Desir

It is a dumb HTTP Requests sniffer, which replies empty webpages in order to fetch the first step bots runs.

Logs

They are appended to the file "desir.log" in the directory you started sniffing, such as this session:

[2019-07-12 04:18:01.434234711 +02:00] Starting Desir. Written by Sebastien Tricaud
[2019-07-12T04:59:23.731436897+02:00] from=V4(84.201.146.6:57816) Get "/" []
[2019-07-12T05:02:44.434520096+02:00] from=V4(219.145.144.65:53498) Get "/" [Header { field: HeaderField("Accept"), value: "text/html, application/xhtml+xml, */*" }, Header { field: HeaderField("Content-Type"), value: "text/html" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" }, Header { field: HeaderField("Host"), value: "example.com" }, Header { field: HeaderField("Connection"), value: "Keep-Alive" }]
[2019-07-12T05:02:44.676264286+02:00] from=V4(219.145.144.65:53498) Get "/wp-login.php" [Header { field: HeaderField("Accept"), value: "text/html, application/xhtml+xml, */*" }, Header { field: HeaderField("Content-Type"), value: "text/html" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" }, Header { field: HeaderField("Host"), value: "example.com" }]
[2019-07-12T05:02:44.903423174+02:00] from=V4(219.145.144.65:53498) Get "/blog/wp-login.php" [Header { field: HeaderField("Accept"), value: "text/html, application/xhtml+xml, */*" }, Header { field: HeaderField("Content-Type"), value: "text/html" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" }, Header { field: HeaderField("Host"), value: "example.com" }]
[2019-07-12T05:02:45.334017416+02:00] from=V4(219.145.144.65:53498) Get "/blogswp-login.php" [Header { field: HeaderField("Accept"), value: "text/html, application/xhtml+xml, */*" }, Header { field: HeaderField("Content-Type"), value: "text/html" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" }, Header { field: HeaderField("Host"), value: "example.com" }]
[2019-07-12T05:02:45.597827835+02:00] from=V4(219.145.144.65:53498) Get "/home/wp-login.php" [Header { field: HeaderField("Accept"), value: "text/html, application/xhtml+xml, */*" }, Header { field: HeaderField("Content-Type"), value: "text/html" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" }, Header { field: HeaderField("Host"), value: "example.com" }]
[2019-07-12T05:02:45.778563147+02:00] from=V4(219.145.144.65:53498) Get "/wordpress/wp-login.php" [Header { field: HeaderField("Accept"), value: "text/html, application/xhtml+xml, */*" }, Header { field: HeaderField("Content-Type"), value: "text/html" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" }, Header { field: HeaderField("Host"), value: "example.com" }]
[2019-07-12T05:02:46.058985387+02:00] from=V4(219.145.144.65:53498) Get "/press/wp-login.php" [Header { field: HeaderField("Accept"), value: "text/html, application/xhtml+xml, */*" }, Header { field: HeaderField("Content-Type"), value: "text/html" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" }, Header { field: HeaderField("Host"), value: "example.com" }]
[2019-07-12T05:02:46.251087832+02:00] from=V4(219.145.144.65:53498) Get "/wp/wp-login.php" [Header { field: HeaderField("Accept"), value: "text/html, application/xhtml+xml, */*" }, Header { field: HeaderField("Content-Type"), value: "text/html" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" }, Header { field: HeaderField("Host"), value: "example.com" }]
[2019-07-12T05:02:46.432615854+02:00] from=V4(219.145.144.65:53498) Get "/web/wp-login.php" [Header { field: HeaderField("Accept"), value: "text/html, application/xhtml+xml, */*" }, Header { field: HeaderField("Content-Type"), value: "text/html" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" }, Header { field: HeaderField("Host"), value: "example.com" }]
[2019-07-12T05:02:46.611191296+02:00] from=V4(219.145.144.65:53498) Get "/new/wp-login.php" [Header { field: HeaderField("Accept"), value: "text/html, application/xhtml+xml, */*" }, Header { field: HeaderField("Content-Type"), value: "text/html" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" }, Header { field: HeaderField("Host"), value: "example.com" }]
[2019-07-12T05:02:46.894915036+02:00] from=V4(219.145.144.65:53498) Get "/news/wp-login.php" [Header { field: HeaderField("Accept"), value: "text/html, application/xhtml+xml, */*" }, Header { field: HeaderField("Content-Type"), value: "text/html" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" }, Header { field: HeaderField("Host"), value: "example.com" }]
[2019-07-12T05:02:47.087373428+02:00] from=V4(219.145.144.65:53498) Get "/site/wp-login.php" [Header { field: HeaderField("Accept"), value: "text/html, application/xhtml+xml, */*" }, Header { field: HeaderField("Content-Type"), value: "text/html" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" }, Header { field: HeaderField("Host"), value: "example.com" }]
