Web logs 404 analysis - all time
Jan 12, 2026 Checking for 404 errors in your logs can reveal more than just broken links, it can also expose files and URLs that attackers are actively scanning for. To track this behavior, we set up hundreds of honeypots and analyzed live web traffic data, giving us insight into which files and URLs are being targeted across the internet.
The table bellow list the top URLs being scanned all time and is updated daily. Most of the data contain WordPress specific URLs, certain plugins and config files that attackers can use.
| Rank | Scanned URL | Counter |
|---|---|---|
| #1 | /wp-login.php | 587,794 |
| #2 | /autodiscover/autodiscover.xml | 276,632 |
| #3 | /xmlrpc.php | 142,145 |
| #4 | /.env | 100,746 |
| #5 | /index.php | 96,563 |
| #6 | /.well-known/traffic-advice | 95,030 |
| #7 | /sitemap.xml | 84,178 |
| #8 | /2012 | 57,492 |
| #9 | /404 | 45,539 |
| #10 | /wp-json/oembed/1.0/embed | 45,159 |
| #11 | /.git/config | 41,757 |
| #12 | /api/v2/auth | 41,539 |
| #13 | /module/ngmercadolivre/notificacao | 35,862 |
| #14 | /info.php | 34,099 |
| #15 | /file.php | 30,827 |
| #16 | /manager/html | 30,575 |
| #17 | /admin.php | 30,279 |
| #18 | /login | 29,517 |
| #19 | /about.php | 26,539 |
| #20 | /chosen.php | 26,057 |
| #21 | /en/AutoDiscover/autodiscover.xml | 25,355 |
| #22 | /wp-cron.php | 24,651 |
| #23 | /wordpress | 23,415 |
| #24 | /wp-content/plugins/hellopress/wp_filemanager.php | 22,193 |
| #25 | /backup | 21,759 |
| #26 | /wp-admin | 20,898 |
| #27 | /wp | 20,269 |
| #28 | /api/catalog_system/pub/products/search | 18,944 |
| #29 | /alfa.php | 18,142 |
| #30 | /.well-known/nodeinfo | 17,614 |
| #31 | /old | 17,586 |
| #32 | /wp-content/plugins/fix/up.php | 17,255 |
| #33 | /_profiler/phpinfo | 17,214 |
| #34 | /wp.php | 16,898 |
| #35 | /classwithtostring.php | 16,767 |
| #36 | /404testpage4525d2fdc | 16,601 |
| #37 | /wp-includes/wlwmanifest.xml | 16,411 |
| #38 | /bk | 16,276 |
| #39 | /phpinfo | 16,199 |
| #40 | /api/v2/marketplace/sellers/376/products/status-batch | 16,186 |
| #41 | /en/autodiscover/autodiscover.xml | 16,169 |
| #42 | /1.php | 16,125 |
| #43 | /api/v2/marketplace/sellers/376/products/stock-batch | 16,088 |
| #44 | /api/v2/marketplace/sellers/376/products/price-batch | 16,073 |
| #45 | /goods.php | 16,073 |
| #46 | /bc | 16,072 |
| #47 | /aa.php | 15,991 |
| #48 | /atomlib.php | 15,969 |
| #49 | /ioxi-o.php | 15,951 |
| #50 | /.well-known/acme-challenge/about.php | 15,752 |
| #51 | /new | 15,681 |
| #52 | /autoload_classmap.php | 15,630 |
| #53 | /admin | 15,418 |
| #54 | /main | 15,213 |
| #55 | /api/.env | 14,977 |
| #56 | /rest/V1/store/storeViews | 14,860 |
| #57 | /simple.php | 14,537 |
| #58 | /test.php | 14,413 |
| #59 | /flower.php | 14,020 |
| #60 | /lock360.php | 14,006 |
| #61 | /api/v2/categories/65 | 13,887 |
| #62 | /web/wp-includes/wlwmanifest.xml | 13,835 |
