAccess in URI | TCP | 8080 |
| 2026-07-12 07:31:21 | ET HUNTING .exec in HTTP URI Inbound - Possible Exploit Activity | TCP | 8080 |
| 2026-07-12 03:05:00 | ET WEB_SERVER Apache Struts Possible xwork Disable Method Execution | TCP | 80 |
| 2026-07-12 03:05:00 | SERVER-APACHE Apache Struts OGNL getRuntime.exec static method access attempt | TCP | 80 |
| 2026-07-12 03:05:00 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 03:05:00 | SERVER-WEBAPP Multiple products OGNL expression injection attempt | TCP | 80 |
| 2026-07-12 03:05:00 | ET WEB_SPECIFIC_APPS Apache Struts java.lang inbound OGNL injection remote code execution attempt | TCP | 80 |
| 2026-07-12 03:05:00 | SERVER-APACHE Apache Struts OGNL getRuntime.exec static method access attempt | TCP | 80 |
| 2026-07-12 03:05:00 | SERVER-WEBAPP Atlassian Confluence OGNL expression injection attempt | TCP | 80 |
| 2026-07-12 03:05:00 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 03:05:00 | SERVER-APACHE Apache Struts remote code execution attempt - GET parameter | TCP | 80 |
| 2026-07-12 03:05:00 | ET WEB_SERVER Possible SQL Injection (exec) in HTTP URI | TCP | 80 |
| 2026-07-12 03:05:00 | SERVER-APACHE Apache Struts allowStaticMethodAccess invocation attempt | TCP | 80 |
| 2026-07-12 03:05:00 | ET EXPLOIT Apache Struts Possible OGNL Java Exec In URI | TCP | 80 |
| 2026-07-12 03:05:00 | ET WEB_SPECIFIC_APPS Apache Struts java.lang inbound OGNL injection remote code execution attempt | TCP | 80 |
| 2026-07-12 03:05:00 | ET WEB_SPECIFIC_APPS Apache Struts inbound .getWriter OGNL injection remote code execution attempt | TCP | 80 |
| 2026-07-12 03:05:00 | SERVER-WEBAPP Atlassian Confluence OGNL expression injection attempt | TCP | 80 |
| 2026-07-12 03:05:00 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 03:05:00 | SERVER-APACHE Apache Struts remote code execution attempt - GET parameter | TCP | 80 |
| 2026-07-12 03:05:00 | SERVER-APACHE Apache Struts2 blacklisted method redirect | TCP | 80 |
| 2026-07-12 03:05:00 | SERVER-APACHE Apache Struts remote code execution attempt - GET parameter | TCP | 80 |
| 2026-07-12 03:05:00 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 03:05:00 | SERVER-APACHE Apache Struts allowStaticMethodAccess invocation attempt | TCP | 80 |
| 2026-07-12 03:05:00 | ET EXPLOIT Apache Struts Possible OGNL AllowStaticMethodAccess in URI | TCP | 80 |
| 2026-07-12 03:05:00 | SERVER-APACHE Apache Struts remote code execution attempt - GET parameter | TCP | 80 |
| 2026-07-12 03:05:00 | ET EXPLOIT Apache Struts Possible OGNL Java Exec In URI | TCP | 80 |
| 2026-07-12 03:05:00 | ET WEB_SPECIFIC_APPS Apache Struts inbound .getWriter OGNL injection remote code execution attempt | TCP | 80 |
| 2026-07-12 03:05:00 | SERVER-APACHE Apache Struts2 blacklisted method redirect | TCP | 80 |
| 2026-07-12 03:05:00 | ET WEB_SERVER Apache Struts Possible xwork Disable Method Execution | TCP | 80 |
| 2026-07-12 03:05:00 | ET WEB_SERVER Possible SQL Injection (exec) in HTTP URI | TCP | 80 |
| 2026-07-12 03:05:00 | SERVER-WEBAPP Multiple products OGNL expression injection attempt | TCP | 80 |
| 2026-07-12 03:05:00 | ET EXPLOIT Apache Struts Possible OGNL AllowStaticMethodAccess in URI | TCP | 80 |
| 2026-07-12 02:46:52 | SERVER-WEBAPP Multiple products OGNL expression injection attempt | TCP | 80 |
| 2026-07-12 02:46:52 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 02:46:52 | ET EXPLOIT Apache Struts Possible OGNL Java Exec In URI | TCP | 80 |
| 2026-07-12 02:46:52 | ET EXPLOIT Apache Struts Possible OGNL AllowStaticMethodAccess in URI | TCP | 80 |
