Anonymous JTSEC #OpTurkey Full Recon #4

#######################################################################################################################################
=======================================================================================================================================
Hostname 	sam.gov.tr 	  	ISP 	Radore Veri Merkezi Hizmetleri A.S.
Continent 	Asia 	  	Flag
TR
Country 	Turkey 	  	Country Code 	TR
Region 	Unknown 	  	Local time 	11 Oct 2019 22:55 +03
City 	Unknown 	  	Postal Code 	Unknown
IP Address 	176.53.84.114 	  	Latitude 	41.021
  	  	  	Longitude 	28.9
=======================================================================================================================================
#######################################################################################################################################
> sam.gov.tr
Server:		185.93.180.131
Address:	185.93.180.131#53

Non-authoritative answer:
Name:	sam.gov.tr
Address: 176.53.84.114
>
#######################################################################################################################################
** Domain Name: sam.gov.tr

** Registrant:
   T.C. DIŞİŞLERİ BAKANLIĞI, STRATEJİK ARAŞTIRMALAR MERKEZİ
   Kırçiçeği Sokak 8/3
   Gaziosmanpaşa
   Ankara,
     Türkiye
   strategy@mfa.gov.tr
   + 90-312-4460435-
   + 90-312-4450584


** Administrative Contact:
NIC Handle		: tdb14-metu
Organization Name	: T.C. Dışişleri Bakanlığı
Address			: T.C. Dışişleri Bakanlığı
			  BALGAT
			  Ankara,06100
			  Türkiye
Phone			: + 90-312-2921218-
Fax			: +


** Technical Contact:
NIC Handle		: tdb14-metu
Organization Name	: T.C. Dışişleri Bakanlığı
Address			: T.C. Dışişleri Bakanlığı
			  BALGAT
			  Ankara,06100
			  Türkiye
Phone			: + 90-312-2921218-
Fax			: +


** Billing Contact:
NIC Handle		: tdb14-metu
Organization Name	: T.C. Dışişleri Bakanlığı
Address			: T.C. Dışişleri Bakanlığı
			  BALGAT
			  Ankara,06100
			  Türkiye
Phone			: + 90-312-2921218-
Fax			: +


** Domain Servers:
ns1.creamediacloud.com
ns2.creamediacloud.com

** Additional Info:
Created on..............: 2005-Mar-21.
Expires on..............: 2021-Mar-20.
#######################################################################################################################################
[+] Target : sam.gov.tr

[+] IP Address : 176.53.84.114

[+] Headers :

[+] Date : Fri, 11 Oct 2019 21:15:17 GMT
[+] Server : Apache
[+] Vary : Accept-Encoding,User-Agent
[+] Last-Modified : Fri, 11 Oct 2019 20:23:09 GMT
[+] Accept-Ranges : bytes
[+] Content-Length : 4001
[+] Referrer-Policy :
[+] Keep-Alive : timeout=5, max=100
[+] Connection : Keep-Alive
[+] Content-Type : text/html; charset=UTF-8
[+] Content-Encoding : gzip

[+] SSL Certificate Information :

[+] commonName : sam.gov.tr
[+] countryName : US
[+] stateOrProvinceName : TX
[+] localityName : Houston
[+] organizationName : cPanel, Inc.
[+] commonName : cPanel, Inc. Certification Authority
[+] Version : 3
[+] Serial Number : 7CAC61F94A1E5FE5027B116CC93961A8
[+] Not Before : Sep  3 00:00:00 2019 GMT
[+] Not After : Dec  2 23:59:59 2019 GMT
[+] OCSP : ('http://ocsp.comodoca.com',)
[+] subject Alt Name : (('DNS', 'sam.gov.tr'), ('DNS', 'mail.sam.gov.tr'), ('DNS', 'www.sam.gov.tr'))
[+] CA Issuers : ('http://crt.comodoca.com/cPanelIncCertificationAuthority.crt',)
[+] CRL Distribution Points : ('http://crl.comodoca.com/cPanelIncCertificationAuthority.crl',)

[+] Whois Lookup :

[+] NIR : None
[+] ASN Registry : ripencc
[+] ASN : 42926
[+] ASN CIDR : 176.53.84.0/24
[+] ASN Country Code : TR
[+] ASN Date : 2011-05-26
[+] ASN Description : RADORE, TR
[+] cidr : 176.53.84.0/24
[+] name : GuzelHosting
[+] handle : WTL8-RIPE
[+] range : 176.53.84.0 - 176.53.84.255
[+] description : None
[+] country : TR
[+] state : None
[+] city : None
[+] address : Webhost Technologies Ltd. Serbest Liman Ve Blge P.K. 486
[+] postal_code : None
[+] emails : None
[+] created : 2016-08-16T07:13:16Z
[+] updated : 2016-08-16T21:22:28Z

[+] Crawling Target...

[+] Looking for robots.txt........[ Found ]
[+] Extracting robots Links.......[ 2 ]
[+] Looking for sitemap.xml.......[ Not Found ]
[+] Extracting CSS Links..........[ 5 ]
[+] Extracting Javascript Links...[ 12 ]
[+] Extracting Internal Links.....[ 31 ]
[+] Extracting External Links.....[ 2 ]
[+] Extracting Images.............[ 14 ]