| #63 | /file2.php | 13,830 |
| #64 | /wordpress/wp-includes/wlwmanifest.xml | 13,700 |
| #65 | /edit.php | 13,686 |
| #66 | /.well-known/passkey-endpoints | 13,511 |
| #67 | /wp/wp-includes/wlwmanifest.xml | 13,473 |
| #68 | /admin/config.php | 13,307 |
| #69 | /-/-/-/-/-/-/-/-/-/- | 13,148 |
| #70 | /blog/wp-includes/wlwmanifest.xml | 13,051 |
| #71 | /app | 13,009 |
| #72 | /shop | 13,008 |
| #73 | /2019/wp-includes/wlwmanifest.xml | 12,912 |
| #74 | /shop/wp-includes/wlwmanifest.xml | 12,824 |
| #75 | /app_dev.php/_profiler/phpinfo | 12,797 |
| #76 | /debug/default/view | 12,743 |
| #77 | /backend/.env | 12,714 |
| #78 | /admin/.env | 12,466 |
| #79 | /web_api/auth | 12,403 |
| #80 | /cong.php | 12,348 |
| #81 | /cdn-cgi/rum | 12,332 |
| #82 | /makeasmtp.php | 12,205 |
| #83 | /AutoDiscover/autodiscover.xml | 12,168 |
| #84 | /website/wp-includes/wlwmanifest.xml | 12,160 |
| #85 | /v2/_catalog | 12,153 |
| #86 | /pagamento/mercadopago/ipn.php | 12,130 |
| #87 | /test | 12,110 |
| #88 | /news/wp-includes/wlwmanifest.xml | 11,995 |
| #89 | /.env.example | 11,944 |
| #90 | /server-status | 11,911 |
| #91 | /feed | 11,819 |
| #92 | /style.php | 11,777 |
| #93 | /buy.php | 11,734 |
| #94 | /contrato/wap/crons/enviar-email.php | 11,581 |
| #95 | /api | 11,294 |
| #96 | /telescope/requests | 11,199 |
| #97 | /abcd.php | 11,015 |
| #98 | /radio.php | 10,997 |
| #99 | /autoload_classmap/function.php | 10,942 |
| #100 | /akc.php | 10,938 |
| #101 | /inputs.php | 10,842 |
| #102 | /asasx.php | 10,825 |
| #103 | /acessorios-cameras | 10,809 |
| #104 | /.well-known/apple-app-site-association | 10,799 |
| #105 | /akcc.php | 10,760 |
| #106 | /api/v2/categories/64 | 10,248 |
| #107 | /wp-admin/css | 10,229 |
| #108 | /wp-plain.php | 10,207 |
| #109 | /dropdown.php | 10,126 |
| #110 | /api/graphql | 10,078 |
| #111 | /k.php | 9,955 |
| #112 | /login.action | 9,934 |
| #113 | /home | 9,921 |
| #114 | /css.php | 9,898 |
| #115 | /phpinfo.php | 9,873 |
| #116 | /as.php | 9,695 |
| #117 | /about | 9,663 |
| #118 | /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application | 9,408 |
| #119 | /w.php | 9,352 |
| #120 | /user/login | 9,352 |
| #121 | /server | 9,165 |
| #122 | /@vite/env | 9,126 |
| #123 | /_all_dbs | 9,126 |
| #124 | /api/sessions | 9,092 |
| #125 | /actuator/env | 9,066 |
| #126 | /saiga.php | 9,014 |
| #127 | /api/v2/customers/login | 8,994 |
| #128 | /bless.php | 8,973 |
| #129 | /404.php | 8,944 |
| #130 | /goat.php | 8,903 |
| #131 | /adminfuns.php | 8,846 |
| #132 | /loja/login_layout.php | 8,820 |
| #133 | /cgi-bin/luci/;stok=/locale | 8,702 |
| #134 | /wp-json/sfwd-assignment/1 | 8,681 |
| #135 | /HNAP1 | 8,630 |
| #136 | /wordpress/wp-admin/setup-config.php | 8,545 |
| #137 | /lv.php | 8,490 |
| #138 | /files | 8,452 |
| #139 | /gecko.php | 8,420 |
| #140 | /php.php | 8,318 |
| #141 | /loja/catalogo.php | 8,301 |
