API tools faq
paste
Advertisement
Guest User

Anonymous JTSEC #OPkilluminatie full recon #5

a guest
Feb 7th, 2018
855
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 41.08 KB | None | 0 0
raw download clone embed print report
  1. #######################################################################################################################################
  2. Hostname freemasonry.bcy.ca ISP NetNation Commmunications, Inc. (AS14280)
  3. Continent North America Flag
  4. CA
  5. Country Canada Country Code CA (CAN)
  6. Region BC Local time 07 Feb 2018 03:54 PST
  7. Metropolis Unknown Postal Code V6C
  8. City Vancouver Latitude 49.287
  9. IP Address 64.40.102.2 Longitude -123.116
  10. ######################################################################################################################################
  11. [i] Scanning Site: http://freemasonry.bcy.ca
  12.  
  13.  
  14.  
  15. B A S I C I N F O
  16. ====================
  17.  
  18.  
  19. [+] Site Title: Grand Lodge of British Columbia and Yukon
  20. [+] IP address: 64.40.102.2
  21. [+] Web Server: Apache/2.0.54 (Debian GNU/Linux) FrontPage/5.0.2.2635 mod_ssl/2.0.54 OpenSSL/0.9.7k
  22. [+] CMS: Could Not Detect
  23. [+] Cloudflare: Not Detected
  24. [+] Robots File: Found
  25.  
  26.  
  27. G E O I P L O O K U P
  28. =========================
  29.  
  30. [i] IP Address: 64.40.102.2
  31. [i] Country: CA
  32. [i] State: British Columbia
  33. [i] City: Vancouver
  34. [i] Latitude: 49.286598
  35. [i] Longitude: -123.115799
  36.  
  37.  
  38.  
  39.  
  40. H T T P H E A D E R S
  41. =======================
  42.  
  43.  
  44. [i] HTTP/1.1 200 OK
  45. [i] Date: Wed, 07 Feb 2018 11:56:29 GMT
  46. [i] Server: Apache/2.0.54 (Debian GNU/Linux) FrontPage/5.0.2.2635 mod_ssl/2.0.54 OpenSSL/0.9.7k
  47. [i] Set-Cookie: Apache=198.7.58.147.1518004589250650; path=/
  48. [i] Last-Modified: Mon, 01 Feb 2016 06:55:03 GMT
  49. [i] ETag: "1cb3-dd3d9fc0"
  50. [i] Accept-Ranges: bytes
  51. [i] Content-Length: 7347
  52. [i] Connection: close
  53. [i] Content-Type: text/html
  54.  
  55.  
  56.  
  57.  
  58. D N S L O O K U P
  59. ===================
  60.  
  61. freemasonry.bcy.ca. 14399 IN SOA w.dns.netnation.com. hostmaster.siteprotect.com. 2016040402 28800 7200 604800 300
  62. freemasonry.bcy.ca. 14399 IN NS w.dns.netnation.com.
  63. freemasonry.bcy.ca. 14399 IN NS x.dns.netnation.com.
  64. freemasonry.bcy.ca. 14399 IN A 64.40.102.2
  65. freemasonry.bcy.ca. 14399 IN MX 10 mail.freemasonry.bcy.ca.
  66.  
  67.  
  68.  
  69.  
  70. S U B N E T C A L C U L A T I O N
  71. ====================================
  72.  
  73. Address = 64.40.102.2
  74. Network = 64.40.102.2 / 32
  75. Netmask = 255.255.255.255
  76. Broadcast = not needed on Point-to-Point links
  77. Wildcard Mask = 0.0.0.0
  78. Hosts Bits = 0
  79. Max. Hosts = 1 (2^0 - 0)
  80. Host Range = { 64.40.102.2 - 64.40.102.2 }
  81. N M A P P O R T S C A N
  82. ============================
  83.  
  84.  
  85. Starting Nmap 7.01 ( https://nmap.org ) at 2018-02-07 11:56 UTC
  86. Nmap scan report for freemasonry.bcy.ca (64.40.102.2)
  87. Host is up (0.079s latency).
  88. rDNS record for 64.40.102.2: netnation.com
  89. PORT STATE SERVICE VERSION
  90. 21/tcp open ftp ProFTPD 1.2.10
  91. 22/tcp open ssh OpenSSH 5.5p1 Debian 6+squeeze4 (protocol 2.0)
  92. 23/tcp filtered telnet
  93. 25/tcp filtered smtp
  94. 80/tcp open http Apache httpd 2.0.54 ((Debian GNU/Linux) FrontPage/5.0.2.2635 mod_ssl/2.0.54 OpenSSL/0.9.7k)
  95. 110/tcp filtered pop3
  96. 143/tcp filtered imap
  97. 443/tcp open ssl/http Apache httpd 2.0.54 ((Debian GNU/Linux) FrontPage/5.0.2.2635 mod_ssl/2.0.54 OpenSSL/0.9.7k)
  98. 445/tcp filtered microsoft-ds
  99. 3389/tcp filtered ms-wbt-server
  100. Service Info: OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel
  101.  
  102. Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
  103. Nmap done: 1 IP address (1 host up) scanned in 15.20 seconds
  104.  
  105.  
  106.  
  107. S U B - D O M A I N F I N D E R
  108. ==================================
  109.  
  110.  
  111. [i] Total Subdomains Found : 2
  112.  
  113. [+] Subdomain: mail.freemasonry.bcy.ca
  114. [-] IP: 64.26.60.153
  115.  
  116. [+] Subdomain: www.freemasonry.bcy.ca
  117. [-] IP: 64.40.102.2
  118. #######################################################################################################################################
  119. [!] IP Address : 64.40.102.2
  120. [!] Server: Apache/2.0.54 (Debian GNU/Linux) FrontPage/5.0.2.2635 mod_ssl/2.0.54 OpenSSL/0.9.7k
  121. [+] Clickjacking protection is not in place.