[+] Total Links Extracted : 66

[+] Dumping Links in /opt/FinalRecon/dumps/sam.gov.tr.dump
[+] Completed!
#######################################################################################################################################
[+] Starting At 2019-10-11 17:16:51.976358
[+] Collecting Information On: http://sam.gov.tr/
[#] Status: 200
--------------------------------------------------
[#] Web Server Detected: Apache
[!] X-Frame-Options Headers not detect! target might be vulnerable Click Jacking
- Date: Fri, 11 Oct 2019 21:16:50 GMT
- Server: Apache
- Vary: Accept-Encoding,User-Agent
- Last-Modified: Fri, 11 Oct 2019 20:23:09 GMT
- Accept-Ranges: bytes
- Content-Length: 4001
- Referrer-Policy:
- Keep-Alive: timeout=5, max=100
- Connection: Keep-Alive
- Content-Type: text/html; charset=UTF-8
- Content-Encoding: gzip
--------------------------------------------------
[#] Finding Location..!
[#] as: AS42926 Radore Veri Merkezi Hizmetleri A.S.
[#] city: Ankara
[#] country: Turkey
[#] countryCode: TR
[#] isp: Radore Veri Merkezi Hizmetleri A.S.
[#] lat: 39.9334
[#] lon: 32.8597
[#] org: Webhost Technologies Ltd.
[#] query: 176.53.84.114
[#] region: 06
[#] regionName: Ankara
[#] status: success
[#] timezone: Europe/Istanbul
[#] zip:
--------------------------------------------------
[x] Didn't Detect WAF Presence on: http://sam.gov.tr/
--------------------------------------------------
[#] Starting Reverse DNS
[!] Found 1 any Domain
- sam.gov.tr
--------------------------------------------------
[!] Scanning Open Port
[#] 21/tcp  open ftp
[#] 26/tcp  open rsftp
[#] 53/tcp  open domain
[#] 80/tcp  open http
[#] 110/tcp  open pop3
[#] 143/tcp  open imap
[#] 443/tcp  open https
[#] 465/tcp  open smtps
[#] 587/tcp  open submission
[#] 993/tcp  open imaps
[#] 995/tcp  open pop3s
[#] 2222/tcp  open EtherNetIP-1
--------------------------------------------------
[+] Collecting Information Disclosure!
[#] Detecting sitemap.xml file
[-] sitemap.xml file not Found!?
[#] Detecting robots.txt file
[!] robots.txt File Found: http://sam.gov.tr//robots.txt
[#] Detecting GNU Mailman
[!]  GNU Mailman App Detected: http://sam.gov.tr//mailman/admin
[!] version: 2.1.27
--------------------------------------------------
[+] Crawling Url Parameter On: http://sam.gov.tr/
--------------------------------------------------
[#] Searching Html Form !
[+] Html Form Discovered
[#] action: http://sam.gov.tr/
[#] class: None
[#] id: searchform
[#] method: get
--------------------------------------------------
[!] Found 7 dom parameter
[#] http://sam.gov.tr//#
[#] http://sam.gov.tr//#
[#] http://sam.gov.tr//#
[#] http://sam.gov.tr//#
[#] http://sam.gov.tr//#
[#] http://sam.gov.tr//#
[#] http://sam.gov.tr//#
--------------------------------------------------
[!] 1 Internal Dynamic Parameter Discovered
[+] http://sam.gov.tr/?cat=6
--------------------------------------------------
[-] No external Dynamic Paramter Found!?
--------------------------------------------------
[!] 67 Internal links Discovered
[+] http://sam.gov.tr/wp-content/themes/sam/style.css
[+] http://sam.gov.tr/wp-content/themes/sam/assets/styles/general.css
[+] http://sam.gov.tr/xmlrpc.php
[+] http://sam.gov.tr/wp-includes/wlwmanifest.xml
[+] http://sam.gov.tr
[+] http://www.sam.gov.tr/tr/
[+] http://sam.gov.tr
[+] http://sam.gov.tr/about-sam/
[+] http://sam.gov.tr/about-minister/
[+] http://sam.gov.tr/deputy-minister/
[+] http://sam.gov.tr/chairmans-message/
[+] http://sam.gov.tr/staff/
[+] http://sam.gov.tr/category/publications/perceptions/
[+] http://sam.gov.tr/category/publications/vision-papers/
[+] http://sam.gov.tr/category/publications/sam-papers/
[+] http://sam.gov.tr/category/publications/sam_reports/
[+] http://sam.gov.tr/summer-winter-school/
[+] http://sam.gov.tr/internships-at-sam/
[+] http://sam.gov.tr/alumni/
[+] http://sam.gov.tr/category/events/
[+] http://sam.gov.tr/category/announcements/
[+] http://sam.gov.tr/contact/
[+] http://sam.gov.tr/turkic-council-the-10th-anniversary-of-the-nakhichevan-agreement-conference/
[+] http://sam.gov.tr/sam-talks-xi-prof-ersel-aydinli/
[+] http://sam.gov.tr/perceptions-spring-summer-2019/
[+] http://sam.gov.tr/meeting-with-the-drc-of-china/
[+] http://sam.gov.tr/presentation-to-ytb-interns/
[+] http://sam.gov.tr/presentation-to-peking-university-delegation/
[+] http://sam.gov.tr/youth-bridges-meeting/
[+] http://sam.gov.tr/sam-talks-x-prof-sukru-hanioglu/
[+] http://sam.gov.tr/presentation-to-russian-journalists/
[+] http://sam.gov.tr/sam-papers-no-17-new-balance-of-power-in-the-eastern-mediterranean-and-turkey/
[+] http://sam.gov.tr/about-minister/
[+] http://sam.gov.tr/about-minister/
[+] http://sam.gov.tr/about-minister/
[+] http://sam.gov.tr/category/publications/perceptions/
[+] http://sam.gov.tr/category/publications/perceptions/
[+] http://sam.gov.tr/category/publications/perceptions/
[+] http://sam.gov.tr/sam-papers-no-17-new-balance-of-power-in-the-eastern-mediterranean-and-turkey/
[+] http://sam.gov.tr/category/publications/sam-papers/
[+] http://sam.gov.tr/sam-papers-no-17-new-balance-of-power-in-the-eastern-mediterranean-and-turkey/
[+] http://sam.gov.tr/perceptions-spring-summer-2019/
[+] http://sam.gov.tr/sam-papers-no-17-new-balance-of-power-in-the-eastern-mediterranean-and-turkey/
[+] http://sam.gov.tr/sam-paper-no-16-on-turkeys-missile-defense-strategy-the-four-faces-of-the-s-400-deal-between-turkey-and-russia/
[+] http://sam.gov.tr/annual-report-2017/
[+] http://sam.gov.tr/perceptions-summer-2018/
[+] http://sam.gov.tr/turkic-council-the-10th-anniversary-of-the-nakhichevan-agreement-conference/
[+] http://sam.gov.tr/sam-talks-xi-prof-ersel-aydinli/
[+] http://sam.gov.tr/meeting-with-the-drc-of-china/
[+] http://sam.gov.tr/presentation-to-ytb-interns/
[+] http://sam.gov.tr/presentation-to-peking-university-delegation/
[+] http://sam.gov.tr
[+] http://sam.gov.tr/about-sam/
[+] http://sam.gov.tr/about-minister/
[+] http://sam.gov.tr/deputy-minister/
[+] http://sam.gov.tr/chairmans-message/
[+] http://sam.gov.tr/staff/
[+] http://sam.gov.tr/category/publications/perceptions/
[+] http://sam.gov.tr/category/publications/vision-papers/
[+] http://sam.gov.tr/category/publications/sam-papers/
[+] http://sam.gov.tr/category/publications/sam_reports/
[+] http://sam.gov.tr/summer-winter-school/
[+] http://sam.gov.tr/internships-at-sam/
[+] http://sam.gov.tr/alumni/
[+] http://sam.gov.tr/category/events/
[+] http://sam.gov.tr/category/announcements/
[+] http://sam.gov.tr/contact/
--------------------------------------------------
[!] 3 External links Discovered
[#] http://gmpg.org/xfn/11
[#] http://twitter.com/SAM_MFA
[#] http://www.creamediadesign.com
--------------------------------------------------
[#] Mapping Subdomain..
[!] Found 1 Subdomain
- sam.gov.tr
--------------------------------------------------
[!] Done At 2019-10-11 17:17:18.579119
######################################################################################################################################
[i] Scanning Site: http://sam.gov.tr


B A S I C   I N F O
====================


[+] Site Title: SAM | Center for Strategic Research
[+] IP address: 176.53.84.114
[+] Web Server: Apache
[+] CMS: WordPress
[+] Cloudflare: Not Detected
[+] Robots File: Found

-------------[ contents ]----------------
User-agent: *
Disallow: /wp-admin/
Allow: /wp-admin/admin-ajax.php

-----------[end of contents]-------------


W H O I S   L O O K U P
========================

	** Domain Name: sam.gov.tr

** Registrant:
   T.C. DIŞİŞLERİ BAKANLIĞI, STRATEJİK ARAŞTIRMALAR MERKEZİ
   Kırçiçeği Sokak 8/3
   Gaziosmanpaşa
   Ankara,
     Türkiye
   strategy@mfa.gov.tr
   + 90-312-4460435-
   + 90-312-4450584


** Administrative Contact:
NIC Handle		: tdb14-metu
Organization Name	: T.C. Dışişleri Bakanlığı
Address			: T.C. Dışişleri Bakanlığı
			  BALGAT
			  Ankara,06100
			  Türkiye
Phone			: + 90-312-2921218-
Fax			: +


** Technical Contact:
NIC Handle		: tdb14-metu
Organization Name	: T.C. Dışişleri Bakanlığı
Address			: T.C. Dışişleri Bakanlığı
			  BALGAT
			  Ankara,06100
			  Türkiye
Phone			: + 90-312-2921218-
Fax			: +


** Billing Contact:
NIC Handle		: tdb14-metu
Organization Name	: T.C. Dışişleri Bakanlığı
Address			: T.C. Dışişleri Bakanlığı
			  BALGAT
			  Ankara,06100
			  Türkiye
Phone			: + 90-312-2921218-
Fax			: +


** Domain Servers:
ns1.creamediacloud.com
ns2.creamediacloud.com

** Additional Info:
Created on..............: 2005-Mar-21.
Expires on..............: 2021-Mar-20.


G E O  I P  L O O K  U P
=========================

[i] IP Address: 176.53.84.114
[i] Country: Turkey
[i] State:
[i] City:
[i] Latitude: 41.0214
[i] Longitude: 28.9948


H T T P   H E A D E R S
=======================


[i]  HTTP/1.1 200 OK
[i]  Date: Fri, 11 Oct 2019 21:15:43 GMT
[i]  Server: Apache
[i]  Last-Modified: Fri, 11 Oct 2019 20:23:09 GMT
[i]  Accept-Ranges: bytes
[i]  Content-Length: 22640
[i]  Vary: Accept-Encoding,User-Agent
[i]  Referrer-Policy:
[i]  Connection: close
[i]  Content-Type: text/html; charset=UTF-8


D N S   L O O K U P
===================

sam.gov.tr.		14399	IN	TXT	"v=spf1 ip4:176.53.84.114 ip4:5.2.75.169 +a +mx +ip4:88.202.188.27 ~all"
sam.gov.tr.		14399	IN	MX	0 sam.gov.tr.
sam.gov.tr.		21599	IN	SOA	ns1.creamediacloud.com. tyalcin.hotmail.com. 2019061900 3600 1800 1209600 86400
sam.gov.tr.		21599	IN	NS	ns1.creamediacloud.com.
sam.gov.tr.		21599	IN	NS	ns2.creamediacloud.com.
sam.gov.tr.		14399	IN	A	176.53.84.114


S U B N E T   C A L C U L A T I O N
====================================

Address       = 176.53.84.114
Network       = 176.53.84.114 / 32
Netmask       = 255.255.255.255
Broadcast     = not needed on Point-to-Point links
Wildcard Mask = 0.0.0.0
Hosts Bits    = 0
Max. Hosts    = 1   (2^0 - 0)
Host Range    = { 176.53.84.114 - 176.53.84.114 }


