| Entity | Type | Event time | Action taken | Ai reason | Ai confidence score | Ai details |
|---|---|---|---|---|---|---|
| 178.33.134.25 | ip | 2025-07-17 13:39:08 | block | 100% of requests flagged, actively scanning for common website directories and old/backup sites, coupled with browser impersonation. | 0.8999999761581421 | severity: Severity.critical |
| 185.177.72.12 | ip | 2025-07-17 13:39:08 | block | Extensive reconnaissance for sensitive application configurations and credentials, coupled with LFI attempts and multiple IP blocking rules. | 1.0 | severity: Severity.critical |
| 185.177.72.11 | ip | 2025-07-17 13:39:08 | block | Targeting highly sensitive credentials, environment files, and server info pages, directly hit IP reputation deny rules. | 1.0 | severity: Severity.critical |
| 185.177.72.204 | ip | 2025-07-17 13:39:08 | block | Targeted scanning for configuration files and source code repositories, triggering IP reputation deny rules. | 1.0 | severity: Severity.critical |