Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #######################################################################################################################################
- =======================================================================================================================================
- Hostname sam.gov.tr ISP Radore Veri Merkezi Hizmetleri A.S.
- Continent Asia Flag
- TR
- Country Turkey Country Code TR
- Region Unknown Local time 11 Oct 2019 22:55 +03
- City Unknown Postal Code Unknown
- IP Address 176.53.84.114 Latitude 41.021
- Longitude 28.9
- =======================================================================================================================================
- #######################################################################################################################################
- > sam.gov.tr
- Server: 185.93.180.131
- Address: 185.93.180.131#53
- Non-authoritative answer:
- Name: sam.gov.tr
- Address: 176.53.84.114
- >
- #######################################################################################################################################
- ** Domain Name: sam.gov.tr
- ** Registrant:
- T.C. DIŞİŞLERİ BAKANLIĞI, STRATEJİK ARAŞTIRMALAR MERKEZİ
- Kırçiçeği Sokak 8/3
- Gaziosmanpaşa
- Ankara,
- Türkiye
- strategy@mfa.gov.tr
- + 90-312-4460435-
- + 90-312-4450584
- ** Administrative Contact:
- NIC Handle : tdb14-metu
- Organization Name : T.C. Dışişleri Bakanlığı
- Address : T.C. Dışişleri Bakanlığı
- BALGAT
- Ankara,06100
- Türkiye
- Phone : + 90-312-2921218-
- Fax : +
- ** Technical Contact:
- NIC Handle : tdb14-metu
- Organization Name : T.C. Dışişleri Bakanlığı
- Address : T.C. Dışişleri Bakanlığı
- BALGAT
- Ankara,06100
- Türkiye
- Phone : + 90-312-2921218-
- Fax : +
- ** Billing Contact:
- NIC Handle : tdb14-metu
- Organization Name : T.C. Dışişleri Bakanlığı
- Address : T.C. Dışişleri Bakanlığı
- BALGAT
- Ankara,06100
- Türkiye
- Phone : + 90-312-2921218-
- Fax : +
- ** Domain Servers:
- ns1.creamediacloud.com
- ns2.creamediacloud.com
- ** Additional Info:
- Created on..............: 2005-Mar-21.
- Expires on..............: 2021-Mar-20.
- #######################################################################################################################################
- [+] Target : sam.gov.tr
- [+] IP Address : 176.53.84.114
- [+] Headers :
- [+] Date : Fri, 11 Oct 2019 21:15:17 GMT
- [+] Server : Apache
- [+] Vary : Accept-Encoding,User-Agent
- [+] Last-Modified : Fri, 11 Oct 2019 20:23:09 GMT
- [+] Accept-Ranges : bytes
- [+] Content-Length : 4001
- [+] Referrer-Policy :
- [+] Keep-Alive : timeout=5, max=100
- [+] Connection : Keep-Alive
- [+] Content-Type : text/html; charset=UTF-8
- [+] Content-Encoding : gzip
- [+] SSL Certificate Information :
- [+] commonName : sam.gov.tr
- [+] countryName : US
- [+] stateOrProvinceName : TX
- [+] localityName : Houston
- [+] organizationName : cPanel, Inc.
- [+] commonName : cPanel, Inc. Certification Authority
- [+] Version : 3
- [+] Serial Number : 7CAC61F94A1E5FE5027B116CC93961A8
- [+] Not Before : Sep 3 00:00:00 2019 GMT
- [+] Not After : Dec 2 23:59:59 2019 GMT
- [+] OCSP : ('http://ocsp.comodoca.com',)
- [+] subject Alt Name : (('DNS', 'sam.gov.tr'), ('DNS', 'mail.sam.gov.tr'), ('DNS', 'www.sam.gov.tr'))
- [+] CA Issuers : ('http://crt.comodoca.com/cPanelIncCertificationAuthority.crt',)
- [+] CRL Distribution Points : ('http://crl.comodoca.com/cPanelIncCertificationAuthority.crl',)
- [+] Whois Lookup :
- [+] NIR : None
- [+] ASN Registry : ripencc
- [+] ASN : 42926
- [+] ASN CIDR : 176.53.84.0/24
- [+] ASN Country Code : TR
- [+] ASN Date : 2011-05-26
- [+] ASN Description : RADORE, TR
- [+] cidr : 176.53.84.0/24
- [+] name : GuzelHosting
- [+] handle : WTL8-RIPE
- [+] range : 176.53.84.0 - 176.53.84.255
- [+] description : None
- [+] country : TR
- [+] state : None
- [+] city : None
- [+] address : Webhost Technologies Ltd. Serbest Liman Ve Blge P.K. 486
- [+] postal_code : None
- [+] emails : None
- [+] created : 2016-08-16T07:13:16Z
- [+] updated : 2016-08-16T21:22:28Z
- [+] Crawling Target...
- [+] Looking for robots.txt........[ Found ]
- [+] Extracting robots Links.......[ 2 ]
- [+] Looking for sitemap.xml.......[ Not Found ]
- [+] Extracting CSS Links..........[ 5 ]
- [+] Extracting Javascript Links...[ 12 ]
- [+] Extracting Internal Links.....[ 31 ]
- [+] Extracting External Links.....[ 2 ]
- [+] Extracting Images.............[ 14 ]
- [+] Total Links Extracted : 66
- [+] Dumping Links in /opt/FinalRecon/dumps/sam.gov.tr.dump
- [+] Completed!
- #######################################################################################################################################
- [+] Starting At 2019-10-11 17:16:51.976358
- [+] Collecting Information On: http://sam.gov.tr/
- [#] Status: 200
- --------------------------------------------------
- [#] Web Server Detected: Apache
- [!] X-Frame-Options Headers not detect! target might be vulnerable Click Jacking
- - Date: Fri, 11 Oct 2019 21:16:50 GMT
- - Server: Apache
- - Vary: Accept-Encoding,User-Agent
- - Last-Modified: Fri, 11 Oct 2019 20:23:09 GMT
- - Accept-Ranges: bytes
- - Content-Length: 4001
- - Referrer-Policy:
- - Keep-Alive: timeout=5, max=100
- - Connection: Keep-Alive
- - Content-Type: text/html; charset=UTF-8
- - Content-Encoding: gzip
- --------------------------------------------------
- [#] Finding Location..!
- [#] as: AS42926 Radore Veri Merkezi Hizmetleri A.S.
- [#] city: Ankara
- [#] country: Turkey
- [#] countryCode: TR
- [#] isp: Radore Veri Merkezi Hizmetleri A.S.
- [#] lat: 39.9334
- [#] lon: 32.8597
- [#] org: Webhost Technologies Ltd.
- [#] query: 176.53.84.114
- [#] region: 06
- [#] regionName: Ankara
- [#] status: success
- [#] timezone: Europe/Istanbul
- [#] zip:
- --------------------------------------------------
- [x] Didn't Detect WAF Presence on: http://sam.gov.tr/
- --------------------------------------------------
- [#] Starting Reverse DNS
- [!] Found 1 any Domain
- - sam.gov.tr
- --------------------------------------------------
- [!] Scanning Open Port
- [#] 21/tcp open ftp
- [#] 26/tcp open rsftp
- [#] 53/tcp open domain
- [#] 80/tcp open http
- [#] 110/tcp open pop3
- [#] 143/tcp open imap
- [#] 443/tcp open https
- [#] 465/tcp open smtps
- [#] 587/tcp open submission
- [#] 993/tcp open imaps
- [#] 995/tcp open pop3s
- [#] 2222/tcp open EtherNetIP-1
- --------------------------------------------------
- [+] Collecting Information Disclosure!
- [#] Detecting sitemap.xml file
- [-] sitemap.xml file not Found!?
- [#] Detecting robots.txt file
- [!] robots.txt File Found: http://sam.gov.tr//robots.txt
- [#] Detecting GNU Mailman
- [!] GNU Mailman App Detected: http://sam.gov.tr//mailman/admin
- [!] version: 2.1.27
- --------------------------------------------------
- [+] Crawling Url Parameter On: http://sam.gov.tr/
- --------------------------------------------------
- [#] Searching Html Form !