  122. [+] Operating System : Debian
  123. [!] freemasonry.bcy.ca doesn't seem to use a CMS
  124. [+] Honeypot Probabilty: 0%
  125. ----------------------------------------
  126. [~] Trying to gather whois information for freemasonry.bcy.ca
  127. [+] Whois information found
  128. [-] Unable to build response, visit https://who.is/whois/freemasonry.bcy.ca
  129. ----------------------------------------
  130. PORT STATE SERVICE VERSION
  131. 21/tcp open ftp ProFTPD 1.2.10
  132. 22/tcp open ssh OpenSSH 5.5p1 Debian 6+squeeze4 (protocol 2.0)
  133. 23/tcp filtered telnet
  134. 25/tcp filtered smtp
  135. 80/tcp open http Apache httpd 2.0.54 ((Debian GNU/Linux) FrontPage/5.0.2.2635 mod_ssl/2.0.54 OpenSSL/0.9.7k)
  136. 110/tcp filtered pop3
  137. 143/tcp filtered imap
  138. 443/tcp open ssl/http Apache httpd 2.0.54 ((Debian GNU/Linux) FrontPage/5.0.2.2635 mod_ssl/2.0.54 OpenSSL/0.9.7k)
  139. 445/tcp filtered microsoft-ds
  140. 3389/tcp filtered ms-wbt-server
  141. ----------------------------------------
  142.  
  143. [+] DNS Records
  144. w.dns.netnation.com. (204.174.223.169) AS14280 NetNation Commmunications, Inc. Canada
  145. x.dns.netnation.com. (216.139.240.88) AS32400 Hostway Services, Inc. United States
  146.  
  147. [+] MX Records
  148. 10 (64.26.60.153) AS20401 Hostway Corporation United States
  149.  
  150. [+] Host Records (A)
  151. office.freemasonry.bcy.ca (97-75-196-125.ip.van.radiant.net) (97.75.196.125) AS15247 Radiant Communications Ltd. Canada
  152. mail.freemasonry.bcy.ca (mx0.mfg.onr.siteprotect.com) (64.26.60.153) AS20401 Hostway Corporation United States
  153. www.freemasonry.bcy.caHTTP: (netnation.com) (64.40.102.2) AS14280 NetNation Commmunications, Inc. Canada
  154.  
  155. [+] TXT Records
  156.  
  157. [+] DNS Map: https://dnsdumpster.com/static/map/freemasonry.bcy.ca.png
  158.  
  159. [>] Initiating 3 intel modules
  160. [>] Loading Alpha module (1/3)
  161. [>] Beta module deployed (2/3)
  162. [>] Gamma module initiated (3/3)
  163.  
  164.  
  165. [+] Emails found:
  166. ------------------
  167. cancercar@freemasonry.bcy.ca
  168. grand_lodge@freemasonry.bcy.ca
  169. pixel-1518004784871320-web-@freemasonry.bcy.ca
  170. vmsb@freemasonry.bcy.ca
  171.  
  172. [+] Hosts found in search engines:
  173. ------------------------------------
  174. [-] Resolving hostnames IPs...
  175. 64.40.102.2:www.freemasonry.bcy.ca
  176. [+] Virtual hosts:
  177. -----------------
  178. 64.40.102.2 freemasonry.bcy.ca
  179. [~] Crawling the target for fuzzable URLs
  180. #######################################################################################################################################
  181. Original* freemasonry.bcy.ca 64.40.102.2 NS:w.dns.netnation.com MX:mail.freemasonry.bcy.ca
  182. Bitsquatting freemasonry.ccy.ca 208.73.210.202 NS:ns1.dsredirection.com
  183. Bitsquatting freemasonry.fcy.ca 72.52.4.120 NS:ns1.sedoparking.com MX:localhost
  184. Bitsquatting freemasonry.jcy.ca 185.53.178.7 NS:ns1.parkingcrew.net MX:mail.h-email.net
  185. Bitsquatting freemasonry.bby.ca 72.52.10.14
  186. Bitsquatting freemasonry.bcx.ca 66.96.160.155 MX:mx.bcx.ca
  187. Omission freemasonry.by.ca 103.224.182.239 NS:ns1.above.com MX:mx92.m1bp.com
  188. Omission freemasonry.bc.ca 204.174.223.82 NS:ns1.netnation.com MX:mail.freemasonry.bc.ca
  189. Replacement freemasonry.bcg.ca 165.160.13.20
  190. Replacement freemasonry.bc7.ca 76.10.190.252 NS:ns.ii1.net MX:mail.ii1.net
  191. Replacement freemasonry.vcy.ca 162.243.47.214
  192. Replacement freemasonry.ncy.ca 98.124.245.24 NS:ns1.fabulous.com MX:mail.b-io.co
  193. Replacement freemasonry.hcy.ca 185.53.178.7 NS:ns1.parkingcrew.net MX:mail.h-email.net
  194. Replacement freemasonry.bvy.ca 199.59.242.150
  195. Replacement freemasonry.bxy.ca 69.172.201.153 NS:ns1.uniregistrymarket.link
  196. Replacement freemasonry.gcy.ca 98.124.245.24 NS:ns1.fabulous.com MX:mail.b-io.co
  197. Transposition freemasonry.cby.ca 208.73.210.202 NS:ns1.dsredirection.com
  198. Transposition freemasonry.byc.ca 70.32.68.137
  199. #######################################################################################################################################
  200. Ip Address Status Type Domain Name
  201. ---------- ------ ---- -----------
  202. 64.40.102.2 200 host ftp.freemasonry.bcy.ca
  203. 204.174.223.161 403 host lists.freemasonry.bcy.ca
  204. 64.26.60.153 host mail.freemasonry.bcy.ca
  205. 204.174.223.190 alias mysql.freemasonry.bcy.ca
  206. 204.174.223.190 host ldb401.van.ca.siteprotect.com
  207. 97.75.196.125 host office.freemasonry.bcy.ca
  208. 64.26.60.222 host pop.freemasonry.bcy.ca
  209. 64.26.60.222 host smtp.freemasonry.bcy.ca
  210. 64.40.102.2 200 host www.freemasonry.bcy.ca
  211. #######################################################################################################################################
  212. Server: 192.168.1.254
  213. Address: 192.168.1.254#53
  214.  
