Loading threats
An HTTP GET request targeting an Elasticsearch-compatible endpoint. This primitive represents read-oriented probing or enumeration activity against exposed Elasticsearch services, including requests to cluster, node, index, or generic web paths. Attackers and automated scanners commonly use GET requests to fingerprint the service, retrieve cluster metadata, or verify unauthenticated access. The primitive captures both Elasticsearch API paths such as /_cluster/stats or /_nodes and generic HTTP discovery paths observed during reconnaissance workflows.
| IP Address | Risk | Events | Sessions | Country | ASN | Last Seen |
|---|---|---|---|---|---|---|
| 194.50.16.198 | 100% | 73,491 | 73,197 | 🇳🇱 NL | AS49870 | 2026-04-18 |
| 16.58.56.214 | 100% | 52,920 | 50,376 | 🇺🇸 US | AS16509 | 2026-04-19 |
| 18.116.101.220 | 100% | 49,239 | 48,286 | 🇺🇸 US | AS16509 | 2026-04-19 |
| 18.218.118.203 | 100% | 46,853 | 44,219 | 🇺🇸 US | AS16509 | 2026-04-19 |
| 3.129.187.38 | 100% | 45,770 | 44,012 | 🇺🇸 US | AS16509 | 2026-04-18 |
| 3.130.168.2 | 100% | 42,151 | 40,008 | 🇺🇸 US | AS16509 |
| 2026-04-19 |
| 77.83.240.70 | 100% | 34,994 | 18,553 | 🇺🇸 US | AS49870 | 2026-04-18 |
| 81.29.142.100 | 100% | 33,992 | 24,822 | 🇷🇺 RU | AS210259 | 2026-04-19 |
| 185.177.72.38 | 99% | 32,502 | 2,141 | 🇫🇷 FR | AS211590 | 2026-04-11 |
| 141.98.10.68 | 98% | 28,587 | 28,403 | 🇱🇹 LT | AS209605 | 2026-03-11 |
| 3.131.220.121 | 100% | 28,377 | 27,470 | 🇺🇸 US | AS16509 | 2026-04-18 |
| 185.177.72.30 | 97% | 26,680 | 1,363 | 🇫🇷 FR | AS211590 | 2026-04-17 |
| 5.181.86.179 | 98% | 24,939 | 24,904 | 🇺🇦 UA | AS211632 | 2026-04-19 |
| 5.181.86.60 | 98% | 24,703 | 24,544 | 🇺🇦 UA | AS211632 | 2026-04-19 |
| 81.29.142.6 | 100% | 24,131 | 18,337 | 🇷🇺 RU | AS210259 | 2026-04-19 |
| 185.177.72.52 | 98% | 23,993 | 1,149 | 🇫🇷 FR | AS211590 | 2026-04-17 |
| 185.177.72.49 | 93% | 21,239 | 1,491 | 🇫🇷 FR | AS211590 | 2026-04-18 |
| 3.132.26.232 | 100% | 19,975 | 19,811 | 🇺🇸 US | AS16509 | 2026-04-18 |
| 185.156.73.157 | 98% | 18,175 | 18,094 | 🇺🇦 UA | AS211736 | 2026-04-19 |
| 185.177.72.13 | 98% | 17,669 | 1,469 | 🇫🇷 FR | AS211590 | 2026-04-16 |