Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #######################################################################################################################################
- =======================================================================================================================================
- Hostname fashir.edu.sd ISP SUDREN
- Continent Africa Flag
- SD
- Country Sudan Country Code SD
- Region Khartoum Local time 16 Feb 2019 16:33 CAT
- City Khartoum Postal Code Unknown
- IP Address 41.67.16.100 Latitude 15.588
- Longitude 32.534
- =======================================================================================================================================
- #######################################################################################################################################
- > fashir.edu.sd
- Server: 38.132.106.139
- Address: 38.132.106.139#53
- Non-authoritative answer:
- Name: fashir.edu.sd
- Address: 41.67.16.100
- >
- #######################################################################################################################################
- HostIP:41.67.16.100
- HostName:fashir.edu.sd
- Gathered Inet-whois information for 41.67.16.100
- ---------------------------------------------------------------------------------------------------------------------------------------
- inetnum: 38.0.0.0 - 43.225.111.255
- netname: NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK
- descr: IPv4 address block not managed by the RIPE NCC
- remarks: ------------------------------------------------------
- remarks:
- remarks: For registration information,
- remarks: you can consult the following sources:
- remarks:
- remarks: IANA
- remarks: http://www.iana.org/assignments/ipv4-address-space
- remarks: http://www.iana.org/assignments/iana-ipv4-special-registry
- remarks: http://www.iana.org/assignments/ipv4-recovered-address-space
- remarks:
- remarks: AFRINIC (Africa)
- remarks: http://www.afrinic.net/ whois.afrinic.net
- remarks:
- remarks: APNIC (Asia Pacific)
- remarks: http://www.apnic.net/ whois.apnic.net
- remarks:
- remarks: ARIN (Northern America)
- remarks: http://www.arin.net/ whois.arin.net
- remarks:
- remarks: LACNIC (Latin America and the Carribean)
- remarks: http://www.lacnic.net/ whois.lacnic.net
- remarks:
- remarks: ------------------------------------------------------
- country: EU # Country is really world wide
- admin-c: IANA1-RIPE
- tech-c: IANA1-RIPE
- status: ALLOCATED UNSPECIFIED
- mnt-by: RIPE-NCC-HM-MNT
- created: 2019-01-07T10:45:04Z
- last-modified: 2019-01-07T10:45:04Z
- source: RIPE
- role: Internet Assigned Numbers Authority
- address: see http://www.iana.org.
- admin-c: IANA1-RIPE
- tech-c: IANA1-RIPE
- nic-hdl: IANA1-RIPE
- remarks: For more information on IANA services
- remarks: go to IANA web site at http://www.iana.org.
- mnt-by: RIPE-NCC-MNT
- created: 1970-01-01T00:00:00Z
- last-modified: 2001-09-22T09:31:27Z
- source: RIPE # Filtered
- % Information related to '41.67.0.0/18AS37179'
- route: 41.67.0.0/18
- descr: SUIN Network IP range
- origin: AS37179
- mnt-by: TA56580-MNT
- created: 2010-12-19T19:48:25Z
- last-modified: 2018-09-04T16:25:57Z
- source: RIPE-NONAUTH
- % Information related to '41.67.0.0/18AS37197'
- route: 41.67.0.0/18
- descr: SUIN Network IP range
- origin: AS37197
- mnt-by: TA56580-MNT
- created: 2010-12-20T07:02:58Z
- last-modified: 2018-09-04T16:25:57Z
- source: RIPE-NONAUTH
- % This query was served by the RIPE Database Query Service version 1.92.6 (ANGUS)
- Gathered Inic-whois information for fashir.edu.sd
- ---------------------------------------------------------------------------------------------------------------------------------------
- Error: Unable to connect - Invalid Host
- ERROR: Connection to InicWhois Server sd.whois-servers.net failed
- close error
- Gathered Netcraft information for fashir.edu.sd
- ---------------------------------------------------------------------------------------------------------------------------------------
- Retrieving Netcraft.com information for fashir.edu.sd
- Netcraft.com Information gathered
- Gathered Subdomain information for fashir.edu.sd
- ---------------------------------------------------------------------------------------------------------------------------------------
- Searching Google.com:80...
- HostName:www.fashir.edu.sd
- HostIP:41.67.16.100
- HostName:mail.fashir.edu.sd
- HostIP:41.67.16.100
- Searching Altavista.com:80...
- Found 2 possible subdomain(s) for host fashir.edu.sd, Searched 0 pages containing 0 results
- Gathered E-Mail information for fashir.edu.sd
- ---------------------------------------------------------------------------------------------------------------------------------------
- Searching Google.com:80...
- Searching Altavista.com:80...
- Found 0 E-Mail(s) for host fashir.edu.sd, Searched 0 pages containing 0 results
- Gathered TCP Port information for 41.67.16.100
- ---------------------------------------------------------------------------------------------------------------------------------------
- Port State
- 21/tcp open
- 22/tcp open
- 53/tcp open
- 80/tcp open
- 110/tcp open
- 143/tcp open
- Portscan Finished: Scanned 150 ports, 143 ports were in state closed
- #######################################################################################################################################
- [i] Scanning Site: http://fashir.edu.sd
- B A S I C I N F O
- =======================================================================================================================================
- [+] Site Title: جامعة الفاشر
- [+] IP address: 41.67.16.100
- [+] Web Server: Could Not Detect
- [+] CMS: Could Not Detect
- [+] Cloudflare: Not Detected
- [+] Robots File: Could NOT Find robots.txt!
- G E O I P L O O K U P
- =======================================================================================================================================
- [i] IP Address: 41.67.16.100
- [i] Country: Sudan
- [i] State: Khartoum
- [i] City: Khartoum
- [i] Latitude: 15.5881
- [i] Longitude: 32.5342
- H T T P H E A D E R S
- =======================================================================================================================================
- [i] HTTP/1.1 200 OK
- [i] Date: Sat, 16 Feb 2019 14:38:41 GMT
- [i] Last-Modified: Thu, 14 Feb 2019 09:32:48 GMT
- [i] ETag: "1ef-581d7576fbf0c"
- [i] Accept-Ranges: bytes
- [i] Content-Length: 495
- [i] Vary: Accept-Encoding
- [i] Content-Type: text/html
- [i] Connection: close
- D N S L O O K U P
- =======================================================================================================================================
- fashir.edu.sd. 3599 IN NS ns2.fashir.edu.sd.
- fashir.edu.sd. 3599 IN NS ns1.fashir.edu.sd.
- fashir.edu.sd. 3599 IN SOA ns1.fashir.edu.sd. motasim.live.com. 2018121902 7200 540 604800 86400
- fashir.edu.sd. 3599 IN A 41.67.16.100
- S U B N E T C A L C U L A T I O N
- =======================================================================================================================================
- Address = 41.67.16.100
- Network = 41.67.16.100 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 41.67.16.100 - 41.67.16.100 }
- N M A P P O R T S C A N
- =======================================================================================================================================
- Starting Nmap 7.40 ( https://nmap.org ) at 2019-02-16 14:38 UTC
- Nmap scan report for fashir.edu.sd (41.67.16.100)
- Host is up (0.17s latency).
