Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #######################################################################################################################################
- Hostname www.citigroup.com ISP Akamai Technologies, Inc.
- Continent North America Flag
- US
- Country United States Country Code US
- Region Unknown Local time 26 Jan 2019 06:34 CST
- City Unknown Postal Code Unknown
- IP Address 104.98.33.172 Latitude 37.751
- Longitude -97.822
- #######################################################################################################################################
- > www.citigroup.com
- Server: 27.50.70.139
- Address: 27.50.70.139#53
- Non-authoritative answer:
- www.citigroup.com canonical name = san.www.citi.com.edgekey.net.
- san.www.citi.com.edgekey.net canonical name = e16976.x.akamaiedge.net.
- Name: e16976.x.akamaiedge.net
- Address: 104.98.33.172
- >
- #######################################################################################################################################
- HostIP:104.98.33.172
- HostName:www.citigroup.com
- Gathered Inet-whois information for 104.98.33.172
- ---------------------------------------------------------------------------------------------------------------------------------------
- inetnum: 103.252.92.0 - 104.153.83.255
- netname: NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK
- descr: IPv4 address block not managed by the RIPE NCC
- remarks: ------------------------------------------------------
- remarks:
- remarks: For registration information,
- remarks: you can consult the following sources:
- remarks:
- remarks: IANA
- remarks: http://www.iana.org/assignments/ipv4-address-space
- remarks: http://www.iana.org/assignments/iana-ipv4-special-registry
- remarks: http://www.iana.org/assignments/ipv4-recovered-address-space
- remarks:
- remarks: AFRINIC (Africa)
- remarks: http://www.afrinic.net/ whois.afrinic.net
- remarks:
- remarks: APNIC (Asia Pacific)
- remarks: http://www.apnic.net/ whois.apnic.net
- remarks:
- remarks: ARIN (Northern America)
- remarks: http://www.arin.net/ whois.arin.net
- remarks:
- remarks: LACNIC (Latin America and the Carribean)
- remarks: http://www.lacnic.net/ whois.lacnic.net
- remarks:
- remarks: ------------------------------------------------------
- country: EU # Country is really world wide
- admin-c: IANA1-RIPE
- tech-c: IANA1-RIPE
- status: ALLOCATED UNSPECIFIED
- mnt-by: RIPE-NCC-HM-MNT
- created: 2019-01-07T10:50:18Z
- last-modified: 2019-01-07T10:50:18Z
- source: RIPE
- role: Internet Assigned Numbers Authority
- address: see http://www.iana.org.
- admin-c: IANA1-RIPE
- tech-c: IANA1-RIPE
- nic-hdl: IANA1-RIPE
- remarks: For more information on IANA services
- remarks: go to IANA web site at http://www.iana.org.
- mnt-by: RIPE-NCC-MNT
- created: 1970-01-01T00:00:00Z
- last-modified: 2001-09-22T09:31:27Z
- source: RIPE # Filtered
- % Information related to '104.98.32.0/20AS20940'
- route: 104.98.32.0/20
- descr: Akamai Technologies
- origin: AS20940
- mnt-by: AKAM1-RIPE-MNT
- created: 2015-06-08T16:55:05Z
- last-modified: 2018-09-04T18:11:35Z
- source: RIPE-NONAUTH
- % This query was served by the RIPE Database Query Service version 1.92.6 (ANGUS)
- Gathered Inic-whois information for citigroup.com
- ---------------------------------------------------------------------------------------------------------------------------------------
- Domain Name: CITIGROUP.COM
- Registry Domain ID: 1106356_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.corporatedomains.com
- Registrar URL: http://www.cscglobal.com/global/web/csc/digital-brand-services.html
- Updated Date: 2018-12-05T21:58:43Z
- Creation Date: 1998-04-06T04:00:00Z
- Registry Expiry Date: 2020-04-05T04:00:00Z
- Registrar: CSC Corporate Domains, Inc.
- Registrar IANA ID: 299
- Registrar Abuse Contact Email: domainabuse@cscglobal.com
- Registrar Abuse Contact Phone: 8887802723
- Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Domain Status: clientUpdateProhibited https://icann.org/epp#clientUpdateProhibited
- Domain Status: serverDeleteProhibited https://icann.org/epp#serverDeleteProhibited
- Domain Status: serverTransferProhibited https://icann.org/epp#serverTransferProhibited
- Domain Status: serverUpdateProhibited https://icann.org/epp#serverUpdateProhibited
- Name Server: NS1.NSROOT1.COM
- Name Server: NS2.NSROOT2.COM
- DNSSEC: unsigned
- URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
- >>> Last update of whois database: 2019-01-26T12:40:15Z <<<
- For more information on Whois status codes, please visit https://icann.org/epp
- NOTICE: The expiration date displayed in this record is the date the
- registrar's sponsorship of the domain name registration in the registry is
- currently set to expire. This date does not necessarily reflect the expiration
- date of the domain name registrant's agreement with the sponsoring
- registrar. Users may consult the sponsoring registrar's Whois database to
- view the registrar's reported date of expiration for this registration.
- TERMS OF USE: You are not authorized to access or query our Whois
- database through the use of electronic processes that are high-volume and
- automated except as reasonably necessary to register domain names or
- modify existing registrations; the Data in VeriSign Global Registry
- Services' ("VeriSign") Whois database is provided by VeriSign for
- information purposes only, and to assist persons in obtaining information
- about or related to a domain name registration record. VeriSign does not
- guarantee its accuracy. By submitting a Whois query, you agree to abide
- by the following terms of use: You agree that you may use this Data only
- for lawful purposes and that under no circumstances will you use this Data
- to: (1) allow, enable, or otherwise support the transmission of mass
- unsolicited, commercial advertising or solicitations via e-mail, telephone,
- or facsimile; or (2) enable high volume, automated, electronic processes
- that apply to VeriSign (or its computer systems). The compilation,
- repackaging, dissemination or other use of this Data is expressly
- prohibited without the prior written consent of VeriSign. You agree not to
- use electronic processes that are automated and high-volume to access or
- query the Whois database except as reasonably necessary to register
- domain names or modify existing registrations. VeriSign reserves the right
- to restrict your access to the Whois database in its sole discretion to ensure
- operational stability. VeriSign may restrict or terminate your access to the
- Whois database for failure to abide by these terms of use. VeriSign
- reserves the right to modify these terms at any time.
- The Registry database contains ONLY .COM, .NET, .EDU domains and
- Registrars.
- Gathered Netcraft information for www.citigroup.com
- ---------------------------------------------------------------------------------------------------------------------------------------
- Retrieving Netcraft.com information for www.citigroup.com
- Netcraft.com Information gathered
- Gathered Subdomain information for citigroup.com
- ---------------------------------------------------------------------------------------------------------------------------------------
- Searching Google.com:80...
- HostName:www.citigroup.com
- HostIP:104.98.33.172
- HostName:careers.citigroup.com
- HostIP:116.255.21.208
- HostName:debtxportal.issuerservices.citigroup.com
- HostIP:192.193.56.78
- HostName:careermobility.citigroup.com
- HostIP:192.193.183.119
- HostName:businessaccess.citibank.citigroup.com
- HostIP:104.98.27.154
- HostName:blog.citigroup.com
- HostIP:146.20.81.168
- HostName:remoteoffice.citigroup.com
- HostIP:192.193.3.103
- HostName:volunteers.citigroup.com
- HostIP:192.193.218.28
- HostName:Volunteers.citigroup.com
- HostIP:192.193.218.28
- HostName:news.citigroup.com
- HostIP:173.231.190.151
- HostName:procurementsourcing.citigroup.com
- HostIP:192.193.183.188
- Searching Altavista.com:80...
- Found 11 possible subdomain(s) for host citigroup.com, Searched 0 pages containing 0 results
- Gathered E-Mail information for citigroup.com
- ---------------------------------------------------------------------------------------------------------------------------------------
- Searching Google.com:80...
- Searching Altavista.com:80...
- Found 0 E-Mail(s) for host citigroup.com, Searched 0 pages containing 0 results
- Gathered TCP Port information for 104.98.33.172
- ---------------------------------------------------------------------------------------------------------------------------------------
- Port State
- 80/tcp open
- Portscan Finished: Scanned 150 ports, 2 ports were in state closed
- #######################################################################################################################################
- [i] Scanning Site: https://www.citigroup.com
- B A S I C I N F O
- ======================================================================================================================================
- [+] Site Title: Citi | Responsible Finance - Financial Ingenuity - Global Bank
- [+] IP address: 104.98.33.172
- [+] Web Server: Could Not Detect
- [+] CMS: Could Not Detect
- [+] Cloudflare: Not Detected
- [+] Robots File: Could NOT Find robots.txt!
- W H O I S L O O K U P
- =======================================================================================================================================
- Domain Name: CITIGROUP.COM
- Registry Domain ID: 1106356_DOMAIN_COM-VRSN
- Registrar WHOIS Server: whois.corporatedomains.com
- Registrar URL: http://www.cscglobal.com/global/web/csc/digital-brand-services.html
- Updated Date: 2018-12-05T21:58:43Z
- Creation Date: 1998-04-06T04:00:00Z
- Registry Expiry Date: 2020-04-05T04:00:00Z
- Registrar: CSC Corporate Domains, Inc.
- Registrar IANA ID: 299
- Registrar Abuse Contact Email: domainabuse@cscglobal.com
- Registrar Abuse Contact Phone: 8887802723
- Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Domain Status: clientUpdateProhibited https://icann.org/epp#clientUpdateProhibited
- Domain Status: serverDeleteProhibited https://icann.org/epp#serverDeleteProhibited
- Domain Status: serverTransferProhibited https://icann.org/epp#serverTransferProhibited
- Domain Status: serverUpdateProhibited https://icann.org/epp#serverUpdateProhibited
- Name Server: NS1.NSROOT1.COM
- Name Server: NS2.NSROOT2.COM
- DNSSEC: unsigned
- URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
- >>> Last update of whois database: 2019-01-26T12:40:45Z <<<
- For more information on Whois status codes, please visit https://icann.org/epp
- The Registry database contains ONLY .COM, .NET, .EDU domains and
- Registrars.
- G E O I P L O O K U P
- =======================================================================================================================================
- [i] IP Address: 192.193.218.130
- [i] Country: United States
- [i] State:
- [i] City:
- [i] Latitude: 37.751
- [i] Longitude: -97.822
- H T T P H E A D E R S
- =======================================================================================================================================
- [i] HTTP/1.0 301 Moved Permanently
- [i] Location: http://www.citigroup.com/citi/
- [i] Vary: Accept-Encoding
- [i] Content-Encoding: gzip
- [i] Content-Length: 20
- [i] Content-Type: text/plain
- [i] Date: Sat, 26 Jan 2019 12:41:03 GMT
- [i] Connection: close
- [i] HTTP/1.1 302 Found
- [i] Date: Sat, 26 Jan 2019 12:41:04 GMT
- [i] Content-Length: 0
- [i] Location: https://www.citigroup.com/citi/
- [i] Connection: close
- [i] HTTP/1.0 200 OK
- [i] Last-Modified: Thu, 17 Jan 2019 18:21:27 GMT
- [i] ETag: "124a19-31d4-57fab7673f7c0"
- [i] Content-Type: text/html
- [i] Date: Sat, 26 Jan 2019 12:41:06 GMT
- [i] Content-Length: 12756
- [i] Connection: close
- D N S L O O K U P
- =======================================================================================================================================
- citigroup.com. 3599 IN SOA ns1.nsroot1.com. hostmaster.citi.com. 2019010801 3600 300 2419200 3600
- citigroup.com. 3599 IN NS ns1.nsroot1.com.
- citigroup.com. 3599 IN NS ns2.nsroot2.com.
- citigroup.com. 3599 IN A 192.193.102.175
- citigroup.com. 3599 IN A 192.193.218.130
- citigroup.com. 1799 IN MX 5 mx-a.mail.citi.com.
- citigroup.com. 1799 IN MX 5 mx-b.mail.citi.com.
- citigroup.com. 3599 IN TXT "facebook-domain-verification=2amqbctg7cv6hq0dxq4tf107b3y0zn"
- citigroup.com. 3599 IN TXT "v=spf1 a:1._spf.citigroup.com a:2._spf.citigroup.com include:spf-00123c01.pphosted.com redirect=ext1._spf.citigroup.com"
- S U B N E T C A L C U L A T I O N
- =======================================================================================================================================
- Address = 192.193.102.175
- Network = 192.193.102.175 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 192.193.102.175 - 192.193.102.175 }
- N M A P P O R T S C A N
- =======================================================================================================================================
- Starting Nmap 7.40 ( https://nmap.org ) at 2019-01-26 12:41 UTC
- Nmap scan report for citigroup.com (192.193.102.175)
- Host is up (0.045s latency).
