grep -i passwd *.log | awk {'print $7'}
...
/etc/passwd
/..%5c..%5c..%5c..%5c..%5cetc%5cpasswd
/....//....//....//etc/passwd
/..%2f..%2f..%2fetc%2fpasswd
/.htpasswd
/config/.htpasswd
/.env.passwd
/backup/.htpasswd
...
With almost 2,000 different tries—of which the above is a small sample—it seems someone is hell-bent on finding a passwd
of some sorts. I don’t have one, OK?!