Investigation Workspace

Entity: 170.64.167.148 (Ip)

Entity Details
Type
Ip
ASN
AS14061 - DigitalOcean, LLC
Threat Intelligence
IP from blocklisted ASN AS14061 aggressively attempting Laravel and PHPUnit exploits, command injection, and local file inclusion by targeting sensitive files (.env, .git/config), triggering multiple critical WAF deny rules (CMD-INJECTION-ANOMALY, LFI-ANOMALY), and showing a very high threat request ratio (101/11).
Linked Entities
TLS Fingerprints (1)
Hostnames Targeted
Hostname Request Count
akamai.darcherif.fr 11
Paths Targeted (with Hostname Counts)
Path Distinct Hostnames
.env 1
.git/config 1
vendor/laravel-filemanager/js/script.js 1
_ignition/execute-solution 1
public/vendor/laravel-filemanager/js/script.js 1
public/_ignition/execute-solution 1
vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php 1
🚫

Block

IP from blocklisted ASN AS14061 aggressively attempting Laravel and PHPUnit exploits, command injection, and local file inclusion by targeting sensitive files (.env, .git/config), triggering multiple critical WAF deny rules (CMD-INJECTION-ANOMALY, LFI-ANOMALY), and showing a very high threat request ratio (101/11).

2025-12-18 13:31:04