| #142 | /config.php | 8,246 |
| #143 | /wp-admin/classwithtostring.php | 8,088 |
| #144 | /wp-sitemap.xml | 8,022 |
| #145 | /07550e18 | 8,022 |
| #146 | /wp-content/plugins/woocommerce/includes/gateways/locks.php | 7,910 |
| #147 | /wp-content/index.php | 7,878 |
| #148 | /.well-known/acme-challenge/cloud.php | 7,869 |
| #149 | /appWP/lab/wp-admin/css/colors/blue/blue.php | 7,848 |
| #150 | /403.php | 7,833 |
| #151 | /manager.php | 7,798 |
| #152 | /themes.php | 7,780 |
| #153 | /wp-admin/images/moon.php | 7,756 |
| #154 | /bolt.php | 7,736 |
| #155 | /[object%20Object] | 7,690 |
| #156 | /administrator | 7,678 |
| #157 | /contato | 7,657 |
| #158 | /wsa.php | 7,599 |
| #159 | /wp-admin/setup-config.php | 7,597 |
| #160 | /nc4.php | 7,523 |
| #161 | /wiki | 7,477 |
| #162 | /f35.php | 7,439 |
| #163 | /wp-content/wp-conflg.php | 7,413 |
| #164 | /wp-content/themes/seotheme/db.php | 7,393 |
| #165 | /gg.php | 7,388 |
| #166 | /gmo.php | 7,343 |
| #167 | /admin/index.php | 7,326 |
| #168 | /index/function.php | 7,313 |
| #169 | /tinyfilemanager.php | 7,311 |
| #170 | /g/collect | 7,309 |
| #171 | /mar.php | 7,249 |
| #172 | /users.php | 7,125 |
| #173 | /api/v3/community | 7,103 |
| #174 | /zwso.php | 7,101 |
| #175 | /content.php | 7,055 |
| #176 | /s/1313e2236313e20373e2538313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties | 7,037 |
| #177 | /wp-admin/index.php | 6,987 |
| #178 | /mm.php | 6,977 |
| #179 | /wp-content/autoload_classmap.php | 6,944 |
| #180 | /doc.php | 6,930 |
| #181 | /images | 6,832 |
| #182 | /blog | 6,821 |
| #183 | /filemanager.php | 6,819 |
| #184 | /class.php | 6,819 |
| #185 | /null | 6,815 |
| #186 | /system_log.php | 6,810 |
| #187 | /cms | 6,807 |
| #188 | /images/images/cache.php | 6,734 |
| #189 | /shell.php | 6,732 |
| #190 | /2018/wp-includes/wlwmanifest.xml | 6,716 |
| #191 | /wp-content/admin.php | 6,668 |
| #192 | /pb | 6,637 |
| #193 | /.env.bak | 6,613 |
| #194 | /new.php | 6,607 |
| #195 | /wp-admin/js/index.php | 6,543 |
| #196 | /wp-admin/css/colors/blue/index.php | 6,532 |
| #197 | /wp-content/video | 6,523 |
| #198 | /feed/mnpodcast | 6,512 |
| #199 | /boaform/admin/formLogin | 6,478 |
| #200 | /wp-admin/wp-conflg.php | 6,466 |
| #201 | /wp-content/themes/about.php | 6,464 |
| #202 | /cc.php | 6,457 |
| #203 | /mah.php | 6,441 |
| #204 | /wp-admin/js/autoload_classmap.php | 6,426 |
| #205 | /install.php | 6,425 |
| #206 | /upload/banner | 6,398 |
| #207 | /wp-content/themes/admin.php | 6,392 |
| #208 | /g.php | 6,353 |
| #209 | /2020/wp-includes/wlwmanifest.xml | 6,348 |
| #210 | /.aws/credentials | 6,343 |
| #211 | /wp-api.php | 6,339 |
| #212 | /api/v2/freights/316 | 6,328 |
| #213 | /wso.php | 6,295 |
| #214 | /moon.php | 6,282 |
| #215 | /wp-includes/fonts/admin.php | 6,235 |
| #216 | /rest/V1/inventory/source-items | 6,203 |
| #217 | /wp-json/mod/v1/check-site | 6,198 |