N M A P   P O R T   S C A N
============================

Starting Nmap 7.70 ( https://nmap.org ) at 2019-10-11 21:15 UTC
Nmap scan report for sam.gov.tr (176.53.84.114)
Host is up (0.13s latency).
rDNS record for 176.53.84.114: 114ro2gwn.guzel.net.tr

PORT     STATE    SERVICE
21/tcp   open     ftp
22/tcp   closed   ssh
23/tcp   filtered telnet
80/tcp   open     http
110/tcp  open     pop3
143/tcp  open     imap
443/tcp  open     https
3389/tcp filtered ms-wbt-server

Nmap done: 1 IP address (1 host up) scanned in 3.00 seconds

#######################################################################################################################################
Enter Address Website = sam.gov.tr


Reversing IP With HackTarget 'sam.gov.tr'
--------------------------------------------

[+] apider.org
[+] apitherapy.institute
[+] clinic-up.com
[+] creamediacloud.com
[+] creamediadesign.com
[+] drmujgancaliskan.com
[+] drozcanyildiz.com
[+] educanova.education
[+] fangzhu.academy
[+] gagaku.org
[+] geleceginegitimi.org
[+] ges.world
[+] globera.org
[+] holistiktip.org
[+] interaktifmedya.vip
[+] konakmimarlik.net
[+] kursunkalemajans.com
[+] mail.apitherapy.institute
[+] mail.creamediadesign.com
[+] mail.drmujgancaliskan.com
[+] mail.drozcanyildiz.com
[+] mail.fangzhu.academy
[+] mail.globera.org
[+] mail.interaktifmedya.vip
[+] mail.kursunkalemajans.com
[+] mail.medicon.vip
[+] mail.nbhukuk.com
[+] mail.persana.co.uk
[+] mail.refugeedatabase.org
[+] mail.sanatterapi.org
[+] mail.sosyalmedya.vip
[+] medicon.vip
[+] mikadecor.com
[+] nbhukuk.com
[+] ns1.creamediacloud.com
[+] ns2.creamediacloud.com
[+] persana.co.uk
[+] personalogia.com
[+] refugeedatabase.org
[+] sam.gov.tr
[+] sanatterapi.org
[+] savaskaya.net
[+] sbhukuk.com.tr
[+] serdarozkan.com
[+] serdarozkan.info
[+] serdarozkan.org
[+] server-176.53.84.114.as42926.net
[+] sibelyalcin.com.tr
[+] sosyalmedya.vip
[+] srv.creamediacloud.com
[+] timuryalcin.com
[+] www.apitherapy.institute
[+] www.clinic-up.com
[+] www.creamediadesign.com
[+] www.drmujgancaliskan.com
[+] www.drozcanyildiz.com
[+] www.geleceginegitimi.org
[+] www.globera.org
[+] www.interaktifmedya.vip
[+] www.kursunkalemajans.com
[+] www.medicon.vip
[+] www.mikadecor.com
[+] www.nbhukuk.com
[+] www.persana.co.uk
[+] www.refugeedatabase.org
[+] www.sosyalmedya.vip
[+] www.zkzeynepkaya.com
[+] zkzeynepkaya.com


Reverse IP With YouGetSignal 'sam.gov.tr'
--------------------------------------------

[*] IP: 176.53.84.114
[*] Domain: sam.gov.tr
[*] Total Domains: 1

[+] sam.gov.tr


Geo IP Lookup 'sam.gov.tr'
-----------------------------

[+] IP Address: 176.53.84.114
[+] Country: Turkey
[+] State:
[+] City:
[+] Latitude: 41.0214
[+] Longitude: 28.9948


Whois 'sam.gov.tr'
---------------------

[+] ** Domain Name: sam.gov.tr
[+] ** Registrant:
[+]    T.C. DIŞİŞLERİ BAKANLIĞI, STRATEJİK ARAŞTIRMALAR MERKEZİ
[+]    Kırçiçeği Sokak 8/3
[+]    Gaziosmanpaşa
[+]    Ankara,
[+]      Türkiye
[+]    strategy@mfa.gov.tr
[+]    + 90-312-4460435-
[+]    + 90-312-4450584
[+] ** Administrative Contact:
[+] NIC Handle		: tdb14-metu
[+] Organization Name	: T.C. Dışişleri Bakanlığı
[+] Address			: T.C. Dışişleri Bakanlığı
[+] 			  BALGAT
[+] 			  Ankara,06100
[+] 			  Türkiye
[+] Phone			: + 90-312-2921218-
[+] Fax			: +
[+] ** Technical Contact:
[+] NIC Handle		: tdb14-metu
[+] Organization Name	: T.C. Dışişleri Bakanlığı
[+] Address			: T.C. Dışişleri Bakanlığı
[+] 			  BALGAT
[+] 			  Ankara,06100
[+] 			  Türkiye
[+] Phone			: + 90-312-2921218-
[+] Fax			: +
[+] ** Billing Contact:
[+] NIC Handle		: tdb14-metu
[+] Organization Name	: T.C. Dışişleri Bakanlığı
[+] Address			: T.C. Dışişleri Bakanlığı
[+] 			  BALGAT
[+] 			  Ankara,06100
[+] 			  Türkiye
[+] Phone			: + 90-312-2921218-
[+] Fax			: +
[+] ** Domain Servers:
[+] ns1.creamediacloud.com
[+] ns2.creamediacloud.com
[+] ** Additional Info:
[+] Created on..............: 2005-Mar-21.
[+] Expires on..............: 2021-Mar-20.


Bypass Cloudflare 'sam.gov.tr'
---------------------------------

[!] CloudFlare Bypass 176.53.84.114 | ftp.sam.gov.tr
[!] CloudFlare Bypass 127.0.0.1 | localhost.sam.gov.tr
[!] CloudFlare Bypass 176.53.84.114 | mail.sam.gov.tr
[!] CloudFlare Bypass 176.53.84.114 | www.sam.gov.tr


DNS Lookup 'sam.gov.tr'
--------------------------

[+] sam.gov.tr.		14399	IN	TXT	"v=spf1 ip4:176.53.84.114 ip4:5.2.75.169 +a +mx +ip4:88.202.188.27 ~all"
[+] sam.gov.tr.		14399	IN	MX	0 sam.gov.tr.
[+] sam.gov.tr.		21599	IN	SOA	ns1.creamediacloud.com. tyalcin.hotmail.com. 2019061900 3600 1800 1209600 86400
[+] sam.gov.tr.		21599	IN	NS	ns2.creamediacloud.com.
[+] sam.gov.tr.		21599	IN	NS	ns1.creamediacloud.com.
[+] sam.gov.tr.		14399	IN	A	176.53.84.114


Find Shared DNS 'sam.gov.tr'
-------------------------------

[+] No DNS server records found for sam.gov.tr


Show HTTP Header 'sam.gov.tr'
--------------------------------

[+] HTTP/1.1 200 OK
[+] Date: Fri, 11 Oct 2019 21:16:22 GMT
[+] Server: Apache
[+] Last-Modified: Fri, 11 Oct 2019 20:23:09 GMT
[+] Accept-Ranges: bytes
[+] Content-Length: 22640
[+] Vary: Accept-Encoding,User-Agent
[+] Referrer-Policy:
[+] Content-Type: text/html; charset=UTF-8
[+]


Port Scan 'sam.gov.tr'
-------------------------

Starting Nmap 7.70 ( https://nmap.org ) at 2019-10-11 21:16 UTC
Nmap scan report for sam.gov.tr (176.53.84.114)
Host is up (0.13s latency).
rDNS record for 176.53.84.114: 114ro2gwn.guzel.net.tr

PORT     STATE    SERVICE
21/tcp   open     ftp
22/tcp   closed   ssh
23/tcp   filtered telnet
80/tcp   open     http
110/tcp  open     pop3
143/tcp  open     imap
443/tcp  open     https
3389/tcp filtered ms-wbt-server

