RDP Snitch

2026-03-28 RDP #Honeypot IOCs - 255 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
143.198.111.35 - 165
38.76.31.20 - 36
80.94.95.221 - 16

Top ASNs:
AS14061 - 170
AS174 - 36
AS204428 - 21

Top Accounts:
hello - 202
Administr - 29
Test - 4

Top ISPs:
DigitalOcean, LLC - 170
Cogent Communications - 36
SS-Net - 21

Top Clients:
Unknown - 255

Top Software:
Unknown - 255

Top Keyboards:
Unknown - 255

Top IP Classification:
hosting & proxy - 170
Unknown - 72
hosting - 13

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

12:15amWeb