- [+] Html Form Discovered
- [#] action: http://sam.gov.tr/
- [#] class: None
- [#] id: searchform
- [#] method: get
- --------------------------------------------------
- [!] Found 7 dom parameter
- [#] http://sam.gov.tr//#
- [#] http://sam.gov.tr//#
- [#] http://sam.gov.tr//#
- [#] http://sam.gov.tr//#
- [#] http://sam.gov.tr//#
- [#] http://sam.gov.tr//#
- [#] http://sam.gov.tr//#
- --------------------------------------------------
- [!] 1 Internal Dynamic Parameter Discovered
- [+] http://sam.gov.tr/?cat=6
- --------------------------------------------------
- [-] No external Dynamic Paramter Found!?
- --------------------------------------------------
- [!] 67 Internal links Discovered
- [+] http://sam.gov.tr/wp-content/themes/sam/style.css
- [+] http://sam.gov.tr/wp-content/themes/sam/assets/styles/general.css
- [+] http://sam.gov.tr/xmlrpc.php
- [+] http://sam.gov.tr/wp-includes/wlwmanifest.xml
- [+] http://sam.gov.tr
- [+] http://www.sam.gov.tr/tr/
- [+] http://sam.gov.tr
- [+] http://sam.gov.tr/about-sam/
- [+] http://sam.gov.tr/about-minister/
- [+] http://sam.gov.tr/deputy-minister/
- [+] http://sam.gov.tr/chairmans-message/
- [+] http://sam.gov.tr/staff/
- [+] http://sam.gov.tr/category/publications/perceptions/
- [+] http://sam.gov.tr/category/publications/vision-papers/
- [+] http://sam.gov.tr/category/publications/sam-papers/
- [+] http://sam.gov.tr/category/publications/sam_reports/
- [+] http://sam.gov.tr/summer-winter-school/
- [+] http://sam.gov.tr/internships-at-sam/
- [+] http://sam.gov.tr/alumni/
- [+] http://sam.gov.tr/category/events/
- [+] http://sam.gov.tr/category/announcements/
- [+] http://sam.gov.tr/contact/
- [+] http://sam.gov.tr/turkic-council-the-10th-anniversary-of-the-nakhichevan-agreement-conference/
- [+] http://sam.gov.tr/sam-talks-xi-prof-ersel-aydinli/
- [+] http://sam.gov.tr/perceptions-spring-summer-2019/
- [+] http://sam.gov.tr/meeting-with-the-drc-of-china/
- [+] http://sam.gov.tr/presentation-to-ytb-interns/
- [+] http://sam.gov.tr/presentation-to-peking-university-delegation/
- [+] http://sam.gov.tr/youth-bridges-meeting/
- [+] http://sam.gov.tr/sam-talks-x-prof-sukru-hanioglu/
- [+] http://sam.gov.tr/presentation-to-russian-journalists/
- [+] http://sam.gov.tr/sam-papers-no-17-new-balance-of-power-in-the-eastern-mediterranean-and-turkey/
- [+] http://sam.gov.tr/about-minister/
- [+] http://sam.gov.tr/about-minister/
- [+] http://sam.gov.tr/about-minister/
- [+] http://sam.gov.tr/category/publications/perceptions/
- [+] http://sam.gov.tr/category/publications/perceptions/
- [+] http://sam.gov.tr/category/publications/perceptions/
- [+] http://sam.gov.tr/sam-papers-no-17-new-balance-of-power-in-the-eastern-mediterranean-and-turkey/
- [+] http://sam.gov.tr/category/publications/sam-papers/
- [+] http://sam.gov.tr/sam-papers-no-17-new-balance-of-power-in-the-eastern-mediterranean-and-turkey/
- [+] http://sam.gov.tr/perceptions-spring-summer-2019/
- [+] http://sam.gov.tr/sam-papers-no-17-new-balance-of-power-in-the-eastern-mediterranean-and-turkey/
- [+] http://sam.gov.tr/sam-paper-no-16-on-turkeys-missile-defense-strategy-the-four-faces-of-the-s-400-deal-between-turkey-and-russia/
- [+] http://sam.gov.tr/annual-report-2017/
- [+] http://sam.gov.tr/perceptions-summer-2018/
- [+] http://sam.gov.tr/turkic-council-the-10th-anniversary-of-the-nakhichevan-agreement-conference/
- [+] http://sam.gov.tr/sam-talks-xi-prof-ersel-aydinli/
- [+] http://sam.gov.tr/meeting-with-the-drc-of-china/
- [+] http://sam.gov.tr/presentation-to-ytb-interns/
- [+] http://sam.gov.tr/presentation-to-peking-university-delegation/
- [+] http://sam.gov.tr
- [+] http://sam.gov.tr/about-sam/
- [+] http://sam.gov.tr/about-minister/
- [+] http://sam.gov.tr/deputy-minister/
- [+] http://sam.gov.tr/chairmans-message/
- [+] http://sam.gov.tr/staff/
- [+] http://sam.gov.tr/category/publications/perceptions/
- [+] http://sam.gov.tr/category/publications/vision-papers/
- [+] http://sam.gov.tr/category/publications/sam-papers/
- [+] http://sam.gov.tr/category/publications/sam_reports/
- [+] http://sam.gov.tr/summer-winter-school/
- [+] http://sam.gov.tr/internships-at-sam/
- [+] http://sam.gov.tr/alumni/
- [+] http://sam.gov.tr/category/events/
- [+] http://sam.gov.tr/category/announcements/
- [+] http://sam.gov.tr/contact/
- --------------------------------------------------
- [!] 3 External links Discovered
- [#] http://gmpg.org/xfn/11
- [#] http://twitter.com/SAM_MFA
- [#] http://www.creamediadesign.com
- --------------------------------------------------
- [#] Mapping Subdomain..
- [!] Found 1 Subdomain
- - sam.gov.tr
- --------------------------------------------------
- [!] Done At 2019-10-11 17:17:18.579119
- ######################################################################################################################################
- [i] Scanning Site: http://sam.gov.tr
- B A S I C I N F O
- ====================
- [+] Site Title: SAM | Center for Strategic Research
- [+] IP address: 176.53.84.114
- [+] Web Server: Apache
- [+] CMS: WordPress
- [+] Cloudflare: Not Detected
- [+] Robots File: Found
- -------------[ contents ]----------------
- User-agent: *
- Disallow: /wp-admin/
- Allow: /wp-admin/admin-ajax.php
- -----------[end of contents]-------------
- W H O I S L O O K U P
- ========================
- ** Domain Name: sam.gov.tr
- ** Registrant:
- T.C. DIŞİŞLERİ BAKANLIĞI, STRATEJİK ARAŞTIRMALAR MERKEZİ
- Kırçiçeği Sokak 8/3
- Gaziosmanpaşa
- Ankara,
- Türkiye
- strategy@mfa.gov.tr
- + 90-312-4460435-
- + 90-312-4450584
- ** Administrative Contact:
- NIC Handle : tdb14-metu
- Organization Name : T.C. Dışişleri Bakanlığı
- Address : T.C. Dışişleri Bakanlığı
- BALGAT
- Ankara,06100
- Türkiye
- Phone : + 90-312-2921218-
- Fax : +
- ** Technical Contact:
- NIC Handle : tdb14-metu
- Organization Name : T.C. Dışişleri Bakanlığı
- Address : T.C. Dışişleri Bakanlığı
- BALGAT
- Ankara,06100
- Türkiye
- Phone : + 90-312-2921218-
- Fax : +
- ** Billing Contact:
- NIC Handle : tdb14-metu
- Organization Name : T.C. Dışişleri Bakanlığı
- Address : T.C. Dışişleri Bakanlığı
- BALGAT
- Ankara,06100
- Türkiye
- Phone : + 90-312-2921218-
- Fax : +
- ** Domain Servers:
- ns1.creamediacloud.com
- ns2.creamediacloud.com
- ** Additional Info:
- Created on..............: 2005-Mar-21.
- Expires on..............: 2021-Mar-20.
