← Back to Pulse Feed
PULSE DETAIL
Rolling monthly view for April 2026 of IPv4 addresses observed by Redishoneypot on a T-Pot honeypot. Attacks targeting Redis port 6379 including replication-based RCE (SLAVEOF/REPLICAOF), config manipulation, module loading, and cron/SSH key injection. Each run looks back the last 1h and appends newly seen indicators for this month. Location: Australia.
| TYPE | INDICATOR | DESCRIPTION | CREATED | |
|---|---|---|---|---|
| IPv4 | 143.244.128.100 | seen in Redishoneypot; events=19; ports=6379; cc=IN; asn=14061; asn_org=DigitalOcean, LLC; cats=Detection of a Network Scan,Generic Protocol Command Decode; redis_cmds=GET / HTTP/1.1; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 20.168.6.22 | seen in Redishoneypot; events=15; ports=6379; cc=US; asn=8075; asn_org=Microsoft Corporation; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 216.25.89.125 | seen in Redishoneypot; events=5; ports=6379; cc=US; asn=396982; asn_org=Google LLC; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 66.132.186.188 | seen in Redishoneypot; events=13; ports=6379; cc=US; asn=398324; asn_org=Censys, Inc.; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 34.78.147.222 | seen in Redishoneypot; events=9; ports=6379; cc=BE; asn=396982; asn_org=Google LLC; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 35.187.99.78 | seen in Redishoneypot; events=12; ports=6379; cc=BE; asn=396982; asn_org=Google LLC; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 35.233.67.81 | seen in Redishoneypot; events=5; ports=6379; cc=BE; asn=396982; asn_org=Google LLC; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 146.56.220.191 | seen in Redishoneypot; events=5; ports=6379; cc=CN; asn=45090; asn_org=Shenzhen Tencent Computer Systems Company Limited; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 71.6.232.29 | seen in Redishoneypot; events=18; ports=6379; cc=US; asn=10439; asn_org=CariNet, Inc.; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 104.248.227.249 | seen in Redishoneypot; events=5; ports=6379; cc=US; asn=14061; asn_org=DigitalOcean, LLC; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 115.190.12.139 | seen in Redishoneypot; events=5; ports=6379; cc=CN; asn=137718; asn_org=Beijing Volcano Engine Technology Co., Ltd.; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 159.65.225.208 | seen in Redishoneypot; events=17; ports=6379; cc=US; asn=14061; asn_org=DigitalOcean, LLC; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 167.99.15.135 | seen in Redishoneypot; events=20; ports=6379; cc=US; asn=14061; asn_org=DigitalOcean, LLC; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 85.11.183.25 | seen in Redishoneypot; events=27; ports=6379; cc=GB; asn=201002; asn_org=PebbleHost Ltd; cats=Generic Protocol Command Decode; redis_cmds=GET / HTTP/1.1; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 34.53.157.75 | seen in Redishoneypot; events=5; ports=6379; cc=BE; asn=396982; asn_org=Google LLC; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 39.108.228.106 | seen in Redishoneypot; events=40; ports=6379; cc=CN; asn=37963; asn_org=Hangzhou Alibaba Advertising Co.,Ltd.; cats=Generic Protocol Command Decode; redis_cmds=MODULE UNLOAD system,config set dir .,CONFIG SET dir /tmp/,config set rdbcompression no,save; redis_cmd_hits=0; cmd="SLAVEOF NO ONE" | 2026-04-29 | |