Nmap done: 1 IP address (1 host up) scanned in 1.71 seconds


Cms Scan 'sam.gov.tr'
------------------------

[+] Cms :  WordPress
[+] Web Servers :  Apache
[+] Programming Languages :  PHP


Robot.txt 'sam.gov.tr'
-------------------------

User-agent: *
Disallow: /wp-admin/
Allow: /wp-admin/admin-ajax.php


Traceroute 'sam.gov.tr'
--------------------------

Start: 2019-10-11T21:16:32+0000
HOST: web01                                  Loss%   Snt   Last   Avg  Best  Wrst StDev
  1.|-- 45.79.12.202                            0.0%     3    0.9   0.7   0.6   0.9   0.2
  2.|-- 45.79.12.6                              0.0%     3    0.5   0.5   0.5   0.6   0.1
  3.|-- dls-b22-link.telia.net                  0.0%     3    0.9   1.0   0.9   1.3   0.2
  4.|-- las-b24-link.telia.net                  0.0%     3   31.3  31.3  31.3  31.4   0.1
  5.|-- voxility-ic-325366-las-b24.c.telia.net  0.0%     3   33.5  33.0  32.0  33.5   0.8
  6.|-- lax-cs1-01c.voxility.net                0.0%     3   32.3  32.3  32.2  32.3   0.0
  7.|-- fra-eq5-01c.voxility.net                0.0%     3  152.4 152.5 152.4 152.7   0.2
  8.|-- fra-eq5-02sw.voxility.net               0.0%     3  152.7 152.6 152.6 152.7   0.0
  9.|-- 5.254.105.22                            0.0%     3  145.5 145.5 145.5 145.5   0.0
 10.|-- ???                                    100.0     3    0.0   0.0   0.0   0.0   0.0
 11.|-- ???                                    100.0     3    0.0   0.0   0.0   0.0   0.0
 12.|-- server-176.53.66.22.as42926.net         0.0%     3  184.4 184.4 184.2 184.5   0.1
 13.|-- 114ro2gwn.guzel.net.tr                  0.0%     3  188.1 188.0 188.0 188.1   0.0


Ping 'sam.gov.tr'
--------------------

error check your api query


Page Admin Finder 'sam.gov.tr'
---------------------------------


Avilable Links :

Find Page >>  http://sam.gov.tr/admin/

Find Page >>  http://sam.gov.tr/admin/index.php

Find Page >>  http://sam.gov.tr/wp-login.php
#######################################################################################################################################
Trying "sam.gov.tr"
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 10566
;; flags: qr rd ra; QUERY: 1, ANSWER: 6, AUTHORITY: 2, ADDITIONAL: 0

;; QUESTION SECTION:
;sam.gov.tr.			IN	ANY

;; ANSWER SECTION:
sam.gov.tr.		14400	IN	A	176.53.84.114
sam.gov.tr.		43200	IN	SOA	ns1.creamediacloud.com. tyalcin.hotmail.com. 2019061900 3600 1800 1209600 86400
sam.gov.tr.		14400	IN	MX	0 sam.gov.tr.
sam.gov.tr.		14400	IN	TXT	"v=spf1 ip4:176.53.84.114 ip4:5.2.75.169 +a +mx +ip4:88.202.188.27 ~all"
sam.gov.tr.		43200	IN	NS	ns2.creamediacloud.com.
sam.gov.tr.		43200	IN	NS	ns1.creamediacloud.com.

;; AUTHORITY SECTION:
sam.gov.tr.		43200	IN	NS	ns2.creamediacloud.com.
sam.gov.tr.		43200	IN	NS	ns1.creamediacloud.com.

Received 277 bytes from 2001:18c0:121:6900:724f:b8ff:fefd:5b6a#53 in 449 ms
#######################################################################################################################################

; <<>> DiG 9.11.5-P4-5.1+b1-Debian <<>> +trace sam.gov.tr
;; global options: +cmd
.			81954	IN	NS	d.root-servers.net.
.			81954	IN	NS	k.root-servers.net.
.			81954	IN	NS	g.root-servers.net.
.			81954	IN	NS	f.root-servers.net.
.			81954	IN	NS	l.root-servers.net.
.			81954	IN	NS	j.root-servers.net.
.			81954	IN	NS	h.root-servers.net.
.			81954	IN	NS	a.root-servers.net.
.			81954	IN	NS	e.root-servers.net.
.			81954	IN	NS	b.root-servers.net.
.			81954	IN	NS	m.root-servers.net.
.			81954	IN	NS	i.root-servers.net.
.			81954	IN	NS	c.root-servers.net.
.			81954	IN	RRSIG	NS 8 0 518400 20191024170000 20191011160000 22545 . H3x2s+SvDITnRW6oA+xKZQtZo5I9BgTdImmO67rSOPN5KHNI+fOYfUTl /YhB489khlN0JmP/rrONAXshejO4xq8nHJTGBG3lnOWw4LQpHBsCFSDH Plwo8dRhxvEv+2R0MVtFo55P+BdugfD4q3iM3EmETRf9y1BOVapKG5EG CrwPWII7FRh55eTrQgjangPZW3PtUrsHn79+hc3ahz5QuECrVsunPab9 kZ0Q/0WNHmpHCqT50NO0ot4lVDIweGvERCfJ8ijZA9YR3J/SJl88szI8 0E/JkciIiBIIEUnm8oxhBOgV99eXk54euGKL9XU8wdqPSGrWUDVIIS0l wuWriA==
;; Received 525 bytes from 185.93.180.131#53(185.93.180.131) in 112 ms

tr.			172800	IN	NS	ns21.nic.tr.
tr.			172800	IN	NS	ns22.nic.tr.
tr.			172800	IN	NS	ns31.nic.tr.
tr.			172800	IN	NS	ns41.nic.tr.
tr.			172800	IN	NS	ns42.nic.tr.
tr.			172800	IN	NS	ns91.nic.tr.
tr.			172800	IN	NS	ns92.nic.tr.
tr.			86400	IN	NSEC	trade. NS RRSIG NSEC
tr.			86400	IN	RRSIG	NSEC 8 1 86400 20191024170000 20191011160000 22545 . hfJNq5N9xhx7hkeLXcmhxz3RE1KvSECFQJjVFH4Hi8FzRPkH5II6sk9/ eS8jFTxgzysiOBMOCK0QQGqhJJWpFpYYxdksJdijJtxqa6M5901bdWoo BYYu+F2sCGkaMaYs8dhAT+pw2FQ+AbmDUVptMEVSaqs0Ka2ThzCqfxzY 5LXqGMALaFv51fFBpp7SzshKtlxRFkJ3yokRb7jUYPl39tZQkll8GO5m H8D4p5wMvtpfo7WcbB//Frk7IRHvZEYftVKEEK9ZXobe/p7IcPo8be3o 6d97vpuugimnGpPhLA618Hyv1lkpKnhTtHH0e7QJP36X2UkFXFnEVJDW vBgWog==
;; Received 714 bytes from 2001:500:2f::f#53(f.root-servers.net) in 22 ms

sam.gov.tr.		43200	IN	NS	ns1.creamediacloud.com.
sam.gov.tr.		43200	IN	NS	ns2.creamediacloud.com.
;; Received 93 bytes from 2600:2000:3002::1#53(ns91.nic.tr) in 274 ms

;; connection timed out; no servers could be reached
#######################################################################################################################################


 AVAILABLE PLUGINS
 -----------------

  OpenSslCipherSuitesPlugin
  CertificateInfoPlugin
  HeartbleedPlugin
  RobotPlugin
  OpenSslCcsInjectionPlugin
  CompressionPlugin
  HttpHeadersPlugin
  FallbackScsvPlugin
  SessionRenegotiationPlugin
  SessionResumptionPlugin
  EarlyDataPlugin


 CHECKING HOST(S) AVAILABILITY
 -----------------------------

   176.53.84.114:443                       => 176.53.84.114


 SCAN RESULTS FOR 176.53.84.114:443 - 176.53.84.114
 --------------------------------------------------

 * TLSV1_1 Cipher Suites:
      Server rejected all cipher suites.

 * OpenSSL Heartbleed:
                                          OK - Not vulnerable to Heartbleed

 * Certificate Information:
     Content
       SHA1 Fingerprint:                  5773b8ca2f247af4c43c05f83520302f30642df1
       Common Name:                       akliselim.tv
       Issuer:                            cPanel, Inc. Certification Authority
       Serial Number:                     212391679002770937487022612842878797296
       Not Before:                        2019-09-30 00:00:00
       Not After:                         2019-12-29 23:59:59
       Signature Algorithm:               sha256
       Public Key Algorithm:              RSA
       Key Size:                          2048
       Exponent:                          65537 (0x10001)
       DNS Subject Alternative Names:     ['akliselim.tv', 'mail.akliselim.tv', 'www.akliselim.tv']

     Trust
       Hostname Validation:               FAILED - Certificate does NOT match 176.53.84.114
       Android CA Store (9.0.0_r9):       OK - Certificate is trusted
       Apple CA Store (iOS 12, macOS 10.14, watchOS 5, and tvOS 12):OK - Certificate is trusted
       Java CA Store (jdk-12.0.1):        OK - Certificate is trusted
       Mozilla CA Store (2019-03-14):     OK - Certificate is trusted
       Windows CA Store (2019-05-27):     OK - Certificate is trusted
       Symantec 2018 Deprecation:         WARNING: Certificate distrusted by Google and Mozilla on September 2018
       Received Chain:                    akliselim.tv --> cPanel, Inc. Certification Authority --> COMODO RSA Certification Authority
       Verified Chain:                    akliselim.tv --> cPanel, Inc. Certification Authority --> COMODO RSA Certification Authority
       Received Chain Contains Anchor:    OK - Anchor certificate not sent
       Received Chain Order:              OK - Order is valid
       Verified Chain contains SHA1:      OK - No SHA1-signed certificate in the verified certificate chain

     Extensions
       OCSP Must-Staple:                  NOT SUPPORTED - Extension not found
       Certificate Transparency:          WARNING - Only 2 SCTs included but Google recommends 3 or more

     OCSP Stapling
       OCSP Response Status:              successful
       Validation w/ Mozilla Store:       OK - Response is trusted
       Responder Id:                      7E035A65416BA77E0AE1B89D08EA1D8E1D6AC765
       Cert Status:                       good
       Cert Serial Number:                9FC926428D76171533B3204FDC0305F0
       This Update:                       Oct 10 12:11:29 2019 GMT
       Next Update:                       Oct 17 12:11:29 2019 GMT

 * TLSV1 Cipher Suites:
      Server rejected all cipher suites.