- G E O I P L O O K U P
- =========================
- [i] IP Address: 176.53.84.114
- [i] Country: Turkey
- [i] State:
- [i] City:
- [i] Latitude: 41.0214
- [i] Longitude: 28.9948
- H T T P H E A D E R S
- =======================
- [i] HTTP/1.1 200 OK
- [i] Date: Fri, 11 Oct 2019 21:15:43 GMT
- [i] Server: Apache
- [i] Last-Modified: Fri, 11 Oct 2019 20:23:09 GMT
- [i] Accept-Ranges: bytes
- [i] Content-Length: 22640
- [i] Vary: Accept-Encoding,User-Agent
- [i] Referrer-Policy:
- [i] Connection: close
- [i] Content-Type: text/html; charset=UTF-8
- D N S L O O K U P
- ===================
- sam.gov.tr. 14399 IN TXT "v=spf1 ip4:176.53.84.114 ip4:5.2.75.169 +a +mx +ip4:88.202.188.27 ~all"
- sam.gov.tr. 14399 IN MX 0 sam.gov.tr.
- sam.gov.tr. 21599 IN SOA ns1.creamediacloud.com. tyalcin.hotmail.com. 2019061900 3600 1800 1209600 86400
- sam.gov.tr. 21599 IN NS ns1.creamediacloud.com.
- sam.gov.tr. 21599 IN NS ns2.creamediacloud.com.
- sam.gov.tr. 14399 IN A 176.53.84.114
- S U B N E T C A L C U L A T I O N
- ====================================
- Address = 176.53.84.114
- Network = 176.53.84.114 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 176.53.84.114 - 176.53.84.114 }
- N M A P P O R T S C A N
- ============================
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-10-11 21:15 UTC
- Nmap scan report for sam.gov.tr (176.53.84.114)
- Host is up (0.13s latency).
- rDNS record for 176.53.84.114: 114ro2gwn.guzel.net.tr
- PORT STATE SERVICE
- 21/tcp open ftp
- 22/tcp closed ssh
- 23/tcp filtered telnet
- 80/tcp open http
- 110/tcp open pop3
- 143/tcp open imap
- 443/tcp open https
- 3389/tcp filtered ms-wbt-server
- Nmap done: 1 IP address (1 host up) scanned in 3.00 seconds
- #######################################################################################################################################
- Enter Address Website = sam.gov.tr
- Reversing IP With HackTarget 'sam.gov.tr'
- --------------------------------------------
- [+] apider.org
- [+] apitherapy.institute
- [+] clinic-up.com
- [+] creamediacloud.com
- [+] creamediadesign.com
- [+] drmujgancaliskan.com
- [+] drozcanyildiz.com
- [+] educanova.education
- [+] fangzhu.academy
- [+] gagaku.org
- [+] geleceginegitimi.org
- [+] ges.world
- [+] globera.org
- [+] holistiktip.org
- [+] interaktifmedya.vip
- [+] konakmimarlik.net
- [+] kursunkalemajans.com
- [+] mail.apitherapy.institute
- [+] mail.creamediadesign.com
- [+] mail.drmujgancaliskan.com
- [+] mail.drozcanyildiz.com
- [+] mail.fangzhu.academy
- [+] mail.globera.org
- [+] mail.interaktifmedya.vip
- [+] mail.kursunkalemajans.com
- [+] mail.medicon.vip
- [+] mail.nbhukuk.com
- [+] mail.persana.co.uk
- [+] mail.refugeedatabase.org
- [+] mail.sanatterapi.org
- [+] mail.sosyalmedya.vip
- [+] medicon.vip
- [+] mikadecor.com
- [+] nbhukuk.com
- [+] ns1.creamediacloud.com
- [+] ns2.creamediacloud.com
- [+] persana.co.uk
- [+] personalogia.com
- [+] refugeedatabase.org
- [+] sam.gov.tr
- [+] sanatterapi.org
- [+] savaskaya.net
- [+] sbhukuk.com.tr
- [+] serdarozkan.com
- [+] serdarozkan.info
- [+] serdarozkan.org
- [+] server-176.53.84.114.as42926.net
- [+] sibelyalcin.com.tr
- [+] sosyalmedya.vip
- [+] srv.creamediacloud.com
- [+] timuryalcin.com
- [+] www.apitherapy.institute
- [+] www.clinic-up.com
- [+] www.creamediadesign.com
- [+] www.drmujgancaliskan.com
- [+] www.drozcanyildiz.com
- [+] www.geleceginegitimi.org
- [+] www.globera.org
- [+] www.interaktifmedya.vip
- [+] www.kursunkalemajans.com
- [+] www.medicon.vip
- [+] www.mikadecor.com
- [+] www.nbhukuk.com
- [+] www.persana.co.uk
- [+] www.refugeedatabase.org
- [+] www.sosyalmedya.vip
- [+] www.zkzeynepkaya.com
- [+] zkzeynepkaya.com
- Reverse IP With YouGetSignal 'sam.gov.tr'
- --------------------------------------------
- [*] IP: 176.53.84.114
- [*] Domain: sam.gov.tr
- [*] Total Domains: 1
- [+] sam.gov.tr
- Geo IP Lookup 'sam.gov.tr'
- -----------------------------
- [+] IP Address: 176.53.84.114
- [+] Country: Turkey
- [+] State:
- [+] City:
- [+] Latitude: 41.0214
- [+] Longitude: 28.9948
- Whois 'sam.gov.tr'
- ---------------------
- [+] ** Domain Name: sam.gov.tr
- [+] ** Registrant:
- [+] T.C. DIŞİŞLERİ BAKANLIĞI, STRATEJİK ARAŞTIRMALAR MERKEZİ
- [+] Kırçiçeği Sokak 8/3
- [+] Gaziosmanpaşa
- [+] Ankara,
- [+] Türkiye
- [+] strategy@mfa.gov.tr
- [+] + 90-312-4460435-
- [+] + 90-312-4450584
- [+] ** Administrative Contact:
- [+] NIC Handle : tdb14-metu
- [+] Organization Name : T.C. Dışişleri Bakanlığı
- [+] Address : T.C. Dışişleri Bakanlığı
- [+] BALGAT
- [+] Ankara,06100
- [+] Türkiye
- [+] Phone : + 90-312-2921218-
- [+] Fax : +
- [+] ** Technical Contact:
- [+] NIC Handle : tdb14-metu
- [+] Organization Name : T.C. Dışişleri Bakanlığı
- [+] Address : T.C. Dışişleri Bakanlığı
- [+] BALGAT
- [+] Ankara,06100
- [+] Türkiye
- [+] Phone : + 90-312-2921218-
- [+] Fax : +
- [+] ** Billing Contact:
- [+] NIC Handle : tdb14-metu
- [+] Organization Name : T.C. Dışişleri Bakanlığı
- [+] Address : T.C. Dışişleri Bakanlığı
- [+] BALGAT
- [+] Ankara,06100
- [+] Türkiye
- [+] Phone : + 90-312-2921218-
- [+] Fax : +
- [+] ** Domain Servers:
- [+] ns1.creamediacloud.com
- [+] ns2.creamediacloud.com
- [+] ** Additional Info:
- [+] Created on..............: 2005-Mar-21.
- [+] Expires on..............: 2021-Mar-20.
- Bypass Cloudflare 'sam.gov.tr'
- ---------------------------------
- [!] CloudFlare Bypass 176.53.84.114 | ftp.sam.gov.tr
- [!] CloudFlare Bypass 127.0.0.1 | localhost.sam.gov.tr
- [!] CloudFlare Bypass 176.53.84.114 | mail.sam.gov.tr
- [!] CloudFlare Bypass 176.53.84.114 | www.sam.gov.tr
- DNS Lookup 'sam.gov.tr'
- --------------------------
- [+] sam.gov.tr. 14399 IN TXT "v=spf1 ip4:176.53.84.114 ip4:5.2.75.169 +a +mx +ip4:88.202.188.27 ~all"
- [+] sam.gov.tr. 14399 IN MX 0 sam.gov.tr.
- [+] sam.gov.tr. 21599 IN SOA ns1.creamediacloud.com. tyalcin.hotmail.com. 2019061900 3600 1800 1209600 86400
- [+] sam.gov.tr. 21599 IN NS ns2.creamediacloud.com.
- [+] sam.gov.tr. 21599 IN NS ns1.creamediacloud.com.
