Date: August 5, 2025
Author: Kieron JH
First came ONYPHE – a French cyber intelligence scanner that made a quiet appearance in our logs. Someone, somewhere, decided to bring in a passive OSINT service to peer at our site’s perimeter.
Hoping for what, exactly? Misconfigured headers? An old plugin? A soft spot in our security? Instead, they met hardened Cloudflare rules, managed challenges, and precise fingerprint detection. Their only success: collecting a timestamp and leaving behind a faint whiff of desperation.
We logged it. We flagged it. And yes – we noticed.
Then Came the Fingerprint
Shortly after, another repeat visitor tried their luck. This one was human – real browser, full JS execution, cookies enabled, and a mobile resolution. Over the course of less than 24 hours, we observed 42 consecutive page views from a single fingerprint.
All signs pointed to targeted curiosity. They navigated carefully, kept visibility active, and avoided detection (or at least they thought).
Thanks to passive fingerprinting and Cloudflare’s firewall logs, we cross-referenced that session to IP address 159.242.XXX.XXX(ASN 198605 – Avast). Every behavioural trait aligned. We now have attribution, continuity, and full session metadata preserved.
Still Fortified. Still Fabulous.
We do not retaliate. We observe. We document. We prepare.
A trap page for ONYPHE? Completed it mate.
A session entropy tracker? Live.
Confidence? Fully intact.
If you’re coming to probe, scan, or snoop – just know that we log it all. Not with paranoia – with precision.
Kieron JH
Owner & Operator of The Reasonable Adjustment
This article is GDPR-compliant under Article 6(1)(f) – legitimate interests in site security.
Be First to Comment