- Other addresses for citigroup.com (not scanned): 192.193.218.130
- rDNS record for 192.193.102.175: citicorp.com.au
- PORT STATE SERVICE
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 80/tcp open http
- 110/tcp filtered pop3
- 143/tcp filtered imap
- 443/tcp open https
- 3389/tcp filtered ms-wbt-server
- Nmap done: 1 IP address (1 host up) scanned in 1.55 seconds
- S U B - D O M A I N F I N D E R
- =======================================================================================================================================
- [i] Total Subdomains Found : 329
- [+] Subdomain: fidirectstream10.citigroup.com
- [-] IP: 199.67.182.226
- [+] Subdomain: smtp10.citigroup.com
- [-] IP: 192.193.96.35
- [+] Subdomain: electronicbillingtest10.citigroup.com
- [-] IP: 192.193.218.167
- [+] Subdomain: smtpinbound-mpod-1.citigroup.com
- [-] IP: 199.67.137.143
- [+] Subdomain: smtpinbound-mx-1.citigroup.com
- [-] IP: 192.193.158.11
- [+] Subdomain: fidirectstream01.citigroup.com
- [-] IP: 199.67.184.138
- [+] Subdomain: smtprelayu-gt01.citigroup.com
- [-] IP: 192.193.222.12
- [+] Subdomain: smtpinbound-g11.citigroup.com
- [-] IP: 192.193.222.15
- [+] Subdomain: smtpinbound-m11.citigroup.com
- [-] IP: 192.193.193.13
- [+] Subdomain: smtp11.citigroup.com
- [-] IP: 192.193.96.36
- [+] Subdomain: smtpinbound-s11.citigroup.com
- [-] IP: 192.193.220.24
- [+] Subdomain: citigroupsoa1.citigroup.com
- [-] IP: 192.193.183.110
- [+] Subdomain: customer360view.uat1.citigroup.com
- [-] IP: 192.193.174.107
- [+] Subdomain: citigroupsoauat1.citigroup.com
- [-] IP: 192.193.173.115
- [+] Subdomain: citigroupsoasit1.citigroup.com
- [-] IP: 192.193.173.114
- [+] Subdomain: remoteprint1.citigroup.com
- [-] IP: 199.67.137.39
- [+] Subdomain: smtpinbound-mpod-2.citigroup.com
- [-] IP: 199.67.137.143
- [+] Subdomain: fidirectstream02.citigroup.com
- [-] IP: 199.67.185.135
- [+] Subdomain: smtprelay-gt02.citigroup.com
- [-] IP: 192.193.222.13
- [+] Subdomain: imbdmzu-mw02.citigroup.com
- [-] IP: 192.193.193.78
- [+] Subdomain: smtprelay-mw02.citigroup.com
- [-] IP: 192.193.193.12
- [+] Subdomain: smtpinbound-g12.citigroup.com
- [-] IP: 192.193.222.16
- [+] Subdomain: smtpinbound-m12.citigroup.com
- [-] IP: 192.193.193.14
- [+] Subdomain: fidirectstream12.citigroup.com
- [-] IP: 199.67.183.136
- [+] Subdomain: smtpinbound-r12.citigroup.com
- [-] IP: 192.193.158.15
- [+] Subdomain: smtpinbound-s12.citigroup.com
- [-] IP: 192.193.220.22
- [+] Subdomain: customer360view.uat2.citigroup.com
- [-] IP: 192.193.174.108
- [+] Subdomain: securefiletransferuat2.citigroup.com
- [-] IP: 192.193.219.34
- [+] Subdomain: smtpinbound-mpod-3.citigroup.com
- [-] IP: 199.67.137.143
- [+] Subdomain: smtprelay-gt03.citigroup.com
- [-] IP: 192.193.222.87
- [+] Subdomain: smtprelay-mw03.citigroup.com
- [-] IP: 192.193.193.91
- [+] Subdomain: securefiletransfer3.citigroup.com
- [-] IP: 192.193.173.116
- [+] Subdomain: securefiletransferuat3.citigroup.com
- [-] IP: 192.193.183.250
- [+] Subdomain: smtp4.citigroup.com
- [-] IP: 192.193.71.3
- [+] Subdomain: smtp5.citigroup.com
- [-] IP: 192.193.71.4
- [+] Subdomain: digitalcertificate7.citigroup.com
- [-] IP: 192.193.218.24
- [+] Subdomain: smtp8.citigroup.com
- [-] IP: 192.193.96.33
- [+] Subdomain: wealthplannerondevices8.citigroup.com
- [-] IP: 192.193.157.64
- [+] Subdomain: smtp9.citigroup.com
- [-] IP: 192.193.96.34
- [+] Subdomain: wealthplanneronline.emea.citigroup.com
- [-] IP: 199.67.204.109
- [+] Subdomain: uatwealthplanneronline.emea.citigroup.com
- [-] IP: 199.67.207.220
- [+] Subdomain: uatwealthplannerondevices.emea.citigroup.com
- [-] IP: 199.67.207.210
- [+] Subdomain: wealthplanneradvisory.emea.citigroup.com
- [-] IP: 199.67.207.221
- [+] Subdomain: uatwealthplanneradvisory.emea.citigroup.com
- [-] IP: 199.67.207.215
- [+] Subdomain: digitalonboarding.india.citigroup.com
- [-] IP: 192.193.157.242
- [+] Subdomain: rmapp.india.citigroup.com
- [-] IP: 192.193.128.62
- [+] Subdomain: uatwealthplanneradvisory.india.citigroup.com
- [-] IP: 192.193.128.225
- [+] Subdomain: site10.remoteoffice.australia.citigroup.com
- [-] IP: 192.193.3.98
- [+] Subdomain: site09.remoteoffice.australia.citigroup.com
- [-] IP: 192.193.0.98
- [+] Subdomain: site07.remoteoffice.asia.citigroup.com
- [-] IP: 192.193.160.162
- [+] Subdomain: site08.remoteoffice.asia.citigroup.com
- [-] IP: 192.193.132.130
- [+] Subdomain: vpnphone.asia.citigroup.com
- [-] IP: 192.193.160.167
- [+] Subdomain: responsivesalesautomationrussia.citigroup.com
- [-] IP: 192.193.246.26
- [+] Subdomain: wealthplanneradvisory.china.citigroup.com
- [-] IP: 192.193.128.190
- [+] Subdomain: citigroupsoa.citigroup.com
- [-] IP: 192.193.183.98
- [+] Subdomain: banksearch.cib.citigroup.com
- [-] IP: 192.193.56.36
- [+] Subdomain: banksearchuat.cib.citigroup.com
- [-] IP: 192.193.182.127
- [+] Subdomain: efet.cmb.citigroup.com
- [-] IP: 199.67.184.212
- [+] Subdomain: modelmanagementportal-cob.citigroup.com
- [-] IP: 192.193.219.172
- [+] Subdomain: saml-cob.citigroup.com
- [-] IP: 199.67.137.41
- [+] Subdomain: volunteersmanagementsystemcob.citigroup.com
- [-] IP: 192.193.173.165
- [+] Subdomain: cardsmarketingcentercob.citigroup.com
- [-] IP: 199.67.131.113
- [+] Subdomain: customerservice.aspac.citigroup.com
- [-] IP: 192.193.157.185
- [+] Subdomain: citigroupsoaaspac.citigroup.com
- [-] IP: 192.193.157.24
- [+] Subdomain: citigroupsoauataspac.citigroup.com
- [-] IP: 192.193.133.223
- [+] Subdomain: smtpinbound.citigroup.com
- [-] IP: 192.193.158.82
- [+] Subdomain: smtp-edelivery-outbound.citigroup.com
- [-] IP: 192.193.158.69
- [+] Subdomain: smtpoutbound.citigroup.com
- [-] IP: 192.193.158.79
- [+] Subdomain: procurementsourcing.preprod.citigroup.com
- [-] IP: 192.193.183.188
- [+] Subdomain: login.preprod.citigroup.com
- [-] IP: 192.193.183.206
- [+] Subdomain: careermobilityprod.citigroup.com
- [-] IP: 192.193.183.119
- [+] Subdomain: responsivesalesautomationprd.citigroup.com
- [-] IP: 199.67.207.167
- [+] Subdomain: remoteoffice.citigroup.com
- [-] IP: 199.67.131.65
- [+] Subdomain: site00.remoteoffice.citigroup.com
- [-] IP: 199.67.131.66
- [+] Subdomain: site01.remoteoffice.citigroup.com
- [-] IP: 199.67.136.8
- [+] Subdomain: site11.remoteoffice.citigroup.com
- [-] IP: 199.67.136.15
- [+] Subdomain: uat1.remoteoffice.citigroup.com
- [-] IP: 199.67.136.27
- [+] Subdomain: dev1.remoteoffice.citigroup.com
- [-] IP: 65.196.75.1
- [+] Subdomain: site02.remoteoffice.citigroup.com
- [-] IP: 192.193.216.9
- [+] Subdomain: site12.remoteoffice.citigroup.com
- [-] IP: 192.193.181.20
- [+] Subdomain: dev2.remoteoffice.citigroup.com
- [-] IP: 65.196.75.2
- [+] Subdomain: site03.remoteoffice.citigroup.com
- [-] IP: 199.67.138.66
- [+] Subdomain: uat3.remoteoffice.citigroup.com
- [-] IP: 199.67.203.89
- [+] Subdomain: dev3.remoteoffice.citigroup.com
- [-] IP: 65.196.75.3
- [+] Subdomain: site14.remoteoffice.citigroup.com
- [-] IP: 199.67.131.71
- [+] Subdomain: uat4.remoteoffice.citigroup.com
- [-] IP: 192.193.160.166
- [+] Subdomain: dev4.remoteoffice.citigroup.com
- [-] IP: 65.196.75.4
- [+] Subdomain: uat5.remoteoffice.citigroup.com
- [-] IP: 192.193.216.11
- [+] Subdomain: dev5.remoteoffice.citigroup.com
- [-] IP: 65.196.75.13
- [+] Subdomain: uat.remoteoffice.citigroup.com
- [-] IP: 192.193.216.12
- [+] Subdomain: dev.remoteoffice.citigroup.com
- [-] IP: 65.196.75.38
- [+] Subdomain: uat.salesstationdevice.citigroup.com
- [-] IP: 199.67.207.224
- [+] Subdomain: bondexchange.citigroup.com
- [-] IP: 199.67.141.209
- [+] Subdomain: uat.salesautomationonline.citigroup.com
- [-] IP: 192.193.174.104
- [+] Subdomain: uat.salesstationonline.citigroup.com
- [-] IP: 199.67.207.223
- [+] Subdomain: logintotalcomponline.citigroup.com
- [-] IP: 192.193.218.158
- [+] Subdomain: vpnphone.citigroup.com
- [-] IP: 199.67.138.87
- [+] Subdomain: site04.remoteoffice.europe.citigroup.com
- [-] IP: 199.67.203.80
- [+] Subdomain: site05.remoteoffice.europe.citigroup.com
- [-] IP: 192.193.116.66
- [+] Subdomain: vpnphone.europe.citigroup.com
- [-] IP: 192.193.116.84
- [+] Subdomain: centerforculture.citigroup.com
- [-] IP: 64.90.172.118
- [+] Subdomain: uat.centerforculture.citigroup.com
- [-] IP: 64.90.172.117
- [+] Subdomain: www.centerforculture.citigroup.com
- [-] IP: 64.90.172.118
- [+] Subdomain: 2._spf.citigroup.com
- [-] IP: 177.136.58.178
- [+] Subdomain: site01.icg.citigroup.com
- [-] IP: 204.13.186.188
- [+] Subdomain: site02.icg.citigroup.com
- [-] IP: 204.13.188.232
- [+] Subdomain: go2.icg.citigroup.com
- [-] IP: 204.130.247.249
- [+] Subdomain: site03.icg.citigroup.com
- [-] IP: 204.130.247.249
- [+] Subdomain: site04.icg.citigroup.com
- [-] IP: 209.99.240.197
- [+] Subdomain: go.icg.citigroup.com
- [-] IP: 204.13.186.188
- [+] Subdomain: issuerservices.icg.citigroup.com
- [-] IP: 192.193.56.146
- [+] Subdomain: issuerservicesuat.icg.citigroup.com
- [-] IP: 192.193.86.251
- [+] Subdomain: smtpinboundlg.citigroup.com
- [-] IP: 192.193.158.77
- [+] Subdomain: procurementsourcing.citigroup.com
- [-] IP: 192.193.183.188
- [+] Subdomain: uattest.tradeimaging.citigroup.com
- [-] IP: 192.193.200.190
- [+] Subdomain: www.tradeimaging.citigroup.com
- [-] IP: 192.193.174.154
- [+] Subdomain: commercialbanking.citigroup.com
- [-] IP: 199.67.184.149
- [+] Subdomain: cargotest10.billing.citigroup.com
- [-] IP: 192.193.218.139
- [+] Subdomain: training.citigroup.com
- [-] IP: 192.193.173.102
- [+] Subdomain: scheduleplanning.citigroup.com
- [-] IP: 192.193.102.36
- [+] Subdomain: financelearning.citigroup.com
- [-] IP: 192.193.219.167
- [+] Subdomain: uattest.tradeprocessing.citigroup.com
- [-] IP: 192.193.200.192
- [+] Subdomain: www.tradeprocessing.citigroup.com
- [-] IP: 192.193.174.159
- [+] Subdomain: openprime.testing.citigroup.com
- [-] IP: 199.67.184.150
- [+] Subdomain: login.employeegiving.citigroup.com
- [-] IP: 192.193.219.106
- [+] Subdomain: disasterrecovery.login.employeegiving.citigroup.com
- [-] IP: 199.67.137.44
- [+] Subdomain: blog.citigroup.com
- [-] IP: 146.20.81.168
- [+] Subdomain: uat.blog.citigroup.com
- [-] IP: 146.20.81.168
- [+] Subdomain: trainingstg.citigroup.com
- [-] IP: 192.193.173.103
- [+] Subdomain: travelplannerstg.citigroup.com
- [-] IP: 192.193.218.163
- [+] Subdomain: businessaccessqa.citibank.citigroup.com
- [-] IP: 192.193.173.42
- [+] Subdomain: webcashmanagercitibusinessuat.citibank.citigroup.com
- [-] IP: 192.193.86.23
- [+] Subdomain: webcashmanagercitidirectuat.citibank.citigroup.com
- [-] IP: 192.193.86.24
- [+] Subdomain: businessaccesssit.citibank.citigroup.com
- [-] IP: 192.193.173.46
- [+] Subdomain: poc.portal.citigroup.com
- [-] IP: 192.193.182.174
- [+] Subdomain: openwealthsolutionsportal.citigroup.com
- [-] IP: 192.193.86.73
- [+] Subdomain: modelmanagementportal.citigroup.com
- [-] IP: 199.67.137.55
- [+] Subdomain: mail.citigroup.com
- [-] IP: 199.67.141.124
- [+] Subdomain: assinaturadigital.brazil.citigroup.com