- [+] sam.gov.tr. 14399 IN A 176.53.84.114
- Find Shared DNS 'sam.gov.tr'
- -------------------------------
- [+] No DNS server records found for sam.gov.tr
- Show HTTP Header 'sam.gov.tr'
- --------------------------------
- [+] HTTP/1.1 200 OK
- [+] Date: Fri, 11 Oct 2019 21:16:22 GMT
- [+] Server: Apache
- [+] Last-Modified: Fri, 11 Oct 2019 20:23:09 GMT
- [+] Accept-Ranges: bytes
- [+] Content-Length: 22640
- [+] Vary: Accept-Encoding,User-Agent
- [+] Referrer-Policy:
- [+] Content-Type: text/html; charset=UTF-8
- [+]
- Port Scan 'sam.gov.tr'
- -------------------------
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-10-11 21:16 UTC
- Nmap scan report for sam.gov.tr (176.53.84.114)
- Host is up (0.13s latency).
- rDNS record for 176.53.84.114: 114ro2gwn.guzel.net.tr
- PORT STATE SERVICE
- 21/tcp open ftp
- 22/tcp closed ssh
- 23/tcp filtered telnet
- 80/tcp open http
- 110/tcp open pop3
- 143/tcp open imap
- 443/tcp open https
- 3389/tcp filtered ms-wbt-server
- Nmap done: 1 IP address (1 host up) scanned in 1.71 seconds
- Cms Scan 'sam.gov.tr'
- ------------------------
- [+] Cms : WordPress
- [+] Web Servers : Apache
- [+] Programming Languages : PHP
- Robot.txt 'sam.gov.tr'
- -------------------------
- User-agent: *
- Disallow: /wp-admin/
- Allow: /wp-admin/admin-ajax.php
- Traceroute 'sam.gov.tr'
- --------------------------
- Start: 2019-10-11T21:16:32+0000
- HOST: web01 Loss% Snt Last Avg Best Wrst StDev
- 1.|-- 45.79.12.202 0.0% 3 0.9 0.7 0.6 0.9 0.2
- 2.|-- 45.79.12.6 0.0% 3 0.5 0.5 0.5 0.6 0.1
- 3.|-- dls-b22-link.telia.net 0.0% 3 0.9 1.0 0.9 1.3 0.2
- 4.|-- las-b24-link.telia.net 0.0% 3 31.3 31.3 31.3 31.4 0.1
- 5.|-- voxility-ic-325366-las-b24.c.telia.net 0.0% 3 33.5 33.0 32.0 33.5 0.8
- 6.|-- lax-cs1-01c.voxility.net 0.0% 3 32.3 32.3 32.2 32.3 0.0
- 7.|-- fra-eq5-01c.voxility.net 0.0% 3 152.4 152.5 152.4 152.7 0.2
- 8.|-- fra-eq5-02sw.voxility.net 0.0% 3 152.7 152.6 152.6 152.7 0.0
- 9.|-- 5.254.105.22 0.0% 3 145.5 145.5 145.5 145.5 0.0
- 10.|-- ??? 100.0 3 0.0 0.0 0.0 0.0 0.0
- 11.|-- ??? 100.0 3 0.0 0.0 0.0 0.0 0.0
- 12.|-- server-176.53.66.22.as42926.net 0.0% 3 184.4 184.4 184.2 184.5 0.1
- 13.|-- 114ro2gwn.guzel.net.tr 0.0% 3 188.1 188.0 188.0 188.1 0.0
- Ping 'sam.gov.tr'
- --------------------
- error check your api query
- Page Admin Finder 'sam.gov.tr'
- ---------------------------------
- Avilable Links :
- Find Page >> http://sam.gov.tr/admin/
- Find Page >> http://sam.gov.tr/admin/index.php
- Find Page >> http://sam.gov.tr/wp-login.php
- #######################################################################################################################################
- Trying "sam.gov.tr"
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 10566
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 6, AUTHORITY: 2, ADDITIONAL: 0
- ;; QUESTION SECTION:
- ;sam.gov.tr. IN ANY
- ;; ANSWER SECTION:
- sam.gov.tr. 14400 IN A 176.53.84.114
- sam.gov.tr. 43200 IN SOA ns1.creamediacloud.com. tyalcin.hotmail.com. 2019061900 3600 1800 1209600 86400
- sam.gov.tr. 14400 IN MX 0 sam.gov.tr.
- sam.gov.tr. 14400 IN TXT "v=spf1 ip4:176.53.84.114 ip4:5.2.75.169 +a +mx +ip4:88.202.188.27 ~all"
- sam.gov.tr. 43200 IN NS ns2.creamediacloud.com.
- sam.gov.tr. 43200 IN NS ns1.creamediacloud.com.
- ;; AUTHORITY SECTION:
- sam.gov.tr. 43200 IN NS ns2.creamediacloud.com.
- sam.gov.tr. 43200 IN NS ns1.creamediacloud.com.
- Received 277 bytes from 2001:18c0:121:6900:724f:b8ff:fefd:5b6a#53 in 449 ms
- #######################################################################################################################################
- ; <<>> DiG 9.11.5-P4-5.1+b1-Debian <<>> +trace sam.gov.tr
- ;; global options: +cmd
- . 81954 IN NS d.root-servers.net.
- . 81954 IN NS k.root-servers.net.
- . 81954 IN NS g.root-servers.net.
- . 81954 IN NS f.root-servers.net.
- . 81954 IN NS l.root-servers.net.
- . 81954 IN NS j.root-servers.net.
- . 81954 IN NS h.root-servers.net.
- . 81954 IN NS a.root-servers.net.
- . 81954 IN NS e.root-servers.net.
- . 81954 IN NS b.root-servers.net.
- . 81954 IN NS m.root-servers.net.
- . 81954 IN NS i.root-servers.net.
- . 81954 IN NS c.root-servers.net.
- . 81954 IN RRSIG NS 8 0 518400 20191024170000 20191011160000 22545 . H3x2s+SvDITnRW6oA+xKZQtZo5I9BgTdImmO67rSOPN5KHNI+fOYfUTl /YhB489khlN0JmP/rrONAXshejO4xq8nHJTGBG3lnOWw4LQpHBsCFSDH Plwo8dRhxvEv+2R0MVtFo55P+BdugfD4q3iM3EmETRf9y1BOVapKG5EG CrwPWII7FRh55eTrQgjangPZW3PtUrsHn79+hc3ahz5QuECrVsunPab9 kZ0Q/0WNHmpHCqT50NO0ot4lVDIweGvERCfJ8ijZA9YR3J/SJl88szI8 0E/JkciIiBIIEUnm8oxhBOgV99eXk54euGKL9XU8wdqPSGrWUDVIIS0l wuWriA==
- ;; Received 525 bytes from 185.93.180.131#53(185.93.180.131) in 112 ms
- tr. 172800 IN NS ns21.nic.tr.
- tr. 172800 IN NS ns22.nic.tr.
- tr. 172800 IN NS ns31.nic.tr.
- tr. 172800 IN NS ns41.nic.tr.
- tr. 172800 IN NS ns42.nic.tr.
- tr. 172800 IN NS ns91.nic.tr.
- tr. 172800 IN NS ns92.nic.tr.
- tr. 86400 IN NSEC trade. NS RRSIG NSEC
- tr. 86400 IN RRSIG NSEC 8 1 86400 20191024170000 20191011160000 22545 . hfJNq5N9xhx7hkeLXcmhxz3RE1KvSECFQJjVFH4Hi8FzRPkH5II6sk9/ eS8jFTxgzysiOBMOCK0QQGqhJJWpFpYYxdksJdijJtxqa6M5901bdWoo BYYu+F2sCGkaMaYs8dhAT+pw2FQ+AbmDUVptMEVSaqs0Ka2ThzCqfxzY 5LXqGMALaFv51fFBpp7SzshKtlxRFkJ3yokRb7jUYPl39tZQkll8GO5m H8D4p5wMvtpfo7WcbB//Frk7IRHvZEYftVKEEK9ZXobe/p7IcPo8be3o 6d97vpuugimnGpPhLA618Hyv1lkpKnhTtHH0e7QJP36X2UkFXFnEVJDW vBgWog==
- ;; Received 714 bytes from 2001:500:2f::f#53(f.root-servers.net) in 22 ms
- sam.gov.tr. 43200 IN NS ns1.creamediacloud.com.