  215. Non-authoritative answer:
  216. Name: freemasonry.bcy.ca
  217. Address: 64.40.102.2
  218.  
  219. freemasonry.bcy.ca has address 64.40.102.2
  220. freemasonry.bcy.ca mail is handled by 10 mail.freemasonry.bcy.ca.
  221. [+] Target is freemasonry.bcy.ca
  222. [+] Loading modules.
  223. [+] Following modules are loaded:
  224. [x] [1] ping:icmp_ping - ICMP echo discovery module
  225. [x] [2] ping:tcp_ping - TCP-based ping discovery module
  226. [x] [3] ping:udp_ping - UDP-based ping discovery module
  227. [x] [4] infogather:ttl_calc - TCP and UDP based TTL distance calculation
  228. [x] [5] infogather:portscan - TCP and UDP PortScanner
  229. [x] [6] fingerprint:icmp_echo - ICMP Echo request fingerprinting module
  230. [x] [7] fingerprint:icmp_tstamp - ICMP Timestamp request fingerprinting module
  231. [x] [8] fingerprint:icmp_amask - ICMP Address mask request fingerprinting module
  232. [x] [9] fingerprint:icmp_port_unreach - ICMP port unreachable fingerprinting module
  233. [x] [10] fingerprint:tcp_hshake - TCP Handshake fingerprinting module
  234. [x] [11] fingerprint:tcp_rst - TCP RST fingerprinting module
  235. [x] [12] fingerprint:smb - SMB fingerprinting module
  236. [x] [13] fingerprint:snmp - SNMPv2c fingerprinting module
  237. [+] 13 modules registered
  238. [+] Initializing scan engine
  239. [+] Running scan engine
  240. [-] ping:tcp_ping module: no closed/open TCP ports known on 64.40.102.2. Module test failed
  241. [-] ping:udp_ping module: no closed/open UDP ports known on 64.40.102.2. Module test failed
  242. [-] No distance calculation. 64.40.102.2 appears to be dead or no ports known
  243. [+] Host: 64.40.102.2 is down (Guess probability: 0%)
  244. [+] Cleaning up scan engine
  245. [+] Modules deinitialized
  246. [+] Execution completed.
  247.  
  248.  
  249. [+] Emails found:
  250. ------------------
  251. cancercar@freemasonry.bcy.ca
  252. grand_lodge@freemasonry.bcy.ca
  253. pixel-1518004694884995-web-@freemasonry.bcy.ca
  254. vmsb@freemasonry.bcy.ca
  255.  
  256. [+] Hosts found in search engines:
  257. ------------------------------------
  258. [-] Resolving hostnames IPs...
  259. 64.40.102.2:www.freemasonry.bcy.ca
  260. [+] Virtual hosts:
  261. ==================
  262. 64.40.102.2 freemasonry.bcy.ca
  263. ; <<>> DiG 9.11.2-P1-1-Debian <<>> -x freemasonry.bcy.ca
  264. ;; global options: +cmd
  265. ;; Got answer:
  266. ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56820
  267. ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
  268.  
  269. ;; OPT PSEUDOSECTION:
  270. ; EDNS: version: 0, flags:; udp: 4096
  271. ;; QUESTION SECTION:
  272. ;ca.bcy.freemasonry.in-addr.arpa. IN PTR
  273.  
  274. ;; AUTHORITY SECTION:
  275. in-addr.arpa. 3600 IN SOA b.in-addr-servers.arpa. nstld.iana.org. 2018013048 1800 900 604800 3600
  276.  
  277. ;; Query time: 202 msec
  278. ;; SERVER: 192.168.1.254#53(192.168.1.254)
  279. ;; WHEN: Wed Feb 07 06:58:24 EST 2018
  280. ;; MSG SIZE rcvd: 128
  281.  
  282. dnsenum VERSION:1.2.4
  283. 
  284. ----- freemasonry.bcy.ca -----
  285. 
  286.  
  287. Host's addresses:
  288. __________________
  289.  
  290. freemasonry.bcy.ca. 11244 IN A 64.40.102.2
  291. 
  292.  
  293. Name Servers:
  294. ______________
  295.  
  296. x.dns.netnation.com. 300 IN A 216.139.240.88
  297. w.dns.netnation.com. 300 IN A 204.174.223.169
  298. 
  299.  
  300. Mail (MX) Servers:
  301. ___________________
  302.  
  303. mail.freemasonry.bcy.ca. 14308 IN A 64.26.60.153
  304. 
  305.  
  306. Trying Zone Transfers and getting Bind Versions:
  307. _________________________________________________
  308.  
  309. 
  310. Trying Zone Transfer for freemasonry.bcy.ca on x.dns.netnation.com ...
  311.  
  312. Trying Zone Transfer for freemasonry.bcy.ca on w.dns.netnation.com ...
  313. #######################################################################################################################################
  314. [-] Enumerating subdomains now for freemasonry.bcy.ca
  315. [-] verbosity is enabled, will show the subdomains results in realtime
  316. [-] Searching now in Baidu..
  317. [-] Searching now in Yahoo..
  318. [-] Searching now in Google..
  319. [-] Searching now in Bing..
  320. [-] Searching now in Ask..
  321. [-] Searching now in Netcraft..
  322. [-] Searching now in DNSdumpster..
  323. [-] Searching now in Virustotal..
  324. [-] Searching now in ThreatCrowd..
  325. [-] Searching now in SSL Certificates..
  326. [-] Searching now in PassiveDNS..
  327. SSL Certificates: www.freemasonry.bcy.ca
  328. Virustotal: www.freemasonry.bcy.ca
  329. DNSdumpster: mail.freemasonry.bcy.ca
  330. DNSdumpster: office.freemasonry.bcy.ca
  331. DNSdumpster: www.freemasonry.bcy.ca
  332. Yahoo: www.freemasonry.bcy.ca
  333. [-] Saving results to file: /usr/share/sniper/loot/domains/domains-freemasonry.bcy.ca.txt
  334. [-] Total Unique Subdomains Found: 3
  335. www.freemasonry.bcy.ca
  336. mail.freemasonry.bcy.ca
  337. office.freemasonry.bcy.ca
  338.  
