cloud1

cloud2

cloud3

cloud4

cloud5

cloud6

← Back

ASN REPORT — AS214295 · SKYNET NETWORK LTD

First sighted: Jan. 8, 2025, 2 a.m. · Last sighted: Oct. 20, 2025, 2:59 a.m.

Risk

60 (med)

Total hits

1820

Total errors

44

Observed IPs

19

Top country

N/A

Top city

N/A

Risk

Model: v1 Computed: 2026-01-18 11:53:31

Risk score

60

Medium

Risk gradient

Key drivers are enriched against the published annotator catalog when available; otherwise sensible defaults are used.

Key drivers

SQL injection attempts

Input patterns resemble attempts to manipulate SQL queries via application parameters.

sqli

Hits 395

Points 1961.20

Command injection attempts

Request content resembles attempts to execute OS commands via an application.

cmdi

Hits 11

Points 246.11

Protocol anomaly

Request structure or protocol-level signals deviate from typical browser HTTP traffic.

proto

Hits 46

Points 31.80

Sensitive file probing

Requests target commonly sensitive files, configs, backups, or administrative resources.

sfp

Hits 4

Points 30.72

Path traversal attempts

Request paths/parameters resemble attempts to access files outside intended directories.

trav

Hits 2

Points 12.78

Credential brute forcing

Repeated authentication attempts consistent with password guessing or credential stuffing.

cred

Hits 2

Points 3.85

User-Agent anomaly

User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.

ua

Hits 3

Points 0.22

Traffic

Rollup

Daily activity (hits per day) and basic HTTP rollup counters for this ASN.

Loading activity…

Daily activity (hits per day). Total in window: —.

Traffic rollup

HTTP status classes, URL diversity, and totals.

2xx

1726

3xx

44

4xx

42

5xx

2

Unique URLs

1204

Total hits

1820

First seen

Jan. 8, 2025, 2 a.m.

Last seen

Oct. 20, 2025, 2:59 a.m.

Annotators (All-time)

Heatmap of annotator × severity. Darker cells mean more volume in that band. Tip: switch to Weighted points to see what drives impact (not just noise).

Severity →

Low High

SQL injection attempts sqli

Input patterns resemble attempts to manipulate SQL queries via application parameters.

hits 395 pts 1961.20

Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.

Severity	Total	Labels	Weighted	First seen	Last seen	Top labels
8	373	1	1641.20	July 14, 2025, 4:12 a.m.	July 14, 2025, 10:42 a.m.	sqli 373
18	19	1	246.24	July 14, 2025, 4:38 a.m.	July 14, 2025, 6:34 a.m.	sqli 19
32	1	1	29.44	July 14, 2025, 4:02 a.m.	July 14, 2025, 4:02 a.m.	sqli 1
28	1	1	24.64	July 14, 2025, 4:02 a.m.	July 14, 2025, 4:02 a.m.	sqli 1
24	1	1	19.68	July 14, 2025, 4:02 a.m.	July 14, 2025, 4:02 a.m.	sqli 1

Command injection attempts cmdi

Request content resembles attempts to execute OS commands via an application.

hits 11 pts 246.11

Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.

Severity	Total	Labels	Weighted	First seen	Last seen	Top labels
30	9	1	211.14	July 14, 2025, 4:16 a.m.	July 14, 2025, 10:42 a.m.	cmdi 9
28	1	1	20.94	July 14, 2025, 4:02 a.m.	July 14, 2025, 4:02 a.m.	cmdi 1
22	1	1	14.02	July 14, 2025, 4:02 a.m.	July 14, 2025, 4:02 a.m.	cmdi 1

Protocol anomaly proto

Request structure or protocol-level signals deviate from typical browser HTTP traffic.

hits 46 pts 31.80

Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.

Severity	Total	Labels	Weighted	First seen	Last seen	Top labels
12	46	1	31.80	July 14, 2025, 4:25 a.m.	July 14, 2025, 10:13 a.m.	proto 46

Sensitive file probing sfp

Requests target commonly sensitive files, configs, backups, or administrative resources.

hits 4 pts 30.72

Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.

Severity	Total	Labels	Weighted	First seen	Last seen	Top labels
40	3	1	24.29	April 21, 2025, 10:48 a.m.	May 30, 2025, 10:09 p.m.	sensitive_file 3
34	1	1	6.43	July 14, 2025, 4:02 a.m.	July 14, 2025, 4:02 a.m.	sensitive_file 1

Path traversal attempts trav

Request paths/parameters resemble attempts to access files outside intended directories.

hits 2 pts 12.78

Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.

Severity	Total	Labels	Weighted	First seen	Last seen	Top labels
28	1	1	6.70	July 14, 2025, 4:02 a.m.	July 14, 2025, 4:02 a.m.	trav 1
26	1	1	6.08	July 14, 2025, 4:02 a.m.	July 14, 2025, 4:02 a.m.	trav 1

Credential brute forcing cred

Repeated authentication attempts consistent with password guessing or credential stuffing.

hits 2 pts 3.85

Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.

Severity	Total	Labels	Weighted	First seen	Last seen	Top labels
10	1	1	3.85	Jan. 28, 2025, 3:59 p.m.	Jan. 28, 2025, 3:59 p.m.	cred 1
0	1	1	0.00	Jan. 28, 2025, 3:59 p.m.	Jan. 28, 2025, 3:59 p.m.	cred 1

User-Agent anomaly ua

User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.

hits 3 pts 0.22

Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.

Severity	Total	Labels	Weighted	First seen	Last seen	Top labels
6	3	1	0.22	Jan. 8, 2025, 9:49 p.m.	July 14, 2025, 10:45 a.m.	ua 3

HTTP Status Breakdown

Response mix grouped by status class (2xx/3xx/4xx/5xx). Auto-loads a single aggregation and renders a donut.

Loading status mix…

Running one aggregation and rendering the chart.

Geolocation

Live geolocation and map tiles auto-load for this ASN snapshot (peer IPs with coordinates).

Loading map…

SUBNETS HELD BY THIS ISP

Derived from ISP snapshot peers (Option A). Grouped into IPv4 /24 and IPv6 /48 by default.

IPv4

IPv6

Limit

Loading subnets…

Interesting IPs

Top risky peers inside this ASN (latest snapshot). Sorted by risk score, then hits.

Bucket

Limit

Filter

No peer rows available for this ASN snapshot.

Syndu