| #218 | /php_info.php | 6,190 |
| #219 | /wp-setup.php | 6,182 |
| #220 | /mini.php | 6,180 |
| #221 | /api/shared/config/config.env | 6,097 |
| #222 | /laravel/.env | 6,069 |
| #223 | /file17.php | 6,052 |
| #224 | /.well-known/acme-challenge/xmrlpc.php | 6,004 |
| #225 | /ahax.php | 5,959 |
| #226 | /app/.env | 5,917 |
| #227 | /loja/busca.php | 5,893 |
| #228 | /contact | 5,878 |
| #229 | /sdk | 5,867 |
| #230 | /foq.php | 5,827 |
| #231 | /admin/function.php | 5,807 |
| #232 | /.env.local | 5,804 |
| #233 | /evox/about | 5,797 |
| #234 | /wp-content/about.php | 5,788 |
| #235 | /wp-admin/maint/about.php | 5,787 |
| #236 | /Form | 5,778 |
| #237 | /file5.php | 5,768 |
| #238 | /222.php | 5,746 |
| #239 | /core/.env | 5,711 |
| #240 | /assets/images/accesson.php | 5,663 |
| #241 | /admin/controller/extension/extension | 5,590 |
| #242 | /wp-content/style.php | 5,587 |
| #243 | /wp-includes/fonts/index.php | 5,579 |
| #244 | /wp-includes/IXR/autoload_classmap.php | 5,561 |
| #245 | /sitemap_index.xml | 5,518 |
| #246 | /wp-content | 5,460 |
| #247 | /wp-editor.php | 5,458 |
| #248 | /wp-json/sfwd-lessons/1 | 5,437 |
| #249 | /xmrlpc.php | 5,387 |
| #250 | /uploads | 5,383 |
| #251 | /undefined | 5,349 |
| #252 | /item.php | 5,324 |
| #253 | /default.php | 5,321 |
| #254 | /about/function.php | 5,319 |
| #255 | /byp.php | 5,312 |
| #256 | /wp-json/sfwd-topic/1 | 5,302 |
| #257 | /loja/cartService.php | 5,289 |
| #258 | /wp-admin/edit-tags.php | 5,252 |
| #259 | /13.php | 5,246 |
| #260 | /sk_es/vozik | 5,216 |
| #261 | /wp-content/plugins/wpterm.php | 5,198 |
| #262 | /wp-content/plugins/WordPressCore/include.php | 5,188 |
| #263 | /comment.php | 5,183 |
| #264 | /function/function.php | 5,169 |
| #265 | /pinfo.php | 5,164 |
| #266 | /a.php | 5,152 |
| #267 | /s.php | 5,098 |
| #268 | /.git/HEAD | 5,063 |
| #269 | /.env.prod | 5,034 |
| #270 | /password.php | 5,030 |
| #271 | /files.php | 4,926 |
| #272 | /wp-json/custom/v1 | 4,922 |
| #273 | /m.php | 4,908 |
| #274 | /apps/.env | 4,892 |
| #275 | /ty.php | 4,825 |
| #276 | /form.html | 4,824 |
| #277 | /index.html | 4,817 |
| #278 | /api/v2/products/386 | 4,811 |
| #279 | /api/v2/marketplace/sellers/615/products/queue | 4,810 |
| #280 | /pesca/login/index.php | 4,804 |
| #281 | /wp-admin/admin-ajax.php | 4,788 |
| #282 | /wp-good.php | 4,736 |
| #283 | /tytyd.php | 4,731 |
| #284 | /upl.php | 4,715 |
| #285 | /.well-known/change-password | 4,712 |
| #286 | /web/.env | 4,711 |
| #287 | /error.php | 4,692 |
| #288 | /graphql | 4,691 |
| #289 | /systembc/password.php | 4,687 |
| #290 | /we.php | 4,683 |
| #291 | /t4 | 4,680 |
| #292 | /geoip | 4,678 |
| #293 | /.well-known/web-identity | 4,661 |
| #294 | /sites/default/files | 4,655 |
| #295 | /wp1/wp-includes/wlwmanifest.xml | 4,640 |
| #296 | /.git/index | 4,629 |
| #297 | /.well-known/webauthn | 4,618 |