  339. ____ _____ ___ ______ _/ /_____ ____ ___
  340. / __ `/ __ `/ / / / __ `/ __/ __ \/ __ \/ _ \
  341. / /_/ / /_/ / /_/ / /_/ / /_/ /_/ / / / / __/
  342. \__,_/\__, /\__,_/\__,_/\__/\____/_/ /_/\___/
  343. /_/ discover v0.5.0 - by @michenriksen
  344.  
  345. Identifying nameservers for freemasonry.bcy.ca... Done
  346. Using nameservers:
  347.  
  348. - 204.174.223.169
  349. - 216.139.240.88
  350.  
  351. Checking for wildcard DNS... Done
  352.  
  353. Running collector: PTRArchive... Done (0 hosts)
  354. Running collector: Wayback Machine... Done (5 hosts)
  355. Running collector: PublicWWW... Done (0 hosts)
  356. Running collector: Google Transparency Report... Done (1 host)
  357. Running collector: HackerTarget... Done (3 hosts)
  358. Running collector: PassiveTotal... Skipped
  359.  -> Key 'passivetotal_key' has not been set
  360. Running collector: VirusTotal... Skipped
  361.  -> Key 'virustotal' has not been set
  362. Running collector: Riddler... Skipped
  363.  -> Key 'riddler_username' has not been set
  364. Running collector: Certificate Search... Done (1 host)
  365. Running collector: Dictionary... Done (27 hosts)
  366. Running collector: DNSDB... Done (2 hosts)
  367. Running collector: Threat Crowd... Done (0 hosts)
  368. Running collector: Censys... Skipped
  369.  -> Key 'censys_secret' has not been set
  370. Running collector: Netcraft... Done (0 hosts)
  371. Running collector: Shodan... Skipped
  372.  -> Key 'shodan' has not been set
  373. 
  374. Resolving 34 unique hosts...
  375. 64.40.102.2 .freemasonry.bcy.ca
  376. 64.40.102.2 freemasonry.bcy.ca
  377. 64.26.60.153 mail.freemasonry.bcy.ca
  378. 97.75.196.125 office.freemasonry.bcy.ca
  379. 64.40.102.2 www.freemasonry.bcy.ca
  380.  
  381. 
  382. Found subnets:
  383.  
  384. - 64.40.102.0-255 : 3 hosts
  385.  
  386. Wrote 5 hosts to:
  387.  
  388. - file:///root/aquatone/freemasonry.bcy.ca/hosts.txt
  389. - file:///root/aquatone/freemasonry.bcy.ca/hosts.json
  390. __
  391. ____ _____ ___ ______ _/ /_____ ____ ___
  392. / __ `/ __ `/ / / / __ `/ __/ __ \/ __ \/ _ \
  393. / /_/ / /_/ / /_/ / /_/ / /_/ /_/ / / / / __/
  394. \__,_/\__, /\__,_/\__,_/\__/\____/_/ /_/\___/
  395. /_/ takeover v0.5.0 - by @michenriksen
  396.  
  397. Loaded 5 hosts from /root/aquatone/freemasonry.bcy.ca/hosts.json
  398. Loaded 25 domain takeover detectors
  399.  
  400. Identifying nameservers for freemasonry.bcy.ca... Done
  401. Using nameservers:
  402.  
  403. - 216.139.240.88
  404. - 204.174.223.169
  405.  
  406. Checking hosts for domain takeover vulnerabilities...
  407.  
  408. Finished checking hosts:
  409.  
  410. - Vulnerable : 0
  411. - Not Vulnerable : 5
  412.  
  413. Wrote 0 potential subdomain takeovers to:
  414.  
  415. - file:///root/aquatone/freemasonry.bcy.ca/takeovers.json
  416.  
  417. __
  418. ____ _____ ___ ______ _/ /_____ ____ ___
  419. / __ `/ __ `/ / / / __ `/ __/ __ \/ __ \/ _ \
  420. / /_/ / /_/ / /_/ / /_/ / /_/ /_/ / / / / __/
  421. \__,_/\__, /\__,_/\__,_/\__/\____/_/ /_/\___/
  422. /_/ scan v0.5.0 - by @michenriksen
  423.  
  424. Loaded 5 hosts from /root/aquatone/freemasonry.bcy.ca/hosts.json
  425.  
  426. Probing 6 ports...
  427. 443/tcp  64.40.102.2 .freemasonry.bcy.ca, freemasonry.bcy.ca, www.freemasonry.bcy.ca
  428. 80/tcp  64.40.102.2 .freemasonry.bcy.ca, freemasonry.bcy.ca, www.freemasonry.bcy.ca
  429.  
  430. Wrote open ports to file:///root/aquatone/freemasonry.bcy.ca/open_ports.txt
  431. Wrote URLs to file:///root/aquatone/freemasonry.bcy.ca/urls.txt
  432. __
  433. ____ _____ ___ ______ _/ /_____ ____ ___
  434. / __ `/ __ `/ / / / __ `/ __/ __ \/ __ \/ _ \
  435. / /_/ / /_/ / /_/ / /_/ / /_/ /_/ / / / / __/
  436. \__,_/\__, /\__,_/\__,_/\__/\____/_/ /_/\___/
  437. /_/ gather v0.5.0 - by @michenriksen
  438.  
  439. PING freemasonry.bcy.ca (64.40.102.2) 56(84) bytes of data.
  440.  
  441. --- freemasonry.bcy.ca ping statistics ---
  442. 1 packets transmitted, 0 received, 100% packet loss, time 0ms
  443. #######################################################################################################################################
  444. Starting Nmap 7.60 ( https://nmap.org ) at 2018-02-07 07:06 EST
  445. Nmap scan report for freemasonry.bcy.ca (64.40.102.2)
  446. Host is up (0.14s latency).
  447. rDNS record for 64.40.102.2: netnation.com
  448. Not shown: 471 filtered ports
  449. Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
  450. PORT STATE SERVICE
  451. 80/tcp open http
  452. 443/tcp open https
  453.  