- [-] IP: 192.193.173.22
- [+] Subdomain: uat.assinaturadigital.brazil.citigroup.com
- [-] IP: 192.193.200.99
- [+] Subdomain: ebillpayer.brazil.citigroup.com
- [-] IP: 192.193.35.123
- [+] Subdomain: ebillpayer.uat.brazil.citigroup.com
- [-] IP: 192.193.200.81
- [+] Subdomain: secureaccessweb.nam.citigroup.com
- [-] IP: 199.67.137.28
- [+] Subdomain: secureaccess.nam.citigroup.com
- [-] IP: 192.193.8.23
- [+] Subdomain: secureaccessweb.uat.nam.citigroup.com
- [-] IP: 192.193.104.115
- [+] Subdomain: secureaccess.uat.nam.citigroup.com
- [-] IP: 192.193.173.11
- [+] Subdomain: secureaccessweb.sit.nam.citigroup.com
- [-] IP: 199.67.141.105
- [+] Subdomain: secureaccess.sit.nam.citigroup.com
- [-] IP: 199.67.141.104
- [+] Subdomain: www.hotelprogram.citigroup.com
- [-] IP: 199.67.139.146
- [+] Subdomain: volunteersmanagementsystem.citigroup.com
- [-] IP: 192.193.219.141
- [+] Subdomain: wealthplanneronline.taiwan.citigroup.com
- [-] IP: 192.193.157.229
- [+] Subdomain: uatwealthplanneronline.taiwan.citigroup.com
- [-] IP: 192.193.128.250
- [+] Subdomain: wealthplanneradvisory.taiwan.citigroup.com
- [-] IP: 192.193.128.232
- [+] Subdomain: uatwealthplanneradvisory.taiwan.citigroup.com
- [-] IP: 192.193.128.207
- [+] Subdomain: login.citigroup.com
- [-] IP: 192.193.183.206
- [+] Subdomain: citigroupsoa.authentication.citigroup.com
- [-] IP: 192.193.219.6
- [+] Subdomain: site00.wifiauthentication.citigroup.com
- [-] IP: 192.0.2.1
- [+] Subdomain: site01.wifiauthentication.citigroup.com
- [-] IP: 192.0.2.1
- [+] Subdomain: site11.wifiauthentication.citigroup.com
- [-] IP: 192.0.2.1
- [+] Subdomain: site02.wifiauthentication.citigroup.com
- [-] IP: 192.0.2.1
- [+] Subdomain: site03.wifiauthentication.citigroup.com
- [-] IP: 192.0.2.1
- [+] Subdomain: site04.wifiauthentication.citigroup.com
- [-] IP: 192.0.2.1
- [+] Subdomain: site14.wifiauthentication.citigroup.com
- [-] IP: 192.0.2.1
- [+] Subdomain: site05.wifiauthentication.citigroup.com
- [-] IP: 192.0.2.1
- [+] Subdomain: site15.wifiauthentication.citigroup.com
- [-] IP: 192.0.2.1
- [+] Subdomain: site06.wifiauthentication.citigroup.com
- [-] IP: 192.0.2.1
- [+] Subdomain: site07.wifiauthentication.citigroup.com
- [-] IP: 192.0.2.1
- [+] Subdomain: site08.wifiauthentication.citigroup.com
- [-] IP: 192.0.2.1
- [+] Subdomain: www.foundation.citigroup.com
- [-] IP: 199.67.141.187
- [+] Subdomain: www.disasterrecovery.foundation.citigroup.com
- [-] IP: 199.67.139.14
- [+] Subdomain: uat.emeasalesautomation.citigroup.com
- [-] IP: 192.193.173.204
- [+] Subdomain: uat.ru.emeasalesautomation.citigroup.com
- [-] IP: 192.193.174.32
- [+] Subdomain: onlinesalesautomation.citigroup.com
- [-] IP: 199.67.204.53
- [+] Subdomain: uat.responsivesalesautomation.citigroup.com
- [-] IP: 192.193.174.101
- [+] Subdomain: globalcommonsalesautomation.citigroup.com
- [-] IP: 192.193.157.234
- [+] Subdomain: uat1.directsalesautomation.citigroup.com
- [-] IP: 192.193.174.77
- [+] Subdomain: uat2.directsalesautomation.citigroup.com
- [-] IP: 192.193.173.251
- [+] Subdomain: instantsalesautomation.citigroup.com
- [-] IP: 192.193.245.30
- [+] Subdomain: emaildelivery.mexico.citigroup.com
- [-] IP: 192.193.179.146
- [+] Subdomain: www.morningstar.citigroup.com
- [-] IP: 199.67.137.45
- [+] Subdomain: commercialbankingdr.citigroup.com
- [-] IP: 199.67.182.170
- [+] Subdomain: trainingdr.citigroup.com
- [-] IP: 199.67.137.14
- [+] Subdomain: financelearningdr.citigroup.com
- [-] IP: 199.67.137.68
- [+] Subdomain: logindr.citigroup.com
- [-] IP: 192.193.173.88
- [+] Subdomain: taxseriesdr.citigroup.com
- [-] IP: 192.193.173.91
- [+] Subdomain: careersdr.citigroup.com
- [-] IP: 199.67.137.75
- [+] Subdomain: newhireprocessdr.citigroup.com
- [-] IP: 199.67.137.53
- [+] Subdomain: ecommercelawsdr.citigroup.com
- [-] IP: 199.67.182.169
- [+] Subdomain: fitrader.citigroup.com
- [-] IP: 199.67.184.177
- [+] Subdomain: securefiletransfer.citigroup.com
- [-] IP: 199.67.137.221
- [+] Subdomain: primefinance.securefiletransfer.citigroup.com
- [-] IP: 192.193.218.30
- [+] Subdomain: m.cashmanager.citigroup.com
- [-] IP: 192.193.56.34
- [+] Subdomain: uat.cashmanager.citigroup.com
- [-] IP: 192.193.182.17
- [+] Subdomain: m.uat.cashmanager.citigroup.com
- [-] IP: 192.193.182.42
- [+] Subdomain: citidirectwebcashmanageruat.cashmanager.citigroup.com
- [-] IP: 192.193.182.142
- [+] Subdomain: uat1.emailtracker.citigroup.com
- [-] IP: 192.193.174.103
- [+] Subdomain: uat2.emailtracker.citigroup.com
- [-] IP: 199.67.137.38
- [+] Subdomain: pat.emailtracker.citigroup.com
- [-] IP: 192.193.157.180
- [+] Subdomain: uat.emailtracker.citigroup.com
- [-] IP: 192.193.173.139
- [+] Subdomain: primebroker.citigroup.com
- [-] IP: 199.67.185.243
- [+] Subdomain: www.travelplanner.citigroup.com
- [-] IP: 199.67.141.247
- [+] Subdomain: cardsmarketingcenter.citigroup.com
- [-] IP: 192.193.216.82
- [+] Subdomain: securemailcenter.citigroup.com
- [-] IP: 192.193.154.4
- [+] Subdomain: securecredentialserver.citigroup.com
- [-] IP: 192.193.154.5
- [+] Subdomain: rewardsdr.consumerhr.citigroup.com
- [-] IP: 199.67.137.191
- [+] Subdomain: rewards.consumerhr.citigroup.com
- [-] IP: 192.193.219.150
- [+] Subdomain: jobs.citigroup.com
- [-] IP: 63.131.135.125
- [+] Subdomain: uat2.wealthplannerondevices.citigroup.com
- [-] IP: 192.193.173.245
- [+] Subdomain: sit2.wealthplannerondevices.citigroup.com
- [-] IP: 192.193.173.244
- [+] Subdomain: uatwealthplannerondevices.citigroup.com
- [-] IP: 192.193.173.182
- [+] Subdomain: uat1.citiplannerondevices.citigroup.com
- [-] IP: 199.67.137.238
- [+] Subdomain: globalremittanceuat1.transactionservices.citigroup.com
- [-] IP: 192.193.200.84
- [+] Subdomain: testmarketing2.transactionservices.citigroup.com
- [-] IP: 192.193.182.20
- [+] Subdomain: globalremittanceuat2.transactionservices.citigroup.com
- [-] IP: 192.193.200.49
- [+] Subdomain: globalremittancepreprod.transactionservices.citigroup.com
- [-] IP: 192.193.200.244
- [+] Subdomain: globalremittance.transactionservices.citigroup.com
- [-] IP: 192.193.200.244
- [+] Subdomain: citiconnectcob.trade.transactionservices.citigroup.com
- [-] IP: 192.193.133.103
- [+] Subdomain: citiconnect.trade.transactionservices.citigroup.com
- [-] IP: 192.193.165.236
- [+] Subdomain: uat.citiconnect.trade.transactionservices.citigroup.com
- [-] IP: 192.193.128.108
- [+] Subdomain: www.uat.citidirectunitmatching.transactionservices.citigroup.com
- [-] IP: 199.67.207.120
- [+] Subdomain: email.transactionservices.citigroup.com
- [-] IP: 63.149.195.18
- [+] Subdomain: mta934.email.transactionservices.citigroup.com
- [-] IP: 8.7.43.214
- [+] Subdomain: mta935.email.transactionservices.citigroup.com
- [-] IP: 8.7.43.215
- [+] Subdomain: a.ns.email.transactionservices.citigroup.com
- [-] IP: 65.125.54.133
- [+] Subdomain: b.ns.email.transactionservices.citigroup.com
- [-] IP: 65.125.54.134
- [+] Subdomain: c.ns.email.transactionservices.citigroup.com
- [-] IP: 216.15.189.57
- [+] Subdomain: d.ns.email.transactionservices.citigroup.com
- [-] IP: 216.15.189.58
- [+] Subdomain: e.ns.email.transactionservices.citigroup.com
- [-] IP: 207.251.96.133
- [+] Subdomain: f.ns.email.transactionservices.citigroup.com
- [-] IP: 207.251.96.134
- [+] Subdomain: d.mx.email.transactionservices.citigroup.com
- [-] IP: 63.148.46.97
- [+] Subdomain: fundsecurefiletransfer.transactionservices.citigroup.com
- [-] IP: 199.67.137.83
- [+] Subdomain: portfolioanalytics.transactionservices.citigroup.com
- [-] IP: 192.193.86.54
- [+] Subdomain: digitalcertificates.transactionservices.citigroup.com
- [-] IP: 199.67.184.186
- [+] Subdomain: globalremittanceuat.transactionservices.citigroup.com
- [-] IP: 192.193.183.34
- [+] Subdomain: identitygatewayuat.transactionservices.citigroup.com
- [-] IP: 192.193.183.103
- [+] Subdomain: reply.transactionservices.citigroup.com
- [-] IP: 192.193.56.103
- [+] Subdomain: debtxportal.issuerservices.citigroup.com
- [-] IP: 192.193.56.78
- [+] Subdomain: debtxportaluat.issuerservices.citigroup.com
- [-] IP: 192.193.35.36
- [+] Subdomain: cob.in.onlinecollectionsservices.citigroup.com
- [-] IP: 192.193.128.202
- [+] Subdomain: uat.in.onlinecollectionsservices.citigroup.com
- [-] IP: 192.193.128.125
- [+] Subdomain: taxseries.citigroup.com
- [-] IP: 192.193.183.218
- [+] Subdomain: uat.cititaxseries.citigroup.com
- [-] IP: 192.193.183.220
- [+] Subdomain: irams.citigroup.com
- [-] IP: 199.67.141.239
- [+] Subdomain: loansoperations.citigroup.com
- [-] IP: 199.67.184.160
- [+] Subdomain: openwealthsolutions.citigroup.com
- [-] IP: 192.193.173.97
- [+] Subdomain: stg.openwealthsolutions.citigroup.com
- [-] IP: 192.193.183.41
- [+] Subdomain: hsbc.stg.openwealthsolutions.citigroup.com
- [-] IP: 192.193.183.42
- [+] Subdomain: tempstg.openwealthsolutions.citigroup.com
- [-] IP: 192.193.219.113
- [+] Subdomain: stgportal.openwealthsolutions.citigroup.com
- [-] IP: 192.193.86.75
- [+] Subdomain: tiaacref.preproduction.openwealthsolutions.citigroup.com
- [-] IP: 192.193.173.97
- [+] Subdomain: tempopenwealthsolutions.citigroup.com
- [-] IP: 192.193.173.139
- [+] Subdomain: login.volunteers.citigroup.com
- [-] IP: 199.67.184.210
- [+] Subdomain: disasterrecovery.login.volunteers.citigroup.com
- [-] IP: 199.67.182.210
- [+] Subdomain: www.volunteers.citigroup.com
- [-] IP: 192.193.218.28
- [+] Subdomain: www.approvedsuppliers.citigroup.com
- [-] IP: 199.67.139.149
- [+] Subdomain: tempworkers.citigroup.com
- [-] IP: 192.193.218.181
- [+] Subdomain: boardofdirectors.citigroup.com
- [-] IP: 192.193.183.104
- [+] Subdomain: dr.boardofdirectors.citigroup.com
- [-] IP: 199.67.137.251
- [+] Subdomain: uat.boardofdirectors.citigroup.com
- [-] IP: 199.67.137.250
- [+] Subdomain: secureaccess.citigroup.com
- [-] IP: 199.67.137.24
- [+] Subdomain: www.newhireprocess.citigroup.com
- [-] IP: 192.193.218.3
- [+] Subdomain: www.angelpoints.citigroup.com
- [-] IP: 69.20.24.4
- [+] Subdomain: ecommercelaws.citigroup.com
- [-] IP: 199.67.184.191
- [+] Subdomain: news.citigroup.com
- [-] IP: 173.231.190.151
- [+] Subdomain: mail.news.citigroup.com
- [-] IP: 173.231.190.148
- [+] Subdomain: smtpinbound-uat.citigroup.com
- [-] IP: 192.193.193.79
- [+] Subdomain: citidirectportal4.uat.citigroup.com
- [-] IP: 192.193.183.146
- [+] Subdomain: asia.citidirectportal4.uat.citigroup.com
- [-] IP: 192.193.162.143
- [+] Subdomain: citidirect4.uat.citigroup.com
- [-] IP: 192.193.182.175
- [+] Subdomain: procurementsourcing.uat.citigroup.com
- [-] IP: 192.193.173.72
- [+] Subdomain: login.uat.citigroup.com
- [-] IP: 192.193.174.127
- [+] Subdomain: totalcomp.uat.citigroup.com
- [-] IP: 192.193.174.195
- [+] Subdomain: secureaccess.uat.citigroup.com
- [-] IP: 192.193.104.113
- [+] Subdomain: fidirectstream10uat.citigroup.com
- [-] IP: 199.67.182.227
- [+] Subdomain: fidirectstream01uat.citigroup.com
- [-] IP: 199.67.184.139
- [+] Subdomain: fidirectstream02uat.citigroup.com
