Investigation Workspace

Entity: 209.38.29.70 (Ip)

Entity Details
Type
Ip
ASN
AS14061 - DigitalOcean, LLC
Threat Intelligence
IP from blocklisted ASN AS14061 aggressively attempting Laravel and PHPUnit exploits, command injection, and local file inclusion by targeting sensitive files (.env, .git/config), triggered multiple critical WAF deny rules (CMD-INJECTION-ANOMALY, LFI-ANOMALY), and shows an extremely high number of detected threat requests.
Linked Entities
TLS Fingerprints (1)
Hostnames Targeted
Hostname Request Count
akamai.darcherif.fr 11
Paths Targeted (with Hostname Counts)
Path Distinct Hostnames
.env 1
.git/config 1
vendor/laravel-filemanager/js/script.js 1
_ignition/execute-solution 1
public/vendor/laravel-filemanager/js/script.js 1
public/_ignition/execute-solution 1
vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php 1
🚫

Block

IP from blocklisted ASN AS14061 aggressively attempting Laravel and PHPUnit exploits, command injection, and local file inclusion by targeting sensitive files (.env, .git/config), triggered multiple critical WAF deny rules (CMD-INJECTION-ANOMALY, LFI-ANOMALY), and shows an extremely high number of detected threat requests.

2025-12-19 08:52:12