  454. ^ ^
  455. _ __ _ ____ _ __ _ _ ____
  456. ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
  457. | V V // o // _/ | V V // 0 // 0 // _/
  458. |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
  459. <
  460. ...'
  461.  
  462. WAFW00F - Web Application Firewall Detection Tool
  463.  
  464. By Sandro Gauci && Wendel G. Henrique
  465.  
  466. Checking http://freemasonry.bcy.ca
  467. Generic Detection results:
  468. No WAF detected by the generic detection
  469. Number of requests: 13
  470. #######################################################################################################################################
  471. http://freemasonry.bcy.ca [200 OK] Apache[2.0.54][mod_ssl/2.0.54], Cookies[Apache], Country[CANADA][CA], FrontPage-Extensions[5.0.2.2635], HTTPServer[Debian Linux][Apache/2.0.54 (Debian GNU/Linux) FrontPage/5.0.2.2635 mod_ssl/2.0.54 OpenSSL/0.9.7k], IP[64.40.102.2], Meta-Author[Trevor W. McKeown], OpenSSL[0.9.7k], Script[text/javascript], Title[Grand Lodge of British Columbia and Yukon]
  472.  
  473.  __ ______ _____ 
  474.  \ \/ / ___|_ _|
  475.  \ /\___ \ | | 
  476.  / \ ___) || | 
  477.  /_/\_|____/ |_| 
  478.  
  479. + -- --=[Cross-Site Tracer v1.3 by 1N3 @ CrowdShield
  480. + -- --=[Target: freemasonry.bcy.ca:80
  481. + -- --=[Site vulnerable to Cross-Site Tracing!
  482. + -- --=[Site not vulnerable to Host Header Injection!
  483. + -- --=[Site vulnerable to Cross-Frame Scripting!
  484. + -- --=[Site vulnerable to Clickjacking!
  485.  
  486. HTTP/1.1 200 OK
  487. Date: Wed, 07 Feb 2018 12:06:44 GMT
  488. Server: Apache/2.0.54 (Debian GNU/Linux) FrontPage/5.0.2.2635 mod_ssl/2.0.54 OpenSSL/0.9.7k
  489. Transfer-Encoding: chunked
  490. Content-Type: message/http
  491.  
  492. 50
  493. TRACE / HTTP/1.1
  494. Test: <script>alert(1);</script>
  495. Host: freemasonry.bcy.ca
  496.  
  497. 
  498. HTTP/1.1 200 OK
  499. Date: Wed, 07 Feb 2018 12:06:45 GMT
  500. Server: Apache/2.0.54 (Debian GNU/Linux) FrontPage/5.0.2.2635 mod_ssl/2.0.54 OpenSSL/0.9.7k
  501. Set-Cookie: Apache=198.7.58.147.1518005205132845; path=/
  502. Last-Modified: Mon, 01 Feb 2016 06:55:03 GMT
  503. ETag: "1cb3-dd3d9fc0"
  504. Accept-Ranges: bytes
  505. Content-Length: 7347
  506. Content-Type: text/html
  507.  
  508. <script src="http://freemasonry.bcy.ca/__utm.js"></script>
  509. <HTML>
  510. <HEAD>
  511. <TITLE>Grand Lodge of British Columbia and Yukon</TITLE>
  512. <META name="author" content="Trevor W. McKeown">
  513. <META name="creation" content="1996/05/16">
  514. <META name="content-Type" CONTENT="text/html; charset=ISO-8859-1">
  515. <META name="content-Language" CONTENT="en-GB">
  516. <META name="copyright" content="Grand Lodge of British Columbia and Yukon">
  517. <META name="description" content="The Grand Lodge of British Columbia and Yukon Ancient Free and Accepted Masons website contains philosophy, symbolism and history textfiles, print-quality graphics, biographies, international links and local information.">
  518. + -- --=[Checking if X-Content options are enabled on freemasonry.bcy.ca... 
  519.  
  520. + -- --=[Checking if X-Frame options are enabled on freemasonry.bcy.ca... 
  521.  
  522. + -- --=[Checking if X-XSS-Protection header is enabled on freemasonry.bcy.ca... 
  523.  
  524. + -- --=[Checking HTTP methods on freemasonry.bcy.ca... 
  525. Allow: GET,HEAD,POST,OPTIONS,TRACE
  526.  
  527. + -- --=[Checking if TRACE method is enabled on freemasonry.bcy.ca... 
  528.  
  529. + -- --=[Checking for META tags on freemasonry.bcy.ca... 
  530. <META name="creation" content="1996/05/16">
  531. <META name="content-Type" CONTENT="text/html; charset=ISO-8859-1">
  532. <META name="content-Language" CONTENT="en-GB">
  533. <META name="copyright" content="Grand Lodge of British Columbia and Yukon">
  534. <META name="description" content="The Grand Lodge of British Columbia and Yukon Ancient Free and Accepted Masons website contains philosophy, symbolism and history textfiles, print-quality graphics, biographies, international links and local information.">
  535. <META name="keywords" content="Freemasonry, Freemasonary, Mason, Masons, Masonry, Freemason, Famous Freemasons, Masonic, Brotherhood, Fraternity, Fraternities, Conspiracy, Anti-masonry, Antimasonry, Anti-masonic, biographies, Masonic graphics, BC, B.C., British Columbia, Canada, Canadian">
  536. <META name="publisher" content="Grand Lodge of British Columbia and Yukon">
  537. <META name="robots" content="all, index, follow">
  538. <META name="version" content="(00001) 2002/03/22">
  539. <META name="window-target" CONTENT="_top"><!-- ImageReady Preload Script (home11.psd) -->
  540.  
  541. + -- --=[Checking for open proxy on freemasonry.bcy.ca... 
