geolite2_country/dataplane_sshclient.json

{
	"name": "dataplane_sshclient",
	"entries": 23463,
	"entries_min": 22536,
	"entries_max": 26600,
	"ips": 23463,
	"ips_min": 22536,
	"ips_max": 26600,
	"ipv": "ipv4",
	"hash": "ip",
	"frequency": 60,
	"aggregation": 0,
	"started": 1474185712000,
	"updated": 1633006946000,
	"processed": 1633007074000,
	"checked": 1633006946000,
	"clock_skew": 0,
	"category": "attacks",
	"maintainer": "DataPlane.org",
	"maintainer_url": "https://dataplane.org/",
	"info": "<a href=\"https://dataplane.org/\">DataPlane.org</a>  IP addresses that has been seen initiating an SSH connection to a remote host. This report lists hosts that are suspicious of more than just port scanning.  These hosts may be SSH server cataloging or conducting authentication attack attempts. ",
	"source": "",
	"file": "dataplane_sshclient.ipset",
	"history": "dataplane_sshclient_history.csv",
	"geolite2": "dataplane_sshclient_geolite2_country.json",
	"ipdeny": "dataplane_sshclient_ipdeny_country.json",
	"ip2location": "dataplane_sshclient_ip2location_country.json",
	"ipip": "dataplane_sshclient_ipip_country.json",
	"comparison": "dataplane_sshclient_comparison.json",
	"file_local": "",
	"commit_history": "",
	"license": "unknown",
	"grade": "unknown",
	"protection": "unknown",
	"intended_use": "unknown",
	"false_positives": "unknown",
	"poisoning": "unknown",
	"services": [ "unknown" ],
	"errors": 0,
	"version": 17240,
	"average_update": 61,
	"min_update": 59,
	"max_update": 181,
	"downloader": "geturl"
}