| #298 | /.well-known/resource-that-should-not-exist-whose-status-code-should-not-be-200 | 4,616 |
| #299 | /wp-admin/includes/index.php | 4,607 |
| #300 | /x.php | 4,606 |
| #301 | /public/.env | 4,599 |
| #302 | /gifclass.php | 4,592 |
| #303 | /wp-admin/js | 4,559 |
| #304 | /sitemap.php | 4,510 |
| #305 | /wp-admin/style.php | 4,479 |
| #306 | /wp-content/plugins/pwnd/pwnd.php | 4,478 |
| #307 | /wp-content/plugins/admin.php | 4,475 |
| #308 | /SistemaEAD_CPREM/login/index.php | 4,473 |
| #309 | /NewFile.php | 4,457 |
| #310 | /version | 4,443 |
| #311 | /dev/.env | 4,437 |
| #312 | /new/.env | 4,436 |
| #313 | /comment-subscriptions | 4,431 |
| #314 | /site | 4,430 |
| #315 | /ws.php | 4,419 |
| #316 | /ar.php | 4,376 |
| #317 | /ab2g | 4,371 |
| #318 | /ab2h | 4,369 |
| #319 | /wp-admin.php | 4,369 |
| #320 | /wp-admin/profile.php | 4,367 |
| #321 | /wp-trackback.php | 4,361 |
| #322 | /wp-admin/js/widgets/cloud.php | 4,347 |
| #323 | /admin/admin.php | 4,344 |
| #324 | /info | 4,344 |
| #325 | /fox.php | 4,339 |
| #326 | /alive.php | 4,336 |
| #327 | /wordpress/wp-login.php | 4,335 |
| #328 | /teorema505 | 4,329 |
| #329 | /.well-known/acme-challenge/mariju.php | 4,319 |
| #330 | /i.php | 4,309 |
| #331 | /0x.php | 4,299 |
| #332 | /wp-admin/file.php | 4,284 |
| #333 | /wp-conflg.php | 4,271 |
| #334 | /wp-admin/install.php | 4,262 |
| #335 | /web | 4,248 |
| #336 | /wp-content/themes/style.php | 4,243 |
| #337 | /wp-admin/plugins.php | 4,219 |
| #338 | /wp-admin/js/about.php | 4,185 |
| #339 | /wp-admin/includes/colour.php | 4,181 |
| #340 | /api/v2/marketplace/sellers/655/products/queue | 4,165 |
| #341 | /wp-admin/edit.php | 4,164 |
| #342 | /wp-admin/css/colors/blue | 4,154 |
| #343 | /wp-json/sfwd-courses | 4,142 |
| #344 | /10.php | 4,128 |
| #345 | /al.php | 4,117 |
| #346 | /backend | 4,113 |
| #347 | /wp-signin.php | 4,111 |
| #348 | /file15.php | 4,099 |
| #349 | /elp.php | 4,091 |
| #350 | /portal/.env | 4,085 |
| #351 | /fr | 4,026 |
| #352 | /sts.php | 4,013 |
| #353 | /api/v2/brands/4718 | 4,010 |
| #354 | /file9.php | 3,992 |
| #355 | /num.php | 3,991 |
| #356 | /wp-content/plugins/pwnd/as.php | 3,987 |
| #357 | /api/v2/products/1659371462 | 3,983 |
| #358 | /application/.env | 3,979 |
| #359 | /api/v2/products/1659372022 | 3,965 |
| #360 | /api/v2/products/1659370690 | 3,955 |
| #361 | /api/v2/products/1659372042 | 3,954 |
| #362 | /api/v2/products/1659370143 | 3,951 |
| #363 | /api/v2/products/1659370540 | 3,949 |
| #364 | /api/v2/products/1659371194 | 3,948 |
| #365 | /api/v2/products/1659369592 | 3,947 |
| #366 | /infos.php | 3,942 |
| #367 | /api/v2/products/1659371029 | 3,939 |
| #368 | /api/v2/products/1659369038 | 3,938 |
| #369 | /api/v2/products/1659371884 | 3,930 |
| #370 | /api/v2/products/1659370315 | 3,929 |
| #371 | /api/v2/products/1659370649 | 3,928 |
| #372 | /api/v2/products/1659371950 | 3,926 |