| 2026-07-12 02:46:52 | ET WEB_SERVER Apache Struts Possible xwork Disable Method Execution | TCP | 80 |
| 2026-07-12 02:46:52 | ET WEB_SPECIFIC_APPS Apache Struts inbound .getWriter OGNL injection remote code execution attempt | TCP | 80 |
| 2026-07-12 02:46:52 | ET EXPLOIT Apache Struts Possible OGNL Java Exec In URI | TCP | 80 |
| 2026-07-12 02:46:52 | SERVER-APACHE Apache Struts remote code execution attempt - GET parameter | TCP | 80 |
| 2026-07-12 02:46:52 | SERVER-WEBAPP Multiple products OGNL expression injection attempt | TCP | 80 |
| 2026-07-12 02:46:52 | SERVER-APACHE Apache Struts2 blacklisted method redirect | TCP | 80 |
| 2026-07-12 02:46:52 | SERVER-WEBAPP Atlassian Confluence OGNL expression injection attempt | TCP | 80 |
| 2026-07-12 02:46:52 | SERVER-WEBAPP Atlassian Confluence OGNL expression injection attempt | TCP | 80 |
| 2026-07-12 02:46:52 | ET WEB_SPECIFIC_APPS Apache Struts inbound .getWriter OGNL injection remote code execution attempt | TCP | 80 |
| 2026-07-12 02:46:52 | ET WEB_SPECIFIC_APPS Apache Struts java.lang inbound OGNL injection remote code execution attempt | TCP | 80 |
| 2026-07-12 02:46:52 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 02:46:52 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 02:46:52 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 02:46:52 | ET EXPLOIT Apache Struts Possible OGNL AllowStaticMethodAccess in URI | TCP | 80 |
| 2026-07-12 02:46:52 | SERVER-APACHE Apache Struts remote code execution attempt - GET parameter | TCP | 80 |
| 2026-07-12 02:46:52 | SERVER-APACHE Apache Struts remote code execution attempt - GET parameter | TCP | 80 |
| 2026-07-12 02:46:52 | ET WEB_SERVER Possible SQL Injection (exec) in HTTP URI | TCP | 80 |
| 2026-07-12 02:46:52 | SERVER-APACHE Apache Struts OGNL getRuntime.exec static method access attempt | TCP | 80 |
| 2026-07-12 02:46:52 | SERVER-APACHE Apache Struts allowStaticMethodAccess invocation attempt | TCP | 80 |
| 2026-07-12 02:46:52 | ET WEB_SPECIFIC_APPS Apache Struts java.lang inbound OGNL injection remote code execution attempt | TCP | 80 |
| 2026-07-12 02:46:52 | SERVER-APACHE Apache Struts2 blacklisted method redirect | TCP | 80 |
| 2026-07-12 02:46:52 | SERVER-APACHE Apache Struts allowStaticMethodAccess invocation attempt | TCP | 80 |
| 2026-07-12 02:46:52 | SERVER-APACHE Apache Struts OGNL getRuntime.exec static method access attempt | TCP | 80 |
| 2026-07-12 02:46:52 | ET WEB_SERVER Apache Struts Possible xwork Disable Method Execution | TCP | 80 |
| 2026-07-12 02:46:52 | ET WEB_SERVER Possible SQL Injection (exec) in HTTP URI | TCP | 80 |
| 2026-07-12 02:46:52 | SERVER-APACHE Apache Struts remote code execution attempt - GET parameter | TCP | 80 |
| 2026-07-12 02:29:16 | SERVER-APACHE Apache Struts OGNL getRuntime.exec static method access attempt | TCP | 80 |
| 2026-07-12 02:29:16 | ET EXPLOIT Apache Struts Possible OGNL Java Exec In URI | TCP | 80 |
| 2026-07-12 02:29:16 | SERVER-APACHE Apache Struts remote code execution attempt - GET parameter | TCP | 80 |
| 2026-07-12 02:29:16 | SERVER-APACHE Apache Struts allowStaticMethodAccess invocation attempt | TCP | 80 |
| 2026-07-12 02:29:16 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 02:29:16 | ET WEB_SERVER Possible SQL Injection (exec) in HTTP URI | TCP | 80 |
| 2026-07-12 02:29:16 | ET WEB_SERVER Possible SQL Injection (exec) in HTTP URI | TCP | 80 |
| 2026-07-12 02:29:16 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 02:29:16 | SERVER-APACHE Apache Struts2 blacklisted method redirect | TCP | 80 |