- [-] IP: 199.67.185.133
- [+] Subdomain: fidirectstream12uat.citigroup.com
- [-] IP: 199.67.183.132
- [+] Subdomain: digitalcertificate7uat.citigroup.com
- [-] IP: 192.193.218.25
- [+] Subdomain: citigroupsoauat.citigroup.com
- [-] IP: 199.67.137.240
- [+] Subdomain: securefiletransferftpuat.citigroup.com
- [-] IP: 192.193.218.127
- [+] Subdomain: securefiletransferuat.citigroup.com
- [-] IP: 192.193.173.119
- [+] Subdomain: cardsmarketingcenteruat.citigroup.com
- [-] IP: 192.193.216.81
- [+] Subdomain: directsalesagentuat.citigroup.com
- [-] IP: 192.193.133.225
- [+] Subdomain: api.citiconnect.citigroup.com
- [-] IP: 192.193.104.58
- [+] Subdomain: uat.api.citiconnect.citigroup.com
- [-] IP: 192.193.104.57
- [+] Subdomain: uat11.citidirect.citigroup.com
- [-] IP: 192.193.182.209
- [+] Subdomain: citidirectonlineuat11.citidirect.citigroup.com
- [-] IP: 192.193.182.206
- [+] Subdomain: qc21.citidirect.citigroup.com
- [-] IP: 192.193.182.220
- [+] Subdomain: highassuranceidentityqc21.citidirect.citigroup.com
- [-] IP: 192.193.218.131
- [+] Subdomain: uat21.citidirect.citigroup.com
- [-] IP: 192.193.182.217
- [+] Subdomain: testqc31.citidirect.citigroup.com
- [-] IP: 192.193.182.71
- [+] Subdomain: highassuranceidentityqc31.citidirect.citigroup.com
- [-] IP: 192.193.182.74
- [+] Subdomain: citidirectonline31.citidirect.citigroup.com
- [-] IP: 192.193.182.73
- [+] Subdomain: uat31.citidirect.citigroup.com
- [-] IP: 192.193.182.230
- [+] Subdomain: citidirectonlineuat31.citidirect.citigroup.com
- [-] IP: 192.193.182.243
- [+] Subdomain: qc41.citidirect.citigroup.com
- [-] IP: 192.193.182.194
- [+] Subdomain: citidirectonlineqc41.citidirect.citigroup.com
- [-] IP: 192.193.182.189
- [+] Subdomain: uat1.citidirect.citigroup.com
- [-] IP: 192.193.182.113
- [+] Subdomain: uat2.citidirect.citigroup.com
- [-] IP: 192.193.182.111
- [+] Subdomain: pte.citidirect.citigroup.com
- [-] IP: 192.193.183.20
- [+] Subdomain: customertest.citidirect.citigroup.com
- [-] IP: 192.193.182.227
- [+] Subdomain: koreacitidirect.citigroup.com
- [-] IP: 192.193.81.179
- [+] Subdomain: secureaccess.sit.citigroup.com
- [-] IP: 199.67.183.221
- [+] Subdomain: uat2.directsalesagent.citigroup.com
- [-] IP: 192.193.173.164
- [+] Subdomain: uatdirectsalesagent.citigroup.com
- [-] IP: 192.193.174.78
- [+] Subdomain: thirdpartyassessment.citigroup.com
- [-] IP: 192.193.183.132
- [+] Subdomain: remoteprint.citigroup.com
- [-] IP: 199.67.139.99
- [+] Subdomain: www.electronicbillingtest.citigroup.com
- [-] IP: 199.67.139.56
- [+] Subdomain: cookieutilitytest.citigroup.com
- [-] IP: 199.67.141.182
- [+] Subdomain: smtpinbound-mpod-ru.citigroup.com
- [-] IP: 192.193.158.11
- [+] Subdomain: uat2.customer360view.citigroup.com
- [-] IP: 192.193.174.80
- [+] Subdomain: smtpinbound-new.citigroup.com
- [-] IP: 199.67.141.127
- [+] Subdomain: cookieutility4x.citigroup.com
- [-] IP: 199.67.139.210
- [+] Subdomain: cookieutility5x.citigroup.com
- [-] IP: 199.67.141.249
- [+] Subdomain: www.equityindex.citigroup.com
- [-] IP: 199.67.139.151
- [+] Subdomain: loansoperationscontingency.citigroup.com
- [-] IP: 199.67.183.157
- [+] Subdomain: uat1.emailsurvey.citigroup.com
- [-] IP: 192.193.173.153
- [+] Subdomain: pat.emailsurvey.citigroup.com
- [-] IP: 192.193.157.181
- [+] Subdomain: uat.emailsurvey.citigroup.com
- [-] IP: 192.193.173.91
- [+] Subdomain: filetransferuat.italy.citigroup.com
- [-] IP: 199.67.207.98
- [+] Subdomain: bondexchange.disasterrecovery.citigroup.com
- [-] IP: 199.67.139.212
- [+] Subdomain: dali.disasterrecovery.citigroup.com
- [-] IP: 192.193.218.106
- [+] Subdomain: www.morningstar.disasterrecovery.citigroup.com
- [-] IP: 199.67.182.198
- [+] Subdomain: www.travelplanner.disasterrecovery.citigroup.com
- [-] IP: 199.67.139.254
- [+] Subdomain: tempworkers.disasterrecovery.citigroup.com
- [-] IP: 199.67.137.54
- [+] Subdomain: ssbstatements.disasterrecovery.citigroup.com
- [-] IP: 199.67.139.38
- [+] Subdomain: wealthplanneradvisory.citigroup.com
- [-] IP: 192.193.157.179
- [+] Subdomain: uat2.wealthplanneradvisory.citigroup.com
- [-] IP: 199.67.137.44
- [+] Subdomain: cookieutility.citigroup.com
- [-] IP: 199.67.137.43
- #######################################################################################################################################
- [?] Enter the target: example( http://domain.com )
- https://www.citigroup.com/citi/
- [!] IP Address : 104.98.33.172
- [!] www.citigroup.com doesn't seem to use a CMS
- [+] Honeypot Probabilty: 0%
- ---------------------------------------------------------------------------------------------------------------------------------------
- [~] Trying to gather whois information for www.citigroup.com
- [+] Whois information found
- [-] Unable to build response, visit https://who.is/whois/www.citigroup.com
- ---------------------------------------------------------------------------------------------------------------------------------------
- PORT STATE SERVICE
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 80/tcp open http
- 110/tcp filtered pop3
- 143/tcp filtered imap
- 443/tcp open https
- 3389/tcp filtered ms-wbt-server
- Nmap done: 1 IP address (1 host up) scanned in 3.20 seconds
- ---------------------------------------------------------------------------------------------------------------------------------------
- There was an error getting results
- [-] DNS Records
- [>] Initiating 3 intel modules
- [>] Loading Alpha module (1/3)
- [>] Beta module deployed (2/3)
- [>] Gamma module initiated (3/3)
- No emails found
- [+] Hosts found in search engines:
- ---------------------------------------------------------------------------------------------------------------------------------------
- [-] Resolving hostnames IPs...
- [+] Virtual hosts:
- ---------------------------------------------------------------------------------------------------------------------------------------
- #######################################################################################################################################
- ======================================================================================================================================
- | External hosts:
- | [+] External Host Found: https://news.citigroup.com
- | [+] External Host Found: http://online.wsj.com
- | [+] External Host Found: http://www.nyc.gov
- | [+] External Host Found: https://citigroup.com
- | [+] External Host Found: http://www.crainsnewyork.com
- | [+] External Host Found: https://cdns.gigya.com
- | [+] External Host Found: http://edge.media-server.com
- | [+] External Host Found: https://ajax.googleapis.com
- | [+] External Host Found: https://play.google.com
- | [+] External Host Found: http://www.iadb.org
- | [+] External Host Found: http://blog.citigroup.com
- | [+] External Host Found: https://www.linkedin.com
- | [+] External Host Found: https://plus.google.com
- | [+] External Host Found: http://citigroup.com
- | [+] External Host Found: http://www.citi.com
- | [+] External Host Found: http://www.surveyofmayors.com
- | [+] External Host Found: https://event.webcasts.com
- | [+] External Host Found: http://www.veracast.com
- | [+] External Host Found: http://instagram.com
- | [+] External Host Found: https://cc.talkpoint.com
- | [+] External Host Found: https://www.citivelocity.com
- | [+] External Host Found: https://www.facebook.com
- | [+] External Host Found: https://cdnjs.cloudflare.com
- | [+] External Host Found: http://www.huffingtonpost.com
- | [+] External Host Found: http://careers.citigroup.com
- | [+] External Host Found: https://twitter.com
- | [+] External Host Found: https://blog.citigroup.com
- | [+] External Host Found: http://cdn.gigya.com
- | [+] External Host Found: https://edge.media-server.com
- | [+] External Host Found: https://itunes.apple.com
- | [+] External Host Found: https://www.webcaster4.com
- | [+] External Host Found: http://www.homemattersamerica.com
- | [+] External Host Found: https://www.youtube.com
- | [+] External Host Found: https://www.veracast.com
- =======================================================================================================================================
- | E-mails:
- | [+] E-mail Found: infringementnotice@citi.com
- | [+] E-mail Found: msaleson@worldbank.org
- | [+] E-mail Found: navicon@2.png
- | [+] E-mail Found: anthony.ingham@citi.com,
- | [+] E-mail Found: ryann.gastwirth@ft.com
- | [+] E-mail Found: citiforcities@citi.com
- | [+] E-mail Found: kristina.eriksson@ft.com
- | [+] E-mail Found: csantospianesi@worldbank.org
- | [+] E-mail Found: rpost@worldbank.org
- =======================================================================================================================================
- #######################################################################################################################################
- ; <<>> DiG 9.11.5-P1-1-Debian <<>> citigroup.com
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 35732
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
- ;; OPT PSEUDOSECTION:
- ; EDNS: version: 0, flags:; udp: 4096
- ;; QUESTION SECTION:
- ;citigroup.com. IN A
- ;; ANSWER SECTION:
- citigroup.com. 3600 IN A 192.193.102.175
- citigroup.com. 3600 IN A 192.193.218.130
- ;; Query time: 503 msec
- ;; SERVER: 27.50.70.139#53(27.50.70.139)
- ;; WHEN: sam jan 26 07:52:17 EST 2019
- ;; MSG SIZE rcvd: 74
- #######################################################################################################################################
- ; <<>> DiG 9.11.5-P1-1-Debian <<>> +trace citigroup.com
- ;; global options: +cmd
- . 85379 IN NS b.root-servers.net.
- . 85379 IN NS k.root-servers.net.
- . 85379 IN NS e.root-servers.net.
- . 85379 IN NS j.root-servers.net.
- . 85379 IN NS g.root-servers.net.
- . 85379 IN NS m.root-servers.net.
- . 85379 IN NS i.root-servers.net.
- . 85379 IN NS a.root-servers.net.
- . 85379 IN NS l.root-servers.net.
- . 85379 IN NS f.root-servers.net.
- . 85379 IN NS d.root-servers.net.
- . 85379 IN NS c.root-servers.net.
- . 85379 IN NS h.root-servers.net.
- . 85379 IN RRSIG NS 8 0 518400 20190208050000 20190126040000 16749 . q3rKVHRQb5EcsI86uppQah+11q0MrACf+KdZ1Qpcu7OkWgpa17mr6Glj 06BKGkKp7Fl1oRZ8Lmzgd/DsEXwb+/1zG/m2hIDsbNkrBBv0Mw1cNb8s vSetOM+aOpggSzRKeZFjMIpZAVXj3dYIA0jdMuUXT+/myvTc3rBTNv6j +YLIV2l7500Jl54ZLiZC5v0B8y/limYOuwLu3T4zW238vO+xQYMluRXL H8K4p057sjUrFDlL2GSFKDw/DfPdgWEmhci/GwVZnzPEgKR1EN2yXxLC kvuw2SBF+cbku/zJM+3YTV7TfCwx1TuZkIuNUx1OiTs0HtoOyruzKv+B /C+XjQ==
- ;; Received 525 bytes from 27.50.70.139#53(27.50.70.139) in 354 ms
- com. 172800 IN NS a.gtld-servers.net.
- com. 172800 IN NS b.gtld-servers.net.
- com. 172800 IN NS c.gtld-servers.net.
- com. 172800 IN NS d.gtld-servers.net.
- com. 172800 IN NS e.gtld-servers.net.
- com. 172800 IN NS f.gtld-servers.net.
- com. 172800 IN NS g.gtld-servers.net.