  542. var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");
  543. document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E"));
  544. </script>
  545. <script type="text/javascript">
  546. try {
  547. var pageTracker = _gat._getTracker("UA-8215669-1");
  548. pageTracker._trackPageview();
  549. } catch(err) {}</script>
  550. </BODY>
  551. </HTML>
  552. + -- --=[Enumerating software on freemasonry.bcy.ca... 
  553. Server: Apache/2.0.54 (Debian GNU/Linux) FrontPage/5.0.2.2635 mod_ssl/2.0.54 OpenSSL/0.9.7k
  554.  
  555. + -- --=[Checking if Strict-Transport-Security is enabled on freemasonry.bcy.ca... 
  556.  
  557. + -- --=[Checking for Flash cross-domain policy on freemasonry.bcy.ca... 
  558. var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");
  559. document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E"));
  560. </script>
  561. <script type="text/javascript">
  562. try {
  563. var pageTracker = _gat._getTracker("UA-8215669-1");
  564. pageTracker._trackPageview();
  565. } catch(err) {}</script>
  566. </BODY></HTML></TD></TR></TABLE>
  567. </TD></TR></TABLE>
  568.  
  569. + -- --=[Checking for Silverlight cross-domain policy on freemasonry.bcy.ca... 
  570. var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");
  571. document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E"));
  572. </script>
  573. <script type="text/javascript">
  574. try {
  575. var pageTracker = _gat._getTracker("UA-8215669-1");
  576. pageTracker._trackPageview();
  577. } catch(err) {}</script>
  578. </BODY></HTML></TD></TR></TABLE>
  579. </TD></TR></TABLE>
  580.  
  581. + -- --=[Checking for HTML5 cross-origin resource sharing on freemasonry.bcy.ca... 
  582.  
  583. + -- --=[Retrieving robots.txt on freemasonry.bcy.ca... 
  584.  
  585. # /robots.txt file for http://freemasonry.bcy.ca/
  586.  
  587. User-agent: *
  588. Disallow: /Trevor/ # This is an infinite virtual URL space
  589. Disallow: /temp/ # These will soon disappear
  590. Disallow: /Directories/ # This is an infinite virtual URL space
  591. Disallow: /trestleboard/ # This is an infinite virtual URL space
  592. Disallow: /Includes/ # This is an infinite virtual URL space
  593. Disallow: /cgi/ # This is an infinite virtual URL space
  594.  
  595. + -- --=[Retrieving sitemap.xml on freemasonry.bcy.ca... 
  596. <priority>0.01</priority>
  597. <changefreq>monthly</changefreq>
  598. </url>
  599. <url>
  600. <loc>http://freemasonry.bcy.ca/texts/symbolism/sword.html</loc>
  601. <lastmod>1970-01-01T05:02:01+00:00</lastmod>
  602. <priority>0.01</priority>
  603. <changefreq>monthly</changefreq>
  604. </url>
  605. </urlset>
  606.  
  607. + -- --=[Checking cookie attributes on freemasonry.bcy.ca... 
  608. Set-Cookie: Apache=198.7.58.147.1518005213087886; path=/
  609.  
  610. + -- --=[Checking for ASP.NET Detailed Errors on freemasonry.bcy.ca... 
  611. <IMG SRC="http://freemasonry.bcy.ca/heds/error.jpg" BORDER=0 WIDTH=488 HEIGHT=72 ALT="404: file not found">
  612. The first 4 indicates a client error. The server is saying that the browser has misspelled the URL or requested a page which is no longer there. Conversely, a 5xx error indicates a server-side problem. It also indicates an error which may be transient; if you try it again, it may work.
  613. <BR><IMG SRC="http://freemasonry.bcy.ca/images/t.gif" WIDTH=20 HEIGHT=1 BORDER=0>The middle 0 refers to a general syntax error such as a spelling mistake.
  614. <BR><IMG SRC="http://freemasonry.bcy.ca/images/t.gif" WIDTH=20 HEIGHT=1 BORDER=0>The last 4 indicates the specific error in the group of 40x, which also includes 400: Bad Request, 401: Unauthorized, etc.
  615. <A HREF="http://freemasonry.bcy.ca/index.html">freemasonry.bcy.ca</A>/error404.html
  616. <IMG SRC="http://freemasonry.bcy.ca/heds/error.jpg" BORDER=0 WIDTH=488 HEIGHT=72 ALT="404: file not found">
  617. The first 4 indicates a client error. The server is saying that the browser has misspelled the URL or requested a page which is no longer there. Conversely, a 5xx error indicates a server-side problem. It also indicates an error which may be transient; if you try it again, it may work.
  618. <BR><IMG SRC="http://freemasonry.bcy.ca/images/t.gif" WIDTH=20 HEIGHT=1 BORDER=0>The middle 0 refers to a general syntax error such as a spelling mistake.
  619. <BR><IMG SRC="http://freemasonry.bcy.ca/images/t.gif" WIDTH=20 HEIGHT=1 BORDER=0>The last 4 indicates the specific error in the group of 40x, which also includes 400: Bad Request, 401: Unauthorized, etc.
  620. <A HREF="http://freemasonry.bcy.ca/index.html">freemasonry.bcy.ca</A>/error404.html
  621.  
  622.  _____  .701F. .iBR. .7CL. .70BR. .7BR. .7BR'''Cq. .70BR. .1BR'''Yp, .8BR'''Cq.
  623.  (_____) 01 01N. C 01 C 01 .01. 01  01 Yb 01 .01.
  624.  (() ()) 01 C YCb C 01 C 01 ,C9 01  01 dP 01 ,C9
  625.  \ /  01 C .CN. C 01 C 0101dC9 01  01'''bg. 0101dC9
  626.  \ /  01 C .01.C 01 C 01 YC. 01 ,  01 .Y 01 YC.
  627.  /=\  01 C Y01 YC. ,C 01 .Cb. 01 ,C  01 ,9 01 .Cb.
  628.  [___]  .J01L. .JCL. YC .b0101d'. .J01L. .J01. .J01010101C .J0101Cd9 .J01L. .J01./ 2.1
  629.  
  630. __[ ! ] Neither war between hackers, nor peace for the system.