| #373 | /api/v2/products/1659369485 | 3,924 |
| #374 | /wp-blog.php | 3,923 |
| #375 | /api/v2/products/1659369318 | 3,921 |
| #376 | /api/v2/products/1659369941 | 3,918 |
| #377 | /wp-admin/wp-admins.php | 3,916 |
| #378 | /api/v2/products/1659371217 | 3,916 |
| #379 | /gelay.php | 3,916 |
| #380 | /dashboard | 3,912 |
| #381 | /api/v2/products/1659369765 | 3,911 |
| #382 | /api/v2/products/1659371489 | 3,909 |
| #383 | /api/v2/products/1659370539 | 3,907 |
| #384 | /wp-admin/css/colors/blue/atomlib.php | 3,903 |
| #385 | /api/v2/products/1659369366 | 3,900 |
| #386 | /api/v2/products/1659371730 | 3,893 |
| #387 | /api/v2/products/1659368975 | 3,881 |
| #388 | /themes/zMousse/otuz1.php | 3,876 |
| #389 | /api/v2/marketplace/sellers/376/products/queue | 3,871 |
| #390 | /2.php | 3,868 |
| #391 | /cgi-bin | 3,866 |
| #392 | /aws.yml | 3,863 |
| #393 | /groups%22%22 | 3,827 |
| #394 | /ini.php | 3,820 |
| #395 | /fix.php | 3,815 |
| #396 | /php8.php | 3,806 |
| #397 | /gel4y.php | 3,806 |
| #398 | /api/v2/products/1659370940 | 3,802 |
| #399 | /function.php | 3,775 |
| #400 | /wp-admin/css/about.php | 3,767 |
| #401 | /ee.php | 3,764 |
| #402 | /pp.php | 3,761 |
| #403 | /config/aws.yml | 3,760 |
| #404 | /wp-includes/blocks/about.php | 3,754 |
| #405 | /panel | 3,750 |
| #406 | /wp-admin/network/network.php | 3,738 |
| #407 | /api/config.env | 3,733 |
| #408 | /member-signup | 3,733 |
| #409 | /moddofuns.php | 3,714 |
| #410 | /images/class-config.php | 3,709 |
| #411 | /www/.env | 3,708 |
| #412 | /wp-admin/wp-login.php | 3,706 |
| #413 | /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php | 3,702 |
| #414 | /ola-mundo | 3,691 |
| #415 | /.well-known | 3,688 |
| #416 | /simular | 3,687 |
| #417 | /wp-l0gin.php | 3,682 |
| #418 | /docker/.env | 3,669 |
| #419 | /crm/.env | 3,665 |
| #420 | /mah/function.php | 3,665 |
| #421 | /js/.env | 3,663 |
| #422 | /_phpinfo.php | 3,657 |
| #423 | /api/shared/config.env | 3,654 |
| #424 | /xx.php | 3,651 |
| #425 | /fm.php | 3,647 |
| #426 | /wp-admin/post-new.php | 3,639 |
| #427 | /contact-us | 3,629 |
| #428 | /login.php | 3,623 |
| #429 | /wp-content/plugins/simple-ajax-chat/includes/sac-check-user.php | 3,616 |
| #430 | /env/.env | 3,607 |
| #431 | /acessorios-cameras/capa-de-silicone | 3,590 |
| #432 | /cron/.env | 3,587 |
| #433 | /cursogratuito/ola-mundo | 3,587 |
| #434 | /12.php | 3,584 |
| #435 | /wp-includes/wp-class.php | 3,581 |
| #436 | /file3.php | 3,575 |
| #437 | /item/Caique-Brudden-Explorer-Fishing-Up-.html | 3,556 |
| #438 | /app/config/parameters.yml | 3,545 |
| #439 | /CLA.php | 3,542 |
| #440 | /doiconvs.php | 3,536 |
| #441 | /en/assets/images/logos/HTB.JPG | 3,522 |
| #442 | /test1.php | 3,518 |
| #443 | /api/v2/products/5518 | 3,517 |
| #444 | /epinyins.php | 3,506 |
| #445 | /wp-content/classwithtostring.php | 3,488 |
| #446 | /dynip/f282640c | 3,486 |