- com. 172800 IN NS h.gtld-servers.net.
- com. 172800 IN NS i.gtld-servers.net.
- com. 172800 IN NS j.gtld-servers.net.
- com. 172800 IN NS k.gtld-servers.net.
- com. 172800 IN NS l.gtld-servers.net.
- com. 172800 IN NS m.gtld-servers.net.
- com. 86400 IN DS 30909 8 2 E2D3C916F6DEEAC73294E8268FB5885044A833FC5459588F4A9184CF C41A5766
- com. 86400 IN RRSIG DS 8 1 86400 20190208050000 20190126040000 16749 . ZeR2FbDpSLBwWOA4vLlGMLGdnK2cia5MyTI1XW4R6nx5Ue//c+/xanKi NtxEKMJZmMsEXfAH0x20a949IHTdKoAjesDj0tLAGTTCPnEp7WdI/5Zg tp5mnmvYJoIpvCA397vZqoA/oJNpbKJzJ7dZQkUT0udi9p9wQzPuK4gm 77kRluvcmPTfjdK+EKAp3XpH5TRjBZF7nK7RBjQylQrWt+vkhscPUiiP f9FHgFdU8Lki8sjcnhkQWMRsv+hcueR+p336Tgluonyk2+PZ68oL4cFu VZQo3dif2Ot2ruSVyQ+22FtZSeB/PY71gEkWQgocuxW/xUgOoBef6v3t eaAxlw==
- ;; Received 1173 bytes from 2001:7fd::1#53(k.root-servers.net) in 66 ms
- citigroup.com. 172800 IN NS ns2.nsroot2.com.
- citigroup.com. 172800 IN NS ns1.nsroot1.com.
- CK0POJMG874LJREF7EFN8430QVIT8BSM.com. 86400 IN NSEC3 1 1 0 - CK0Q1GIN43N1ARRC9OSM6QPQR81H5M9A NS SOA RRSIG DNSKEY NSEC3PARAM
- CK0POJMG874LJREF7EFN8430QVIT8BSM.com. 86400 IN RRSIG NSEC3 8 2 86400 20190131054530 20190124043530 16883 com. eg1n7WXtR3qpZdjJTrXm3VEqhRWwaMXbomHWLWO3+Mixz/f/h6DBNEre p2ua4BLyXKu6ZjFFeqpMWacSSLUULHt7U50ag5dJJm6EaSRunqsddPSX GLpVrikC+Xh4Y1de3bMzgz//7+/+GgNLHeGr+ko+KcS2D//B5sz+LmEb oqw=
- I718T8Q0KPNQV4G44E96D1TH3156K9OD.com. 86400 IN NSEC3 1 1 0 - I719C2LSHBNNKNSOI65BC91CL3VMBESV NS DS RRSIG
- I718T8Q0KPNQV4G44E96D1TH3156K9OD.com. 86400 IN RRSIG NSEC3 8 2 86400 20190131053555 20190124042555 16883 com. PacJXoQ1qpEYb8VplZ2RUnREIPl8gRAv1/Y6C3/6rqdEUiyCh5Bgk25y QulEL44B/fd4rnrZt2/9i8hMXatCJNlrBOZbj0jMJhi18eFMPC8rDR// ihJYuQz3JSYFPV7kGR3tyTeT3zk3zxGhHG1fLF+SXybZIc/3Q2H7k4z7 4DQ=
- ;; Received 611 bytes from 192.48.79.30#53(j.gtld-servers.net) in 479 ms
- citigroup.com. 3600 IN A 192.193.102.175
- citigroup.com. 3600 IN A 192.193.218.130
- citigroup.com. 3600 IN NS ns1.nsroot1.com.
- citigroup.com. 3600 IN NS ns2.nsroot2.com.
- ;; Received 126 bytes from 69.36.145.33#53(ns2.nsroot2.com) in 423 ms
- #######################################################################################################################################
- Traceroute 'www.citigroup.com '
- ---------------------------------------------------------------------------------------------------------------------------------------
- Start: 2019-01-26T12:54:20+0000
- HOST: web01 Loss% Snt Last Avg Best Wrst StDev
- 1.|-- 45.79.12.201 0.0% 3 1.2 0.9 0.6 1.2 0.3
- 2.|-- 45.79.12.4 0.0% 3 0.7 0.7 0.7 0.7 0.0
- 3.|-- dls-b22-link.telia.net 0.0% 3 1.3 1.0 0.8 1.3 0.2
- 4.|-- dls-b21-link.telia.net 0.0% 3 2.2 2.0 1.4 2.5 0.6
- 5.|-- dls-b23-link.telia.net 0.0% 3 1.4 1.5 1.4 1.5 0.1
- 6.|-- akamai-ic-341035-dls-b21.c.telia.net 0.0% 3 37.9 38.0 37.7 38.2 0.3
- 7.|-- ae16.cyrusone-dfw.netarch.akamai.com 0.0% 3 2.6 8.6 2.6 19.5 9.4
- 8.|-- a23-193-81-104.deploy.static.akamaitechnologies.com 0.0% 3 2.1 2.0 1.7 2.3 0.3
- #######################################################################################################################################
- [*] Performing General Enumeration of Domain: citigroup.com
- [-] DNSSEC is not configured for citigroup.com
- [*] SOA ns1.nsroot1.com 209.112.114.33
- [*] NS ns1.nsroot1.com 209.112.114.33
- [*] NS ns2.nsroot2.com 69.36.145.33
- [*] MX mx-a.mail.citi.com 67.231.145.106
- [*] MX mx-b.mail.citi.com 67.231.153.94
- [*] A citigroup.com 192.193.102.175
- [*] A citigroup.com 192.193.218.130
- [*] TXT citigroup.com facebook-domain-verification=2amqbctg7cv6hq0dxq4tf107b3y0zn
- [*] TXT citigroup.com v=spf1 a:1._spf.citigroup.com a:2._spf.citigroup.com include:spf-00123c01.pphosted.com redirect=ext1._spf.citigroup.com
- [*] Enumerating SRV Records
- [-] No SRV Records Found for citigroup.com
- [+] 0 Records Found
- #######################################################################################################################################
- [*] Processing domain citigroup.com
- [*] Using system resolvers ['27.50.70.139', '38.132.106.139', '185.93.180.131', '205.151.67.6', '205.151.67.34', '205.151.67.2', '2001:18c0:ffe0:2::2', '2001:18c0:ffe0:3::2', '2001:18c0:ffe0:1::2']
- [+] Getting nameservers
- 209.112.114.33 - ns1.nsroot1.com
- 69.36.145.33 - ns2.nsroot2.com
- [-] Zone transfer failed
- [+] TXT records found
- "facebook-domain-verification=2amqbctg7cv6hq0dxq4tf107b3y0zn"
- "v=spf1 a:1._spf.citigroup.com a:2._spf.citigroup.com include:spf-00123c01.pphosted.com redirect=ext1._spf.citigroup.com"
- [+] MX records found, added to target list
- 5 mx-a.mail.citi.com.
- 5 mx-b.mail.citi.com.
- [*] Scanning citigroup.com for A records
- 192.193.102.175 - citigroup.com
- 192.193.218.130 - citigroup.com
- 146.20.81.168 - blog.citigroup.com
- 116.255.21.208 - careers.citigroup.com
- 116.255.21.202 - careers.citigroup.com
- 63.131.135.125 - jobs.citigroup.com
- 192.193.183.206 - login.citigroup.com
- 116.255.21.202 - m.citigroup.com
- 116.255.21.208 - m.citigroup.com
- 192.193.71.4 - mail.citigroup.com
- 199.67.141.124 - mail.citigroup.com
- 192.193.96.36 - mail.citigroup.com
- 199.67.141.127 - mail.citigroup.com
- 192.193.193.95 - mail.citigroup.com
- 199.67.141.25 - mail.citigroup.com
- 192.193.96.33 - mail.citigroup.com
- 192.193.96.35 - mail.citigroup.com
- 192.193.222.93 - mail.citigroup.com
- 192.193.96.34 - mail.citigroup.com
- 192.193.219.201 - mail.citigroup.com
- 192.193.71.3 - mail.citigroup.com
- 192.193.219.200 - mail.citigroup.com
- 173.231.190.151 - news.citigroup.com
- 192.193.173.102 - training.citigroup.com
- 104.98.33.172 - www.citigroup.com
- 12.184.233.165 - www2.citigroup.com
- #######################################################################################################################################
- Ip Address Status Type Domain Name Server
- ---------- ------ ---- ----------- ------
- 146.20.81.168 301 host blog.citigroup.com
- 116.255.21.208 403 alias careers.citigroup.com
- 116.255.21.208 403 alias www2.citi.com
- 116.255.21.208 403 alias citi.mdc.edgesuite.net
- 116.255.21.208 403 host a1168.b.akamai.net
- 116.255.21.202 403 host a1168.b.akamai.net
- 63.131.135.125 301 host jobs.citigroup.com
- 192.193.183.206 503 host login.citigroup.com
- 116.255.21.202 403 alias m.citigroup.com
- 116.255.21.202 403 alias www2.citi.com
- 116.255.21.202 403 alias citi.mdc.edgesuite.net
- 116.255.21.202 403 host a1168.b.akamai.net
- 116.255.21.208 403 host a1168.b.akamai.net
- 192.193.71.4 host mail.citigroup.com
- 199.67.141.124 host mail.citigroup.com
- 192.193.96.36 host mail.citigroup.com
- 199.67.141.127 host mail.citigroup.com
- 192.193.193.95 host mail.citigroup.com
- 199.67.141.25 host mail.citigroup.com
- 192.193.96.33 host mail.citigroup.com
- 192.193.96.35 host mail.citigroup.com
- 192.193.222.93 host mail.citigroup.com
- 192.193.96.34 host mail.citigroup.com
- 192.193.219.201 host mail.citigroup.com
- 192.193.71.3 host mail.citigroup.com
- 192.193.219.200 host mail.citigroup.com
- 173.231.190.151 200 host news.citigroup.com
- 192.193.173.102 302 host training.citigroup.com
- 104.98.33.172 302 alias www.citigroup.com
- 104.98.33.172 302 alias san.www.citi.com.edgekey.net
- 104.98.33.172 302 host e16976.x.akamaiedge.net
- 12.184.233.165 503 host www2.citigroup.com
- #######################################################################################################################################
- ====================================================================================
- GATHERING DNS INFO
- ====================================================================================
- dnsenum VERSION:1.2.4
- ----- www.citigroup.com -----
- Host's addresses:
- __________________
- e16976.x.akamaiedge.net. 4 IN A 104.98.33.172
- Name Servers:
- ______________
- #######################################################################################################################################
- ---------------------------------------------------------------------------------------------------------------------------------------
- [x] Error downloading /webhp?hl=en-CA
- [2/25] http://www.citigroup.com/ipb/europe/pdfs/feeschedule_lon_plc.pdf
- [3/25] http://www.citigroup.com/ipb/europe/pdfs/keyfact_adv_lon_plc.pdf
- [4/25] http://www.citigroup.com/ipb/europe/pdfs/transferfund_lon.pdf
- [x] Error in PDF metadata Software
- [x] Error in PDF metadata Creator
- [5/25] http://www.citigroup.com/ipb/europe/pdfs/transferfund_plc_0113.pdf
- [6/25] http://www.citigroup.com/ipb/europe/pdfs/transferfund_lon_plc.pdf
- [x] Error in PDF metadata Software
- [x] Error in PDF metadata Creator
- [7/25] https://www.citigroup.com/citi/about/data/ukr_finq033118_interim.pdf
- [x] Error in the parsing process
- [8/25] http://www.citigroup.com/privatebank/lawassociates/pdfs/mort.pdf
- [x] Error in the parsing process
- [9/25] http://www.citigroup.com/ipb/europe/pdfs/feeschedulelondon_aug.pdf
- [10/25] https://www.citigroup.com/citi/crs/newsroom/2016_0223a.pdf
- [x] Error in the parsing process
- [11/25] http://www.citigroup.com/ipb/europe/pdfs/feeschedule_1102.pdf
- [12/25] https://www.citigroup.com/australia/awards/entry-form.pdf
- [x] Error in the parsing process
- [13/25] http://www.citigroup.com/ipb/europe/pdfs/keyfacts_combined.pdf
- [14/25] http://www.citigroup.com/ipb/europe/pdfs/saver_tc.pdf
- [15/25] https://www.citigroup.com/citi/crs/newsroom/2014_1201a.pdf
- [x] Error in the parsing process
- [16/25] http://www.citigroup.com/uae/consumer/info/pdf/insurance_2.pdf
- [x] Error in the parsing process
- [17/25] http://www.citigroup.com/slovakia/homepage/slovak/docs/tvorba_ks.pdf
- [x] Error in the parsing process
- [18/25] http://www.citigroup.com/uae/consumer/info/pdf/insurance_1.pdf
- [x] Error in the parsing process
- [19/25] https://www.citigroup.com/citi/investor/data/ar10cp.pdf%3FieNocache%3D165
- [x] Error in the parsing process
- [20/25] https://www.citigroup.com/citi/foundation/pdf/2008_CitizenshipReport.pdf%3FieNocache%3D155
- [x] Error in the parsing process
- [21/25] https://www.citigroup.com/citi/citizen/community/data/2013/citi_ca.pdf
- [x] Error in the parsing process
- [22/25] https://www.citigroup.com/citi/citizen/community/data/2013/citi_md_es.pdf
- [x] Error in the parsing process
- [23/25] https://www.citigroup.com/icg/sa/citicommunitycapital/docs/affordable_housing-042516.pdf
- [x] Error in the parsing process
- [24/25] https://www.citigroup.com/citi/foundation/pdf/2007_CitizenshipReport.pdf%3FieNocache%3D155
- [x] Error in the parsing process
- [25/25] https://www.citigroup.com/icg/docs/Opportunity_Zone_Client_Update20180912.pdf
- ---------------------------------------------------------------------------------------------------------------------------------------
- [+] List of users found:
- ---------------------------------------------------------------------------------------------------------------------------------------
- Nolte, Clifford [ICG]
- Majid, Irfan [CCC-OT_IT]
- sunnyjuttla
- Unknown User
- Zlotoff, Jacob [ICG-MKTS]
- Leo Bazil
- Dan O'Connor
- Leo Bazil
- Dan O'Connor
- Leo Bazil
- Dan O'Connor
- Leo Bazil
- Dan O'Connor
- Leo Bazil
- Dan O'Connor
- Leo Bazil
- Dan O'Connor
- Leo Bazil
- Dan O'Connor
- Leo Bazil
- Dan O'Connor
- Leo Bazil
- Dan O'Connor
- [+] List of software found:
- --------------------------------------------------------------------------------------------------------------------------------------
- Microsoft Office Word
- FullPress 16.02 RIP 8.54 43664
- Adobe InDesign CS3 (5.0.1)
- Adobe PDF Library 10.0.1
- Adobe InDesign CS6 (Macintosh)
- Adobe InDesign CS4 (6.0)
- Adobe PDF Library 15.0
- Acrobat PDFMaker 15 for Word
- Microsoft Excel
- Microsoft Excel
- Microsoft Excel
- Microsoft Excel
- Microsoft Excel
- Microsoft Excel
- Microsoft Excel
- Microsoft Excel
- Microsoft Excel
- #######################################################################################################################################
- Running Source: Ask
- Running Source: Archive.is
- Running Source: Baidu
- Running Source: Bing
- Running Source: CertDB
- Running Source: CertificateTransparency
- Running Source: Certspotter
- Running Source: Commoncrawl
- Running Source: Crt.sh
- Running Source: Dnsdb
- Running Source: DNSDumpster
- Running Source: DNSTable
- Running Source: Dogpile
- Running Source: Exalead
- Running Source: Findsubdomains
- Running Source: Googleter
- Running Source: Hackertarget
- Running Source: Ipv4Info
- Running Source: PTRArchive
- Running Source: Sitedossier
- Running Source: Threatcrowd
- Running Source: ThreatMiner
- Running Source: WaybackArchive
- Running Source: Yahoo
- Running enumeration on www.citigroup.com
- dnsdb: Unexpected return status 503
- crtsh: json: cannot unmarshal array into Go value of type crtsh.crtshObject
- waybackarchive: Get https://web.archive.org/cdx/search/cdx?url=*.www.citigroup.com/*&output=json&fl=original&collapse=urlkey&page=: net/http: invalid header field value "http://web.archive.org/cdx/search/cdx?url=*.www.citigroup.com/*&output=json&fl=original&collapse=urlkey&page=\x00" for key Referer
- Starting Bruteforcing of www.citigroup.com with 9985 words
- Total 1 Unique subdomains found for www.citigroup.com
- .www.citigroup.com
- #######################################################################################################################################
- [+] www.citigroup.com has no SPF record!