  631. __[ ! ] http://blog.inurl.com.br
  632. __[ ! ] http://fb.com/InurlBrasil
  633. __[ ! ] http://twitter.com/@googleinurl
  634. __[ ! ] http://github.com/googleinurl
  635. __[ ! ] Current PHP version::[ 7.2.1-1 ]
  636. __[ ! ] Current script owner::[ root ]
  637. __[ ! ] Current uname::[ Linux Kali 4.14.0-kali3-amd64 #1 SMP Debian 4.14.13-1kali1 (2018-01-25) x86_64 ]
  638. __[ ! ] Current pwd::[ /usr/share/sniper ]
  639. __[ ! ] Help: php inurlbr.php --help
  640. ------------------------------------------------------------------------------------------------------------------------
  641.  
  642. [ ! ] Starting SCANNER INURLBR 2.1 at [07-02-2018 07:07:38]
  643. [ ! ] legal disclaimer: Usage of INURLBR for attacking targets without prior mutual consent is illegal.
  644. It is the end user's responsibility to obey all applicable local, state and federal laws.
  645. Developers assume no liability and are not responsible for any misuse or damage caused by this program
  646.  
  647. [ INFO ][ OUTPUT FILE ]:: [ /usr/share/sniper/output/inurlbr-freemasonry.bcy.ca.txt ]
  648. [ INFO ][ DORK ]::[ site:freemasonry.bcy.ca ]
  649. [ INFO ][ SEARCHING ]:: {
  650. [ INFO ][ ENGINE ]::[ GOOGLE - www.google.io ]
  651.  
  652. [ INFO ][ SEARCHING ]:: 
  653. -[:::]
  654. [ INFO ][ ENGINE ]::[ GOOGLE API ]
  655.  
  656. [ INFO ][ SEARCHING ]:: 
  657. -[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]
  658. [ INFO ][ ENGINE ]::[ GOOGLE_GENERIC_RANDOM - www.google.bg ID: 012347377894689429761:wgkj5jn9ee4 ]
  659.  
  660. [ INFO ][ SEARCHING ]:: 
  661. -[:::]-[:::]-[:::]-[:::]-[:::]-[:::]
  662.  
  663. [ INFO ][ TOTAL FOUND VALUES ]:: [ 0 ]
  664. [ INFO ] Not a satisfactory result was found!
  665.  
  666.  
  667. [ INFO ] [ Shutting down ]
  668. [ INFO ] [ End of process INURLBR at [07-02-2018 07:07:49]
  669. [ INFO ] [ TOTAL FILTERED VALUES ]:: [ 0 ]
  670. [ INFO ] [ OUTPUT FILE ]:: [ /usr/share/sniper/output/inurlbr-freemasonry.bcy.ca.txt ]
  671.  
  672. ^ ^
  673. _ __ _ ____ _ __ _ _ ____
  674. ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
  675. | V V // o // _/ | V V // 0 // 0 // _/
  676. |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
  677. <
  678. ...'
  679.  
  680. WAFW00F - Web Application Firewall Detection Tool
  681.  
  682. By Sandro Gauci && Wendel G. Henrique
  683.  
  684. Checking https://freemasonry.bcy.ca
  685. Generic Detection results:
  686. No WAF detected by the generic detection
  687. Number of requests: 13
  688. #######################################################################################################################################
  689.  
  690.  
  691. AVAILABLE PLUGINS
  692. -----------------
  693.  
  694. PluginHeartbleed
  695. PluginOpenSSLCipherSuites
  696. PluginHSTS
  697. PluginCertInfo
  698. PluginChromeSha1Deprecation
  699. PluginSessionResumption
  700. PluginSessionRenegotiation
  701. PluginCompression
  702.  
  703.  
  704.  
  705. CHECKING HOST(S) AVAILABILITY
  706. -----------------------------
  707.  
  708. freemasonry.bcy.ca:443 => 64.40.102.2:443
  709.  
  710.  
  711.  
  712. SCAN RESULTS FOR FREEMASONRY.BCY.CA:443 - 64.40.102.2:443
  713. ---------------------------------------------------------
  714.  
  715. * Deflate Compression:
  716. OK - Compression disabled
  717.  
  718. * Session Renegotiation:
  719. Client-initiated Renegotiations: VULNERABLE - Server honors client-initiated renegotiations
  720. Secure Renegotiation: VULNERABLE - Secure renegotiation not supported
  721.  
  722. * Certificate - Content:
  723. SHA1 Fingerprint: ea5d9974d1904121365211ab35b0128a805d8073
  724. Common Name: freemasonry.bcy.ca
  725. Issuer: GeoTrust DV SSL SHA256 CA
  726. Serial Number: 50F38A906A228BADF0ABC5F282530981
  727. Not Before: Apr 29 00:00:00 2017 GMT
  728. Not After: Jul 29 23:59:59 2018 GMT
  729. Signature Algorithm: sha256WithRSAEncryption
  730. Public Key Algorithm: rsaEncryption
  731. Key Size: 2048 bit
  732. Exponent: 65537 (0x10001)
  733. X509v3 Subject Alternative Name: {'DNS': ['freemasonry.bcy.ca']}
  734.  
  735. * Certificate - Trust:
  736. Hostname Validation: OK - Subject Alternative Name matches
  737. Google CA Store (09/2015): OK - Certificate is trusted
  738. Java 6 CA Store (Update 65): OK - Certificate is trusted
  739. Microsoft CA Store (09/2015): OK - Certificate is trusted
  740. Apple CA Store (OS X 10.10.5): OK - Certificate is trusted
  741. Mozilla NSS CA Store (09/2015): OK - Certificate is trusted
  742. Certificate Chain Received: ['freemasonry.bcy.ca', 'GeoTrust DV SSL SHA256 CA']
  743.  
  744. * Certificate - OCSP Stapling:
  745. NOT SUPPORTED - Server did not send back an OCSP response.
  746.  
  747. * Session Resumption:
  748. With Session IDs: OK - Supported (5 successful, 0 failed, 0 errors, 5 total attempts).
  749. With TLS Session Tickets: NOT SUPPORTED - TLS ticket not assigned.
  750.  
