Congratulations,
Dumbass

> cat /var/log/your-failures.log_

A very special round of applause for 20.199.107.218 for their valiant — and entirely unsuccessful — attempt to compromise our systems. We truly couldn't have done it without you. Well, actually we could. We did. You failed.

We Might Not Know Where You Live, But...

Did you think you were anonymous? That's adorable. Here's what we know about you:

IP Address 20.199.107.218
Country France
Region Île-de-France
City Paris
ISP / Org Unknown
Timezone Unknown
Coordinates 48.8558, 2.3494

Your Digital Fingerprint

Nice browser you've got there. It'd be a shame if someone… logged it.

No user agent data recorded. Trying to be sneaky? Still didn't work.

Your Hall of Shame

Every single one of your pathetic attempts, lovingly preserved for posterity. Spoiler alert: they all failed.

Attack Breakdown

32
General Fuzzing / Forced Browsing
32
Total Failed Attempts

Detailed Activity Log

# Timestamp Attack Type Method Target URI Detail
1 2026-02-13T12:15:40Z General Fuzzing / Forced Browsing GET /admin/admin.php Forced browsing attempt: /admin/admin
2 2026-02-13T12:15:40Z General Fuzzing / Forced Browsing GET /xmlrpc.php Forced browsing attempt: /xmlrpc
3 2026-02-13T12:15:48Z General Fuzzing / Forced Browsing GET /wp-admin/images/commentv.php Forced browsing attempt: /wp-admin/images/commentv
4 2026-02-13T12:15:48Z General Fuzzing / Forced Browsing GET /cgi-bin/index.php Forced browsing attempt: /cgi-bin/index
5 2026-02-13T12:15:48Z General Fuzzing / Forced Browsing GET /wp-admin/images/wp-conflg.php Forced browsing attempt: /wp-admin/images/wp-conflg
6 2026-02-13T12:15:48Z General Fuzzing / Forced Browsing GET /wp-admin/images/wp-conflg.php Forced browsing attempt: /wp-admin/images/wp-conflg
7 2026-02-13T12:15:49Z General Fuzzing / Forced Browsing GET /wp-admin/js/wp-conflg.php Forced browsing attempt: /wp-admin/js/wp-conflg
8 2026-02-13T12:15:52Z General Fuzzing / Forced Browsing GET /wp-admin/about.php Forced browsing attempt: /wp-admin/about
9 2026-02-13T12:15:52Z General Fuzzing / Forced Browsing GET /wp-admin/maint/about.php Forced browsing attempt: /wp-admin/maint/about
10 2026-02-13T12:15:52Z General Fuzzing / Forced Browsing GET /wp-admin/setup-config.php Forced browsing attempt: /wp-admin/setup-config
11 2026-02-13T12:15:52Z General Fuzzing / Forced Browsing GET /wp-includes/ID3/about.php?p= BANNED (repeat offender)
12 2026-02-13T12:15:53Z General Fuzzing / Forced Browsing GET /.well-known/admin.php BANNED (repeat offender)
13 2026-02-13T12:15:53Z General Fuzzing / Forced Browsing GET /bless11.php BANNED (repeat offender)
14 2026-02-13T12:15:53Z General Fuzzing / Forced Browsing GET /init.php BANNED (repeat offender)
15 2026-02-13T12:15:53Z General Fuzzing / Forced Browsing GET /wp-content/plugins/pwnd/as.php BANNED (repeat offender)
16 2026-02-13T12:15:53Z General Fuzzing / Forced Browsing GET /k.php BANNED (repeat offender)
17 2026-02-13T12:15:53Z General Fuzzing / Forced Browsing GET /bless.php BANNED (repeat offender)
18 2026-02-13T12:15:53Z General Fuzzing / Forced Browsing GET /X7x.php BANNED (repeat offender)
19 2026-02-13T12:15:54Z General Fuzzing / Forced Browsing GET /166.php BANNED (repeat offender)
20 2026-02-13T12:15:54Z General Fuzzing / Forced Browsing GET /plss3.php BANNED (repeat offender)
21 2026-02-13T12:15:54Z General Fuzzing / Forced Browsing GET /wp-admin/user/about.php BANNED (repeat offender)
22 2026-02-13T12:15:54Z General Fuzzing / Forced Browsing GET /admins.php BANNED (repeat offender)
23 2026-02-13T12:15:54Z General Fuzzing / Forced Browsing GET /wp.php BANNED (repeat offender)
24 2026-02-13T12:15:54Z General Fuzzing / Forced Browsing GET /main.php BANNED (repeat offender)
25 2026-02-13T12:15:54Z General Fuzzing / Forced Browsing GET /a1.php BANNED (repeat offender)
26 2026-02-13T12:15:54Z General Fuzzing / Forced Browsing GET /lala.php BANNED (repeat offender)
27 2026-02-13T12:15:55Z General Fuzzing / Forced Browsing GET /aaa.php BANNED (repeat offender)
28 2026-02-13T12:15:55Z General Fuzzing / Forced Browsing GET /a2.php BANNED (repeat offender)
29 2026-02-13T12:15:55Z General Fuzzing / Forced Browsing GET /wp-includes/assets/index.php BANNED (repeat offender)
30 2026-02-13T12:15:55Z General Fuzzing / Forced Browsing GET /admin/function.php BANNED (repeat offender)
31 2026-02-13T12:15:55Z General Fuzzing / Forced Browsing GET /nyan.php BANNED (repeat offender)
32 2026-02-13T12:15:55Z General Fuzzing / Forced Browsing GET /jsond.php BANNED (repeat offender)

In Summary

You came. You saw. You got absolutely owned by a hedgehog.

Every request you made was detected, logged, and laughed at. Our WAF didn't even break a sweat. Maybe next time try something more challenging — like reading a book on operational security.

Pro tip: If you're going to hack a cybersecurity company, maybe don't use the same IP address for every single request. Just a thought.

Attack Leaderboard Back to Safety Hire Us Instead