Congratulations,
Dumbass

> cat /var/log/your-failures.log_

A very special round of applause for 162.158.155.175 for their valiant — and entirely unsuccessful — attempt to compromise our systems. We truly couldn't have done it without you. Well, actually we could. We did. You failed.

We Might Not Know Where You Live, But...

Did you think you were anonymous? That's adorable. Here's what we know about you:

IP Address 162.158.155.175
Country Unknown
Region Unknown
City Unknown
ISP / Org Unknown
Timezone Unknown

Your Digital Fingerprint

Nice browser you've got there. It'd be a shame if someone… logged it.

Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36

Your Hall of Shame

Every single one of your pathetic attempts, lovingly preserved for posterity. Spoiler alert: they all failed.

Attack Breakdown

9
Server-Side Request Forgery
9
Total Failed Attempts

Detailed Activity Log

# Timestamp Attack Type Method Target URI Detail
1 2026-03-15T16:32:15Z Server-Side Request Forgery GET /blog/netntlmv2-hash-cracking-and-legacy-authentication ssrf [HEADER][HTTP_X_FORWARDED_FOR] matched /(?:127\.0\.0\.[01]|0\.0\.0\.0|localhost|::1|\[::1\])/i
2 2026-03-16T02:22:33Z Server-Side Request Forgery GET /blog/netntlmv2-hash-cracking-and-legacy-authentication ssrf [HEADER][HTTP_X_FORWARDED_FOR] matched /(?:127\.0\.0\.[01]|0\.0\.0\.0|localhost|::1|\[::1\])/i
3 2026-03-16T02:26:37Z Server-Side Request Forgery GET /blog/netntlmv2-hash-cracking-and-legacy-authentication ssrf [HEADER][HTTP_X_FORWARDED_FOR] matched /(?:127\.0\.0\.[01]|0\.0\.0\.0|localhost|::1|\[::1\])/i
4 2026-03-17T17:19:29Z Server-Side Request Forgery GET /blog/netntlmv2-hash-cracking-and-legacy-authentication ssrf [HEADER][HTTP_X_FORWARDED_FOR] matched /(?:127\.0\.0\.[01]|0\.0\.0\.0|localhost|::1|\[::1\])/i
5 2026-03-18T01:03:40Z Server-Side Request Forgery GET /blog/netntlmv2-hash-cracking-and-legacy-authentication ssrf [HEADER][HTTP_X_FORWARDED_FOR] matched /(?:127\.0\.0\.[01]|0\.0\.0\.0|localhost|::1|\[::1\])/i
6 2026-03-18T01:26:04Z Server-Side Request Forgery GET /blog/netntlmv2-hash-cracking-and-legacy-authentication ssrf [HEADER][HTTP_X_FORWARDED_FOR] matched /(?:127\.0\.0\.[01]|0\.0\.0\.0|localhost|::1|\[::1\])/i
7 2026-03-18T01:28:08Z Server-Side Request Forgery GET /blog/netntlmv2-hash-cracking-and-legacy-authentication ssrf [HEADER][HTTP_X_FORWARDED_FOR] matched /(?:127\.0\.0\.[01]|0\.0\.0\.0|localhost|::1|\[::1\])/i
8 2026-03-29T16:05:02Z Server-Side Request Forgery GET /blog/netntlmv2-hash-cracking-and-legacy-authentication ssrf [HEADER][HTTP_X_FORWARDED_FOR] matched /(?:127\.0\.0\.[01]|0\.0\.0\.0|localhost|::1|\[::1\])/i
9 2026-03-29T17:15:54Z Server-Side Request Forgery GET /blog/netntlmv2-hash-cracking-and-legacy-authentication ssrf [HEADER][HTTP_X_FORWARDED_FOR] matched /(?:127\.0\.0\.[01]|0\.0\.0\.0|localhost|::1|\[::1\])/i

In Summary

You came. You saw. You got absolutely owned by a hedgehog.

Every request you made was detected, logged, and laughed at. Our WAF didn't even break a sweat. Maybe next time try something more challenging — like reading a book on operational security.

Pro tip: If you're going to hack a cybersecurity company, maybe don't use the same IP address for every single request. Just a thought.

Attack Leaderboard Back to Safety Hire Us Instead