Caught a .git/config crawler
Summary
Bruce Ediger analyzes a massive wave of HTTP requests from 195.178.110.0/24 targeting .git/config and other config files on a low-cost VPS. The post categorizes attacker behavior, notes a June 2026 spike, and discusses implications for logging and defense, including mis-parsing of HTML and front-page scraping.