- PORT STATE SERVICE
- 21/tcp open ftp
- 22/tcp open ssh
- 23/tcp closed telnet
- 80/tcp open http
- 110/tcp open pop3
- 143/tcp open imap
- 443/tcp open https
- 3389/tcp closed ms-wbt-server
- Nmap done: 1 IP address (1 host up) scanned in 0.23 seconds
- S U B - D O M A I N F I N D E R
- =======================================================================================================================================
- [i] Total Subdomains Found : 2
- [+] Subdomain: mail.fashir.edu.sd
- [-] IP: 41.67.16.100
- [+] Subdomain: www.fashir.edu.sd
- [-] IP: 41.67.16.100
- #######################################################################################################################################
- [?] Enter the target: example( http://domain.com )
- http://fashir.edu.sd/
- [!] IP Address : 41.67.16.100
- [+] Operating System : Ubuntu"
- [!] fashir.edu.sd doesn't seem to use a CMS
- [+] Honeypot Probabilty: 30%
- ---------------------------------------------------------------------------------------------------------------------------------------
- [~] Trying to gather whois information for fashir.edu.sd
- [+] Whois information found
- [-] Unable to build response, visit https://who.is/whois/fashir.edu.sd
- --------------------------------------------------------------------------------------------------------------------------------------
- PORT STATE SERVICE
- 21/tcp open ftp
- 22/tcp open ssh
- 23/tcp closed telnet
- 80/tcp open http
- 110/tcp open pop3
- 143/tcp open imap
- 443/tcp open https
- 3389/tcp closed ms-wbt-server
- Nmap done: 1 IP address (1 host up) scanned in 0.64 seconds
- ---------------------------------------------------------------------------------------------------------------------------------------
- [+] DNS Records
- ns1.fashir.edu.sd. (41.67.16.100) AS37197 SUDREN Sudan
- ns2.fashir.edu.sd. (41.67.16.100) AS37197 SUDREN Sudan
- [+] MX Records
- 10 (41.67.16.100) AS37197 SUDREN Sudan
- [+] Host Records (A)
- ns2.fashir.edu.sd (41.67.16.100) AS37197 SUDREN Sudan
- mail.fashir.edu.sd (41.67.16.100) AS37197 SUDREN Sudan
- www.fashir.edu.sd (41.67.16.100) AS37197 SUDREN Sudan
- [+] TXT Records
- "v=spf1 mx a ~all"
- [+] DNS Map: https://dnsdumpster.com/static/map/fashir.edu.sd.png
- [>] Initiating 3 intel modules
- [>] Loading Alpha module (1/3)
- [>] Beta module deployed (2/3)
- [>] Gamma module initiated (3/3)
- [+] Emails found:
- ---------------------------------------------------------------------------------------------------------------------------------------
- academy@fashir.edu.sd
- admin@fashir.edu.sd
- mahgoubturath@fashir.edu.sd
- pixel-1550327929497162-web-@fashir.edu.sd
- pixel-1550327930511686-web-@fashir.edu.sd
- [+] Hosts found in search engines:
- ---------------------------------------------------------------------------------------------------------------------------------------
- [-] Resolving hostnames IPs...
- 41.67.16.100:ns1.fashir.edu.sd
- 41.67.16.100:ns2.fashir.edu.sd
- 41.67.16.100:www.fashir.edu.sd
- [+] Virtual hosts:
- ---------------------------------------------------------------------------------------------------------------------------------------
- #######################################################################################################################################
- Enter Address Website = fashir.edu.sd
- Reversing IP With HackTarget 'fashir.edu.sd'
- ---------------------------------------------------------------------------------------------------------------------------------------
- [+] fashir.edu.sd
- [+] karary.edu.sd
- [+] mail.fashir.edu.sd
- [+] mail.karary.edu.sd
- [+] newpanel.sudren.edu.sd
- [+] ns2.fashir.edu.sd
- [+] uek.edu.sd
- [+] www.fashir.edu.sd
- [+] www.karary.edu.sd
- [+] www.uek.edu.sd
- #######################################################################################################################################
- Reverse IP With YouGetSignal 'fashir.edu.sd'
- ---------------------------------------------------------------------------------------------------------------------------------------
- [*] IP: 41.67.16.100
- [*] Domain: fashir.edu.sd
- [*] Total Domains: 4
- [+] fashir.edu.sd
- [+] karary.edu.sd
- [+] www.karary.edu.sd
- [+] www.uek.edu.sd
- #######################################################################################################################################
- Geo IP Lookup 'fashir.edu.sd'
- ---------------------------------------------------------------------------------------------------------------------------------------
- [+] IP Address: 41.67.16.100
- [+] Country: Sudan
- [+] State: Khartoum
- [+] City: Khartoum
- [+] Latitude: 15.5881
- [+] Longitude: 32.5342
- #######################################################################################################################################
- DNS Lookup 'fashir.edu.sd'
- ---------------------------------------------------------------------------------------------------------------------------------------
- [+] fashir.edu.sd. 3599 IN NS ns1.fashir.edu.sd.
- [+] fashir.edu.sd. 3599 IN NS ns2.fashir.edu.sd.
- [+] fashir.edu.sd. 3599 IN SOA ns1.fashir.edu.sd. motasim.live.com. 2018121902 7200 540 604800 86400
- [+] fashir.edu.sd. 3599 IN A 41.67.16.100
- #######################################################################################################################################
- Show HTTP Header 'fashir.edu.sd'
- ---------------------------------------------------------------------------------------------------------------------------------------
- [+] HTTP/1.1 200 OK
- [+] Date: Sat, 16 Feb 2019 14:38:34 GMT
- [+] Server: Apache/2.4.18 (Ubuntu)
- [+] Last-Modified: Thu, 14 Feb 2019 09:32:48 GMT
- [+] ETag: 1ef-581d7576fbf0c
- [+] Accept-Ranges: bytes
- [+] Content-Length: 495
- [+] Vary: Accept-Encoding
- [+] Content-Type: text/html
- #######################################################################################################################################
- Port Scan 'fashir.edu.sd'
- ---------------------------------------------------------------------------------------------------------------------------------------
- Starting Nmap 7.40 ( https://nmap.org ) at 2019-02-16 14:38 UTC
- Nmap scan report for fashir.edu.sd (41.67.16.100)
- Host is up (0.17s latency).