- [*] No DMARC record found. Looking for organizational record
- [*] Found organizational DMARC record:
- [*] v=DMARC1; p=reject; rua=mailto:citi@rua.agari.com,mailto:dmarc.reports.rua@citi.com
- [*] No explicit organizational subdomain policy. Defaulting to organizational policy
- [-] DMARC policy set to reject
- [-] Spoofing not possible for www.citigroup.com
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-26 07:56 EST
- Nmap scan report for www.citigroup.com (104.98.33.172)
- Host is up (0.24s latency).
- rDNS record for 104.98.33.172: a104-98-33-172.deploy.static.akamaitechnologies.com
- Not shown: 471 filtered ports, 3 closed ports
- Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
- PORT STATE SERVICE
- 80/tcp open http
- 443/tcp open https
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-26 07:56 EST
- Nmap scan report for www.citigroup.com (104.98.33.172)
- Host is up (0.23s latency).
- rDNS record for 104.98.33.172: a104-98-33-172.deploy.static.akamaitechnologies.com
- Not shown: 2 filtered ports
- PORT STATE SERVICE
- 53/udp open|filtered domain
- 67/udp open|filtered dhcps
- 68/udp open|filtered dhcpc
- 69/udp open|filtered tftp
- 88/udp open|filtered kerberos-sec
- 123/udp open|filtered ntp
- 139/udp open|filtered netbios-ssn
- 161/udp open|filtered snmp
- 162/udp open|filtered snmptrap
- 389/udp open|filtered ldap
- 520/udp open|filtered route
- 2049/udp open|filtered nfs
- #######################################################################################################################################
- http://www.citigroup.com [302 Found] Country[UNITED STATES][US], IP[104.98.33.172], RedirectLocation[https://www.citigroup.com/]
- https://www.citigroup.com/ [301 Moved Permanently] Country[UNITED STATES][US], IP[104.98.33.172], RedirectLocation[http://www.citigroup.com/citi/]
- http://www.citigroup.com/citi/ [302 Found] Country[UNITED STATES][US], IP[104.98.33.172], RedirectLocation[https://www.citigroup.com/citi/]
- https://www.citigroup.com/citi/ [200 OK] Country[UNITED STATES][US], HTML5, IP[104.98.33.172], Meta-Refresh-Redirect[/citi/noscript.html], Script, Title[Citi | Responsible Finance - Financial Ingenuity - Global Bank], X-UA-Compatible[IE=edge]
- https://www.citigroup.com/citi/noscript.html [200 OK] Country[UNITED STATES][US], IP[104.98.33.172], Title[Citibank Online]
- #######################################################################################################################################
- wig - WebApp Information Gatherer
- Scanning https://www.citigroup.com...
- ______________________ SITE INFO ______________________
- IP Title
- 104.98.33.172 Citi | Responsible Finance - Financi
- _______________________ VERSION _______________________
- Name Versions Type
- akamaighost Platform
- _____________________ INTERESTING _____________________
- URL Note Type
- /readme.html Readme file Interesting
- /install.php Installation file Interesting
- /test.php Test file Interesting
- _______________________________________________________
- Time: 118.3 sec Urls: 618 Fingerprints: 40401
- #######################################################################################################################################
- HTTP/1.1 302 Found
- Date: Sat, 26 Jan 2019 12:59:00 GMT
- Content-Length: 0
- Location: https://www.citigroup.com/
- Connection: keep-alive
- HTTP/1.1 302 Found
- Date: Sat, 26 Jan 2019 12:59:01 GMT
- Content-Length: 0
- Location: https://www.citigroup.com/
- Connection: keep-alive
- HTTP/1.1 403 Forbidden
- Server: AkamaiGHost
- Mime-Version: 1.0
- Content-Type: text/html
- Content-Length: 266
- Expires: Sat, 26 Jan 2019 12:59:03 GMT
- Date: Sat, 26 Jan 2019 12:59:03 GMT
- Connection: close
- ######################################################################################################################################
- Could not open input file: 1
- + -- --=[Port 110 closed... skipping.
- + -- --=[Port 111 closed... skipping.
- + -- --=[Port 123 closed... skipping.
- + -- --=[Port 135 closed... skipping.
- + -- --=[Port 137 closed... skipping.
- + -- --=[Port 139 closed... skipping.
- + -- --=[Port 161 closed... skipping.
- + -- --=[Port 162 closed... skipping.
- + -- --=[Port 389 closed... skipping.
- + -- --=[Port 443 opened... running tests...
- ====================================================================================
- CHECKING FOR WAF
- ====================================================================================
- ^ ^
- _ __ _ ____ _ __ _ _ ____
- ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
- | V V // o // _/ | V V // 0 // 0 // _/
- |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
- <
- ...'
- WAFW00F - Web Application Firewall Detection Tool
- By Sandro Gauci && Wendel G. Henrique
- Checking https://www.citigroup.com
- Generic Detection results:
- No WAF detected by the generic detection
- Number of requests: 14
- #######################################################################################################################################
- https://www.citigroup.com [301 Moved Permanently] Country[UNITED STATES][US], IP[104.98.33.172], RedirectLocation[http://www.citigroup.com/citi/]
- http://www.citigroup.com/citi/ [302 Found] Country[UNITED STATES][US], IP[104.98.33.172], RedirectLocation[https://www.citigroup.com/citi/]
- https://www.citigroup.com/citi/ [200 OK] Country[UNITED STATES][US], HTML5, IP[104.98.33.172], Meta-Refresh-Redirect[/citi/noscript.html], Script, Title[Citi | Responsible Finance - Financial Ingenuity - Global Bank], X-UA-Compatible[IE=edge]
- https://www.citigroup.com/citi/noscript.html [200 OK] Country[UNITED STATES][US], IP[104.98.33.172], Title[Citibank Online]
- #######################################################################################################################################
- wig - WebApp Information Gatherer
- Scanning https://www.citigroup.com...
- _________________ SITE INFO _________________
- IP Title
- 104.98.33.172 Citi | Responsible Finance -
- __________________ VERSION __________________
- Name Versions Type
- akamaighost Platform
- _____________________________________________
- Time: 1.6 sec Urls: 618 Fingerprints: 40401
- #######################################################################################################################################
- HTTP/1.1 403 Forbidden
- Server: AkamaiGHost
- Mime-Version: 1.0
- Content-Type: text/html
- Content-Length: 266
- Expires: Sat, 26 Jan 2019 13:00:20 GMT
- Date: Sat, 26 Jan 2019 13:00:20 GMT
- Connection: close
- HTTP/1.1 403 Forbidden
- Server: AkamaiGHost
- Mime-Version: 1.0
- Content-Type: text/html
- Content-Length: 266
- Expires: Sat, 26 Jan 2019 13:00:21 GMT
- Date: Sat, 26 Jan 2019 13:00:21 GMT
- Connection: close
- #######################################################################################################################################
- Version: 1.11.12-static
- OpenSSL 1.0.2-chacha (1.0.2g-dev)
- Connected to 104.98.33.172
- Testing SSL server www.citigroup.com on port 443 using SNI name www.citigroup.com
- TLS Fallback SCSV:
- Server supports TLS Fallback SCSV
- TLS renegotiation:
- Session renegotiation not supported
- TLS Compression:
- Compression disabled
- Heartbleed:
- TLS 1.2 not vulnerable to heartbleed
- TLS 1.1 not vulnerable to heartbleed
- TLS 1.0 not vulnerable to heartbleed
- Supported Server Cipher(s):
- Preferred TLSv1.2 256 bits ECDHE-RSA-AES256-GCM-SHA384 Curve P-256 DHE 256
- Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-GCM-SHA256 Curve P-256 DHE 256
- Accepted TLSv1.2 256 bits ECDHE-RSA-AES256-SHA384 Curve P-256 DHE 256
- Accepted TLSv1.2 256 bits ECDHE-RSA-AES256-SHA Curve P-256 DHE 256
- Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-SHA256 Curve P-256 DHE 256
- Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-SHA Curve P-256 DHE 256
- Accepted TLSv1.2 256 bits AES256-GCM-SHA384
- Accepted TLSv1.2 128 bits AES128-GCM-SHA256
- Accepted TLSv1.2 256 bits AES256-SHA256
- Accepted TLSv1.2 256 bits AES256-SHA
- Accepted TLSv1.2 128 bits AES128-SHA256
- Accepted TLSv1.2 128 bits AES128-SHA
- SSL Certificate:
- Signature Algorithm: sha256WithRSAEncryption
- RSA Key Strength: 2048
- Subject: www.citi.com
- Altnames: DNS:www.citi.com, DNS:icg.citi.com, DNS:www.citibank.com, DNS:www.citigroup.com, DNS:www.citiretailservices.com, DNS:www.finance.com, DNS:creditcards.citi.com, DNS:www.creditcards.citi.com, DNS:www1.citibank.com, DNS:www2.citibank.com, DNS:oncampus.citi.com, DNS:www.citibank.co.uk, DNS:ccsi.citi.com, DNS:prod.report.nacustomerexperience.citi.com
- Issuer: DigiCert SHA2 Extended Validation Server CA
- Not valid before: Sep 4 00:00:00 2018 GMT
- Not valid after: Jan 2 12:00:00 2020 GMT
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-26 07:40 EST
- Nmap scan report for a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172)
- Host is up (0.24s latency).
- Not shown: 471 filtered ports, 3 closed ports
- Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
- PORT STATE SERVICE
- 80/tcp open http
- 443/tcp open https
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-26 07:40 EST
- Nmap scan report for a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172)
- Host is up (0.23s latency).
- Not shown: 2 filtered ports
- PORT STATE SERVICE
- 53/udp open|filtered domain
- 67/udp open|filtered dhcps
- 68/udp open|filtered dhcpc
- 69/udp open|filtered tftp
- 88/udp open|filtered kerberos-sec
- 123/udp open|filtered ntp
- 139/udp open|filtered netbios-ssn
- 161/udp open|filtered snmp
- 162/udp open|filtered snmptrap
- 389/udp open|filtered ldap
- 520/udp open|filtered route
- 2049/udp open|filtered nfs
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-26 07:40 EST
- Nmap scan report for a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172)
- Host is up (0.12s latency).
