HackerTrans
TopNewTrendsCommentsPastAskShowJobs

Robbedoes

56 karmajoined 4 tahun yang lalu

Submissions

A scanning operation on 38 IPs looked like 11,107 across 147 networks

honeylabs.net
1 points·by Robbedoes·4 hari yang lalu·0 comments

EmeraldWhale's .git/.env credential scraping is still running, ~2 years on

honeylabs.net
1 points·by Robbedoes·20 hari yang lalu·0 comments

Most of the CVE-2026-4020 attackers are the same client

honeylabs.net
7 points·by Robbedoes·27 hari yang lalu·0 comments

127.0.0.1 in eight headers: what attackers hide in X-Forwarded-For

honeylabs.net
5 points·by Robbedoes·bulan lalu·0 comments

Internet Noise Leaderboard: networks ranked by how much they scan for their size

honeylabs.net
4 points·by Robbedoes·bulan lalu·0 comments

Show HN: Spip – Open-Source Self-Hosted TCP Network Sensor

github.com
3 points·by Robbedoes·5 bulan yang lalu·2 comments

comments

Robbedoes
·5 bulan yang lalu·discuss
Good suggestion. To be honest, Cgo was the easiest for me to implement, as I originally wrote the tool in a different language. Also, most of the documentation for Netfilter and SO_ORIGINAL_DST is in C.

As for results: I’m seeing about one 'hit' per second on a standard VPS. It's a constant stream of bots looking for exploitable systems and probes from scanners like Shodan and Censys. It’s actually surprising how quickly a new IP gets picked up by these crawlers.