- sam.gov.tr. 43200 IN NS ns2.creamediacloud.com.
- ;; Received 93 bytes from 2600:2000:3002::1#53(ns91.nic.tr) in 274 ms
- ;; connection timed out; no servers could be reached
- #######################################################################################################################################
- AVAILABLE PLUGINS
- -----------------
- OpenSslCipherSuitesPlugin
- CertificateInfoPlugin
- HeartbleedPlugin
- RobotPlugin
- OpenSslCcsInjectionPlugin
- CompressionPlugin
- HttpHeadersPlugin
- FallbackScsvPlugin
- SessionRenegotiationPlugin
- SessionResumptionPlugin
- EarlyDataPlugin
- CHECKING HOST(S) AVAILABILITY
- -----------------------------
- 176.53.84.114:443 => 176.53.84.114
- SCAN RESULTS FOR 176.53.84.114:443 - 176.53.84.114
- --------------------------------------------------
- * TLSV1_1 Cipher Suites:
- Server rejected all cipher suites.
- * OpenSSL Heartbleed:
- OK - Not vulnerable to Heartbleed
- * Certificate Information:
- Content
- SHA1 Fingerprint: 5773b8ca2f247af4c43c05f83520302f30642df1
- Common Name: akliselim.tv
- Issuer: cPanel, Inc. Certification Authority
- Serial Number: 212391679002770937487022612842878797296
- Not Before: 2019-09-30 00:00:00
- Not After: 2019-12-29 23:59:59
- Signature Algorithm: sha256
- Public Key Algorithm: RSA
- Key Size: 2048
- Exponent: 65537 (0x10001)
- DNS Subject Alternative Names: ['akliselim.tv', 'mail.akliselim.tv', 'www.akliselim.tv']
- Trust
- Hostname Validation: FAILED - Certificate does NOT match 176.53.84.114
- Android CA Store (9.0.0_r9): OK - Certificate is trusted
- Apple CA Store (iOS 12, macOS 10.14, watchOS 5, and tvOS 12):OK - Certificate is trusted
- Java CA Store (jdk-12.0.1): OK - Certificate is trusted
- Mozilla CA Store (2019-03-14): OK - Certificate is trusted
- Windows CA Store (2019-05-27): OK - Certificate is trusted
- Symantec 2018 Deprecation: WARNING: Certificate distrusted by Google and Mozilla on September 2018
- Received Chain: akliselim.tv --> cPanel, Inc. Certification Authority --> COMODO RSA Certification Authority
- Verified Chain: akliselim.tv --> cPanel, Inc. Certification Authority --> COMODO RSA Certification Authority
- Received Chain Contains Anchor: OK - Anchor certificate not sent
- Received Chain Order: OK - Order is valid
- Verified Chain contains SHA1: OK - No SHA1-signed certificate in the verified certificate chain
- Extensions
- OCSP Must-Staple: NOT SUPPORTED - Extension not found
- Certificate Transparency: WARNING - Only 2 SCTs included but Google recommends 3 or more
- OCSP Stapling
- OCSP Response Status: successful
- Validation w/ Mozilla Store: OK - Response is trusted
- Responder Id: 7E035A65416BA77E0AE1B89D08EA1D8E1D6AC765
- Cert Status: good
- Cert Serial Number: 9FC926428D76171533B3204FDC0305F0
- This Update: Oct 10 12:11:29 2019 GMT
- Next Update: Oct 17 12:11:29 2019 GMT
- * TLSV1 Cipher Suites:
- Server rejected all cipher suites.
- * TLSV1_2 Cipher Suites:
- Forward Secrecy OK - Supported
- RC4 OK - Not Supported
- Preferred:
- None - Server followed client cipher suite preference.
- Accepted:
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 256 bits HTTP 301 Moved Permanently - https://akliselim.tv/
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 256 bits HTTP 301 Moved Permanently - https://akliselim.tv/
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 128 bits HTTP 301 Moved Permanently - https://akliselim.tv/
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 128 bits HTTP 301 Moved Permanently - https://akliselim.tv/
- * OpenSSL CCS Injection:
- OK - Not vulnerable to OpenSSL CCS injection
- * SSLV2 Cipher Suites:
- Server rejected all cipher suites.
- * Deflate Compression:
- OK - Compression disabled
- * Downgrade Attacks:
- TLS_FALLBACK_SCSV: OK - Supported
- * SSLV3 Cipher Suites:
- Server rejected all cipher suites.
- * TLS 1.2 Session Resumption Support:
- With Session IDs: OK - Supported (5 successful, 0 failed, 0 errors, 5 total attempts).
- With TLS Tickets: OK - Supported
- * TLSV1_3 Cipher Suites:
- Server rejected all cipher suites.
- * ROBOT Attack:
- OK - Not vulnerable, RSA cipher suites not supported
- * Session Renegotiation:
- Client-initiated Renegotiation: OK - Rejected
- Secure Renegotiation: OK - Supported
- SCAN COMPLETED IN 13.07 S
- -------------------------
- ######################################################################################################################################
- Domains still to check: 1
- Checking if the hostname sam.gov.tr. given is in fact a domain...
- Analyzing domain: sam.gov.tr.
- Checking NameServers using system default resolver...
- IP: 176.53.84.114 (Turkey)
- HostName: ns1.creamediacloud.com Type: NS
- HostName: 114ro2gwn.guzel.net.tr Type: PTR
- IP: 176.53.84.114 (Turkey)
- HostName: ns1.creamediacloud.com Type: NS
- HostName: 114ro2gwn.guzel.net.tr Type: PTR
- HostName: ns2.creamediacloud.com Type: NS
- Checking MailServers using system default resolver...
- IP: 176.53.84.114 (Turkey)
- HostName: ns1.creamediacloud.com Type: NS
- HostName: 114ro2gwn.guzel.net.tr Type: PTR
- HostName: ns2.creamediacloud.com Type: NS
- HostName: sam.gov.tr Type: MX
- Checking the zone transfer for each NS... (if this takes more than 10 seconds, just hit CTRL-C and it will continue. Bug in the libs)
- No zone transfer found on nameserver 176.53.84.114
- No zone transfer found on nameserver 176.53.84.114
- Checking SPF record...
- New IP found: 5.2.75.169
- New IP found: 88.202.188.27
- Checking 192 most common hostnames using system default resolver...
- IP: 176.53.84.114 (Turkey)
- HostName: ns1.creamediacloud.com Type: NS
- HostName: 114ro2gwn.guzel.net.tr Type: PTR
- HostName: ns2.creamediacloud.com Type: NS
- HostName: sam.gov.tr Type: MX
- Type: SPF
- HostName: www.sam.gov.tr. Type: A
- IP: 176.53.84.114 (Turkey)
- HostName: ns1.creamediacloud.com Type: NS
- HostName: 114ro2gwn.guzel.net.tr Type: PTR
- HostName: ns2.creamediacloud.com Type: NS
- HostName: sam.gov.tr Type: MX
- Type: SPF
- HostName: www.sam.gov.tr. Type: A
- HostName: ftp.sam.gov.tr. Type: A
- IP: 176.53.84.114 (Turkey)
- HostName: ns1.creamediacloud.com Type: NS
- HostName: 114ro2gwn.guzel.net.tr Type: PTR
- HostName: ns2.creamediacloud.com Type: NS
- HostName: sam.gov.tr Type: MX
- Type: SPF
- HostName: www.sam.gov.tr. Type: A
- HostName: ftp.sam.gov.tr. Type: A
- HostName: mail.sam.gov.tr. Type: A
- Checking with nmap the reverse DNS hostnames of every <ip>/24 netblock using system default resolver...