 * TLSV1_2 Cipher Suites:
       Forward Secrecy                    OK - Supported
       RC4                                OK - Not Supported

     Preferred:
        None - Server followed client cipher suite preference.
     Accepted:
        TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384                            256 bits      HTTP 301 Moved Permanently - https://akliselim.tv/
        TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384                            256 bits      HTTP 301 Moved Permanently - https://akliselim.tv/
        TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256                            128 bits      HTTP 301 Moved Permanently - https://akliselim.tv/
        TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256                            128 bits      HTTP 301 Moved Permanently - https://akliselim.tv/

 * OpenSSL CCS Injection:
                                          OK - Not vulnerable to OpenSSL CCS injection

 * SSLV2 Cipher Suites:
      Server rejected all cipher suites.

 * Deflate Compression:
                                          OK - Compression disabled

 * Downgrade Attacks:
       TLS_FALLBACK_SCSV:                 OK - Supported

 * SSLV3 Cipher Suites:
      Server rejected all cipher suites.

 * TLS 1.2 Session Resumption Support:
      With Session IDs:                  OK - Supported (5 successful, 0 failed, 0 errors, 5 total attempts).
      With TLS Tickets:                  OK - Supported

 * TLSV1_3 Cipher Suites:
      Server rejected all cipher suites.

 * ROBOT Attack:
                                          OK - Not vulnerable, RSA cipher suites not supported

 * Session Renegotiation:
       Client-initiated Renegotiation:    OK - Rejected
       Secure Renegotiation:              OK - Supported


 SCAN COMPLETED IN 13.07 S
 -------------------------
######################################################################################################################################

Domains still to check: 1
	Checking if the hostname sam.gov.tr. given is in fact a domain...

Analyzing domain: sam.gov.tr.
	Checking NameServers using system default resolver...
		IP: 176.53.84.114 (Turkey)
			HostName: ns1.creamediacloud.com 			Type: NS
			HostName: 114ro2gwn.guzel.net.tr			Type: PTR
		IP: 176.53.84.114 (Turkey)
			HostName: ns1.creamediacloud.com 			Type: NS
			HostName: 114ro2gwn.guzel.net.tr			Type: PTR
			HostName: ns2.creamediacloud.com 			Type: NS

	Checking MailServers using system default resolver...
		IP: 176.53.84.114 (Turkey)
			HostName: ns1.creamediacloud.com 			Type: NS
			HostName: 114ro2gwn.guzel.net.tr			Type: PTR
			HostName: ns2.creamediacloud.com 			Type: NS
			HostName: sam.gov.tr 			Type: MX

	Checking the zone transfer for each NS... (if this takes more than 10 seconds, just hit CTRL-C and it will continue. Bug in the libs)
		No zone transfer found on nameserver 176.53.84.114
		No zone transfer found on nameserver 176.53.84.114

	Checking SPF record...
		New IP found: 5.2.75.169
		New IP found: 88.202.188.27

	Checking 192 most common hostnames using system default resolver...
		IP: 176.53.84.114 (Turkey)
			HostName: ns1.creamediacloud.com 			Type: NS
			HostName: 114ro2gwn.guzel.net.tr			Type: PTR
			HostName: ns2.creamediacloud.com 			Type: NS
			HostName: sam.gov.tr 			Type: MX
			Type: SPF
			HostName: www.sam.gov.tr. 			Type: A
		IP: 176.53.84.114 (Turkey)
			HostName: ns1.creamediacloud.com 			Type: NS
			HostName: 114ro2gwn.guzel.net.tr			Type: PTR
			HostName: ns2.creamediacloud.com 			Type: NS
			HostName: sam.gov.tr 			Type: MX
			Type: SPF
			HostName: www.sam.gov.tr. 			Type: A
			HostName: ftp.sam.gov.tr. 			Type: A
		IP: 176.53.84.114 (Turkey)
			HostName: ns1.creamediacloud.com 			Type: NS
			HostName: 114ro2gwn.guzel.net.tr			Type: PTR
			HostName: ns2.creamediacloud.com 			Type: NS
			HostName: sam.gov.tr 			Type: MX
			Type: SPF
			HostName: www.sam.gov.tr. 			Type: A
			HostName: ftp.sam.gov.tr. 			Type: A
			HostName: mail.sam.gov.tr. 			Type: A

	Checking with nmap the reverse DNS hostnames of every <ip>/24 netblock using system default resolver...
		Checking netblock 176.53.84.0
		Checking netblock 5.2.75.0
		Checking netblock 88.202.188.0

	Searching for sam.gov.tr. emails in Google

	Checking 3 active hosts using nmap... (nmap -sn -n -v -PP -PM -PS80,25 -PA -PY -PU53,40125 -PE --reason <ip> -oA <output_directory>/nmap/<ip>.sn)
		Host 176.53.84.114 is up (reset ttl 64)
		Host 5.2.75.169 is up (reset ttl 64)
		Host 88.202.188.27 is up (reset ttl 64)

	Checking ports on every active host using nmap... (nmap -O --reason --webxml --traceroute -sS -sV -sC -Pn -n -v -F <ip> -oA <output_directory>/nmap/<ip>)
		Scanning ip 176.53.84.114 (mail.sam.gov.tr.):
			21/tcp    open   ftp          syn-ack ttl 43 Pure-FTPd
			26/tcp    open   smtp         syn-ack ttl 44 Exim smtpd 4.92
				| smtp-commands: srv.creamediacloud.com Hello nmap.scanme.org [176.113.74.24], SIZE 52428800, 8BITMIME, PIPELINING, STARTTLS, HELP,
				|_ Commands supported: AUTH STARTTLS HELO EHLO MAIL RCPT DATA BDAT NOOP QUIT RSET HELP
			53/tcp    open   domain       syn-ack ttl 43 ISC BIND 9.11.4-P2 (RedHat Enterprise Linux 7)
				| dns-nsid:
				|_  bind.version: 9.11.4-P2-RedHat-9.11.4-9.P2.el7
			80/tcp    open   http         syn-ack ttl 44 Apache httpd
				|_http-title: 403 Forbidden
			110/tcp   open   pop3         syn-ack ttl 43 Dovecot pop3d
				|_pop3-capabilities: USER RESP-CODES TOP SASL(PLAIN LOGIN) STLS AUTH-RESP-CODE CAPA PIPELINING UIDL
			143/tcp   open   imap         syn-ack ttl 43 Dovecot imapd
				|_imap-capabilities: post-login capabilities LOGIN-REFERRALS ID IMAP4rev1 AUTH=PLAIN listed NAMESPACE ENABLE LITERAL+ OK AUTH=LOGINA0001 more IDLE have SASL-IR STARTTLS Pre-login
			443/tcp   open   ssl/http     syn-ack ttl 44 Apache httpd
				| http-methods:
				|_  Supported Methods: GET HEAD
				|_http-title: Did not follow redirect to https://akliselim.tv/
				| ssl-cert: Subject: commonName=akliselim.tv
				| Subject Alternative Name: DNS:akliselim.tv, DNS:mail.akliselim.tv, DNS:www.akliselim.tv
				| Issuer: commonName=cPanel, Inc. Certification Authority/organizationName=cPanel, Inc./stateOrProvinceName=TX/countryName=US
				| Public Key type: rsa
				| Public Key bits: 2048
				| Signature Algorithm: sha256WithRSAEncryption
				| Not valid before: 2019-09-30T00:00:00
				| Not valid after:  2019-12-29T23:59:59
				| MD5:   0ae4 b08d 8791 5dd0 b5d7 1806 888b a6af
				|_SHA-1: 5773 b8ca 2f24 7af4 c43c 05f8 3520 302f 3064 2df1
			465/tcp   open   ssl/smtp     syn-ack ttl 44 Exim smtpd 4.92
				| smtp-commands: srv.creamediacloud.com Hello nmap.scanme.org [176.113.74.24], SIZE 52428800, 8BITMIME, PIPELINING, AUTH PLAIN LOGIN, HELP,
				|_ Commands supported: AUTH HELO EHLO MAIL RCPT DATA BDAT NOOP QUIT RSET HELP
			587/tcp   open   smtp         syn-ack ttl 44 Exim smtpd 4.92
				| smtp-commands: srv.creamediacloud.com Hello nmap.scanme.org [176.113.74.24], SIZE 52428800, 8BITMIME, PIPELINING, STARTTLS, HELP,
				|_ Commands supported: AUTH STARTTLS HELO EHLO MAIL RCPT DATA BDAT NOOP QUIT RSET HELP
			993/tcp   open   imaps?       syn-ack ttl 44
				|_imap-capabilities: post-login capabilities LOGIN-REFERRALS ID IMAP4rev1 AUTH=PLAIN listed NAMESPACE ENABLE LITERAL+ Pre-login AUTH=LOGINA0001 IDLE have SASL-IR more OK
			995/tcp   open   pop3s?       syn-ack ttl 44
				|_pop3-capabilities: TOP SASL(PLAIN LOGIN) USER CAPA PIPELINING AUTH-RESP-CODE RESP-CODES UIDL
			OS Info: Service Info: Host: srv.creamediacloud.com; OS: Linux; CPE: cpe:/o:redhat:enterprise_linux:7
		Scanning ip 5.2.75.169 ():
			22/tcp   open     ssh     syn-ack ttl 51 OpenSSH 7.4 (protocol 2.0)
				| ssh-hostkey:
				|   2048 cd:6b:88:b1:d4:87:9a:7c:29:ed:14:31:4b:aa:1f:bc (RSA)
				|   256 3f:39:0f:bd:36:c1:34:1a:15:59:09:dd:35:31:fd:fd (ECDSA)
				|_  256 9d:1e:81:01:5a:b8:f2:1b:ef:81:f5:46:c8:b5:45:54 (ED25519)
			80/tcp   open     http    syn-ack ttl 51 Apache httpd
				| http-methods:
				|   Supported Methods: GET POST OPTIONS HEAD TRACE
				|_  Potentially risky methods: TRACE
				|_http-server-header: nginx
				|_http-title: 403 Forbidden
			OS Info: Service Info: Host: _
		Scanning ip 88.202.188.27 ():
			22/tcp open  ssh     syn-ack ttl 52 OpenSSH 7.2p2 Ubuntu 4ubuntu2.4 (Ubuntu Linux; protocol 2.0)
				| ssh-hostkey:
				|   2048 3b:c3:b3:81:89:c8:89:18:79:01:9b:36:6d:d6:0f:e7 (RSA)
				|_  256 40:4b:7b:c7:31:72:43:fb:2b:71:66:31:21:a2:bb:a7 (ECDSA)
			OS Info: Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
	WebCrawling domain's web servers... up to 50 max links.