- PORT STATE SERVICE
- 21/tcp open ftp
- 22/tcp open ssh
- 23/tcp closed telnet
- 80/tcp open http
- 110/tcp open pop3
- 143/tcp open imap
- 443/tcp open https
- 3389/tcp closed ms-wbt-server
- Nmap done: 1 IP address (1 host up) scanned in 3.11 seconds
- #######################################################################################################################################
- Traceroute 'fashir.edu.sd'
- ---------------------------------------------------------------------------------------------------------------------------------------
- Start: 2019-02-16T14:38:43+0000
- HOST: web01 Loss% Snt Last Avg Best Wrst StDev
- 1.|-- 45.79.12.202 0.0% 3 0.7 0.8 0.7 0.8 0.0
- 2.|-- 45.79.12.2 0.0% 3 0.6 0.7 0.5 1.1 0.3
- 3.|-- hu0-7-0-7.ccr41.dfw03.atlas.cogentco.com 0.0% 3 1.7 1.6 1.5 1.7 0.1
- 4.|-- be2764.ccr32.dfw01.atlas.cogentco.com 0.0% 3 1.7 1.9 1.7 2.4 0.4
- 5.|-- be2443.ccr42.iah01.atlas.cogentco.com 0.0% 3 7.0 7.0 7.0 7.0 0.0
- 6.|-- be2690.ccr42.atl01.atlas.cogentco.com 0.0% 3 21.2 21.2 21.0 21.5 0.3
- 7.|-- be2113.ccr42.dca01.atlas.cogentco.com 0.0% 3 32.1 32.0 31.9 32.1 0.1
- 8.|-- be2807.ccr42.jfk02.atlas.cogentco.com 0.0% 3 38.3 38.4 38.3 38.6 0.2
- 9.|-- be3628.ccr42.par01.atlas.cogentco.com 0.0% 3 111.0 111.0 110.9 111.1 0.1
- 10.|-- be3093.ccr22.mrs01.atlas.cogentco.com 0.0% 3 121.6 121.9 121.6 122.2 0.3
- 11.|-- stc.demarc.cogentco.com 0.0% 3 169.1 169.1 169.1 169.1 0.0
- 12.|-- 10.188.199.119 0.0% 3 169.3 169.6 169.3 169.9 0.3
- 13.|-- 84-235-111-161.igw.com.sa 0.0% 3 179.5 178.9 178.5 179.5 0.5
- 14.|-- 212.0.131.9 0.0% 3 216.0 217.1 216.0 218.7 1.4
- 15.|-- 196.1.197.233 0.0% 3 216.2 216.2 214.6 217.7 1.5
- 16.|-- 196.1.197.234 0.0% 3 214.5 214.0 213.5 214.5 0.5
- 17.|-- 41.67.16.100 0.0% 3 205.4 207.0 205.4 209.4 2.1
- #######################################################################################################################################
- Ping 'fashir.edu.sd'
- ---------------------------------------------------------------------------------------------------------------------------------------
- Starting Nping 0.7.70 ( https://nmap.org/nping ) at 2019-02-16 14:39 UTC
- SENT (0.4683s) ICMP [104.237.144.6 > 41.67.16.100 Echo request (type=8/code=0) id=7264 seq=1] IP [ttl=64 id=21208 iplen=28 ]
- RCVD (0.6694s) ICMP [41.67.16.100 > 104.237.144.6 Echo reply (type=0/code=0) id=7264 seq=1] IP [ttl=50 id=21326 iplen=28 ]
- SENT (1.4686s) ICMP [104.237.144.6 > 41.67.16.100 Echo request (type=8/code=0) id=7264 seq=2] IP [ttl=64 id=21208 iplen=28 ]
- RCVD (1.6896s) ICMP [41.67.16.100 > 104.237.144.6 Echo reply (type=0/code=0) id=7264 seq=2] IP [ttl=50 id=21329 iplen=28 ]
- SENT (2.4705s) ICMP [104.237.144.6 > 41.67.16.100 Echo request (type=8/code=0) id=7264 seq=3] IP [ttl=64 id=21208 iplen=28 ]
- RCVD (2.7095s) ICMP [41.67.16.100 > 104.237.144.6 Echo reply (type=0/code=0) id=7264 seq=3] IP [ttl=50 id=21402 iplen=28 ]
- SENT (3.4724s) ICMP [104.237.144.6 > 41.67.16.100 Echo request (type=8/code=0) id=7264 seq=4] IP [ttl=64 id=21208 iplen=28 ]
- RCVD (3.7293s) ICMP [41.67.16.100 > 104.237.144.6 Echo reply (type=0/code=0) id=7264 seq=4] IP [ttl=50 id=21513 iplen=28 ]
- Max rtt: 256.858ms | Min rtt: 201.064ms | Avg rtt: 229.339ms
- Raw packets sent: 4 (112B) | Rcvd: 4 (184B) | Lost: 0 (0.00%)
- Nping done: 1 IP address pinged in 3.73 seconds
- #######################################################################################################################################
- Page Admin Finder 'fashir.edu.sd'
- ---------------------------------------------------------------------------------------------------------------------------------------
- Avilable Links :
- Find Page >> http://fashir.edu.sd/admin.php
- #######################################################################################################################################
- ; <<>> DiG 9.11.5-P1-1-Debian <<>> fashir.edu.sd
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 42422
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
- ;; OPT PSEUDOSECTION:
- ; EDNS: version: 0, flags:; udp: 4096
- ;; QUESTION SECTION:
- ;fashir.edu.sd. IN A
- ;; ANSWER SECTION:
- fashir.edu.sd. 2928 IN A 41.67.16.100
- ;; Query time: 97 msec
- ;; SERVER: 38.132.106.139#53(38.132.106.139)
- ;; WHEN: sam fév 16 10:44:12 EST 2019
- ;; MSG SIZE rcvd: 58
- #######################################################################################################################################
- ; <<>> DiG 9.11.5-P1-1-Debian <<>> +trace fashir.edu.sd
- ;; global options: +cmd
- . 85107 IN NS a.root-servers.net.
- . 85107 IN NS c.root-servers.net.
- . 85107 IN NS i.root-servers.net.
- . 85107 IN NS f.root-servers.net.
- . 85107 IN NS m.root-servers.net.
- . 85107 IN NS k.root-servers.net.
- . 85107 IN NS j.root-servers.net.
- . 85107 IN NS h.root-servers.net.
- . 85107 IN NS l.root-servers.net.
- . 85107 IN NS e.root-servers.net.
- . 85107 IN NS b.root-servers.net.
- . 85107 IN NS d.root-servers.net.
- . 85107 IN NS g.root-servers.net.
- . 85107 IN RRSIG NS 8 0 518400 20190301050000 20190216040000 16749 . vfKS7tHy9asqLHJFQ+luvcRrWgxm15ila3+fTLntP36xqq4d8ucNpiGG x5tUj1oiHZNGlHxfk90ZOToIjNKaXx8Cb20zDysdfHTPXAtbvGR5TvhH VChadSu7qgkybbrTd+7FbIQXJdjlieQQrveIXMHnv36dnZz/drdcXoDc Jj1t+v7AtkpdD+iQ5HEq3ogrjPu2QnYaNIh8kwZFb4ZVo1NQuubEBeyw lwAKR9rNpkmOWAdR2STHasYi+hafZZtG7hzSKChhbRq73lPbvu4w4miQ R121OxiSTU79EIqL2DJ5scdTEzvUUVA4NM37ACv+oDEDNaZ5mZvlnIHs 5NgpaA==
- ;; Received 525 bytes from 38.132.106.139#53(38.132.106.139) in 100 ms
- sd. 172800 IN NS ans1.sis.sd.
- sd. 172800 IN NS ns-sd.afrinic.net.
- sd. 172800 IN NS ns2.uaenic.ae.
- sd. 172800 IN NS ans2.canar.sd.
- sd. 172800 IN NS ns1.uaenic.ae.
- sd. 172800 IN NS sd.cctld.authdns.ripe.net.
- sd. 172800 IN NS ans1.canar.sd.
- sd. 86400 IN NSEC se. NS RRSIG NSEC
- sd. 86400 IN RRSIG NSEC 8 1 86400 20190301050000 20190216040000 16749 . HK/Ktmf9QiKKkUXsmYKx5L9JjMsdd7h+blDFizNVJ9g8MeD4tznU4jTt doLipv38RLjREpDUQbR5FwzJH359kFq4pa1gYhEZq+QQFz/0NTwJC5fr 6XQOVtHXx/dR2Qal7iNQhCbw5OX+5mnXbor2zBJ/13QUamzgufx1i92k 2jg7iVBDArla4/NqOS2Y9Pt6ySl1SsDHrCpjKUzVL0O5Di2eNxAYsi6E o9xkc4i8Z3Nlng5YB2qgH+/ceUaulHZVGLbodtRm1+73BibrSrAuRBH8 iO8CO0oReeLEM8cZ65dPi5PlSBWpF1d5SYLCItai/zklnuHmehjUFkAb 65MNKg==
- ;; Received 728 bytes from 2001:500:12::d0d#53(g.root-servers.net) in 74 ms
- fashir.edu.sd. 14400 IN NS ns2.fashir.edu.sd.