| #447 | /.well-known/acme-challenge/makeasmtp.php | 3,483 |
| #448 | /loja/carrinho.php | 3,478 |
| #449 | /wp-admin/css/colors/ectoplasm/about.php | 3,474 |
| #450 | /v.php | 3,472 |
| #451 | /file7.php | 3,467 |
| #452 | /wp-json/oembed | 3,427 |
| #453 | /wp-admin/js/wp-conflg.php | 3,422 |
| #454 | /c/linha-glass/robo-aspirador | 3,421 |
| #455 | /wp-content/plugins/about.php | 3,421 |
| #456 | /wp-json/wp | 3,420 |
| #457 | /wp-admin/css/colors/blue/about.php | 3,419 |
| #458 | /alfanew.php | 3,416 |
| #459 | /wp-admin/css/qPyYcxpHKCu.php | 3,410 |
| #460 | /cabelo/marcas-de-salao/wella-professionals/wella-professionals-invigo-color-brilliance-2-produtos | 3,408 |
| #461 | /local/.env | 3,402 |
| #462 | /api/v2/batch/1110 | 3,402 |
| #463 | /wp-json/sfwd-lessons | 3,394 |
| #464 | /.vscode/.env | 3,391 |
| #465 | /inc.php | 3,389 |
| #466 | /api/v2/products/1659369863 | 3,384 |
| #467 | /b.php | 3,382 |
| #468 | /a2.php | 3,380 |
| #469 | /wp-aa.php | 3,375 |
| #470 | /.aws/config | 3,375 |
| #471 | /y.php | 3,370 |
| #472 | /wp-json/sfwd-courses/1 | 3,363 |
| #473 | /.well-known/classwithtostring.php | 3,362 |
| #474 | /not_found | 3,360 |
| #475 | /wp-admin/autoload_classmap.php | 3,351 |
| #476 | /wp-admin/mah.php | 3,348 |
| #477 | /mini | 3,333 |
| #478 | /rest/V1/orders | 3,314 |
| #479 | /mail.php | 3,307 |
| #480 | /site/.env | 3,300 |
| #481 | /settings.py | 3,300 |
| #482 | /api/config/config.yml | 3,295 |
| #483 | /test/wp-includes/wlwmanifest.xml | 3,290 |
| #484 | /wp-admin/chosen.php | 3,255 |
| #485 | /prod/.env | 3,255 |
| #486 | /.env.old | 3,255 |
| #487 | /wp-json/sfwd-topic | 3,254 |
| #488 | /wp-admin/includes | 3,254 |
| #489 | /log.php | 3,253 |
| #490 | /api/v2/batch/1111 | 3,251 |
| #491 | /customer/account/create | 3,236 |
| #492 | /.AWS_/credentials | 3,235 |
| #493 | /wp-includes/about.php | 3,234 |
| #494 | /pages.php | 3,218 |
| #495 | /jp.php | 3,217 |
| #496 | /post.php | 3,192 |
| #497 | /tool/view/phpinfo.view.php | 3,189 |
| #498 | /build.php | 3,180 |
| #499 | /api/v2/marketplace/sellers/376/products/batch | 3,175 |
| #500 | /.env.production.local | 3,175 |
Data was last updated on: Jan 12, 2026
Logging Research
We love logs. In this section we will share some of the data we are parsing from our logs and honeypots we have live.
Trunc Logging
Logging for fun and a good night of sleep.
- Real time search
- Google simple
- Cheap
- Just works
- PCI compliance
Trunc Research
Latest log-based threat analysis added.
- 2025-09-03WordPress - Last scanned URLs
- 2025-08-22Web logs 404 analysis - past 72 hours
- 2025-08-21WordPress most scanned URLs - all time
- 2025-08-21Web logs 404 analysis - all time
Contact us!
Do you have an idea for a research that is not here? See something wrong? Contact us at support@noc.org
Tired of price gouging
- Clear pricing
- No need to guess
- Real people
- Real logging
Get
Started