{ "ok": true, "source": "scotnet-dnsbl-public-history", "generated_at": 1782307685, "generated_at_iso": "2026-06-24T13:28:05Z", "requested_limit": 10, "history": { "code": "127.0.0.4", "confidence_band": "high", "confidence_score": 85, "event_count": 159, "events": [ { "category": "add", "code": "127.0.0.4", "kind": "add", "severity": "high", "source": "apache-security", "summary": "Apache security: path_traversal; 116 evidence item(s); 1 attack session(s)/7d, 1/30d", "time": 1781916310, "time_iso": "2026-06-20T00:45:10Z" }, { "category": "generic_4xx", "kind": "attack", "method": "GET", "severity": "medium", "source": "apache-security", "status": 404, "summary": "Repeated suspicious 4xx target • GET • HTTP 404", "target": "/api/openapi.json", "time": 1781916134, "time_iso": "2026-06-20T00:42:14Z" }, { "category": "generic_4xx", "kind": "attack", "method": "GET", "severity": "medium", "source": "apache-security", "status": 404, "summary": "Repeated suspicious 4xx target • GET • HTTP 404", "target": "/orders", "time": 1781916133, "time_iso": "2026-06-20T00:42:13Z" }, { "category": "generic_4xx", "kind": "attack", "method": "GET", "severity": "medium", "source": "apache-security", "status": 403, "summary": "Repeated suspicious 4xx target • GET • HTTP 403", "target": "/contact/", "time": 1781916133, "time_iso": "2026-06-20T00:42:13Z" }, { "category": "generic_4xx", "kind": "attack", "method": "GET", "severity": "medium", "source": "apache-security", "status": 404, "summary": "Repeated suspicious 4xx target • GET • HTTP 404", "target": "/api/documentation.json", "time": 1781916132, "time_iso": "2026-06-20T00:42:12Z" }, { "category": "path_traversal", "kind": "attack", "method": "GET", "severity": "high", "source": "apache-security", "status": 400, "summary": "Path Traversal • GET • HTTP 400", "target": "/etc/passwd", "time": 1781916132, "time_iso": "2026-06-20T00:42:12Z" }, { "category": "generic_4xx", "kind": "attack", "method": "GET", "severity": "medium", "source": "apache-security", "status": 404, "summary": "Repeated suspicious 4xx target • GET • HTTP 404", "target": "/public%2f..%2f..%2fetc%2fpasswd", "time": 1781916131, "time_iso": "2026-06-20T00:42:11Z" }, { "category": "generic_4xx", "kind": "attack", "method": "GET", "severity": "medium", "source": "apache-security", "status": 400, "summary": "Repeated suspicious 4xx target • GET • HTTP 400", "target": "/etc/nginx/nginx.conf", "time": 1781916131, "time_iso": "2026-06-20T00:42:11Z" }, { "category": "path_traversal", "kind": "attack", "method": "GET", "severity": "high", "source": "apache-security", "status": 404, "summary": "Path Traversal • GET • HTTP 404", "target": "/api../config/database.yml", "time": 1781916131, "time_iso": "2026-06-20T00:42:11Z" }, { "category": "path_traversal", "kind": "attack", "method": "GET", "severity": "high", "source": "apache-security", "status": 400, "summary": "Path Traversal • GET • HTTP 400", "target": "/etc/passwd", "time": 1781916131, "time_iso": "2026-06-20T00:42:11Z" } ], "events_returned": 10, "expires_at": 1784508134, "first_event_at": 1781916078, "ip": "195.178.110.103", "last_delisted_at": null, "last_event_at": 1781916310, "last_expired_at": null, "listed": true, "primary_source": "apache_security", "reason": "Apache security: path_traversal; 116 evidence item(s); 1 attack session(s)/7d, 1/30d", "repeat_offender": false, "sources": [ "apache-security" ], "status": "listed", "suppression_until": null } }