- Checking netblock 176.53.84.0
- Checking netblock 5.2.75.0
- Checking netblock 88.202.188.0
- Searching for sam.gov.tr. emails in Google
- Checking 3 active hosts using nmap... (nmap -sn -n -v -PP -PM -PS80,25 -PA -PY -PU53,40125 -PE --reason <ip> -oA <output_directory>/nmap/<ip>.sn)
- Host 176.53.84.114 is up (reset ttl 64)
- Host 5.2.75.169 is up (reset ttl 64)
- Host 88.202.188.27 is up (reset ttl 64)
- Checking ports on every active host using nmap... (nmap -O --reason --webxml --traceroute -sS -sV -sC -Pn -n -v -F <ip> -oA <output_directory>/nmap/<ip>)
- Scanning ip 176.53.84.114 (mail.sam.gov.tr.):
- 21/tcp open ftp syn-ack ttl 43 Pure-FTPd
- 26/tcp open smtp syn-ack ttl 44 Exim smtpd 4.92
- | smtp-commands: srv.creamediacloud.com Hello nmap.scanme.org [176.113.74.24], SIZE 52428800, 8BITMIME, PIPELINING, STARTTLS, HELP,
- |_ Commands supported: AUTH STARTTLS HELO EHLO MAIL RCPT DATA BDAT NOOP QUIT RSET HELP
- 53/tcp open domain syn-ack ttl 43 ISC BIND 9.11.4-P2 (RedHat Enterprise Linux 7)
- | dns-nsid:
- |_ bind.version: 9.11.4-P2-RedHat-9.11.4-9.P2.el7
- 80/tcp open http syn-ack ttl 44 Apache httpd
- |_http-title: 403 Forbidden
- 110/tcp open pop3 syn-ack ttl 43 Dovecot pop3d
- |_pop3-capabilities: USER RESP-CODES TOP SASL(PLAIN LOGIN) STLS AUTH-RESP-CODE CAPA PIPELINING UIDL
- 143/tcp open imap syn-ack ttl 43 Dovecot imapd
- |_imap-capabilities: post-login capabilities LOGIN-REFERRALS ID IMAP4rev1 AUTH=PLAIN listed NAMESPACE ENABLE LITERAL+ OK AUTH=LOGINA0001 more IDLE have SASL-IR STARTTLS Pre-login
- 443/tcp open ssl/http syn-ack ttl 44 Apache httpd
- | http-methods:
- |_ Supported Methods: GET HEAD
- |_http-title: Did not follow redirect to https://akliselim.tv/
- | ssl-cert: Subject: commonName=akliselim.tv
- | Subject Alternative Name: DNS:akliselim.tv, DNS:mail.akliselim.tv, DNS:www.akliselim.tv
- | Issuer: commonName=cPanel, Inc. Certification Authority/organizationName=cPanel, Inc./stateOrProvinceName=TX/countryName=US
- | Public Key type: rsa
- | Public Key bits: 2048
- | Signature Algorithm: sha256WithRSAEncryption
- | Not valid before: 2019-09-30T00:00:00
- | Not valid after: 2019-12-29T23:59:59
- | MD5: 0ae4 b08d 8791 5dd0 b5d7 1806 888b a6af
- |_SHA-1: 5773 b8ca 2f24 7af4 c43c 05f8 3520 302f 3064 2df1
- 465/tcp open ssl/smtp syn-ack ttl 44 Exim smtpd 4.92
- | smtp-commands: srv.creamediacloud.com Hello nmap.scanme.org [176.113.74.24], SIZE 52428800, 8BITMIME, PIPELINING, AUTH PLAIN LOGIN, HELP,
- |_ Commands supported: AUTH HELO EHLO MAIL RCPT DATA BDAT NOOP QUIT RSET HELP
- 587/tcp open smtp syn-ack ttl 44 Exim smtpd 4.92
- | smtp-commands: srv.creamediacloud.com Hello nmap.scanme.org [176.113.74.24], SIZE 52428800, 8BITMIME, PIPELINING, STARTTLS, HELP,
- |_ Commands supported: AUTH STARTTLS HELO EHLO MAIL RCPT DATA BDAT NOOP QUIT RSET HELP
- 993/tcp open imaps? syn-ack ttl 44
- |_imap-capabilities: post-login capabilities LOGIN-REFERRALS ID IMAP4rev1 AUTH=PLAIN listed NAMESPACE ENABLE LITERAL+ Pre-login AUTH=LOGINA0001 IDLE have SASL-IR more OK
- 995/tcp open pop3s? syn-ack ttl 44
- |_pop3-capabilities: TOP SASL(PLAIN LOGIN) USER CAPA PIPELINING AUTH-RESP-CODE RESP-CODES UIDL
- OS Info: Service Info: Host: srv.creamediacloud.com; OS: Linux; CPE: cpe:/o:redhat:enterprise_linux:7
- Scanning ip 5.2.75.169 ():
- 22/tcp open ssh syn-ack ttl 51 OpenSSH 7.4 (protocol 2.0)
- | ssh-hostkey:
- | 2048 cd:6b:88:b1:d4:87:9a:7c:29:ed:14:31:4b:aa:1f:bc (RSA)
- | 256 3f:39:0f:bd:36:c1:34:1a:15:59:09:dd:35:31:fd:fd (ECDSA)
- |_ 256 9d:1e:81:01:5a:b8:f2:1b:ef:81:f5:46:c8:b5:45:54 (ED25519)
- 80/tcp open http syn-ack ttl 51 Apache httpd
- | http-methods:
- | Supported Methods: GET POST OPTIONS HEAD TRACE
- |_ Potentially risky methods: TRACE
- |_http-server-header: nginx
- |_http-title: 403 Forbidden
- OS Info: Service Info: Host: _
- Scanning ip 88.202.188.27 ():
- 22/tcp open ssh syn-ack ttl 52 OpenSSH 7.2p2 Ubuntu 4ubuntu2.4 (Ubuntu Linux; protocol 2.0)
- | ssh-hostkey:
- | 2048 3b:c3:b3:81:89:c8:89:18:79:01:9b:36:6d:d6:0f:e7 (RSA)
- |_ 256 40:4b:7b:c7:31:72:43:fb:2b:71:66:31:21:a2:bb:a7 (ECDSA)
- OS Info: Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
- WebCrawling domain's web servers... up to 50 max links.
- + URL to crawl: http://www.sam.gov.tr.
- + Date: 2019-10-11
- + Crawling URL: http://www.sam.gov.tr.:
- + Links:
- + Crawling http://www.sam.gov.tr. (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: http://mail.sam.gov.tr.
- + Date: 2019-10-11
- + Crawling URL: http://mail.sam.gov.tr.:
- + Links:
- + Crawling http://mail.sam.gov.tr. (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: http://ns2.creamediacloud.com
- + Date: 2019-10-11
- + Crawling URL: http://ns2.creamediacloud.com:
- + Links:
- + Crawling http://ns2.creamediacloud.com (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: http://ftp.sam.gov.tr.
- + Date: 2019-10-11
- + Crawling URL: http://ftp.sam.gov.tr.:
- + Links:
- + Crawling http://ftp.sam.gov.tr. (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: http://ns1.creamediacloud.com
- + Date: 2019-10-11
- + Crawling URL: http://ns1.creamediacloud.com:
- + Links:
- + Crawling http://ns1.creamediacloud.com (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: http://sam.gov.tr
- + Date: 2019-10-11
- + Crawling URL: http://sam.gov.tr:
- + Links:
- + Crawling http://sam.gov.tr (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: https://www.sam.gov.tr.
- + Date: 2019-10-11
- + Crawling URL: https://www.sam.gov.tr.:
- + Links:
- + Crawling https://www.sam.gov.tr. (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: https://mail.sam.gov.tr.
- + Date: 2019-10-11
- + Crawling URL: https://mail.sam.gov.tr.:
- + Links:
- + Crawling https://mail.sam.gov.tr. (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: https://ns2.creamediacloud.com
- + Date: 2019-10-11
- + Crawling URL: https://ns2.creamediacloud.com:
- + Links:
- + Crawling https://ns2.creamediacloud.com (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: https://ftp.sam.gov.tr.
- + Date: 2019-10-11
- + Crawling URL: https://ftp.sam.gov.tr.:
- + Links:
- + Crawling https://ftp.sam.gov.tr. (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: https://ns1.creamediacloud.com
- + Date: 2019-10-11
- + Crawling URL: https://ns1.creamediacloud.com:
- + Links:
- + Crawling https://ns1.creamediacloud.com (timed out)
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: https://sam.gov.tr
- + Date: 2019-10-11
- + Crawling URL: https://sam.gov.tr:
- + Links:
- + Crawling https://sam.gov.tr (timed out)
- + Searching for directories...