- fashir.edu.sd. 14400 IN NS ns1.fashir.edu.sd.
- ;; Received 110 bytes from 196.29.164.14#53(ans2.canar.sd) in 246 ms
- fashir.edu.sd. 3600 IN A 41.67.16.100
- fashir.edu.sd. 3600 IN NS ns2.fashir.edu.sd.
- fashir.edu.sd. 3600 IN NS ns1.fashir.edu.sd.
- ;; Received 126 bytes from 41.67.16.100#53(ns1.fashir.edu.sd) in 268 ms
- #######################################################################################################################################
- [*] Performing General Enumeration of Domain: fashir.edu.sd
- [-] DNSSEC is not configured for fashir.edu.sd
- [*] SOA ns1.fashir.edu.sd 41.67.16.100
- [*] NS ns1.fashir.edu.sd 41.67.16.100
- [*] Bind Version for 41.67.16.100 9.10.3-P4-Ubuntu
- [*] NS ns2.fashir.edu.sd 41.67.16.100
- [*] Bind Version for 41.67.16.100 9.10.3-P4-Ubuntu
- [*] MX mail.fashir.edu.sd 41.67.16.100
- [*] A fashir.edu.sd 41.67.16.100
- [*] TXT fashir.edu.sd v=spf1 mx a ~all
- [*] Enumerating SRV Records
- [-] No SRV Records Found for fashir.edu.sd
- [+] 0 Records Found
- #######################################################################################################################################
- Processing domain fashir.edu.sd
- [*] Using system resolvers ['38.132.106.139', '194.187.251.67', '185.93.180.131', '205.151.67.6', '205.151.67.34', '205.151.67.2', '2001:18c0:ffe0:2::2', '2001:18c0:ffe0:3::2', '2001:18c0:ffe0:1::2']
- [+] Getting nameservers
- 41.67.16.100 - ns1.fashir.edu.sd
- 41.67.16.100 - ns2.fashir.edu.sd
- [-] Zone transfer failed
- [+] TXT records found
- "v=spf1 mx a ~all"
- [+] MX records found, added to target list
- 10 mail.fashir.edu.sd.
- [*] Scanning fashir.edu.sd for A records
- 41.67.16.100 - fashir.edu.sd
- 41.67.16.100 - mail.fashir.edu.sd
- 41.67.16.100 - ns1.fashir.edu.sd
- 41.67.16.100 - ns2.fashir.edu.sd
- 41.67.16.100 - staff.fashir.edu.sd
- 41.67.16.100 - www.fashir.edu.sd
- #######################################################################################################################################
- Ip Address Status Type Domain Name Server
- ---------- ------ ---- ----------- ------
- 41.67.16.100 200 host mail.fashir.edu.sd Apache/2.4.18 (Ubuntu)
- 41.67.16.100 200 host ns1.fashir.edu.sd Apache/2.4.18 (Ubuntu)
- 41.67.16.100 200 host ns2.fashir.edu.sd Apache/2.4.18 (Ubuntu)
- 41.67.16.100 200 host reg.fashir.edu.sd Apache/2.4.18 (Ubuntu)
- 41.67.16.100 200 host staff.fashir.edu.sd Apache/2.4.18 (Ubuntu)
- 41.67.16.100 200 host www.fashir.edu.sd Apache/2.4.18 (Ubuntu)
- #######################################################################################################################################
- =======================================================================================================================================
- | E-mails:
- | [+] E-mail Found: filanca@fesmekan.dom
- | [+] E-mail Found: webmaster@mail.baygroup.org
- | [+] E-mail Found: dev@httpd.apache.org
- | [+] E-mail Found: webmaster@www1.example.com
- | [+] E-mail Found: untel@au.example.com
- | [+] E-mail Found: webgirl@example1.dom
- | [+] E-mail Found: falanca@mesela.dom
- | [+] E-mail Found: nate@tripod.com
- | [+] E-mail Found: klaus.hartl@stilbuero.de
- | [+] E-mail Found: untel@nz.example.com
- | [+] E-mail Found: someone@au.example.com
- | [+] E-mail Found: webmaster@mail.smallco.com
- | [+] E-mail Found: webgirl@abc.dom
- | [+] E-mail Found: alpha@zforms.ru
- | [+] E-mail Found: bilgi@example.org
- | [+] E-mail Found: marc@infomarc.info
- | [+] E-mail Found: crawleradmin.t-info@telekom.de
- | [+] E-mail Found: webgirl@example.dom
- | [+] E-mail Found: 1@example.com
- | [+] E-mail Found: nate@tripod.example.com
- | [+] E-mail Found: apache@example.com
- | [+] E-mail Found: webmaster@www2.example.org
- | [+] E-mail Found: users@httpd.apache.org
- | [+] E-mail Found: raj@cup.hp.com
- | [+] E-mail Found: bilgi@example.com
- | [+] E-mail Found: apache-docs@ml.apache.or.jp
- | [+] E-mail Found: www-admin@foo.example.com
- | [+] E-mail Found: webguy@example2.dom
- | [+] E-mail Found: hirsch@fjhirsch.com
- | [+] E-mail Found: info@fashir.edu.sd
- | [+] E-mail Found: webguy@def.dom
- | [+] E-mail Found: webmaster@host.example.com
- | [+] E-mail Found: webmaster@host.foo.com
- | [+] E-mail Found: rse@engelschall.com
- | [+] E-mail Found: somebody@nz.example.com
- =======================================================================================================================================
- | External hosts:
- | [+] External Host Found: http://dmoz.org
- | [+] External Host Found: http://pear.php.net
- | [+] External Host Found: http://www.perl.com
- | [+] External Host Found: http://www.cronolog.org
- | [+] External Host Found: http://ajax.googleapis.com
- | [+] External Host Found: http://en.wikipedia.org
- | [+] External Host Found: http://nasm.sourceforge.net
- | [+] External Host Found: http://www.acko.net
- | [+] External Host Found: http://www.apache-ssl.org
- | [+] External Host Found: http://dir.yahoo.com
- | [+] External Host Found: http://svn.eu.apache.org
- | [+] External Host Found: http://support.novell.com
- | [+] External Host Found: http://svn.apache.org
- | [+] External Host Found: http://lynx.isc.org
- | [+] External Host Found: http://dev.mysql.com
- | [+] External Host Found: http://software.opensuse.org
- | [+] External Host Found: http://wiki.phpmyadmin.net
- | [+] External Host Found: http://www.imagemagick.org
- | [+] External Host Found: http://www.openssl.org
- | [+] External Host Found: http://www.doxygen.org
- | [+] External Host Found: http://threebit.net
- | [+] External Host Found: http://www.lothar.com
- | [+] External Host Found: http://bugs.mysql.com
- | [+] External Host Found: http://www.thawte.com
- | [+] External Host Found: http://www.libpng.org
- | [+] External Host Found: http://www.opaque.net
- | [+] External Host Found: http://www.cs.princeton.edu
- | [+] External Host Found: http://sources.redhat.com
- | [+] External Host Found: https://hosted.weblate.org
- | [+] External Host Found: http://perl.apache.org
- | [+] External Host Found: http://net-snmp.sourceforge.net
- | [+] External Host Found: http://www.gzip.org
- | [+] External Host Found: http://www.mysql.com
- | [+] External Host Found: http://demo.phpmyadmin.net
- | [+] External Host Found: http://www.hardened-php.net
- | [+] External Host Found: http://www.drizzle.org
- | [+] External Host Found: http://mysql.com
- | [+] External Host Found: http://www.distcache.org
- | [+] External Host Found: https://www.gnupg.org
- | [+] External Host Found: http://www.sleepycat.com
- | [+] External Host Found: http://curl.haxx.se
- | [+] External Host Found: http://perldoc.perl.org
- | [+] External Host Found: http://memcached.org
- | [+] External Host Found: http://www.specbench.org
- | [+] External Host Found: https://cdn.rtlcss.com
- | [+] External Host Found: http://homepages.cwi.nl
- | [+] External Host Found: http://sphinx-doc.org
- | [+] External Host Found: http://www.fpdf.org
- | [+] External Host Found: http://online.securityfocus.com
- | [+] External Host Found: http://www.php.net
- | [+] External Host Found: http://www.apachelounge.com
- | [+] External Host Found: http://fr.wikipedia.org
- | [+] External Host Found: http://www.ora.com
- | [+] External Host Found: http://www.whiterabbitpress.com
- | [+] External Host Found: http://apache.webthing.com
- | [+] External Host Found: http://www.wampserver.com
- | [+] External Host Found: http://bugs.apache.org
- | [+] External Host Found: http://sf.net
- | [+] External Host Found: https://launchpad.net