	+ URL to crawl: http://www.sam.gov.tr.
	+ Date: 2019-10-11

	+ Crawling URL: http://www.sam.gov.tr.:
		+ Links:
			+ Crawling http://www.sam.gov.tr.  (timed out)
		+ Searching for directories...
		+ Searching open folders...


	+ URL to crawl: http://mail.sam.gov.tr.
	+ Date: 2019-10-11

	+ Crawling URL: http://mail.sam.gov.tr.:
		+ Links:
			+ Crawling http://mail.sam.gov.tr.  (timed out)
		+ Searching for directories...
		+ Searching open folders...


	+ URL to crawl: http://ns2.creamediacloud.com
	+ Date: 2019-10-11

	+ Crawling URL: http://ns2.creamediacloud.com:
		+ Links:
			+ Crawling http://ns2.creamediacloud.com  (timed out)
		+ Searching for directories...
		+ Searching open folders...


	+ URL to crawl: http://ftp.sam.gov.tr.
	+ Date: 2019-10-11

	+ Crawling URL: http://ftp.sam.gov.tr.:
		+ Links:
			+ Crawling http://ftp.sam.gov.tr.  (timed out)
		+ Searching for directories...
		+ Searching open folders...


	+ URL to crawl: http://ns1.creamediacloud.com
	+ Date: 2019-10-11

	+ Crawling URL: http://ns1.creamediacloud.com:
		+ Links:
			+ Crawling http://ns1.creamediacloud.com  (timed out)
		+ Searching for directories...
		+ Searching open folders...


	+ URL to crawl: http://sam.gov.tr
	+ Date: 2019-10-11

	+ Crawling URL: http://sam.gov.tr:
		+ Links:
			+ Crawling http://sam.gov.tr  (timed out)
		+ Searching for directories...
		+ Searching open folders...


	+ URL to crawl: https://www.sam.gov.tr.
	+ Date: 2019-10-11

	+ Crawling URL: https://www.sam.gov.tr.:
		+ Links:
			+ Crawling https://www.sam.gov.tr.  (timed out)
		+ Searching for directories...
		+ Searching open folders...


	+ URL to crawl: https://mail.sam.gov.tr.
	+ Date: 2019-10-11

	+ Crawling URL: https://mail.sam.gov.tr.:
		+ Links:
			+ Crawling https://mail.sam.gov.tr.  (timed out)
		+ Searching for directories...
		+ Searching open folders...


	+ URL to crawl: https://ns2.creamediacloud.com
	+ Date: 2019-10-11

	+ Crawling URL: https://ns2.creamediacloud.com:
		+ Links:
			+ Crawling https://ns2.creamediacloud.com  (timed out)
		+ Searching for directories...
		+ Searching open folders...


	+ URL to crawl: https://ftp.sam.gov.tr.
	+ Date: 2019-10-11

	+ Crawling URL: https://ftp.sam.gov.tr.:
		+ Links:
			+ Crawling https://ftp.sam.gov.tr.  (timed out)
		+ Searching for directories...
		+ Searching open folders...


	+ URL to crawl: https://ns1.creamediacloud.com
	+ Date: 2019-10-11

	+ Crawling URL: https://ns1.creamediacloud.com:
		+ Links:
			+ Crawling https://ns1.creamediacloud.com  (timed out)
		+ Searching for directories...
		+ Searching open folders...


	+ URL to crawl: https://sam.gov.tr
	+ Date: 2019-10-11

	+ Crawling URL: https://sam.gov.tr:
		+ Links:
			+ Crawling https://sam.gov.tr  (timed out)
		+ Searching for directories...
		+ Searching open folders...

--Finished--
Summary information for domain sam.gov.tr.
-----------------------------------------

