We often run Web Access Firewalls on our sites and we noticed a common threat is from Karthi The Hacker. On their website they claim to be an “Ethical” hacker. From our education the term “hack” is actually “attack”, and this is how we view these attempts. We found their IP address to be “89.39.105.112” and put them in our block list.

We don’t know the extent to which this “ethical hacker” is trying to penetrate our website, but we don’t care for it. Check your website firewall and see if the attacker is trying to penetrate your site. If you don’t run a Web Access Firewall contact us and we can help choose one and get it installed properly.

We contacted Karthi to see why we saw these results in our firewall. He is what the response was:

I haven’t tested your site yet. The images that you attached in this email appear to be the payload of my open source tool, which I published for penetration testing and bug bounty purposes. It’s possible that someone from somewhere in the world may have used this tool for their own testing.

Tool link : https://www.npmjs.com/package/redirecthunter 

Let us know if this helps you.