- | [+] External Host Found: http://www.mozilla.org
- | [+] External Host Found: http://shop.oreilly.com
- | [+] External Host Found: http://www.webdav.org
- | [+] External Host Found: http://cgi-spec.golux.com
- | [+] External Host Found: http://svn.haxx.se
- | [+] External Host Found: https://keybase.io
- | [+] External Host Found: http://purl.org
- | [+] External Host Found: http://host
- | [+] External Host Found: http://pdflib.com
- | [+] External Host Found: http://tomcat.apache.org
- | [+] External Host Found: http://support.microsoft.com
- | [+] External Host Found: http://www.ntp.org
- | [+] External Host Found: http://www.google.com
- | [+] External Host Found: http://www.apple.com
- | [+] External Host Found: http://ftp.ics.uci.edu
- | [+] External Host Found: https://sourceforge.net
- | [+] External Host Found: http://www.apachetutor.org
- | [+] External Host Found: http://www.ozerov.de
- | [+] External Host Found: http://www.ietf.org
- | [+] External Host Found: http://www.kernel.org
- | [+] External Host Found: http://www.freetype.org
- | [+] External Host Found: http://cgiwrap.unixtools.org
- | [+] External Host Found: http://www.tcpdf.org
- | [+] External Host Found: http://developer.novell.com
- | [+] External Host Found: http://www.ics.uci.edu
- | [+] External Host Found: http://www.research.digital.com
- | [+] External Host Found: http://gcc.gnu.org
- | [+] External Host Found: http://www.netperf.org
- | [+] External Host Found: http://hoohoo.ncsa.uiuc.edu
- | [+] External Host Found: http://ci.apache.org
- | [+] External Host Found: http://www.loc.gov
- | [+] External Host Found: https://www.igvita.com
- | [+] External Host Found: http://ietf.org
- | [+] External Host Found: http://dev.apache.org
- | [+] External Host Found: http://xyz.abc.com
- | [+] External Host Found: http://www.verisign.com
- | [+] External Host Found: http://xyz.example.com
- | [+] External Host Found: http://www.imagemagick.com
- | [+] External Host Found: http://msdn.microsoft.com
- | [+] External Host Found: http://web.golux.com
- | [+] External Host Found: http://cve.mitre.org
- | [+] External Host Found: http://www.oracle.com
- | [+] External Host Found: http://www.cpan.org
- | [+] External Host Found: http://www.microsoft.com
- | [+] External Host Found: http://www.rfc-editor.org
- | [+] External Host Found: https://en.wikipedia.org
- | [+] External Host Found: http://www.pcre.org
- | [+] External Host Found: http://aspell.sourceforge.net
- | [+] External Host Found: http://www.eecis.udel.edu
- | [+] External Host Found: http://java.apache.org
- | [+] External Host Found: http://xmlsoft.org
- | [+] External Host Found: http://www.siemens.de
- | [+] External Host Found: http://www.apachehaus.com
- | [+] External Host Found: http://www.itu.int
- | [+] External Host Found: http://expat.sourceforge.net
- | [+] External Host Found: http://python.ca
- | [+] External Host Found: http://www.wassenaar.org
- | [+] External Host Found: https://blogs.oracle.com
- | [+] External Host Found: http://www.perl.org
- | [+] External Host Found: http://www.hpl.hp.com
- | [+] External Host Found: http://pecl.php.net
- | [+] External Host Found: http://www.apache.org
- | [+] External Host Found: http://www.iana.org
- | [+] External Host Found: http://www.example.com
- | [+] External Host Found: http://hpwww.ec-lyon.fr
- | [+] External Host Found: http://www.pdflib.com
- | [+] External Host Found: http://nghttp2.org
- | [+] External Host Found: http://www.redhat.com
- | [+] External Host Found: http://www.wikipedia.org
- | [+] External Host Found: https://github.com
- | [+] External Host Found: http://cm.bell-labs.com
- | [+] External Host Found: http://www.postgresql.org
- | [+] External Host Found: http://www.counterpane.com
- | [+] External Host Found: http://server
- | [+] External Host Found: https://wiki.mozilla.org
- | [+] External Host Found: http://mariadb.org
- | [+] External Host Found: http://www.gingerall.com
- | [+] External Host Found: http://bugzilla.mozilla.org
- | [+] External Host Found: http://www.ijg.org
- | [+] External Host Found: http://wiki.apache.org
- | [+] External Host Found: http://www.lua.org
- | [+] External Host Found: http://fastcgi.coremail.cn
- | [+] External Host Found: http://foo.com
- | [+] External Host Found: http://apr.apache.org
- | [+] External Host Found: http://www.iplanet.com
- | [+] External Host Found: http://pcre.org
- | [+] External Host Found: http://www.hwg.org
- | [+] External Host Found: http://bitnami.com
- | [+] External Host Found: http://home.earthlink.net
- | [+] External Host Found: http://bahumbug.wordpress.com
- | [+] External Host Found: http://sosc-dr.sun.com
- | [+] External Host Found: http://www.w3.org
- | [+] External Host Found: http://people.apache.org
- | [+] External Host Found: http://www.washington.edu
- | [+] External Host Found: http://www.serverwatch.com
- | [+] External Host Found: http://www.fastcgi.com
- | [+] External Host Found: http://www.rsasecurity.com
- | [+] External Host Found: http://httpd.apache.org
- | [+] External Host Found: https://tools.ietf.org
- | [+] External Host Found: http://modules.apache.org
- | [+] External Host Found: https://files.phpmyadmin.net
- | [+] External Host Found: http://www.freetds.org
- | [+] External Host Found: http://cgiwrap.sourceforge.net
- | [+] External Host Found: http://www.cygwin.com
- | [+] External Host Found: http://cr.yp.to
- | [+] External Host Found: http://www.phpmyadmin.net
- | [+] External Host Found: http://www.zlib.net
- | [+] External Host Found: http://www.freebsd.org
- | [+] External Host Found: http://pgp.cs.uu.nl
- | [+] External Host Found: http://www.faqs.org
- | [+] External Host Found: http://events.ccc.de
- | [+] External Host Found: http://www.apachefriends.org
- | [+] External Host Found: http://www.onlamp.com
- | [+] External Host Found: http://www.iso.ch
- | [+] External Host Found: http://subversion.apache.org
- | [+] External Host Found: http://apachetoday.com
- | [+] External Host Found: http://www.squid-cache.org
- | [+] External Host Found: http://www.netscape.com
- | [+] External Host Found: http://www.openldap.org
- | [+] External Host Found: http://tools.ietf.org
- | [+] External Host Found: http://example.com
- | [+] External Host Found: https://www.phpmyadmin.net
- | [+] External Host Found: http://php.net
- | [+] External Host Found: http://appserver.example.com
- | [+] External Host Found: http://www.cup.hp.com
- | [+] External Host Found: http://modsecurity.org
- | [+] External Host Found: http://www.gnu.org
- | [+] External Host Found: http://www.boutell.com
- | [+] External Host Found: http://bugs.php.net
- | [+] External Host Found: http://fedoraproject.org
- | [+] External Host Found: http://www.enlightenment.org
- =======================================================================================================================================
- #######################################################################################################################################
- dnsenum VERSION:1.2.4
- ----- fashir.edu.sd -----
- Host's addresses:
- __________________
- fashir.edu.sd. 2045 IN A 41.67.16.100
- Name Servers:
- ______________
- ns2.fashir.edu.sd. 85171 IN A 41.67.16.100
- ns1.fashir.edu.sd. 85167 IN A 41.67.16.100
- Mail (MX) Servers:
- ___________________
- mail.fashir.edu.sd. 2366 IN A 41.67.16.100
- Trying Zone Transfers and getting Bind Versions:
- _________________________________________________
- Trying Zone Transfer for fashir.edu.sd on ns2.fashir.edu.sd ...