| 2026-07-12 02:29:16 | SERVER-APACHE Apache Struts remote code execution attempt - GET parameter | TCP | 80 |
| 2026-07-12 02:29:16 | SERVER-WEBAPP Atlassian Confluence OGNL expression injection attempt | TCP | 80 |
| 2026-07-12 02:29:16 | SERVER-APACHE Apache Struts remote code execution attempt - GET parameter | TCP | 80 |
| 2026-07-12 02:29:16 | ET WEB_SERVER Apache Struts Possible xwork Disable Method Execution | TCP | 80 |
| 2026-07-12 02:29:16 | ET EXPLOIT Apache Struts Possible OGNL AllowStaticMethodAccess in URI | TCP | 80 |
| 2026-07-12 02:29:16 | SERVER-APACHE Apache Struts remote code execution attempt - GET parameter | TCP | 80 |
| 2026-07-12 02:29:16 | SERVER-APACHE Apache Struts allowStaticMethodAccess invocation attempt | TCP | 80 |
| 2026-07-12 02:29:16 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 02:29:16 | SERVER-WEBAPP Atlassian Confluence OGNL expression injection attempt | TCP | 80 |
| 2026-07-12 02:29:16 | SERVER-APACHE Apache Struts remote code execution attempt | TCP | 80 |
| 2026-07-12 02:29:16 | SERVER-APACHE Apache Struts OGNL getRuntime.exec static method access attempt | TCP | 80 |
| 2026-07-12 02:29:16 | ET EXPLOIT Apache Struts Possible OGNL AllowStaticMethodAccess in URI | TCP | 80 |
| 2026-07-12 02:29:16 | ET WEB_SPECIFIC_APPS Apache Struts java.lang inbound OGNL injection remote code execution attempt | TCP | 80 |
| 2026-07-12 02:29:16 | ET WEB_SPECIFIC_APPS Apache Struts inbound .getWriter OGNL injection remote code execution attempt | TCP | 80 |
| 2026-07-12 02:29:16 | ET WEB_SPECIFIC_APPS Apache Struts java.lang inbound OGNL injection remote code execution attempt | TCP | 80 |
| 2026-07-12 02:29:16 | SERVER-APACHE Apache Struts2 blacklisted method redirect | TCP | 80 |
| 2026-07-12 02:29:16 | SERVER-WEBAPP Multiple products OGNL expression injection attempt | TCP | 80 |
| 2026-07-12 02:29:16 | ET EXPLOIT Apache Struts Possible OGNL Java Exec In URI | TCP | 80 |
| 2026-07-12 02:29:16 | SERVER-WEBAPP Multiple products OGNL expression injection attempt | TCP | 80 |
| 2026-07-12 02:29:16 | ET WEB_SERVER Apache Struts Possible xwork Disable Method Execution | TCP | 80 |
| 2026-07-12 02:29:16 | ET WEB_SPECIFIC_APPS Apache Struts inbound .getWriter OGNL injection remote code execution attempt | TCP | 80 |
| 2026-07-12 02:17:29 | ET HUNTING .exec in HTTP URI Inbound - Possible Exploit Activity | TCP | 80 |
| 2026-07-12 02:17:29 | ET WEB_SERVER Possible SQL Injection (exec) in HTTP URI | TCP | 80 |
| 2026-07-12 02:17:29 | ET WEB_SPECIFIC_APPS Apache Struts java.lang inbound OGNL injection remote code execution attempt | TCP | 80 |
| 2026-07-12 02:17:29 | ET EXPLOIT Apache Struts memberAccess and opensymphony inbound OGNL injection remote code execution attempt | TCP | 80 |
| 2026-07-12 02:17:29 | ET WEB_SERVER Apache Struts Possible xwork Disable Method Execution | TCP | 80 |
| 2026-07-12 02:17:29 | ET WEB_SPECIFIC_APPS Apache Struts inbound .getWriter OGNL injection remote code execution attempt | TCP | 80 |
| 2026-07-12 02:17:29 | ET EXPLOIT Apache Struts Possible OGNL AllowStaticMethodAccess in URI | TCP | 80 |
| 2026-07-12 02:17:29 | ET EXPLOIT Apache Struts Possible OGNL Java Exec In URI | TCP | 80 |
| 2026-07-12 02:17:29 | ET EXPLOIT Apache Struts memberAccess and getWriter inbound OGNL injection remote code execution attempt | TCP | 80 |
| 2026-07-12 02:17:29 | ET EXPLOIT Apache Struts getWriter and opensymphony inbound OGNL injection remote code execution attempt | TCP | 80 |
Back to top