- + Searching open folders...
- --Finished--
- Summary information for domain sam.gov.tr.
- -----------------------------------------
- Domain Ips Information:
- IP: 176.53.84.114
- HostName: ns1.creamediacloud.com Type: NS
- HostName: 114ro2gwn.guzel.net.tr Type: PTR
- HostName: ns2.creamediacloud.com Type: NS
- HostName: sam.gov.tr Type: MX
- Type: SPF
- HostName: www.sam.gov.tr. Type: A
- HostName: ftp.sam.gov.tr. Type: A
- HostName: mail.sam.gov.tr. Type: A
- Country: Turkey
- Is Active: True (reset ttl 64)
- Port: 21/tcp open ftp syn-ack ttl 43 Pure-FTPd
- Port: 26/tcp open smtp syn-ack ttl 44 Exim smtpd 4.92
- Script Info: | smtp-commands: srv.creamediacloud.com Hello nmap.scanme.org [176.113.74.24], SIZE 52428800, 8BITMIME, PIPELINING, STARTTLS, HELP,
- Script Info: |_ Commands supported: AUTH STARTTLS HELO EHLO MAIL RCPT DATA BDAT NOOP QUIT RSET HELP
- Port: 53/tcp open domain syn-ack ttl 43 ISC BIND 9.11.4-P2 (RedHat Enterprise Linux 7)
- Script Info: | dns-nsid:
- Script Info: |_ bind.version: 9.11.4-P2-RedHat-9.11.4-9.P2.el7
- Port: 80/tcp open http syn-ack ttl 44 Apache httpd
- Script Info: |_http-title: 403 Forbidden
- Port: 110/tcp open pop3 syn-ack ttl 43 Dovecot pop3d
- Script Info: |_pop3-capabilities: USER RESP-CODES TOP SASL(PLAIN LOGIN) STLS AUTH-RESP-CODE CAPA PIPELINING UIDL
- Port: 143/tcp open imap syn-ack ttl 43 Dovecot imapd
- Script Info: |_imap-capabilities: post-login capabilities LOGIN-REFERRALS ID IMAP4rev1 AUTH=PLAIN listed NAMESPACE ENABLE LITERAL+ OK AUTH=LOGINA0001 more IDLE have SASL-IR STARTTLS Pre-login
- Port: 443/tcp open ssl/http syn-ack ttl 44 Apache httpd
- Script Info: | http-methods:
- Script Info: |_ Supported Methods: GET HEAD
- Script Info: |_http-title: Did not follow redirect to https://akliselim.tv/
- Script Info: | ssl-cert: Subject: commonName=akliselim.tv
- Script Info: | Subject Alternative Name: DNS:akliselim.tv, DNS:mail.akliselim.tv, DNS:www.akliselim.tv
- Script Info: | Issuer: commonName=cPanel, Inc. Certification Authority/organizationName=cPanel, Inc./stateOrProvinceName=TX/countryName=US
- Script Info: | Public Key type: rsa
- Script Info: | Public Key bits: 2048
- Script Info: | Signature Algorithm: sha256WithRSAEncryption
- Script Info: | Not valid before: 2019-09-30T00:00:00
- Script Info: | Not valid after: 2019-12-29T23:59:59
- Script Info: | MD5: 0ae4 b08d 8791 5dd0 b5d7 1806 888b a6af
- Script Info: |_SHA-1: 5773 b8ca 2f24 7af4 c43c 05f8 3520 302f 3064 2df1
- Port: 465/tcp open ssl/smtp syn-ack ttl 44 Exim smtpd 4.92
- Script Info: | smtp-commands: srv.creamediacloud.com Hello nmap.scanme.org [176.113.74.24], SIZE 52428800, 8BITMIME, PIPELINING, AUTH PLAIN LOGIN, HELP,
- Script Info: |_ Commands supported: AUTH HELO EHLO MAIL RCPT DATA BDAT NOOP QUIT RSET HELP
- Port: 587/tcp open smtp syn-ack ttl 44 Exim smtpd 4.92
- Script Info: | smtp-commands: srv.creamediacloud.com Hello nmap.scanme.org [176.113.74.24], SIZE 52428800, 8BITMIME, PIPELINING, STARTTLS, HELP,
- Script Info: |_ Commands supported: AUTH STARTTLS HELO EHLO MAIL RCPT DATA BDAT NOOP QUIT RSET HELP
- Port: 993/tcp open imaps? syn-ack ttl 44
- Script Info: |_imap-capabilities: post-login capabilities LOGIN-REFERRALS ID IMAP4rev1 AUTH=PLAIN listed NAMESPACE ENABLE LITERAL+ Pre-login AUTH=LOGINA0001 IDLE have SASL-IR more OK
- Port: 995/tcp open pop3s? syn-ack ttl 44
- Script Info: |_pop3-capabilities: TOP SASL(PLAIN LOGIN) USER CAPA PIPELINING AUTH-RESP-CODE RESP-CODES UIDL
- Os Info: Host: srv.creamediacloud.com; OS: Linux; CPE: cpe:/o:redhat:enterprise_linux:7
- IP: 5.2.75.169
- Type: SPF
- Is Active: True (reset ttl 64)
- Port: 22/tcp open ssh syn-ack ttl 51 OpenSSH 7.4 (protocol 2.0)
- Script Info: | ssh-hostkey:
- Script Info: | 2048 cd:6b:88:b1:d4:87:9a:7c:29:ed:14:31:4b:aa:1f:bc (RSA)
- Script Info: | 256 3f:39:0f:bd:36:c1:34:1a:15:59:09:dd:35:31:fd:fd (ECDSA)
- Script Info: |_ 256 9d:1e:81:01:5a:b8:f2:1b:ef:81:f5:46:c8:b5:45:54 (ED25519)
- Port: 80/tcp open http syn-ack ttl 51 Apache httpd
- Script Info: | http-methods:
- Script Info: | Supported Methods: GET POST OPTIONS HEAD TRACE
- Script Info: |_ Potentially risky methods: TRACE
- Script Info: |_http-server-header: nginx
- Script Info: |_http-title: 403 Forbidden
- Os Info: Host: _
- IP: 88.202.188.27
- Type: SPF
- Is Active: True (reset ttl 64)
- Port: 22/tcp open ssh syn-ack ttl 52 OpenSSH 7.2p2 Ubuntu 4ubuntu2.4 (Ubuntu Linux; protocol 2.0)
- Script Info: | ssh-hostkey:
- Script Info: | 2048 3b:c3:b3:81:89:c8:89:18:79:01:9b:36:6d:d6:0f:e7 (RSA)
- Script Info: |_ 256 40:4b:7b:c7:31:72:43:fb:2b:71:66:31:21:a2:bb:a7 (ECDSA)
- Os Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
- #######################################################################################################################################
- [+] URL: http://sam.gov.tr/
- [+] Started: Fri Oct 11 16:17:36 2019
- Interesting Finding(s):
- [+] http://sam.gov.tr/
- | Interesting Entries:
- | - Server: Apache
- | - Referrer-Policy:
- | Found By: Headers (Passive Detection)
- | Confidence: 100%
- [+] http://sam.gov.tr/robots.txt
- | Interesting Entries:
- | - /wp-admin/
- | - /wp-admin/admin-ajax.php
- | Found By: Robots Txt (Aggressive Detection)
- | Confidence: 100%
- [+] http://sam.gov.tr/xmlrpc.php
- | Found By: Link Tag (Passive Detection)
- | Confidence: 30%
- | References:
- | - http://codex.wordpress.org/XML-RPC_Pingback_API
- | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_ghost_scanner
- | - https://www.rapid7.com/db/modules/auxiliary/dos/http/wordpress_xmlrpc_dos
- | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_xmlrpc_login
- | - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_pingback_access
- [+] http://sam.gov.tr/wp-cron.php
- | Found By: Direct Access (Aggressive Detection)
- | Confidence: 60%
- | References:
- | - https://www.iplocation.net/defend-wordpress-from-ddos
- | - https://github.com/wpscanteam/wpscan/issues/1299
- [+] WordPress version 5.2.3 identified (Latest, released on 2019-09-05).
