Unauthorized access and ip ban


I’m recently always getting locked when my home external IP is adding to ip_ban.yaml due a lot of failed/unauthorized access.
My hassio is pretty big with a lot of integration and component, trying to remove more and more stuff that could cause this, but, my question is:
How can I find what exactly was requested for this unauthorized access?
Which page/entity/whatever?