PUBLIC TELEMETRY · READ-ONLY

Attack Telemetry

Aggregated hostile traffic from Nginx access logs + Fail2ban bans. Data is served via /telemetry.

Window: — Auto refresh (15s) Back

Total Requests

—

Updated: —

Unique IPs

—

Top talkers + scan noise

Fail2ban Bans

—

Recent bans in window

Top IPs

Top sources by request volume (nginx).

Status Codes

High 404/401 volume usually indicates scanning.

Top Paths

Common exploit probes are expected — blocked at Nginx.

Top User-Agents

User-agent strings are noisy and often spoofed.

Fail2ban Recent Bans

Most recent ban events captured from fail2ban.log.

Fail2ban Live

Current banned count by jail (fail2ban-client).