	Domain Ips Information:
		IP: 176.53.84.114
			HostName: ns1.creamediacloud.com 			Type: NS
			HostName: 114ro2gwn.guzel.net.tr			Type: PTR
			HostName: ns2.creamediacloud.com 			Type: NS
			HostName: sam.gov.tr 			Type: MX
			Type: SPF
			HostName: www.sam.gov.tr. 			Type: A
			HostName: ftp.sam.gov.tr. 			Type: A
			HostName: mail.sam.gov.tr. 			Type: A
			Country: Turkey
			Is Active: True (reset ttl 64)
			Port: 21/tcp    open   ftp          syn-ack ttl 43 Pure-FTPd
			Port: 26/tcp    open   smtp         syn-ack ttl 44 Exim smtpd 4.92
				Script Info: | smtp-commands: srv.creamediacloud.com Hello nmap.scanme.org [176.113.74.24], SIZE 52428800, 8BITMIME, PIPELINING, STARTTLS, HELP,
				Script Info: |_ Commands supported: AUTH STARTTLS HELO EHLO MAIL RCPT DATA BDAT NOOP QUIT RSET HELP
			Port: 53/tcp    open   domain       syn-ack ttl 43 ISC BIND 9.11.4-P2 (RedHat Enterprise Linux 7)
				Script Info: | dns-nsid:
				Script Info: |_  bind.version: 9.11.4-P2-RedHat-9.11.4-9.P2.el7
			Port: 80/tcp    open   http         syn-ack ttl 44 Apache httpd
				Script Info: |_http-title: 403 Forbidden
			Port: 110/tcp   open   pop3         syn-ack ttl 43 Dovecot pop3d
				Script Info: |_pop3-capabilities: USER RESP-CODES TOP SASL(PLAIN LOGIN) STLS AUTH-RESP-CODE CAPA PIPELINING UIDL
			Port: 143/tcp   open   imap         syn-ack ttl 43 Dovecot imapd
				Script Info: |_imap-capabilities: post-login capabilities LOGIN-REFERRALS ID IMAP4rev1 AUTH=PLAIN listed NAMESPACE ENABLE LITERAL+ OK AUTH=LOGINA0001 more IDLE have SASL-IR STARTTLS Pre-login
			Port: 443/tcp   open   ssl/http     syn-ack ttl 44 Apache httpd
				Script Info: | http-methods:
				Script Info: |_  Supported Methods: GET HEAD
				Script Info: |_http-title: Did not follow redirect to https://akliselim.tv/
				Script Info: | ssl-cert: Subject: commonName=akliselim.tv
				Script Info: | Subject Alternative Name: DNS:akliselim.tv, DNS:mail.akliselim.tv, DNS:www.akliselim.tv
				Script Info: | Issuer: commonName=cPanel, Inc. Certification Authority/organizationName=cPanel, Inc./stateOrProvinceName=TX/countryName=US
				Script Info: | Public Key type: rsa
				Script Info: | Public Key bits: 2048
				Script Info: | Signature Algorithm: sha256WithRSAEncryption
				Script Info: | Not valid before: 2019-09-30T00:00:00
				Script Info: | Not valid after:  2019-12-29T23:59:59
				Script Info: | MD5:   0ae4 b08d 8791 5dd0 b5d7 1806 888b a6af
				Script Info: |_SHA-1: 5773 b8ca 2f24 7af4 c43c 05f8 3520 302f 3064 2df1
			Port: 465/tcp   open   ssl/smtp     syn-ack ttl 44 Exim smtpd 4.92
				Script Info: | smtp-commands: srv.creamediacloud.com Hello nmap.scanme.org [176.113.74.24], SIZE 52428800, 8BITMIME, PIPELINING, AUTH PLAIN LOGIN, HELP,
				Script Info: |_ Commands supported: AUTH HELO EHLO MAIL RCPT DATA BDAT NOOP QUIT RSET HELP
			Port: 587/tcp   open   smtp         syn-ack ttl 44 Exim smtpd 4.92
				Script Info: | smtp-commands: srv.creamediacloud.com Hello nmap.scanme.org [176.113.74.24], SIZE 52428800, 8BITMIME, PIPELINING, STARTTLS, HELP,
				Script Info: |_ Commands supported: AUTH STARTTLS HELO EHLO MAIL RCPT DATA BDAT NOOP QUIT RSET HELP
			Port: 993/tcp   open   imaps?       syn-ack ttl 44
				Script Info: |_imap-capabilities: post-login capabilities LOGIN-REFERRALS ID IMAP4rev1 AUTH=PLAIN listed NAMESPACE ENABLE LITERAL+ Pre-login AUTH=LOGINA0001 IDLE have SASL-IR more OK
			Port: 995/tcp   open   pop3s?       syn-ack ttl 44
				Script Info: |_pop3-capabilities: TOP SASL(PLAIN LOGIN) USER CAPA PIPELINING AUTH-RESP-CODE RESP-CODES UIDL
			Os Info:  Host: srv.creamediacloud.com; OS: Linux; CPE: cpe:/o:redhat:enterprise_linux:7
		IP: 5.2.75.169
			Type: SPF
			Is Active: True (reset ttl 64)
			Port: 22/tcp   open     ssh     syn-ack ttl 51 OpenSSH 7.4 (protocol 2.0)
				Script Info: | ssh-hostkey:
				Script Info: |   2048 cd:6b:88:b1:d4:87:9a:7c:29:ed:14:31:4b:aa:1f:bc (RSA)
				Script Info: |   256 3f:39:0f:bd:36:c1:34:1a:15:59:09:dd:35:31:fd:fd (ECDSA)
				Script Info: |_  256 9d:1e:81:01:5a:b8:f2:1b:ef:81:f5:46:c8:b5:45:54 (ED25519)
			Port: 80/tcp   open     http    syn-ack ttl 51 Apache httpd
				Script Info: | http-methods:
				Script Info: |   Supported Methods: GET POST OPTIONS HEAD TRACE
				Script Info: |_  Potentially risky methods: TRACE
				Script Info: |_http-server-header: nginx
				Script Info: |_http-title: 403 Forbidden
			Os Info:  Host: _
		IP: 88.202.188.27
			Type: SPF
			Is Active: True (reset ttl 64)
			Port: 22/tcp open  ssh     syn-ack ttl 52 OpenSSH 7.2p2 Ubuntu 4ubuntu2.4 (Ubuntu Linux; protocol 2.0)
				Script Info: | ssh-hostkey:
				Script Info: |   2048 3b:c3:b3:81:89:c8:89:18:79:01:9b:36:6d:d6:0f:e7 (RSA)
				Script Info: |_  256 40:4b:7b:c7:31:72:43:fb:2b:71:66:31:21:a2:bb:a7 (ECDSA)
			Os Info:  OS: Linux; CPE: cpe:/o:linux:linux_kernel
#######################################################################################################################################
[+] URL: http://sam.gov.tr/
[+] Started: Fri Oct 11 16:17:36 2019

Interesting Finding(s):

[+] http://sam.gov.tr/
 | Interesting Entries:
 |  - Server: Apache
 |  - Referrer-Policy:
 | Found By: Headers (Passive Detection)
 | Confidence: 100%

[+] http://sam.gov.tr/robots.txt
 | Interesting Entries:
 |  - /wp-admin/
 |  - /wp-admin/admin-ajax.php
 | Found By: Robots Txt (Aggressive Detection)
 | Confidence: 100%

[+] http://sam.gov.tr/xmlrpc.php
 | Found By: Link Tag (Passive Detection)
 | Confidence: 30%
 | References:
 |  - http://codex.wordpress.org/XML-RPC_Pingback_API
 |  - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_ghost_scanner
 |  - https://www.rapid7.com/db/modules/auxiliary/dos/http/wordpress_xmlrpc_dos
 |  - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_xmlrpc_login
 |  - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_pingback_access

[+] http://sam.gov.tr/wp-cron.php
 | Found By: Direct Access (Aggressive Detection)
 | Confidence: 60%
 | References:
 |  - https://www.iplocation.net/defend-wordpress-from-ddos
 |  - https://github.com/wpscanteam/wpscan/issues/1299

[+] WordPress version 5.2.3 identified (Latest, released on 2019-09-05).
 | Detected By: Meta Generator (Passive Detection)
 |  - http://sam.gov.tr/, Match: 'WordPress 5.2.3'
 | Confirmed By: Rss Generator (Aggressive Detection)
 |  - http://sam.gov.tr/feed/, <generator>https://wordpress.org/?v=5.2.3</generator>
 |  - http://sam.gov.tr/comments/feed/, <generator>https://wordpress.org/?v=5.2.3</generator>

[+] WordPress theme in use: sam
 | Location: http://sam.gov.tr/wp-content/themes/sam/
 | Style URL: http://sam.gov.tr/wp-content/themes/sam/style.css
 | Style Name: SAM
 | Author: Crea Media Design
 | Author URI: http://www.creamediadesign.com/
 |
 | Detected By: Css Style (Passive Detection)
 | Confirmed By: Urls In Homepage (Passive Detection)
 |
 | Version: 1.0 (80% confidence)
 | Detected By: Style (Passive Detection)
 |  - http://sam.gov.tr/wp-content/themes/sam/style.css, Match: 'Version: 1.0'

[+] Enumerating All Plugins (via Passive Methods)
[+] Checking Plugin Versions (via Passive and Aggressive Methods)

[i] Plugin(s) Identified:

[+] nextcellent-gallery-nextgen-legacy
 | Location: http://sam.gov.tr/wp-content/plugins/nextcellent-gallery-nextgen-legacy/
 | Latest Version: 1.9.35 (up to date)
 | Last Updated: 2017-10-16T09:19:00.000Z
 |
 | Detected By: Comment (Passive Detection)
 |
 | Version: 3.2.18 (60% confidence)
 | Detected By: Comment (Passive Detection)
 |  - http://sam.gov.tr/, Match: '<meta name="NextGEN" version="3.2.18"'

[+] nextgen-gallery
 | Location: http://sam.gov.tr/wp-content/plugins/nextgen-gallery/
 | Latest Version: 3.2.18 (up to date)
 | Last Updated: 2019-09-18T16:02:00.000Z
 |
 | Detected By: Urls In Homepage (Passive Detection)
 | Confirmed By: Comment (Passive Detection)
 |
 | Version: 3.2.18 (60% confidence)
 | Detected By: Comment (Passive Detection)
 |  - http://sam.gov.tr/, Match: '<meta name="NextGEN" version="3.2.18"'

[+] w3-total-cache
 | Location: http://sam.gov.tr/wp-content/plugins/w3-total-cache/
 | Latest Version: 0.10.1
 | Last Updated: 2019-09-11T19:03:00.000Z
 |
 | Detected By: Comment Debug Info (Passive Detection)
 |
 | The version could not be determined.