  751. * SSLV2 Cipher Suites:
  752. Preferred:
  753. RC2-CBC-MD5 - 128 bits
  754. Accepted:
  755. RC4-MD5 - 128 bits
  756. RC2-CBC-MD5 - 128 bits
  757. DES-CBC3-MD5 - 112 bits
  758. DES-CBC-MD5 - 56 bits
  759. EXP-RC4-MD5 - 40 bits
  760. EXP-RC2-CBC-MD5 - 40 bits
  761.  
  762. * SSLV3 Cipher Suites:
  763. Preferred:
  764. DHE-RSA-AES256-SHA DH-1024 bits 256 bits
  765. Accepted:
  766. DHE-RSA-AES256-SHA DH-1024 bits 256 bits
  767. AES256-SHA - 256 bits
  768. DHE-RSA-AES128-SHA DH-1024 bits 128 bits
  769. RC4-SHA - 128 bits
  770. RC4-MD5 - 128 bits
  771. AES128-SHA - 128 bits
  772. EDH-RSA-DES-CBC3-SHA DH-1024 bits 112 bits
  773. DES-CBC3-SHA - 112 bits
  774. EDH-RSA-DES-CBC-SHA DH-1024 bits 56 bits
  775. DES-CBC-SHA - 56 bits
  776. EXP-EDH-RSA-DES-CBC-SHA DH-512 bits 40 bits
  777. EXP-RC4-MD5 - 40 bits
  778. EXP-RC2-CBC-MD5 - 40 bits
  779. EXP-DES-CBC-SHA - 40 bits
  780.  
  781.  
  782.  
  783. SCAN COMPLETED IN 3.21 S
  784. ------------------------
  785. Version: 1.11.11-static
  786. OpenSSL 1.0.2-chacha (1.0.2g-dev)
  787. 
  788. Connected to 64.40.102.2
  789.  
  790. Testing SSL server freemasonry.bcy.ca on port 443 using SNI name freemasonry.bcy.ca
  791.  
  792. TLS Fallback SCSV:
  793. Server does not support TLS Fallback SCSV
  794.  
  795. TLS renegotiation:
  796. Insecure session renegotiation supported
  797.  
  798. TLS Compression:
  799. Compression disabled
  800.  
  801. Heartbleed:
  802. TLS 1.2 not vulnerable to heartbleed
  803. TLS 1.1 not vulnerable to heartbleed
  804. TLS 1.0 not vulnerable to heartbleed
  805.  
  806. Supported Server Cipher(s):
  807. Preferred TLSv1.0 256 bits DHE-RSA-AES256-SHA DHE 1024 bits
  808. Accepted TLSv1.0 256 bits AES256-SHA
  809. Accepted TLSv1.0 128 bits DHE-RSA-AES128-SHA DHE 1024 bits
  810. Accepted TLSv1.0 128 bits AES128-SHA
  811. Accepted TLSv1.0 128 bits RC4-SHA 
  812. Accepted TLSv1.0 128 bits RC4-MD5 
  813. Accepted TLSv1.0 112 bits EDH-RSA-DES-CBC3-SHA  DHE 1024 bits
  814. Accepted TLSv1.0 112 bits DES-CBC3-SHA 
  815. Accepted TLSv1.0 56 bits EDH-RSA-DES-CBC-SHA  DHE 1024 bits
  816. Accepted TLSv1.0 56 bits DES-CBC-SHA 
  817. Accepted TLSv1.0 40 bits EXP-EDH-RSA-DES-CBC-SHA  DHE 512 bits
  818. Accepted TLSv1.0 40 bits EXP-DES-CBC-SHA  RSA 512 bits
  819. Accepted TLSv1.0 40 bits EXP-RC2-CBC-MD5  RSA 512 bits
  820. Accepted TLSv1.0 40 bits EXP-RC4-MD5  RSA 512 bits
  821. Preferred SSLv3 256 bits DHE-RSA-AES256-SHA  DHE 1024 bits
  822. Accepted SSLv3 256 bits AES256-SHA 
  823. Accepted SSLv3 128 bits DHE-RSA-AES128-SHA  DHE 1024 bits
  824. Accepted SSLv3 128 bits AES128-SHA 
  825. Accepted SSLv3 128 bits RC4-SHA 
  826. Accepted SSLv3 128 bits RC4-MD5 
  827. Accepted SSLv3 112 bits EDH-RSA-DES-CBC3-SHA  DHE 1024 bits
  828. Accepted SSLv3 112 bits DES-CBC3-SHA 
  829. Accepted SSLv3 56 bits EDH-RSA-DES-CBC-SHA  DHE 1024 bits
  830. Accepted SSLv3 56 bits DES-CBC-SHA 
  831. Accepted SSLv3 40 bits EXP-EDH-RSA-DES-CBC-SHA  DHE 512 bits
  832. Accepted SSLv3 40 bits EXP-DES-CBC-SHA  RSA 512 bits
  833. Accepted SSLv3 40 bits EXP-RC2-CBC-MD5  RSA 512 bits
  834. Accepted SSLv3 40 bits EXP-RC4-MD5  RSA 512 bits
  835. Preferred SSLv2 128 bits RC2-CBC-MD5
  836. Accepted SSLv2 128 bits RC4-MD5 
  837. Accepted SSLv2 112 bits DES-CBC3-MD5 
  838. Accepted SSLv2 56 bits DES-CBC-MD5 
  839. Accepted SSLv2 40 bits EXP-RC2-CBC-MD5 
  840. Accepted SSLv2 40 bits EXP-RC4-MD5 
  841.  
  842. SSL Certificate:
  843. Signature Algorithm: sha256WithRSAEncryption
  844. RSA Key Strength: 2048
  845.  
  846. Subject: freemasonry.bcy.ca
  847. Altnames: DNS:freemasonry.bcy.ca
  848. Issuer: GeoTrust DV SSL SHA256 CA
  849. ######################################################################################################################################
  850. Anonymous JTSEC #OPKilluminatie
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!