| IPv4 | 147.182.213.84 | seen in Redishoneypot; events=4; ports=6379; cc=US; asn=14061; asn_org=DigitalOcean, LLC; cats=Generic Protocol Command Decode; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 45.33.105.182 | seen in Redishoneypot; events=5; ports=6379; cc=US; asn=63949; asn_org=Akamai Connected Cloud; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 64.62.156.108 | seen in Redishoneypot; events=26; ports=6379; cc=US; asn=6939; asn_org=Hurricane Electric LLC; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 64.62.156.111 | seen in Redishoneypot; events=4; ports=6379; cc=US; asn=6939; asn_org=Hurricane Electric LLC; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 34.140.131.154 | seen in Redishoneypot; events=8; ports=6379; cc=BE; asn=396982; asn_org=Google LLC; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 34.14.112.157 | seen in Redishoneypot; events=9; ports=6379; cc=BE; asn=396982; asn_org=Google LLC; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 34.76.82.19 | seen in Redishoneypot; events=31; ports=6379; cc=BE; asn=396982; asn_org=Google LLC; redis_cmds=CONFIG GET bind; redis_cmd_hits=0; cmd="CLUSTER NODES" | 2026-04-29 | |
| IPv4 | 160.119.76.51 | seen in Redishoneypot; events=34; ports=6379; cc=SC; asn=49870; asn_org=Alsycon B.V.; cats=Generic Protocol Command Decode,Misc activity; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 198.235.24.243 | seen in Redishoneypot; events=9; ports=6379; cc=US; asn=396982; asn_org=Google LLC; cats=Generic Protocol Command Decode; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 85.11.183.21 | seen in Redishoneypot; events=28; ports=6379; cc=GB; asn=201002; asn_org=PebbleHost Ltd; cats=Generic Protocol Command Decode; redis_cmds=GET / HTTP/1.1; redis_cmd_hits=0 | 2026-04-29 | |
| IPv4 | 184.105.247.235 | seen in Redishoneypot; events=4; ports=6379; cc=US; asn=6939; asn_org=Hurricane Electric LLC; redis_cmd_hits=0 | 2026-04-30 | |
| IPv4 | 18.217.208.51 | seen in Redishoneypot; events=5; ports=6379; cc=US; asn=16509; asn_org=Amazon.com, Inc.; redis_cmd_hits=0 | 2026-04-30 | |
| IPv4 | 20.14.89.155 | seen in Redishoneypot; events=16; ports=6379; cc=US; asn=8075; asn_org=Microsoft Corporation; redis_cmd_hits=0 | 2026-04-30 | |
| IPv4 | 14.153.174.92 | seen in Redishoneypot; events=5; ports=6379; cc=CN; asn=4134; asn_org=Chinanet; redis_cmd_hits=0 | 2026-04-30 | |
| IPv4 | 66.132.172.186 | seen in Redishoneypot; events=12; ports=6379; cc=US; asn=398324; asn_org=Censys, Inc.; redis_cmd_hits=0 | 2026-04-30 | |
| IPv4 | 94.26.106.155 | seen in Redishoneypot; events=9; ports=6379; cc=DE; asn=215607; asn_org=dataforest GmbH; redis_cmd_hits=0 | 2026-04-30 | |
| IPv4 | 157.230.179.248 | seen in Redishoneypot; events=5; ports=6379; cc=US; asn=14061; asn_org=DigitalOcean, LLC; redis_cmd_hits=0 | 2026-04-30 | |
| IPv4 | 223.72.120.103 | seen in Redishoneypot; events=5; ports=6379; cc=CN; asn=56048; asn_org=China Mobile Communicaitons Corporation; redis_cmd_hits=0 | 2026-04-30 | |
| IPv4 | 66.132.186.186 | seen in Redishoneypot; events=12; ports=6379; cc=US; asn=398324; asn_org=Censys, Inc.; redis_cmd_hits=0 | 2026-04-30 | |
| IPv4 | 66.132.186.246 | seen in Redishoneypot; events=5; ports=6379; cc=US; asn=398324; asn_org=Censys, Inc.; redis_cmd_hits=0 | 2026-04-30 | |
| IPv4 | 106.75.191.108 | seen in Redishoneypot; events=5; ports=6379; cc=CN; asn=58466; asn_org=CHINANET Guangdong province network; redis_cmd_hits=0 | 2026-04-30 | |
| IPv4 | 163.245.218.247 | seen in Redishoneypot; events=4; ports=6379; cc=US; asn=19318; asn_org=Interserver, Inc; redis_cmd_hits=0 | 2026-04-30 | |
| IPv4 | 20.168.5.42 | seen in Redishoneypot; events=15; ports=6379; cc=US; asn=8075; asn_org=Microsoft Corporation; redis_cmd_hits=0 | 2026-04-30 |