Loading threats
Matches HTTP requests attempting to access the sensitive environment configuration file /root/.env. This primitive helps identify reconnaissance or exploitation attempts where attackers probe for exposed application secrets, credentials, API keys, or database connection strings through file disclosure, path traversal, or misconfigured web server routes.
| IP Address | Risk | Events | Sessions | Country | ASN | Last Seen |
|---|---|---|---|---|---|---|
| 185.177.72.38 | 95% | 31,943 | 1,582 | 🇫🇷 FR | AS211590 | 2026-03-20 |
| 185.177.72.30 | 95% | 26,403 | 1,086 | 🇫🇷 FR | AS211590 | 2026-03-20 |
| 185.177.72.52 | 95% | 23,842 | 998 | 🇫🇷 FR | AS211590 | 2026-03-20 |
| 185.177.72.49 | 93% | 20,655 | 1,000 | 🇫🇷 FR | AS211590 | 2026-03-20 |
| 185.177.72.22 | 93% | 20,294 | 990 | 🇫🇷 FR | AS211590 | 2026-03-18 |
| 185.177.72.51 | 93% | 17,251 | 1,160 | 🇫🇷 FR | AS211590 | 2026-03-20 |
| 185.177.72.13 | 93% | 17,220 | 1,091 | 🇫🇷 FR | AS211590 | 2026-03-20 |
| 185.177.72.23 | 94% | 14,952 | 1,123 | 🇫🇷 FR | AS211590 | 2026-03-20 |
| 185.177.72.56 | 91% | 14,306 | 1,036 | 🇫🇷 FR | AS211590 | 2026-03-18 |
| 43.228.157.57 | 87% | 782 | 774 | 🇵🇰 PK | AS205759 | 2026-03-20 |
| 45.148.10.5 | 99% | 493 | 493 | 🇳🇱 NL | AS48090 | 2026-03-20 |
| 195.178.110.28 | 99% | 449 | 449 | 🇧🇬 BG | AS48090 | 2026-03-20 |
| 172.70.108.132 | 4% | 66 | 56 | 🇫🇷 FR | AS13335 | 2026-03-19 |
| 172.68.151.163 | 4% | 46 | 15 | 🇫🇷 FR | AS13335 | 2026-03-18 |
| 185.196.9.111 | 74% | 44 | 44 | 🇬🇧 GB | AS42624 | 2026-03-04 |
| 172.70.108.202 | 2% | 14 | 14 | 🇫🇷 FR | AS13335 | 2026-03-16 |
| 104.23.253.152 | 3% | 7 | 7 | 🇺🇸 US | AS13335 | 2026-03-19 |
| 172.70.250.162 | 5% | 7 | 7 | 🇩🇪 DE | AS13335 | 2026-03-19 |
| 172.68.151.31 | 5% | 6 | 6 | 🇫🇷 FR | AS13335 | 2026-03-18 |
| 104.23.190.69 | 3% | 6 | 6 | 🇺🇸 US | AS13335 | 2026-03-19 |