Check an IP Address, Domain Name, Subnet, or ASN

172.71.103.56 was found in our database!

$ whois 172.71.103.56

country·🇳🇱 The Netherlands

city·Amsterdam

isp·Cloudflare, Inc.

asn·AS13335

network·Standard

$ sikker risk 172.71.103.56scoring →

confidence

20%Low

first_seen·Mar 21, 2026

last_seen·1h ago

sessions·3

events·3

$ sikker protocols 172.71.103.56

HTTP

2 / 2

HTTPS

1 / 1

$ sikker summary 172.71.103.56

172.71.103.56 has a threat confidence score of 20%. This IP address from The Netherlands (AS13335, Cloudflare, Inc.) has been observed in 3 honeypot sessions targeting HTTP, HTTPS protocols. Detected attack patterns include http git repository config exposure probe. First observed on March 21, 2026, most recently active March 22, 2026.

$ sikker behaviors 172.71.103.56catalog →

highHttp Git Repository Config Exposure Probe1x

Identifies HTTP GET requests targeting /.git/config, indicating attempts to access exposed Git repository configuration files. Successful access may enable repository reconstruction, credential harvesting, or source code disclosure.

infoHttp Root Path Request1x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

$ sikker primitives 172.71.103.56

http_method_get14 http_path_dotgit_config1

$ sikker related 172.71.103.56

🇳🇱·More threats fromThe Netherlands→AS·More threats fromCloudflare, Inc.→HTTP·More threats targetingHTTP→HTTP·More threats targetingHTTPS→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
104.23.211.157	7%	2
172.71.191.79	7%	4
104.23.170.16	11%	12
172.71.103.186	7%	5
104.23.172.73	9%	11

IP Address	Confidence	Events
94.23.150.225	100%	221,863
45.148.10.192	100%	19,100
93.174.93.12	96%	10,661
89.42.231.241	93%	2,735
130.12.180.174	91%	2,969