HackerTrans
TopNewTrendsCommentsPastAskShowJobs

Robbedoes

56 karmajoined há 4 anos

Submissions

A scanning operation on 38 IPs looked like 11,107 across 147 networks

honeylabs.net
1 points·by Robbedoes·há 4 dias·0 comments

EmeraldWhale's .git/.env credential scraping is still running, ~2 years on

honeylabs.net
1 points·by Robbedoes·há 20 dias·0 comments

Most of the CVE-2026-4020 attackers are the same client

honeylabs.net
7 points·by Robbedoes·há 27 dias·0 comments

127.0.0.1 in eight headers: what attackers hide in X-Forwarded-For

honeylabs.net
5 points·by Robbedoes·mês passado·0 comments

Internet Noise Leaderboard: networks ranked by how much they scan for their size

honeylabs.net
4 points·by Robbedoes·mês passado·0 comments

Show HN: Spip – Open-Source Self-Hosted TCP Network Sensor

github.com
3 points·by Robbedoes·há 5 meses·2 comments

comments

Robbedoes
·há 5 meses·discuss
Good suggestion. To be honest, Cgo was the easiest for me to implement, as I originally wrote the tool in a different language. Also, most of the documentation for Netfilter and SO_ORIGINAL_DST is in C.

As for results: I’m seeing about one 'hit' per second on a standard VPS. It's a constant stream of bots looking for exploitable systems and probes from scanners like Shodan and Censys. It’s actually surprising how quickly a new IP gets picked up by these crawlers.