- PORT STATE SERVICE VERSION
- 67/udp open|filtered dhcps
- |_dhcp-discover: ERROR: Script execution failed (use -d to debug)
- Too many fingerprints match this host to give specific OS details
- Network Distance: 10 hops
- TRACEROUTE (using proto 1/icmp)
- HOP RTT ADDRESS
- 1 230.70 ms 10.248.200.1
- 2 230.72 ms v106.ce02.hkg-10.hk.leaseweb.net (43.249.36.189)
- 3 231.50 ms te-0-0-2-3.br02.hkg-10.hk.leaseweb.net (43.249.36.12)
- 4 231.52 ms xe-5-1-0.br01.hkg-12.hk.leaseweb.net (64.120.119.226)
- 5 244.87 ms ae-101.bb10.hkg-12.leaseweb.net (31.31.38.192)
- 6 370.53 ms 4826.hkg.equinix.com (119.27.63.115)
- 7 346.60 ms Te-0-0-0-2-8.cor01.syd11.nsw.VOCUS.net.au (119.161.84.31)
- 8 346.63 ms 114.31.192.39
- 9 353.57 ms as20940.bdr02.syd03.nsw.VOCUS.net.au (175.45.124.226)
- 10 345.69 ms a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172)
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-26 07:42 EST
- Nmap scan report for a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172)
- Host is up (0.12s latency).
- PORT STATE SERVICE VERSION
- 68/udp open|filtered dhcpc
- Too many fingerprints match this host to give specific OS details
- Network Distance: 10 hops
- TRACEROUTE (using proto 1/icmp)
- HOP RTT ADDRESS
- 1 228.58 ms 10.248.200.1
- 2 228.62 ms v106.ce02.hkg-10.hk.leaseweb.net (43.249.36.189)
- 3 229.34 ms te-0-0-2-3.br02.hkg-10.hk.leaseweb.net (43.249.36.12)
- 4 229.95 ms xe-5-1-0.br01.hkg-12.hk.leaseweb.net (64.120.119.226)
- 5 229.38 ms ae-101.bb10.hkg-12.leaseweb.net (31.31.38.192)
- 6 368.19 ms 4826.hkg.equinix.com (119.27.63.115)
- 7 344.24 ms Te-0-0-0-2-8.cor01.syd11.nsw.VOCUS.net.au (119.161.84.31)
- 8 344.26 ms 114.31.192.39
- 9 483.46 ms as20940.bdr02.syd03.nsw.VOCUS.net.au (175.45.124.226)
- 10 343.48 ms a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172)
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-26 07:44 EST
- Nmap scan report for a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172)
- Host is up (0.13s latency).
- PORT STATE SERVICE VERSION
- 69/udp open|filtered tftp
- Too many fingerprints match this host to give specific OS details
- Network Distance: 10 hops
- TRACEROUTE (using proto 1/icmp)
- HOP RTT ADDRESS
- 1 229.32 ms 10.248.200.1
- 2 229.37 ms v106.ce02.hkg-10.hk.leaseweb.net (43.249.36.189)
- 3 230.15 ms te-0-0-2-3.br02.hkg-10.hk.leaseweb.net (43.249.36.12)
- 4 230.75 ms xe-5-1-0.br01.hkg-12.hk.leaseweb.net (64.120.119.226)
- 5 230.21 ms ae-101.bb10.hkg-12.leaseweb.net (31.31.38.192)
- 6 369.10 ms 4826.hkg.equinix.com (119.27.63.115)
- 7 345.57 ms Te-0-0-0-2-8.cor01.syd11.nsw.VOCUS.net.au (119.161.84.31)
- 8 345.18 ms 114.31.192.39
- 9 346.96 ms as20940.bdr02.syd03.nsw.VOCUS.net.au (175.45.124.226)
- 10 344.41 ms a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172)
- #######################################################################################################################################
- wig - WebApp Information Gatherer
- Scanning http://104.98.33.172...
- ______________________ SITE INFO ______________________
- IP Title
- 104.98.33.172
- _______________________ VERSION _______________________
- Name Versions Type
- _____________________ INTERESTING _____________________
- URL Note Type
- /readme.html Readme file Interesting
- /install.php Installation file Interesting
- /test.php Test file Interesting
- /test.htm Test file Interesting
- _______________________________________________________
- Time: 113.0 sec Urls: 598 Fingerprints: 40401
- #######################################################################################################################################
- HTTP/1.1 400 Bad Request
- Mime-Version: 1.0
- Content-Type: text/html
- Content-Length: 208
- Expires: Sat, 26 Jan 2019 12:49:24 GMT
- Date: Sat, 26 Jan 2019 12:49:24 GMT
- Connection: keep-alive
- HTTP/1.1 400 Bad Request
- Mime-Version: 1.0
- Content-Type: text/html
- Content-Length: 208
- Expires: Sat, 26 Jan 2019 12:49:24 GMT
- Date: Sat, 26 Jan 2019 12:49:24 GMT
- Connection: keep-alive
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-26 07:49 EST
- Nmap scan report for a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172)
- Host is up (0.12s latency).
- PORT STATE SERVICE VERSION
- 123/udp open|filtered ntp
- Too many fingerprints match this host to give specific OS details
- Network Distance: 10 hops
- TRACEROUTE (using proto 1/icmp)
- HOP RTT ADDRESS
- 1 229.69 ms 10.248.200.1
- 2 229.72 ms v106.ce02.hkg-10.hk.leaseweb.net (43.249.36.189)
- 3 230.27 ms te-0-0-2-3.br02.hkg-10.hk.leaseweb.net (43.249.36.12)
- 4 232.64 ms xe-5-1-0.br01.hkg-12.hk.leaseweb.net (64.120.119.226)
- 5 230.63 ms ae-101.bb10.hkg-12.leaseweb.net (31.31.38.192)
- 6 369.34 ms 4826.hkg.equinix.com (119.27.63.115)
- 7 345.56 ms Te-0-0-0-2-8.cor01.syd11.nsw.VOCUS.net.au (119.161.84.31)
- 8 355.62 ms 114.31.192.39
- 9 348.33 ms as20940.bdr02.syd03.nsw.VOCUS.net.au (175.45.124.226)
- 10 344.59 ms a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172)
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-26 07:51 EST
- Nmap scan report for a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172)
- Host is up (0.28s latency).
- PORT STATE SERVICE VERSION
- 161/tcp filtered snmp
- 161/udp open|filtered snmp
- Too many fingerprints match this host to give specific OS details
- Network Distance: 10 hops
- TRACEROUTE (using proto 1/icmp)
- HOP RTT ADDRESS
- 1 229.47 ms 10.248.200.1
- 2 229.50 ms v106.ce02.hkg-10.hk.leaseweb.net (43.249.36.189)
- 3 229.51 ms te-0-0-2-3.br02.hkg-10.hk.leaseweb.net (43.249.36.12)
- 4 230.51 ms xe-5-1-0.br01.hkg-12.hk.leaseweb.net (64.120.119.226)
- 5 229.54 ms ae-101.bb10.hkg-12.leaseweb.net (31.31.38.192)
- 6 368.30 ms 4826.hkg.equinix.com (119.27.63.115)
- 7 344.32 ms Te-0-0-0-2-8.cor01.syd11.nsw.VOCUS.net.au (119.161.84.31)
- 8 344.36 ms 114.31.192.39
- 9 346.73 ms as20940.bdr02.syd03.nsw.VOCUS.net.au (175.45.124.226)
- 10 343.58 ms a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172)
- #######################################################################################################################################
- Version: 1.11.12-static
- OpenSSL 1.0.2-chacha (1.0.2g-dev)
- Connected to 104.98.33.172
- Testing SSL server 104.98.33.172 on port 443 using SNI name 104.98.33.172
- TLS Fallback SCSV:
- Server supports TLS Fallback SCSV
- TLS renegotiation:
- Session renegotiation not supported
- TLS Compression:
- Compression disabled
- Heartbleed:
- TLS 1.2 not vulnerable to heartbleed
- TLS 1.1 not vulnerable to heartbleed
- TLS 1.0 not vulnerable to heartbleed
- Supported Server Cipher(s):
- Preferred TLSv1.2 256 bits ECDHE-RSA-AES256-GCM-SHA384 Curve P-256 DHE 256
- Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-GCM-SHA256 Curve P-256 DHE 256
- Accepted TLSv1.2 256 bits ECDHE-RSA-AES256-SHA384 Curve P-256 DHE 256
- Accepted TLSv1.2 256 bits ECDHE-RSA-AES256-SHA Curve P-256 DHE 256
- Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-SHA256 Curve P-256 DHE 256
- Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-SHA Curve P-256 DHE 256
- Accepted TLSv1.2 256 bits AES256-GCM-SHA384
- Accepted TLSv1.2 128 bits AES128-GCM-SHA256
- Accepted TLSv1.2 256 bits AES256-SHA256
- Accepted TLSv1.2 256 bits AES256-SHA
- Accepted TLSv1.2 128 bits AES128-SHA256
- Accepted TLSv1.2 128 bits AES128-SHA
- SSL Certificate:
- Signature Algorithm: sha256WithRSAEncryption
- RSA Key Strength: 2048
- Subject: www.citi.com
- Altnames: DNS:www.citi.com, DNS:icg.citi.com, DNS:www.citibank.com, DNS:www.citigroup.com, DNS:www.citiretailservices.com, DNS:www.finance.com, DNS:creditcards.citi.com, DNS:www.creditcards.citi.com, DNS:www1.citibank.com, DNS:www2.citibank.com, DNS:oncampus.citi.com, DNS:www.citibank.co.uk, DNS:ccsi.citi.com, DNS:prod.report.nacustomerexperience.citi.com
- Issuer: DigiCert SHA2 Extended Validation Server CA
- Not valid before: Sep 4 00:00:00 2018 GMT
- Not valid after: Jan 2 12:00:00 2020 GMT
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-26 08:00 EST
- NSE: Loaded 148 scripts for scanning.
- NSE: Script Pre-scanning.
- NSE: Starting runlevel 1 (of 2) scan.
- Initiating NSE at 08:00
- Completed NSE at 08:00, 0.00s elapsed
- NSE: Starting runlevel 2 (of 2) scan.
- Initiating NSE at 08:00
- Completed NSE at 08:00, 0.00s elapsed
- Initiating Ping Scan at 08:00
- Scanning 104.98.33.172 [4 ports]
- Completed Ping Scan at 08:00, 0.28s elapsed (1 total hosts)
- Initiating Parallel DNS resolution of 1 host. at 08:00
- Completed Parallel DNS resolution of 1 host. at 08:00, 0.02s elapsed
- Initiating Connect Scan at 08:00
- Scanning a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172) [1000 ports]
- Discovered open port 443/tcp on 104.98.33.172
- Discovered open port 80/tcp on 104.98.33.172
- Completed Connect Scan at 08:01, 18.47s elapsed (1000 total ports)
- Initiating Service scan at 08:01
- Scanning 2 services on a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172)
- Completed Service scan at 08:01, 36.12s elapsed (2 services on 1 host)
- Initiating OS detection (try #1) against a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172)
- Retrying OS detection (try #2) against a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172)
- Initiating Traceroute at 08:01
- Completed Traceroute at 08:01, 0.38s elapsed
- Initiating Parallel DNS resolution of 10 hosts. at 08:01
- Completed Parallel DNS resolution of 10 hosts. at 08:02, 16.50s elapsed
- NSE: Script scanning 104.98.33.172.
- NSE: Starting runlevel 1 (of 2) scan.
- Initiating NSE at 08:02
- Completed NSE at 08:02, 16.19s elapsed
- NSE: Starting runlevel 2 (of 2) scan.
- Initiating NSE at 08:02
- Completed NSE at 08:02, 0.00s elapsed
- Nmap scan report for a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172)
- Host is up, received reset ttl 64 (0.25s latency).
