Https Dotgit Repository Configuration Exposure Probe

Identifies an HTTPS request targeting the .git/config file within a web-accessible repository directory. Access attempts to /.git/config indicate automated repository exposure scanning intended to retrieve remote origin URLs, repository structure, and potentially credential-bearing configuration data. This is a common reconnaissance technique used to identify misconfigured web servers exposing version control metadata.

Observed IPs

396

Avg Confidence

73%

Severity

medium

Top IPs by event countHTTPS

IP Address	Risk	Events	Sessions	Country	ASN	Last Seen
94.26.88.31	100%	5,082	2,469	🇧🇬 BG	AS201814	2026-03-01
45.83.31.168	100%	4,525	2,034	🇺🇸 US	AS210558	2026-02-23
185.241.208.170	100%	2,588	1,480	🇵🇱 PL	AS210558	2026-02-22
65.49.20.68	99%	2,345	1,430	🇺🇸 US	AS6939	2026-03-02
184.105.247.194	99%	2,220	1,268	🇺🇸 US	AS6939	2026-03-02
65.49.20.66	99%	2,182	1,393	🇺🇸 US	AS6939	2026-03-02
74.82.47.5	98%	2,147	1,214	🇺🇸 US	AS6939	2026-03-02
65.49.20.69	98%	2,091	1,231	🇺🇸 US	AS6939	2026-03-02
184.105.247.195	98%	2,067	1,162	🇺🇸 US	AS6939	2026-03-02
184.105.247.252	99%	2,066	1,206	🇺🇸 US	AS6939	2026-03-02
65.49.20.67	98%	2,024	1,246	🇺🇸 US	AS6939	2026-03-02
184.105.247.254	97%	1,902	1,059	🇺🇸 US	AS6939	2026-03-02
184.105.139.68	98%	1,806	991	🇺🇸 US	AS6939	2026-03-02
184.105.139.69	98%	1,782	1,041	🇺🇸 US	AS6939	2026-03-02
74.82.47.4	99%	1,780	1,085	🇺🇸 US	AS6939	2026-03-02
184.105.247.196	99%	1,759	1,053	🇺🇸 US	AS6939	2026-03-02
216.218.206.66	99%	1,719	996	🇺🇸 US	AS6939	2026-03-02
74.82.47.3	97%	1,634	954	🇺🇸 US	AS6939	2026-03-02
74.82.47.2	99%	1,634	974	🇺🇸 US	AS6939	2026-03-02
77.83.39.162	100%	1,605	985	🇺🇦 UA	AS214940	2026-03-01