- Trying Zone Transfer for fashir.edu.sd on ns1.fashir.edu.sd ...
- brute force file not specified, bay.
- #######################################################################################################################################
- ---------------------------------------------------------------------------------------------------------------------------------------
- [1/25] /webhp?hl=en-CA
- [x] Error downloading /webhp?hl=en-CA
- [2/25] http://fashir.edu.sd/Journal/Applied_4.pdf
- [3/25] http://fashir.edu.sd/Journal/Human_4.pdf
- [x] Error in PDF metadata Creator
- [4/25] http://fashir.edu.sd/Journal/Applied_6.pdf
- [5/25] http://fashir.edu.sd/Journal/Applied_2.pdf
- [6/25] http://fashir.edu.sd/Journal/Applied_10.pdf
- [7/25] http://fashir.edu.sd/Journal/Applied_9.pdf
- [8/25] http://fashir.edu.sd/Journal/Applied_1.pdf
- [9/25] http://fashir.edu.sd/Journal/Applied_8.pdf
- [10/25] http://fashir.edu.sd/Journal/Applied_12.pdf
- [11/25] http://fashir.edu.sd/Journal/Human_2.pdf
- [+] List of users found:
- ---------------------------------------------------------------------------------------------------------------------------------------
- adil
- adelmoh1
- ALFAFA@MOHAMED
- adelmoh1@ADIL-PC
- adil@ADIL-
- [+] List of software found:
- ---------------------------------------------------------------------------------------------------------------------------------------
- 3-Heights(TM) PDF Security Shell 4.8.25.2 (http://www.pdf-tools.com) / pdcat (www.pdf-tools.com)
- PDFCreator Version 0.9.9
- iLovePDF.desktop
- GPL Ghostscript 8.70
- Jaws PDF Creator v4.10.2871
- PScript5.dll Version 5.2
- PScript5.dll Version 5.2.2
- [+] List of paths and servers found:
- ---------------------------------------------------------------------------------------------------------------------------------------
- [+] List of e-mails found:
- ---------------------------------------------------------------------------------------------------------------------------------------
- hassenabdallaabdalrahim@hotmail.com
- Adamhassan43@gmail.com
- anas.gafaar@yahoo.com1
- Adamhassan43@gmail.com
- 1@A
- samiarabi@ymail.com
- d.ibrahim2000@gmail.
- H@I
- Emails_abdelhag@yahoo.com
- atifa.issa@yahoo.com
- Pmho@phys.ntu.edu.tw
- ahmedgara26@gmail.com
- H@E
- AAHK@@E
- 5JK@O
- adamhassan43@gmail.com
- ragagasim@yahoo.com.
- yahiaeldie0@gmail.com
- atifa.issa@yahoo.com.
- sihamnahal@yahoo.com
- haduni@yemen.net.ye
- abmjsiam@gmail.com
- Email.yahiaeldie0@gmail.com
- anas.gafaar@yahoo.com
- anasgafaar@gmail.com
- jfuas@fashir.edu.sd
- tawella69@gmail.com
- dr.alabid@gmail.com
- mhdyousif@yahoo.com
- abdalla_taha@hotmail.com
- jfuoas@gmail.com
- jfuas@fashir.edu.sd
- ghhh4@hotmail.com
- daldoum@gmail.com
- dr.tissu25@gmail.com
- dibdelradi77@gmail.com
- ---------------------------------------------------------------------------------------------------------------------------------------
- ######################################################################################################################################
- ____ _ _ _ _ _____
- / ___| _ _| |__ | (_)___| |_|___ / _ __
- \___ \| | | | '_ \| | / __| __| |_ \| '__|
- ___) | |_| | |_) | | \__ \ |_ ___) | |
- |____/ \__,_|_.__/|_|_|___/\__|____/|_|
- # Coded By Ahmed Aboul-Ela - @aboul3la
- [-] Enumerating subdomains now for fashir.edu.sd
- [-] verbosity is enabled, will show the subdomains results in realtime
- [-] Searching now in Baidu..
- [-] Searching now in Yahoo..
- [-] Searching now in Google..
- [-] Searching now in Bing..
- [-] Searching now in Ask..
- [-] Searching now in Netcraft..
- [-] Searching now in DNSdumpster..
- [-] Searching now in Virustotal..
- [-] Searching now in ThreatCrowd..
- [-] Searching now in SSL Certificates..
- [-] Searching now in PassiveDNS..
- Virustotal: www.fashir.edu.sd
- Virustotal: mail.fashir.edu.sd
- Yahoo: www.fashir.edu.sd
- DNSdumpster: mail.fashir.edu.sd
- DNSdumpster: www.fashir.edu.sd
- DNSdumpster: ns2.fashir.edu.sd
- Google: mail.fashir.edu.sd
- [-] Saving results to file: /usr/share/sniper/loot//domains/domains-fashir.edu.sd.txt
- [-] Total Unique Subdomains Found: 3
- www.fashir.edu.sd
- mail.fashir.edu.sd
- ns2.fashir.edu.sd
- #######################################################################################################################################
- Running Source: Ask
- Running Source: Archive.is
- Running Source: Baidu
- Running Source: Bing
- Running Source: CertDB
- Running Source: CertificateTransparency
- Running Source: Certspotter
- Running Source: Commoncrawl
- Running Source: Crt.sh
- Running Source: Dnsdb
- Running Source: DNSDumpster
- Running Source: DNSTable
- Running Source: Dogpile
- Running Source: Exalead
- Running Source: Findsubdomains
- Running Source: Googleter
- Running Source: Hackertarget
- Running Source: Ipv4Info
- Running Source: PTRArchive
- Running Source: Sitedossier
- Running Source: Threatcrowd
- Running Source: ThreatMiner
- Running Source: WaybackArchive
- Running Source: Yahoo
- Running enumeration on fashir.edu.sd
- dnsdb: Unexpected return status 503
- Starting Bruteforcing of fashir.edu.sd with 9985 words
- Total 10 Unique subdomains found for fashir.edu.sd
- .fashir.edu.sd
- mail.fashir.edu.sd
- mail.fashir.edu.sd
- ns1.fashir.edu.sd
- ns1.fashir.edu.sd
- ns2.fashir.edu.sd
- ns2.fashir.edu.sd
- reg.fashir.edu.sd
- www.fashir.edu.sd
- www.fashir.edu.sd
- #######################################################################################################################################
- [+] fashir.edu.sd has no SPF record!