[2019-07-12T05:02:47.282935462+02:00] from=V4(219.145.144.65:53498) Get "/sites/wp-login.php" [Header { field: HeaderField("Accept"), value: "text/html, application/xhtml+xml, */*" }, Header { field: HeaderField("Content-Type"), value: "text/html" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" }, Header { field: HeaderField("Host"), value: "example.com" }]
[2019-07-12T05:02:47.463395078+02:00] from=V4(219.145.144.65:53498) Get "/sitio/wp-login.php" [Header { field: HeaderField("Accept"), value: "text/html, application/xhtml+xml, */*" }, Header { field: HeaderField("Content-Type"), value: "text/html" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" }, Header { field: HeaderField("Host"), value: "example.com" }]
[2019-07-12T05:02:47.694844978+02:00] from=V4(219.145.144.65:53498) Get "/en/wp-login.php" [Header { field: HeaderField("Accept"), value: "text/html, application/xhtml+xml, */*" }, Header { field: HeaderField("Content-Type"), value: "text/html" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" }, Header { field: HeaderField("Host"), value: "example.com" }]
[2019-07-12T05:02:47.887961651+02:00] from=V4(219.145.144.65:53498) Get "/old/wp-login.php" [Header { field: HeaderField("Accept"), value: "text/html, application/xhtml+xml, */*" }, Header { field: HeaderField("Content-Type"), value: "text/html" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" }, Header { field: HeaderField("Host"), value: "example.com" }]
[2019-07-12T05:02:48.066453165+02:00] from=V4(219.145.144.65:53498) Get "/info/wp-login.php" [Header { field: HeaderField("Accept"), value: "text/html, application/xhtml+xml, */*" }, Header { field: HeaderField("Content-Type"), value: "text/html" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" }, Header { field: HeaderField("Host"), value: "example.com" }]
[2019-07-12T05:02:48.247200049+02:00] from=V4(219.145.144.65:53498) Get "/demo/wp-login.php" [Header { field: HeaderField("Accept"), value: "text/html, application/xhtml+xml, */*" }, Header { field: HeaderField("Content-Type"), value: "text/html" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" }, Header { field: HeaderField("Host"), value: "example.com" }]
[2019-07-12T05:02:48.677774532+02:00] from=V4(219.145.144.65:53498) Get "/portal/wp-login.php" [Header { field: HeaderField("Accept"), value: "text/html, application/xhtml+xml, */*" }, Header { field: HeaderField("Content-Type"), value: "text/html" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" }, Header { field: HeaderField("Host"), value: "example.com" }]
[2019-07-12T05:38:33.277857862+02:00] from=V4(203.205.34.220:51879) Get "/" [Header { field: HeaderField("Host"), value: "192.168.0.42:80" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36" }, Header { field: HeaderField("Content-Length"), value: "0" }]
[2019-07-12T06:34:36.132004697+02:00] from=V4(202.108.1.233:2652) Get "/TP/public/index.php" [Header { field: HeaderField("Host"), value: "192.168.0.42" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" }, Header { field: HeaderField("Connection"), value: "close" }, Header { field: HeaderField("Accept-Encoding"), value: "gzip" }]
[2019-07-12T06:34:37.788651432+02:00] from=V4(202.108.1.233:9816) Get "/TP/public/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1][]=1" [Header { field: HeaderField("Host"), value: "192.168.0.42" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" }, Header { field: HeaderField("Connection"), value: "close" }, Header { field: HeaderField("Accept-Encoding"), value: "gzip" }]
[2019-07-12T06:34:38.451357797+02:00] from=V4(202.108.1.233:25984) Post "/TP/public/index.php?s=captcha" [Header { field: HeaderField("Host"), value: "192.168.0.42" }, Header { field: HeaderField("User-Agent"), value: "Go-http-client/1.1" }, Header { field: HeaderField("Content-Length"), value: "84" }, Header { field: HeaderField("Connection"), value: "close" }, Header { field: HeaderField("Content-Type"), value: "application/x-www-form-urlencoded" }, Header { field: HeaderField("Accept-Encoding"), value: "gzip" }]
[2019-07-12T06:34:39.110768293+02:00] from=V4(202.108.1.233:32341) Get "/" [Header { field: HeaderField("Host"), value: "192.168.0.42:80" }, Header { field: HeaderField("User-Agent"), value: "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" }, Header { field: HeaderField("Connection"), value: "close" }, Header { field: HeaderField("Accept-Encoding"), value: "gzip" }]

Name		Name
Latest commit History 3 Commits
src		src
Cargo.toml		Cargo.toml
README.md	README.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

Desir

Logs

About

Uh oh!

Releases

Packages

Uh oh!

Languages

stricaud/desir

Folders and files

Latest commit

History

Repository files navigation

Desir

Logs

About

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Languages

Packages