[+] wp-paginate
 | Location: http://sam.gov.tr/wp-content/plugins/wp-paginate/
 | Latest Version: 2.0.6
 | Last Updated: 2019-09-13T13:39:00.000Z
 |
 | Detected By: Urls In Homepage (Passive Detection)
 |
 | The version could not be determined.

[+] Enumerating Config Backups (via Passive and Aggressive Methods)
 Checking Config Backups - Time: 00:02:30 <===> (21 / 21) 100.00% Time: 00:02:30

[i] No Config Backups Found.

[!] No WPVulnDB API Token given, as a result vulnerability data has not been output.
[!] You can get a free API token with 50 daily requests by registering at https://wpvulndb.com/users/sign_up.

[+] Finished: Fri Oct 11 16:25:31 2019
[+] Requests Done: 69
[+] Cached Requests: 7
[+] Data Sent: 10.112 KB
[+] Data Received: 929.213 KB
[+] Memory used: 130.602 MB
[+] Elapsed time: 00:07:54
#######################################################################################################################################
[*] Load target domain: sam.gov.tr
    - starting scanning @ 2019-10-11 16:27:49

[+] Running & Checking source to be used
---------------------------------------------

    ⍥  Shodan				[ ✕ ]
    ⍥  Webarchive			[ ✔ ]
    ⍥  Dnsdumpster			[ ✔ ]
    ⍥  Certspotter			[ ✔ ]
    ⍥  Entrust				[ ✔ ]
    ⍥  Binaryedge			[ ✕ ]
    ⍥  Bufferover			[ ✔ ]
    ⍥  Riddler				[ ✔ ]
    ⍥  Threatcrowd			[ ✔ ]
    ⍥  Threatminer			[ ✔ ]
    ⍥  Certsh				[ ✔ ]
    ⍥  Hackertarget			[ ✔ ]
    ⍥  Censys				[ ✕ ]
    ⍥  Securitytrails			[ ✕ ]
    ⍥  Virustotal			[ ✕ ]
    ⍥  Findsubdomain			[ ✔ ]

[+] Get & Count subdomain total From source
---------------------------------------------

    ⍥  Hackertarget: Total Subdomain (1)
    ⍥  Findsubdomain: Total Subdomain (2)
    ⍥  Certspotter: Total Subdomain (3)
    ⍥  Threatminer: Total Subdomain (0)
    ⍥  Certsh: Total Subdomain (2)
    ⍥  BufferOver: Total Subdomain (2)
    ⍥  Entrust: Total Subdomain (0)
    ⍥  Threatcrowd: Total Subdomain (0)
    ⍥  Dnsdumpster: Total Subdomain (4)
    ⍥  Riddler: Total Subdomain (2)
    ⍥  Webarchive: Total Subdomain (3)

[+] Parsing & Sorting list Domain
---------------------------------------------

    ⍥  Total 				[5]

	 - 0 sam.gov.tr.
	 - Fichier binaire (entrée standard) correspondant
	 - mail.sam.gov.tr
	 - sam.gov.tr
	 - www.sam.gov.tr

    ⍥  Total 				[5]

[+] Probe subdomain for working on http/https
---------------------------------------------


    ⍥  Total 				[0]


[+] Check Live Host: Ping Sweep - ICMP PING
---------------------------------------------

    ⍥  [LIVE]	 0
    ⍥  [DEAD]	 sam.gov.tr.
    ⍥  [DEAD]	 Fichier
    ⍥  [DEAD]	 binaire
    ⍥  [DEAD]	 (entrée
    ⍥  [DEAD]	 standard)
    ⍥  [DEAD]	 correspondant
    ⍥  [DEAD]	 mail.sam.gov.tr
    ⍥  [DEAD]	 sam.gov.tr
    ⍥  [DEAD]	 www.sam.gov.tr

[+] Check Resolving: Subdomains & Domains
---------------------------------------------

    ⍥  Resolving domains to: RESOLVE ERROR
    ⍥  Resolving domains to: 176.53.84.114
    ⍥  Resolving domains to: RESOLVE ERROR
    ⍥  Resolving domains to: RESOLVE ERROR
    ⍥  Resolving domains to: RESOLVE ERROR
    ⍥  Resolving domains to: RESOLVE ERROR
    ⍥  Resolving domains to: RESOLVE ERROR
    ⍥  Resolving domains to: 176.53.84.114
    ⍥  Resolving domains to: 176.53.84.114
    ⍥  Resolving domains to: 176.53.84.114


    ⍥  Make template for reports
    	- output/10-11-2019/sam.gov.tr/reports

    ⍥  Successful Created ..

[+] Sud⍥my has been sucessfully completed
---------------------------------------------

    ⍥  Location output:
    	- output/10-11-2019/sam.gov.tr
    	- output/10-11-2019/sam.gov.tr/report
    	- output/10-11-2019/sam.gov.tr/screenshots

#######################################################################################################################################
[INFO] ------TARGET info------
[*] TARGET: http://sam.gov.tr/
[*] TARGET IP: 176.53.84.114
[INFO] NO load balancer detected for sam.gov.tr...
[*] DNS servers: ns1.creamediacloud.com.
[*] TARGET server:
[*] CC: TR
[*] Country: Turkey
[*] RegionCode: 06
[*] RegionName: Ankara
[*] City: Ankara
[*] ASN: AS42926
[*] BGP_PREFIX: 176.53.84.0/24
[*] ISP: RADORE Radore Veri Merkezi Hizmetleri A.S., TR
[INFO] DNS enumeration:
[*] ftp.sam.gov.tr 	 176.53.84.114
[*] mail.sam.gov.tr 	 sam.gov.tr. 176.53.84.114
[INFO] Possible abuse mails are:
[*] abuse@as42926.net
[*] abuse@sam.gov.tr
[INFO] NO PAC (Proxy Auto Configuration) file FOUND
[INFO] Starting FUZZing in http://sam.gov.tr/FUzZzZzZzZz...
[INFO] Status code 	 Folders
[INFO] NO passwords found in source code
[INFO] SAME content in http://sam.gov.tr/ AND http://176.53.84.114/

Recherche sam.gov.tr
Connexion HTTP à sam.gov.tr
Alerte ! : Impossible d’établir une connexion à l’hôte distant.

lynx : accès impossible au fichier de départ http://sam.gov.tr/
[INFO] Links found from http://sam.gov.tr/:
[INFO] GOOGLE has 107,000,000 results (0.61 seconds) about http://sam.gov.tr/
[INFO] Shodan detected the following opened ports on 176.53.84.114:
[*] 1
[*] 110
[*] 143
[*] 2082
[*] 2083
[*] 2086
[*] 2087
[*] 21
[*] 2222
[*] 26
[*] 4
[*] 443
[*] 465
[*] 53
[*] 587
[*] 80
[*] 993
[*] 995
[INFO] ------VirusTotal SECTION------
[INFO] VirusTotal passive DNS only stores address records. The following domains resolved to the given IP address:
[INFO] Latest URLs hosted in this IP address detected by at least one URL scanner or malicious URL dataset:
[INFO] Latest files that are not detected by any antivirus solution and were downloaded by VirusTotal from the IP address provided:
[INFO] ------Alexa Rank SECTION------
[INFO] Percent of Visitors Rank in Country:
[INFO] Percent of Search Traffic:
[INFO] Percent of Unique Visits:
[INFO] Total Sites Linking In:
[*] Total  Sites
[INFO] Useful links related to sam.gov.tr - 176.53.84.114:
[*] https://www.virustotal.com/pt/ip-address/176.53.84.114/information/
[*] https://www.hybrid-analysis.com/search?host=176.53.84.114
[*] https://www.shodan.io/host/176.53.84.114
[*] https://www.senderbase.org/lookup/?search_string=176.53.84.114
[*] https://www.alienvault.com/open-threat-exchange/ip/176.53.84.114
[*] http://pastebin.com/search?q=176.53.84.114
[*] http://urlquery.net/search.php?q=176.53.84.114
[*] http://www.alexa.com/siteinfo/sam.gov.tr
[*] http://www.google.com/safebrowsing/diagnostic?site=sam.gov.tr
[*] https://censys.io/ipv4/176.53.84.114
[*] https://www.abuseipdb.com/check/176.53.84.114
[*] https://urlscan.io/search/#176.53.84.114
[*] https://github.com/search?q=176.53.84.114&type=Code
[INFO] Useful links related to AS42926 - 176.53.84.0/24:
[*] http://www.google.com/safebrowsing/diagnostic?site=AS:42926
[*] https://www.senderbase.org/lookup/?search_string=176.53.84.0/24
[*] http://bgp.he.net/AS42926
[*] https://stat.ripe.net/AS42926
[INFO] Date: 11/10/19 | Time: 16:29:01
[INFO] Total time: 10 minute(s) and 29 second(s)
#######################################################################################################################################
                                              Anonymous JTSEC  #OpTurkey Full Recon  #4