← Back to IP report

Log Explorer

Fact drill-down for 3.65.13.94

Risk 1 LOW Scope All time All-time facts 6 In-scope 6 Filtered 6 Seen 2024-02-17 → 2024-02-17

Reset (all-time)

Active (none) Clear

Faceted filters (facts-based) exact core + snapshot + optional start/end

Annotation facets

HTTP facets

Snapshot facets

Custom time window (optional override)

Provide start/end to scope time explicitly (overrides days). Leave blank for all-time.

Tip: keep windows tight when you need speed, but the default is fact-complete.

Top annotators (facts, in-scope)

base 2 sfp 2 ua 2

Top labels (facts, in-scope)

sensitive_file 2 observed 2 ua 2

Click a pill to apply it as a filter.

Annotated access events

Showing page 1 / 1 — total 6 rows

← Prev Next →

# 2024-02-17 08:44:51 event 1132290 GET 410 bytes 143

ann base label observed

Request event observed

/.env

referer

curl/7.61.1

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/.env

referer

curl/7.61.1

summary

event observed

details

—

subnet

3.65.13.0/24

asn

16509 — Amazon.com, Inc.

geo

Germany, Hesse, Frankfurt am Main

org

AWS EC2 (eu-central-1)

# 2024-02-17 08:44:51 event 1132290 GET 410 bytes 143

ann ua 14 label ua

Request CLI HTTP client user-agent: curl

/.env

referer

curl/7.61.1

Annotation facts

label

rule

ua:cli:curl

conf

80.00

details

Command-line HTTP clients are common in probing and scripted requests (also used legitimately).

More (full fields + snapshot) expand

url

/.env

referer

curl/7.61.1

summary

CLI HTTP client user-agent: curl

details

Command-line HTTP clients are common in probing and scripted requests (also used legitimately).

subnet

3.65.13.0/24

asn

16509 — Amazon.com, Inc.

geo

Germany, Hesse, Frankfurt am Main

org

AWS EC2 (eu-central-1)

# 2024-02-17 08:44:51 event 1132290 GET 410 bytes 143

ann sfp 40 label sensitive_file

Request Probe for environment/secret file (.env)

/.env

referer

curl/7.61.1

Annotation facts

label

sensitive_file

rule

sfp:file:env

conf

92.00

details

Request targeted a .env-style file (often contains secrets). Snippet='/.env'

More (full fields + snapshot) expand

url

/.env

referer

curl/7.61.1

summary

Probe for environment/secret file (.env)

details

Request targeted a .env-style file (often contains secrets). Snippet='/.env'

subnet

3.65.13.0/24

asn

16509 — Amazon.com, Inc.

geo

Germany, Hesse, Frankfurt am Main

org

AWS EC2 (eu-central-1)

# 2024-02-17 08:44:50 event 1132289 GET 301 bytes 169

ann base label observed

Request event observed

/.env

referer

curl/7.61.1

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/.env

referer

curl/7.61.1

summary

event observed

details

—

subnet

3.65.13.0/24

asn

16509 — Amazon.com, Inc.

geo

Germany, Hesse, Frankfurt am Main

org

AWS EC2 (eu-central-1)

# 2024-02-17 08:44:50 event 1132289 GET 301 bytes 169

ann ua 14 label ua

Request CLI HTTP client user-agent: curl

/.env

referer

curl/7.61.1

Annotation facts

label

rule

ua:cli:curl

conf

80.00

details

Command-line HTTP clients are common in probing and scripted requests (also used legitimately).

More (full fields + snapshot) expand

url

/.env

referer

curl/7.61.1

summary

CLI HTTP client user-agent: curl

details

Command-line HTTP clients are common in probing and scripted requests (also used legitimately).

subnet

3.65.13.0/24

asn

16509 — Amazon.com, Inc.

geo

Germany, Hesse, Frankfurt am Main

org

AWS EC2 (eu-central-1)

# 2024-02-17 08:44:50 event 1132289 GET 301 bytes 169

ann sfp 40 label sensitive_file

Request Probe for environment/secret file (.env)

/.env

referer

curl/7.61.1

Annotation facts

label

sensitive_file

rule

sfp:file:env

conf

92.00

details

Request targeted a .env-style file (often contains secrets). Snippet='/.env'

More (full fields + snapshot) expand

url

/.env

referer

curl/7.61.1

summary

Probe for environment/secret file (.env)

details

Request targeted a .env-style file (often contains secrets). Snippet='/.env'

subnet

3.65.13.0/24

asn

16509 — Amazon.com, Inc.

geo

Germany, Hesse, Frankfurt am Main

org

AWS EC2 (eu-central-1)

Log Explorer

Annotated access events

Confirm Action