- Scanned at 2019-01-26 08:00:41 EST for 95s
- Not shown: 995 filtered ports
- Reason: 995 no-responses
- PORT STATE SERVICE REASON VERSION
- 25/tcp closed smtp conn-refused
- 80/tcp open http-proxy syn-ack Squid http proxy
- |_http-open-proxy: Proxy might be redirecting requests
- |_http-title: Invalid URL
- 139/tcp closed netbios-ssn conn-refused
- 443/tcp open ssl/http syn-ack AkamaiGHost (Akamai's HTTP Acceleration/Mirror service)
- | ssl-cert: Subject: commonName=www.citi.com/organizationName=Citigroup Inc./stateOrProvinceName=New York/countryName=US/serialNumber=2154254/jurisdictionStateOrProvinceName=Delaware/localityName=New York/organizationalUnitName=Web Hosting Group/businessCategory=Private Organization/jurisdictionCountryName=US
- | Subject Alternative Name: DNS:www.citi.com, DNS:icg.citi.com, DNS:www.citibank.com, DNS:www.citigroup.com, DNS:www.citiretailservices.com, DNS:www.finance.com, DNS:creditcards.citi.com, DNS:www.creditcards.citi.com, DNS:www1.citibank.com, DNS:www2.citibank.com, DNS:oncampus.citi.com, DNS:www.citibank.co.uk, DNS:ccsi.citi.com, DNS:prod.report.nacustomerexperience.citi.com
- | Issuer: commonName=DigiCert SHA2 Extended Validation Server CA/organizationName=DigiCert Inc/countryName=US/organizationalUnitName=www.digicert.com
- | Public Key type: rsa
- | Public Key bits: 2048
- | Signature Algorithm: sha256WithRSAEncryption
- | Not valid before: 2018-09-04T00:00:00
- | Not valid after: 2020-01-02T12:00:00
- | MD5: 3aaa c3e6 5f76 e7ad 4d38 52d4 a712 8111
- | SHA-1: 4c4d 3bd9 d6eb 2def c285 ba37 c719 cd31 bd2b 656b
- | -----BEGIN CERTIFICATE-----
- | MIIIaTCCB1GgAwIBAgIQCeeCLklJ+ryYwp8BfBicTDANBgkqhkiG9w0BAQsFADB1
- | MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3
- | d3cuZGlnaWNlcnQuY29tMTQwMgYDVQQDEytEaWdpQ2VydCBTSEEyIEV4dGVuZGVk
- | IFZhbGlkYXRpb24gU2VydmVyIENBMB4XDTE4MDkwNDAwMDAwMFoXDTIwMDEwMjEy
- | MDAwMFowgeAxHTAbBgNVBA8MFFByaXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYB
- | BAGCNzwCAQMTAlVTMRkwFwYLKwYBBAGCNzwCAQITCERlbGF3YXJlMRAwDgYDVQQF
- | EwcyMTU0MjU0MQswCQYDVQQGEwJVUzERMA8GA1UECBMITmV3IFlvcmsxETAPBgNV
- | BAcTCE5ldyBZb3JrMRcwFQYDVQQKEw5DaXRpZ3JvdXAgSW5jLjEaMBgGA1UECxMR
- | V2ViIEhvc3RpbmcgR3JvdXAxFTATBgNVBAMTDHd3dy5jaXRpLmNvbTCCASIwDQYJ
- | KoZIhvcNAQEBBQADggEPADCCAQoCggEBAPofaM5OmefncTXRvfrMhxiwCszeJzGZ
- | 05xchdzCnIlqrMHqkj4Czh6x1obQccDnCVQN3iKNWkBe5rGYSnX3nBG+x2lZYfyq
- | haLhEg3RZLtBYaW2VBXqxPD9BMEMv7oMikl/nRsR0L6ez6JhR85EByDCtIPHLIC/
- | SxnHxZ2YamA5ORwWXUzsQQ9WEILn0WeHMt2cqB8UjHdQCXzwspuOB19b8iqMnvFN
- | IF5G69xFb/rY2V50yekrDUNXdNos0FfecmVEMHMp0IMmCpPcoKJDfEuj9ib7EOPi
- | 6zZe7s8L/HaBqVFFnilfSsp+6qMLToxg4/AAmoqtKfCTXqY0oixJMEMCAwEAAaOC
- | BIcwggSDMB8GA1UdIwQYMBaAFD3TUKXWoK3u80pgCmXTIdT4+NYPMB0GA1UdDgQW
- | BBQ7c2NHTBqC+Usxooq0ppbSXTZpczCCATIGA1UdEQSCASkwggElggx3d3cuY2l0
- | aS5jb22CDGljZy5jaXRpLmNvbYIQd3d3LmNpdGliYW5rLmNvbYIRd3d3LmNpdGln
- | cm91cC5jb22CGnd3dy5jaXRpcmV0YWlsc2VydmljZXMuY29tgg93d3cuZmluYW5j
- | ZS5jb22CFGNyZWRpdGNhcmRzLmNpdGkuY29tghh3d3cuY3JlZGl0Y2FyZHMuY2l0
- | aS5jb22CEXd3dzEuY2l0aWJhbmsuY29tghF3d3cyLmNpdGliYW5rLmNvbYIRb25j
- | YW1wdXMuY2l0aS5jb22CEnd3dy5jaXRpYmFuay5jby51a4INY2NzaS5jaXRpLmNv
- | bYIpcHJvZC5yZXBvcnQubmFjdXN0b21lcmV4cGVyaWVuY2UuY2l0aS5jb20wDgYD
- | VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjB1BgNV
- | HR8EbjBsMDSgMqAwhi5odHRwOi8vY3JsMy5kaWdpY2VydC5jb20vc2hhMi1ldi1z
- | ZXJ2ZXItZzIuY3JsMDSgMqAwhi5odHRwOi8vY3JsNC5kaWdpY2VydC5jb20vc2hh
- | Mi1ldi1zZXJ2ZXItZzIuY3JsMEsGA1UdIAREMEIwNwYJYIZIAYb9bAIBMCowKAYI
- | KwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwBwYFZ4EMAQEw
- | gYgGCCsGAQUFBwEBBHwwejAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNl
- | cnQuY29tMFIGCCsGAQUFBzAChkZodHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20v
- | RGlnaUNlcnRTSEEyRXh0ZW5kZWRWYWxpZGF0aW9uU2VydmVyQ0EuY3J0MAkGA1Ud
- | EwQCMAAwggGABgorBgEEAdZ5AgQCBIIBcASCAWwBagB2AKS5CZC0GFgUh7sTosxn
- | cAo8NZgE+RvfuON3zQ7IDdwQAAABZaU2eOYAAAQDAEcwRQIgZ6iWZndvSt7UnkkR
- | DX8YzEZjDnOYjI2pNyAM/aLqf5MCIQDnVsR5JYt3nQEgzKJ0RNq7brWitoKvSrmO
- | PceTSv+g0gB3AFYUBpov18Ls0/XhvUSyPsdGdrm8mRFcwO+UmFXWidDdAAABZaU2
- | eVQAAAQDAEgwRgIhAJgwOI5eXLE4OMKDuVoQcObBGmHg+D1V5G5bWCf93wMBAiEA
- | 8MFjEzOc8WAXckOjE+bfSTQJhb1IVgQrQZMA0k+EsNsAdwC72d+8H4pxtZOUI5eq
- | kntHOFeVCqtS6BqQlmQ2jh7RhQAAAWWlNnncAAAEAwBIMEYCIQCQRv0QrL8Wv7qM
- | PqFY3HDDzJo9gUVCTpLUJtXeUjbZagIhAMPDS1ZkS+5/ILUZBjf2pFXQ9L7J3jtd
- | BkDlpzux5lNsMA0GCSqGSIb3DQEBCwUAA4IBAQCbmXpLDZWjCO/jHQqsGSTWS2ej
- | KKRw0GoZ4MzS+LH8OUgz8xrYPR6PNgriep6Yj7bLcbducjrwkqfji+F70quRR/0B
- | a90i5ory1o+w+8Moboj+xSQDrgn6RY3GZny2jkJMNG/wsXFe4R8JUrMjItGrqwZQ
- | b+bn/sW+tBqlaLdFD4y9FWRqFtuRLoDxzOp0MVKzG4BI28S/TkUnd3eNPVI4WLpZ
- | 1kRwZYujQZoxBhM53ylN90LPwaEOOfpWzWUw3rMVsk6o3ox4+vXhnGo0eB1p1C1/
- | FmWZBOPLjqSNL6NMdq3RMJ97RF+LpjK7PcQ/U4tpaD5uKtZBNtbYbtA6c6LG
- |_-----END CERTIFICATE-----
- |_ssl-date: TLS randomness does not represent time
- 445/tcp closed microsoft-ds conn-refused
- Device type: general purpose|storage-misc|broadband router|WAP
- Running (JUST GUESSING): Linux 3.X|4.X|2.6.X (94%), HP embedded (91%), Asus embedded (88%)
- OS CPE: cpe:/o:linux:linux_kernel:3 cpe:/o:linux:linux_kernel:4 cpe:/h:hp:p2000_g3 cpe:/o:linux:linux_kernel:2.6 cpe:/o:linux:linux_kernel cpe:/h:asus:rt-ac66u cpe:/o:linux:linux_kernel:2.6.22
- OS fingerprint not ideal because: Didn't receive UDP response. Please try again with -sSU
- Aggressive OS guesses: Linux 3.16 - 4.6 (94%), Linux 3.10 - 4.11 (92%), Linux 3.13 (92%), Linux 3.13 or 4.2 (92%), Linux 4.2 (92%), Linux 4.4 (92%), Linux 3.18 (91%), HP P2000 G3 NAS device (91%), Linux 3.2 - 4.9 (91%), Linux 3.16 (90%)
- No exact OS matches for host (test conditions non-ideal).
- TCP/IP fingerprint:
- SCAN(V=7.70%E=4%D=1/26%OT=80%CT=25%CU=%PV=N%DS=10%DC=T%G=N%TM=5C4C5A58%P=x86_64-pc-linux-gnu)
- SEQ(SP=103%GCD=1%ISR=108%TI=Z%CI=Z%II=I%TS=8)
- SEQ(SP=103%GCD=1%ISR=108%TI=Z%CI=Z%TS=8)
- OPS(O1=M4B3ST11NW7%O2=M4B3ST11NW7%O3=M4B3NNT11NW7%O4=M4B3ST11NW7%O5=M4B3ST11NW7%O6=M4B3ST11)
- WIN(W1=7120%W2=7120%W3=7120%W4=7120%W5=7120%W6=7120)
- ECN(R=Y%DF=Y%TG=40%W=7210%O=M4B3NNSNW7%CC=Y%Q=)
- T1(R=Y%DF=Y%TG=40%S=O%A=S+%F=AS%RD=0%Q=)
- T2(R=N)
- T3(R=N)
- T4(R=Y%DF=Y%TG=40%W=0%S=A%A=Z%F=R%O=%RD=0%Q=)
- T5(R=Y%DF=Y%TG=40%W=0%S=Z%A=S+%F=AR%O=%RD=0%Q=)
- T6(R=Y%DF=Y%TG=40%W=0%S=A%A=Z%F=R%O=%RD=0%Q=)
- T7(R=N)
- U1(R=N)
- IE(R=Y%DFI=N%TG=40%CD=S)
- Uptime guess: 42.874 days (since Fri Dec 14 11:03:55 2018)
- Network Distance: 10 hops
- TCP Sequence Prediction: Difficulty=259 (Good luck!)
- IP ID Sequence Generation: All zeros
- TRACEROUTE (using proto 1/icmp)
- HOP RTT ADDRESS
- 1 235.24 ms 10.248.200.1
- 2 235.26 ms v106.ce02.hkg-10.hk.leaseweb.net (43.249.36.189)
- 3 235.85 ms te-0-0-2-3.br02.hkg-10.hk.leaseweb.net (43.249.36.12)
- 4 236.46 ms xe-5-1-0.br01.hkg-12.hk.leaseweb.net (64.120.119.226)
- 5 235.88 ms ae-101.bb10.hkg-12.leaseweb.net (31.31.38.192)
- 6 374.89 ms 4826.hkg.equinix.com (119.27.63.115)
- 7 350.82 ms Te-0-0-0-2-8.cor01.syd11.nsw.VOCUS.net.au (119.161.84.31)
- 8 350.84 ms 114.31.192.39
- 9 354.19 ms as20940.bdr02.syd03.nsw.VOCUS.net.au (175.45.124.226)
- 10 350.20 ms a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172)
- NSE: Script Post-scanning.
- NSE: Starting runlevel 1 (of 2) scan.
- Initiating NSE at 08:02
- Completed NSE at 08:02, 0.00s elapsed
- NSE: Starting runlevel 2 (of 2) scan.
- Initiating NSE at 08:02
- Completed NSE at 08:02, 0.00s elapsed
- Read data files from: /usr/bin/../share/nmap
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 95.31 seconds
- Raw packets sent: 76 (6.604KB) | Rcvd: 112 (27.153KB)
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-26 08:02 EST
- NSE: Loaded 148 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating NSE at 08:02
- Completed NSE at 08:02, 0.00s elapsed
- Initiating NSE at 08:02
- Completed NSE at 08:02, 0.00s elapsed
- Initiating Parallel DNS resolution of 1 host. at 08:02
- Completed Parallel DNS resolution of 1 host. at 08:02, 0.02s elapsed
- Initiating UDP Scan at 08:02
- Scanning a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172) [14 ports]
- Completed UDP Scan at 08:02, 3.15s elapsed (14 total ports)
- Initiating Service scan at 08:02
- Scanning 12 services on a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172)
- Service scan Timing: About 8.33% done; ETC: 08:21 (0:17:47 remaining)
- Completed Service scan at 08:04, 102.57s elapsed (12 services on 1 host)
- Initiating OS detection (try #1) against a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172)
- Retrying OS detection (try #2) against a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172)
- Initiating Traceroute at 08:04
- Completed Traceroute at 08:04, 7.31s elapsed
- Initiating Parallel DNS resolution of 1 host. at 08:04
- Completed Parallel DNS resolution of 1 host. at 08:04, 0.02s elapsed
- NSE: Script scanning 104.98.33.172.
- Initiating NSE at 08:04
- Completed NSE at 08:04, 20.32s elapsed
- Initiating NSE at 08:04
- Completed NSE at 08:04, 1.65s elapsed
- Nmap scan report for a104-98-33-172.deploy.static.akamaitechnologies.com (104.98.33.172)
- Host is up (0.28s latency).
- PORT STATE SERVICE VERSION
- 53/udp open|filtered domain
- 67/udp open|filtered dhcps
- 68/udp open|filtered dhcpc
- 69/udp open|filtered tftp
- 88/udp open|filtered kerberos-sec
- 123/udp open|filtered ntp
- 137/udp filtered netbios-ns
- 138/udp filtered netbios-dgm
- 139/udp open|filtered netbios-ssn
- 161/udp open|filtered snmp
- 162/udp open|filtered snmptrap
- 389/udp open|filtered ldap
- 520/udp open|filtered route
- 2049/udp open|filtered nfs
- Too many fingerprints match this host to give specific OS details
- TRACEROUTE (using port 138/udp)
- HOP RTT ADDRESS
- 1 234.50 ms 10.248.200.1
- 2 ... 3
- 4 234.66 ms 10.248.200.1
- 5 235.17 ms 10.248.200.1
- 6 235.16 ms 10.248.200.1
- 7 235.16 ms 10.248.200.1
- 8 235.15 ms 10.248.200.1
- 9 235.15 ms 10.248.200.1
- 10 235.17 ms 10.248.200.1
- 11 ... 18
- 19 234.70 ms 10.248.200.1
- 20 238.42 ms 10.248.200.1
- 21 ... 28
- 29 235.04 ms 10.248.200.1
- 30 235.28 ms 10.248.200.1
- NSE: Script Post-scanning.
- Initiating NSE at 08:04
- Completed NSE at 08:04, 0.00s elapsed
- Initiating NSE at 08:04
- Completed NSE at 08:04, 0.00s elapsed
- Read data files from: /usr/bin/../share/nmap
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 142.98 seconds
- Raw packets sent: 135 (8.008KB) | Rcvd: 397 (83.950KB)
- #######################################################################################################################################
- Anonymous JTSEC #OpIcarus Full Recon #1
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement