← Back to IP report
Log Explorer
Fact drill-down for
20.102.245.172
Risk
20
LOW
Scope
All time
All-time facts
150
In-scope
150
Filtered
150
Seen
2024-01-08
→
2024-01-23
Freestyle query (contains)
Time (days, optional)
Page size
25
50
100
200
Apply
Reset (all-time)
Active
(none)
Clear
Faceted filters (facts-based)
exact core + snapshot + optional start/end
Annotation facets
Annotator (exact)
(any)
base — 80
sfp — 64
ua — 6
Severity (exact)
(any)
(none) — 80
40 — 64
10 — 6
Label (exact)
(any)
observed — 80
sensitive_file — 64
ua — 6
HTTP facets
Method (exact, case-insensitive)
(any)
GET — 148
POST — 2
HTTP status (exact)
(any)
301 — 150
Snapshot facets
Subnet (exact)
(any)
20.102.245.0/24 — 150
ASN (exact)
(any)
8075 — 150
Country / Region / City (exact)
(any country)
United States — 150
(any region)
Illinois — 150
(any city)
Chicago — 150
Org contains (ip_org or as_org_name)
Custom time window (optional override)
Provide start/end to scope time explicitly (overrides days). Leave blank for all-time.
Start
End
Tip: keep windows tight when you need speed, but the default is fact-complete.
Top annotators (facts, in-scope)
base
80
sfp
64
ua
6
Top labels (facts, in-scope)
observed
80
sensitive_file
64
ua
6
Click a pill to apply it as a filter.
Annotated access events
Showing page
1
/
3
— total
150
rows
← Prev
Next →
#
1
2024-01-23 10:40:34
event
787117
GET
301
bytes
169
ann
ua
10
label
ua
Request
HTTP library/automation runtime user-agent
/
referer
-
UA
Go-http-client/1.1
Annotation
facts
label
ua
rule
ua:library_client
conf
72.00
details
UA indicates a low-level HTTP client library or automation runtime.
More (full fields + snapshot)
expand
url
/
referer
-
UA
Go-http-client/1.1
summary
HTTP library/automation runtime user-agent
details
UA indicates a low-level HTTP client library or automation runtime.
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
2
2024-01-23 10:40:34
event
787116
GET
301
bytes
169
ann
ua
10
label
ua
Request
HTTP library/automation runtime user-agent
/
referer
-
UA
Go-http-client/1.1
Annotation
facts
label
ua
rule
ua:library_client
conf
72.00
details
UA indicates a low-level HTTP client library or automation runtime.
More (full fields + snapshot)
expand
url
/
referer
-
UA
Go-http-client/1.1
summary
HTTP library/automation runtime user-agent
details
UA indicates a low-level HTTP client library or automation runtime.
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
3
2024-01-23 10:40:34
event
787117
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/
referer
-
UA
Go-http-client/1.1
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/
referer
-
UA
Go-http-client/1.1
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
4
2024-01-23 10:40:34
event
787116
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/
referer
-
UA
Go-http-client/1.1
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/
referer
-
UA
Go-http-client/1.1
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
5
2024-01-22 21:22:05
event
732883
GET
301
bytes
169
ann
ua
10
label
ua
Request
HTTP library/automation runtime user-agent
/
referer
-
UA
Go-http-client/1.1
Annotation
facts
label
ua
rule
ua:library_client
conf
72.00
details
UA indicates a low-level HTTP client library or automation runtime.
More (full fields + snapshot)
expand
url
/
referer
-
UA
Go-http-client/1.1
summary
HTTP library/automation runtime user-agent
details
UA indicates a low-level HTTP client library or automation runtime.
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
6
2024-01-22 21:22:05
event
732882
GET
301
bytes
169
ann
ua
10
label
ua
Request
HTTP library/automation runtime user-agent
/
referer
-
UA
Go-http-client/1.1
Annotation
facts
label
ua
rule
ua:library_client
conf
72.00
details
UA indicates a low-level HTTP client library or automation runtime.
More (full fields + snapshot)
expand
url
/
referer
-
UA
Go-http-client/1.1
summary
HTTP library/automation runtime user-agent
details
UA indicates a low-level HTTP client library or automation runtime.
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
7
2024-01-22 21:22:05
event
732883
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/
referer
-
UA
Go-http-client/1.1
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/
referer
-
UA
Go-http-client/1.1
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
8
2024-01-22 21:22:05
event
732882
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/
referer
-
UA
Go-http-client/1.1
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/
referer
-
UA
Go-http-client/1.1
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
9
2024-01-22 11:28:56
event
681027
GET
301
bytes
169
ann
ua
10
label
ua
Request
HTTP library/automation runtime user-agent
/
referer
-
UA
Go-http-client/1.1
Annotation
facts
label
ua
rule
ua:library_client
conf
72.00
details
UA indicates a low-level HTTP client library or automation runtime.
More (full fields + snapshot)
expand
url
/
referer
-
UA
Go-http-client/1.1
summary
HTTP library/automation runtime user-agent
details
UA indicates a low-level HTTP client library or automation runtime.
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
10
2024-01-22 11:28:56
event
681026
GET
301
bytes
169
ann
ua
10
label
ua
Request
HTTP library/automation runtime user-agent
/
referer
-
UA
Go-http-client/1.1
Annotation
facts
label
ua
rule
ua:library_client
conf
72.00
details
UA indicates a low-level HTTP client library or automation runtime.
More (full fields + snapshot)
expand
url
/
referer
-
UA
Go-http-client/1.1
summary
HTTP library/automation runtime user-agent
details
UA indicates a low-level HTTP client library or automation runtime.
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
11
2024-01-22 11:28:56
event
681027
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/
referer
-
UA
Go-http-client/1.1
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/
referer
-
UA
Go-http-client/1.1
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
12
2024-01-22 11:28:56
event
681026
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/
referer
-
UA
Go-http-client/1.1
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/
referer
-
UA
Go-http-client/1.1
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
13
2024-01-11 00:41:55
event
747450
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
14
2024-01-11 00:41:54
event
747449
POST
301
bytes
169
ann
base
label
observed
Request
event observed
/
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
15
2024-01-11 00:41:54
event
747448
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/Phpinfo/profiler
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/Phpinfo/profiler
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
16
2024-01-11 00:41:53
event
747447
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/Phpinfo
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/Phpinfo
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
17
2024-01-11 00:41:53
event
747446
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/Profiler
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/Profiler
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
18
2024-01-11 00:41:52
event
747445
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
19
2024-01-11 00:41:52
event
747445
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
More (full fields + snapshot)
expand
url
/68.183.80.204/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/68.183.80.204/.env'
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
20
2024-01-11 00:41:47
event
747444
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/public/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/public/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
21
2024-01-11 00:41:47
event
747443
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/database/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/database/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
22
2024-01-11 00:41:47
event
747444
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/public/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/public/.env'
More (full fields + snapshot)
expand
url
/public/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/public/.env'
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
23
2024-01-11 00:41:47
event
747443
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/database/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/database/.env'
More (full fields + snapshot)
expand
url
/database/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/database/.env'
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
24
2024-01-11 00:41:46
event
747442
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/sites/all/libraries/mailchimp/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/sites/all/libraries/mailchimp/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
25
2024-01-11 00:41:46
event
747441
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/www/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/www/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
26
2024-01-11 00:41:46
event
747442
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/sites/all/libraries/mailchimp/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/sites/all/libraries/mailchimp/.env'
More (full fields + snapshot)
expand
url
/sites/all/libraries/mailchimp/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/sites/all/libraries/mailchimp/.env'
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
27
2024-01-11 00:41:46
event
747441
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/www/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/www/.env'
More (full fields + snapshot)
expand
url
/www/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/www/.env'
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
28
2024-01-11 00:41:45
event
747440
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/newsite/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/newsite/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
29
2024-01-11 00:41:45
event
747439
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/protected/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/protected/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
30
2024-01-11 00:41:45
event
747440
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/newsite/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/newsite/.env'
More (full fields + snapshot)
expand
url
/newsite/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/newsite/.env'
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
31
2024-01-11 00:41:45
event
747439
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/protected/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/protected/.env'
More (full fields + snapshot)
expand
url
/protected/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/protected/.env'
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
32
2024-01-11 00:41:44
event
747438
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/storage/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/storage/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
33
2024-01-11 00:41:44
event
747436
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/vendor/laravel/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/vendor/laravel/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
34
2024-01-11 00:41:44
event
747438
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/storage/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/storage/.env'
More (full fields + snapshot)
expand
url
/storage/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/storage/.env'
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
35
2024-01-11 00:41:44
event
747436
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/vendor/laravel/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/vendor/laravel/.env'
More (full fields + snapshot)
expand
url
/vendor/laravel/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/vendor/laravel/.env'
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
36
2024-01-11 00:41:43
event
747435
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/core/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/core/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
37
2024-01-11 00:41:43
event
747433
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/base/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/base/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
38
2024-01-11 00:41:43
event
747435
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/core/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/core/.env'
More (full fields + snapshot)
expand
url
/core/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/core/.env'
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
39
2024-01-11 00:41:43
event
747433
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/base/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/base/.env'
More (full fields + snapshot)
expand
url
/base/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/base/.env'
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
40
2024-01-11 00:41:42
event
747432
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/src/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/src/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
41
2024-01-11 00:41:42
event
747431
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/backend/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/backend/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
42
2024-01-11 00:41:42
event
747432
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/src/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/src/.env'
More (full fields + snapshot)
expand
url
/src/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/src/.env'
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
43
2024-01-11 00:41:42
event
747431
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/backend/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/backend/.env'
More (full fields + snapshot)
expand
url
/backend/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/backend/.env'
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
44
2024-01-11 00:41:41
event
747430
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/cgi-bin/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/cgi-bin/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
45
2024-01-11 00:41:41
event
747429
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/audio/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/audio/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
46
2024-01-11 00:41:41
event
747430
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/cgi-bin/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/cgi-bin/.env'
More (full fields + snapshot)
expand
url
/cgi-bin/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/cgi-bin/.env'
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
47
2024-01-11 00:41:41
event
747429
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/audio/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/audio/.env'
More (full fields + snapshot)
expand
url
/audio/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/audio/.env'
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
48
2024-01-11 00:41:40
event
747428
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/apps/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/apps/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
49
2024-01-11 00:41:40
event
747427
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/app/config/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/app/config/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
event observed
details
—
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
#
50
2024-01-11 00:41:40
event
747428
GET
301
bytes
169
ann
sfp
40
label
sensitive_file
Request
Probe for environment/secret file (.env)
/apps/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/apps/.env'
More (full fields + snapshot)
expand
url
/apps/.env
referer
-
UA
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/apps/.env'
subnet
20.102.245.0/24
asn
8075 — Microsoft Corporation
geo
United States, Illinois, Chicago
org
Microsoft Azure Cloud (northcentralus)
×
This is a custom alert message.
×
Confirm Action
Are you sure you want to proceed?