- [*] No DMARC record found. Looking for organizational record
- [+] No organizational DMARC record
- [+] Spoofing possible for fashir.edu.sd!
- ######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-02-16 10:15 EST
- Nmap scan report for fashir.edu.sd (41.67.16.100)
- Host is up (0.27s latency).
- Not shown: 339 closed ports, 124 filtered ports
- Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
- PORT STATE SERVICE
- 21/tcp open ftp
- 53/tcp open domain
- 80/tcp open http
- 110/tcp open pop3
- 143/tcp open imap
- 443/tcp open https
- 465/tcp open smtps
- 587/tcp open submission
- 993/tcp open imaps
- 995/tcp open pop3s
- 3306/tcp open mysql
- 8080/tcp open http-proxy
- 8081/tcp open blackice-icecap
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-02-16 10:15 EST
- Nmap scan report for fashir.edu.sd (41.67.16.100)
- Host is up (0.20s latency).
- Not shown: 9 closed ports, 2 filtered ports
- PORT STATE SERVICE
- 53/udp open|filtered domain
- 69/udp open|filtered tftp
- 123/udp open ntp
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-02-16 10:16 EST
- Nmap scan report for fashir.edu.sd (41.67.16.100)
- Host is up (0.26s latency).
- PORT STATE SERVICE VERSION
- 21/tcp open ftp Pure-FTPd
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Device type: firewall|general purpose|storage-misc|broadband router
- Running: Linux 2.6.X|3.X, Netgear RAIDiator 4.X, Zhone embedded
- OS CPE: cpe:/o:linux:linux_kernel:2.6.26 cpe:/o:linux:linux_kernel:2.6.18 cpe:/o:linux:linux_kernel:3.2.0 cpe:/o:netgear:raidiator:4.1.4 cpe:/h:zhone:6211-i3
- OS details: Vyatta router (Linux 2.6.26), Linux 2.6.18, Linux 2.6.18 - 2.6.22, Linux 2.6.28, Linux 3.2.0, Netgear ReadyNAS Duo NAS device (RAIDiator 4.1.4), Zhone 6211-I3 series ADSL2+ modem
- Network Distance: 18 hops
- TRACEROUTE (using port 21/tcp)
- HOP RTT ADDRESS
- 1 68.90 ms 10.238.200.1
- 2 69.30 ms 193.37.252.209
- 3 68.97 ms 82.102.29.174
- 4 69.37 ms 38.140.53.65
- 5 69.80 ms be3763.rcr21.b002802-2.mia01.atlas.cogentco.com (154.24.30.129)
- 6 69.77 ms be3411.ccr22.mia01.atlas.cogentco.com (154.54.26.41)
- 7 83.87 ms be3483.ccr42.atl01.atlas.cogentco.com (154.54.28.49)
- 8 94.95 ms be2113.ccr42.dca01.atlas.cogentco.com (154.54.24.221)
- 9 100.50 ms be2806.ccr41.jfk02.atlas.cogentco.com (154.54.40.105)
- 10 173.57 ms be3628.ccr42.par01.atlas.cogentco.com (154.54.27.170)
- 11 185.69 ms be3092.ccr21.mrs01.atlas.cogentco.com (130.117.49.154)
- 12 233.35 ms stc.demarc.cogentco.com (149.14.124.98)
- 13 233.68 ms 10.188.199.119
- 14 261.80 ms 84-235-111-161.igw.com.sa (84.235.111.161)
- 15 ...
- 16 276.06 ms 196.1.197.233
- 17 263.32 ms 196.1.197.234
- 18 268.87 ms 41.67.16.100
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-02-16 10:27 EST
- Nmap scan report for fashir.edu.sd (41.67.16.100)
- Host is up (0.27s latency).
- PORT STATE SERVICE VERSION
- 53/tcp open domain ISC BIND 9.10.3-P4 (Ubuntu Linux)
- |_dns-fuzz: Server didn't response to our probe, can't fuzz
- | dns-nsec-enum:
- |_ No NSEC records found
- | dns-nsec3-enum:
- |_ DNSSEC NSEC3 not supported
- | dns-nsid:
- |_ bind.version: 9.10.3-P4-Ubuntu
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Device type: specialized|WAP|phone
- Running: iPXE 1.X, Linux 2.4.X|2.6.X, Sony Ericsson embedded
- OS CPE: cpe:/o:ipxe:ipxe:1.0.0%2b cpe:/o:linux:linux_kernel:2.4.20 cpe:/o:linux:linux_kernel:2.6.22 cpe:/h:sonyericsson:u8i_vivaz
- OS details: iPXE 1.0.0+, Tomato 1.28 (Linux 2.4.20), Tomato firmware (Linux 2.6.22), Sony Ericsson U8i Vivaz mobile phone
- Network Distance: 18 hops
- Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
- Host script results:
- | dns-brute:
- |_ DNS Brute-force hostnames: No results.
- TRACEROUTE (using port 53/tcp)
- HOP RTT ADDRESS
- 1 67.04 ms 10.238.200.1
- 2 67.12 ms 193.37.252.209
- 3 ...
- 4 67.57 ms 38.140.53.65
- 5 67.61 ms be3763.rcr21.b002802-2.mia01.atlas.cogentco.com (154.24.30.129)
- 6 67.65 ms be3411.ccr22.mia01.atlas.cogentco.com (154.54.26.41)
- 7 80.96 ms be3483.ccr42.atl01.atlas.cogentco.com (154.54.28.49)
- 8 92.04 ms be2113.ccr42.dca01.atlas.cogentco.com (154.54.24.221)
- 9 98.25 ms be2807.ccr42.jfk02.atlas.cogentco.com (154.54.40.109)
- 10 171.56 ms be3628.ccr42.par01.atlas.cogentco.com (154.54.27.170)
- 11 186.87 ms be3093.ccr22.mrs01.atlas.cogentco.com (130.117.50.166)
- 12 233.88 ms stc.demarc.cogentco.com (149.14.124.98)
- 13 234.85 ms 10.188.199.119
- 14 263.02 ms 84-235-111-161.igw.com.sa (84.235.111.161)
- 15 ...
- 16 272.36 ms 196.1.197.233
- 17 261.45 ms 196.1.197.234
- 18 272.51 ms 41.67.16.100
- #######################################################################################################################################
- wig - WebApp Information Gatherer
- Scanning http://fashir.edu.sd...
- _________________ SITE INFO __________________
- IP Title
- 41.67.16.100 جامعة الفاشر
- __________________ VERSION ___________________
- Name Versions Type
- Roundcube CMS
- Apache 2.4.18 Platform
- PHP Platform
- Ubuntu 16.04 OS
- ______________________________________________
- Time: 32.5 sec Urls: 384 Fingerprints: 40401
- #######################################################################################################################################
- HTTP/1.1 200 OK
- Date: Sat, 16 Feb 2019 15:28:58 GMT
- Server: Apache/2.4.18 (Ubuntu)
- Last-Modified: Thu, 14 Feb 2019 09:32:48 GMT
- ETag: "1ef-581d7576fbf0c"
- Accept-Ranges: bytes
- Content-Length: 495
- Vary: Accept-Encoding
- Content-Type: text/html
- HTTP/1.1 200 OK
- Date: Sat, 16 Feb 2019 15:28:59 GMT
- Server: Apache/2.4.18 (Ubuntu)
- Last-Modified: Thu, 14 Feb 2019 09:32:48 GMT
- ETag: "1ef-581d7576fbf0c"
- Accept-Ranges: bytes
- Content-Length: 495
- Vary: Accept-Encoding
- Content-Type: text/html
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-02-16 10:29 EST
- Nmap scan report for fashir.edu.sd (41.67.16.100)
- Host is up (0.27s latency).
- PORT STATE SERVICE VERSION
- 110/tcp open pop3 Dovecot pop3d
- | pop3-brute:
- | Accounts: No valid accounts found
- | Statistics: Performed 35 guesses in 38 seconds, average tps: 0.8
- |_ ERROR: Failed to connect.
- |_pop3-capabilities: AUTH-RESP-CODE CAPA UIDL USER SASL(PLAIN LOGIN) STLS TOP RESP-CODES PIPELINING
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Device type: firewall|general purpose|storage-misc|broadband router
- Running: Linux 2.6.X|3.X, Netgear RAIDiator 4.X, Zhone embedded
- OS CPE: cpe:/o:linux:linux_kernel:2.6.26 cpe:/o:linux:linux_kernel:2.6.18 cpe:/o:linux:linux_kernel:3.2.0 cpe:/o:netgear:raidiator:4.1.4 cpe:/h:zhone:6211-i3
- OS details: Vyatta router (Linux 2.6.26), Linux 2.6.18, Linux 2.6.18 - 2.6.22, Linux 2.6.28, Linux 3.2.0, Netgear ReadyNAS Duo NAS device (RAIDiator 4.1.4), Zhone 6211-I3 series ADSL2+ modem
- Network Distance: 18 hops
- TRACEROUTE (using port 443/tcp)
- HOP RTT ADDRESS
- 1 71.93 ms 10.238.200.1
- 2 72.37 ms 193.37.252.209
- 3 ...
- 4 71.95 ms te0-3-1-14.201.nr51.b002802-5.mia01.atlas.cogentco.com (38.140.53.65)
- 5 71.96 ms be3763.rcr21.b002802-2.mia01.atlas.cogentco.com (154.24.30.129)
- 6 71.97 ms be3410.ccr21.mia01.atlas.cogentco.com (154.54.6.85)
- 7 85.00 ms be3482.ccr41.atl01.atlas.cogentco.com (154.54.24.145)
- 8 96.56 ms be2112.ccr41.dca01.atlas.cogentco.com (154.54.7.157)
- 9 103.74 ms be2807.ccr42.jfk02.atlas.cogentco.com (154.54.40.109)
- 10 178.84 ms 66.28.4.198
- 11 191.78 ms be3093.ccr22.mrs01.atlas.cogentco.com (130.117.50.166)
- 12 238.40 ms stc.demarc.cogentco.com (149.14.124.106)
- 13 240.50 ms 10.188.199.119
- 14 267.89 ms 84-235-111-161.igw.com.sa (84.235.111.161)
- 15 ...
- 16 277.29 ms 196.1.197.233
- 17 269.14 ms 196.1.197.234
- 18 267.33 ms 41.67.16.100
- #######################################################################################################################################
- Version: 1.11.12-static
- OpenSSL 1.0.2-chacha (1.0.2g-dev)
- Connected to 41.67.16.100
- Testing SSL server fashir.edu.sd on port 443 using SNI name fashir.edu.sd
- TLS Fallback SCSV:
- Server does not support TLS Fallback SCSV
- TLS renegotiation:
- Session renegotiation not supported
- TLS Compression:
- Compression disabled
- Heartbleed:
- TLS 1.2 not vulnerable to heartbleed
- TLS 1.1 not vulnerable to heartbleed
- TLS 1.0 not vulnerable to heartbleed
- Supported Server Cipher(s):
- ######################################################################################################################################
- --------------------------------------------------------
- <<<Yasuo discovered following vulnerable applications>>>
- --------------------------------------------------------
- +------------+--------------------------------------+--------------------------------------------------+-----------+-----------+
- | App Name | URL to Application | Potential Exploit | Username | Password |
- +------------+--------------------------------------+--------------------------------------------------+-----------+-----------+
- | phpMyAdmin | http://41.67.16.100:80/phpmyadmin/ | ./exploits/multi/http/phpmyadmin_preg_replace.rb | Not Found | Not Found |
- | phpMyAdmin | http://41.67.16.100:8081/phpmyadmin/ | ./exploits/multi/http/phpmyadmin_preg_replace.rb | Not Found | Not Found |
- +------------+--------------------------------------+--------------------------------------------------+-----------+-----------+
- #######################################################################################################################################
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Target IP: 41.67.16.100
- + Target Hostname: fashir.edu.sd
- + Target Port: 80
- + Start Time: 2019-02-16 09:58:09 (GMT-5)
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Server: No banner retrieved
- + Server leaks inodes via ETags, header found with file /, fields: 0x1ef 0x581d7576fbf0c
- + The anti-clickjacking X-Frame-Options header is not present.
- + The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
- + The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
- + Cookie PHPSESSID created without the httponly flag
- + Server banner has changed from '' to 'Apache/2.4.18 (Ubuntu)' which may suggest a WAF, load balancer or proxy is in place
- + OSVDB-3268: /: Directory indexing found.
- + Uncommon header 'x-squid-error' found, with contents: ERR_INVALID_URL 0
- + Multiple index files found: /index.html, /index.php
- + ERROR: Error limit (20) reached for host, giving up. Last error: error reading HTTP response
- + Scan terminated: 20 error(s) and 8 item(s) reported on remote host
- + End Time: 2019-02-16 10:00:44 (GMT-5) (155 seconds)
- ---------------------------------------------------------------------------------------------------------------------------------------
- #######################################################################################################################################
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Target IP: 41.67.16.100
- + Target Hostname: 41.67.16.100
- + Target Port: 443
- + Start Time: 2019-02-16 09:58:49 (GMT-5)
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Server: Apache/2.4.18 (Ubuntu)
- + Server leaks inodes via ETags, header found with file /, fields: 0x2c39 0x5738d18cac15d
- + The anti-clickjacking X-Frame-Options header is not present.
- + The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
- + The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
- + ERROR: Error limit (20) reached for host, giving up. Last error: error reading HTTP response
- + Scan terminated: 20 error(s) and 4 item(s) reported on remote host
- + End Time: 2019-02-16 10:01:35 (GMT-5) (166 seconds)
- ---------------------------------------------------------------------------------------------------------------------------------------
- + The anti-clickjacking X-Frame-Options header is not present.
- + The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
- + The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
- ---------------------------------------------------------------------------------------------------------------------------------------
- #######################################################################################################################################
- Anonymous JTSEC #OpSudan Full Recon #15
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement