Security Knowledge Base
A reference of the files and endpoints that vulnerability scanners and bots probe for across the internet - what each one is, what an attacker could do if it were real and exposed, and how to defend it. 333 entries across 11 categories.
26
Credentials & Secrets
Private keys, credential files, and secret stores that scanners hunt for to harvest passwords and API keys.
27
Config & Environment Files
Application and environment configuration files that often leak connection strings and secrets.
21
Version Control & Source
Exposed source-control and dependency files that can reconstruct code and reveal internals.
30
Authentication & Identity
Login portals, SSO, and identity endpoints targeted for account takeover.
43
CMS & Web Frameworks
Probe paths for WordPress, Drupal, Laravel, Symfony, and other CMS and frameworks.
21
Databases & Data Stores
Database admin tools, SQL dumps, and data-store endpoints probed for exfiltration.
20
Cloud & Serverless
Cloud metadata, serverless, and platform APIs abused for credential theft and SSRF.
22
Containers & Orchestration
Docker, Kubernetes, and orchestration endpoints that can expose clusters and secrets.
62
APIs, AI & Dev Tooling
REST, GraphQL, AI/LLM, and developer-tooling APIs commonly enumerated by bots.
15
Network Appliances & Devices
Routers, firewalls, and appliance admin interfaces hit by IoT botnets and exploit kits.
46
Recon & Fingerprinting
Benign-looking files and probes scanners use to fingerprint your stack.
If you reached a page here from a vulnerability scan, hi - these are decoy pages. This server is well-secured; the entries are just an honest explanation of what gets probed and how to defend against it.