Join us

FAUN.dev() is where engineers from GitHub, Netflix, and Shopify go to stay ahead — fast.

An effortless, straightforward way to keep up with technologies...so you can keep your tabs closed and your mind open!
70,000+ developers already joined our ecosystem ⭐⭐⭐⭐⭐
Trusted by engineers at:
Google Microsoft AWS Netflix

I Left Port 22 Open on the Internet for 54 Days. Here's Who Showed Up.

@devopslinks ・ May 11,2026

I Left Port 22 Open on the Internet for 54 Days. Here's Who Showed Up.

A 54-day SSH honeypot on port 22 logged 268,000+ login attempts from 7,556 IPs, with 99.6% of attackers running a single automated fingerprinting command and only 28 ever opening an interactive shell. The data shows hardcoded IoT credentials and Solana validator hunting dominating the password lists, a single Belgian residential IP firing 156,000 attempts on its own, and a small professional tier using /dev/tcp/ socket tricks with rotating C2 infrastructure to drop UPX-packed ELF binaries.

Give a Pawfive to this post!

Only registered users can post comments. Please, login or signup.

Share with your friends and followers

Start writing about what excites you in tech — connect with developers, grow your voice, and get rewarded.

Join other developers and claim your FAUN.dev() account now!

Publish your first story!

FAUN.dev() is where engineers from GitHub, Netflix, and Shopify go to stay ahead — fast.

An effortless, straightforward way to keep up with technologies...so you can keep your tabs closed and your mind open!
70,000+ developers already joined our ecosystem ⭐⭐⭐⭐⭐
Trusted by engineers at:
Google Microsoft AWS Netflix
Avatar

Dolly #DevOps

FAUN.dev()

@devopslinks
Meet Dolly - your friendly companion! Dolly the Cow wrangles the best DevOps reads so you don't have to.
Developer Influence
12

Influence

1

Total Hits

179

Posts

Join and showcase your work and skills