- | Detected By: Meta Generator (Passive Detection)
- | - http://sam.gov.tr/, Match: 'WordPress 5.2.3'
- | Confirmed By: Rss Generator (Aggressive Detection)
- | - http://sam.gov.tr/feed/, <generator>https://wordpress.org/?v=5.2.3</generator>
- | - http://sam.gov.tr/comments/feed/, <generator>https://wordpress.org/?v=5.2.3</generator>
- [+] WordPress theme in use: sam
- | Location: http://sam.gov.tr/wp-content/themes/sam/
- | Style URL: http://sam.gov.tr/wp-content/themes/sam/style.css
- | Style Name: SAM
- | Author: Crea Media Design
- | Author URI: http://www.creamediadesign.com/
- |
- | Detected By: Css Style (Passive Detection)
- | Confirmed By: Urls In Homepage (Passive Detection)
- |
- | Version: 1.0 (80% confidence)
- | Detected By: Style (Passive Detection)
- | - http://sam.gov.tr/wp-content/themes/sam/style.css, Match: 'Version: 1.0'
- [+] Enumerating All Plugins (via Passive Methods)
- [+] Checking Plugin Versions (via Passive and Aggressive Methods)
- [i] Plugin(s) Identified:
- [+] nextcellent-gallery-nextgen-legacy
- | Location: http://sam.gov.tr/wp-content/plugins/nextcellent-gallery-nextgen-legacy/
- | Latest Version: 1.9.35 (up to date)
- | Last Updated: 2017-10-16T09:19:00.000Z
- |
- | Detected By: Comment (Passive Detection)
- |
- | Version: 3.2.18 (60% confidence)
- | Detected By: Comment (Passive Detection)
- | - http://sam.gov.tr/, Match: '<meta name="NextGEN" version="3.2.18"'
- [+] nextgen-gallery
- | Location: http://sam.gov.tr/wp-content/plugins/nextgen-gallery/
- | Latest Version: 3.2.18 (up to date)
- | Last Updated: 2019-09-18T16:02:00.000Z
- |
- | Detected By: Urls In Homepage (Passive Detection)
- | Confirmed By: Comment (Passive Detection)
- |
- | Version: 3.2.18 (60% confidence)
- | Detected By: Comment (Passive Detection)
- | - http://sam.gov.tr/, Match: '<meta name="NextGEN" version="3.2.18"'
- [+] w3-total-cache
- | Location: http://sam.gov.tr/wp-content/plugins/w3-total-cache/
- | Latest Version: 0.10.1
- | Last Updated: 2019-09-11T19:03:00.000Z
- |
- | Detected By: Comment Debug Info (Passive Detection)
- |
- | The version could not be determined.
- [+] wp-paginate
- | Location: http://sam.gov.tr/wp-content/plugins/wp-paginate/
- | Latest Version: 2.0.6
- | Last Updated: 2019-09-13T13:39:00.000Z
- |
- | Detected By: Urls In Homepage (Passive Detection)
- |
- | The version could not be determined.
- [+] Enumerating Config Backups (via Passive and Aggressive Methods)
- Checking Config Backups - Time: 00:02:30 <===> (21 / 21) 100.00% Time: 00:02:30
- [i] No Config Backups Found.
- [!] No WPVulnDB API Token given, as a result vulnerability data has not been output.
- [!] You can get a free API token with 50 daily requests by registering at https://wpvulndb.com/users/sign_up.
- [+] Finished: Fri Oct 11 16:25:31 2019
- [+] Requests Done: 69
- [+] Cached Requests: 7
- [+] Data Sent: 10.112 KB
- [+] Data Received: 929.213 KB
- [+] Memory used: 130.602 MB
- [+] Elapsed time: 00:07:54
- #######################################################################################################################################
- [*] Load target domain: sam.gov.tr
- - starting scanning @ 2019-10-11 16:27:49
- [+] Running & Checking source to be used
- ---------------------------------------------
- ⍥ Shodan [ ✕ ]
- ⍥ Webarchive [ ✔ ]
- ⍥ Dnsdumpster [ ✔ ]
- ⍥ Certspotter [ ✔ ]
- ⍥ Entrust [ ✔ ]
- ⍥ Binaryedge [ ✕ ]
- ⍥ Bufferover [ ✔ ]
- ⍥ Riddler [ ✔ ]
- ⍥ Threatcrowd [ ✔ ]
- ⍥ Threatminer [ ✔ ]
- ⍥ Certsh [ ✔ ]
- ⍥ Hackertarget [ ✔ ]
- ⍥ Censys [ ✕ ]
- ⍥ Securitytrails [ ✕ ]
- ⍥ Virustotal [ ✕ ]
- ⍥ Findsubdomain [ ✔ ]
- [+] Get & Count subdomain total From source
- ---------------------------------------------
- ⍥ Hackertarget: Total Subdomain (1)
- ⍥ Findsubdomain: Total Subdomain (2)
- ⍥ Certspotter: Total Subdomain (3)
- ⍥ Threatminer: Total Subdomain (0)
- ⍥ Certsh: Total Subdomain (2)
- ⍥ BufferOver: Total Subdomain (2)
- ⍥ Entrust: Total Subdomain (0)
- ⍥ Threatcrowd: Total Subdomain (0)
- ⍥ Dnsdumpster: Total Subdomain (4)
- ⍥ Riddler: Total Subdomain (2)
- ⍥ Webarchive: Total Subdomain (3)
- [+] Parsing & Sorting list Domain
- ---------------------------------------------
- ⍥ Total [5]
- - 0 sam.gov.tr.
- - Fichier binaire (entrée standard) correspondant
- - mail.sam.gov.tr
- - sam.gov.tr
- - www.sam.gov.tr
- ⍥ Total [5]
- [+] Probe subdomain for working on http/https
- ---------------------------------------------
- ⍥ Total [0]
- [+] Check Live Host: Ping Sweep - ICMP PING
- ---------------------------------------------
- ⍥ [LIVE] 0
- ⍥ [DEAD] sam.gov.tr.
- ⍥ [DEAD] Fichier
- ⍥ [DEAD] binaire
- ⍥ [DEAD] (entrée
- ⍥ [DEAD] standard)
- ⍥ [DEAD] correspondant
- ⍥ [DEAD] mail.sam.gov.tr
- ⍥ [DEAD] sam.gov.tr
- ⍥ [DEAD] www.sam.gov.tr
- [+] Check Resolving: Subdomains & Domains
- ---------------------------------------------
- ⍥ Resolving domains to: RESOLVE ERROR
- ⍥ Resolving domains to: 176.53.84.114
- ⍥ Resolving domains to: RESOLVE ERROR
- ⍥ Resolving domains to: RESOLVE ERROR
- ⍥ Resolving domains to: RESOLVE ERROR
- ⍥ Resolving domains to: RESOLVE ERROR
- ⍥ Resolving domains to: RESOLVE ERROR
- ⍥ Resolving domains to: 176.53.84.114
- ⍥ Resolving domains to: 176.53.84.114
- ⍥ Resolving domains to: 176.53.84.114
- ⍥ Make template for reports
- - output/10-11-2019/sam.gov.tr/reports
- ⍥ Successful Created ..
- [+] Sud⍥my has been sucessfully completed
- ---------------------------------------------
- ⍥ Location output:
- - output/10-11-2019/sam.gov.tr
- - output/10-11-2019/sam.gov.tr/report
- - output/10-11-2019/sam.gov.tr/screenshots
- #######################################################################################################################################
- [INFO] ------TARGET info------
- [*] TARGET: http://sam.gov.tr/
- [*] TARGET IP: 176.53.84.114
- [INFO] NO load balancer detected for sam.gov.tr...
- [*] DNS servers: ns1.creamediacloud.com.
- [*] TARGET server:
- [*] CC: TR
- [*] Country: Turkey
- [*] RegionCode: 06
- [*] RegionName: Ankara
- [*] City: Ankara
- [*] ASN: AS42926
- [*] BGP_PREFIX: 176.53.84.0/24
- [*] ISP: RADORE Radore Veri Merkezi Hizmetleri A.S., TR
- [INFO] DNS enumeration:
- [*] ftp.sam.gov.tr 176.53.84.114
- [*] mail.sam.gov.tr sam.gov.tr. 176.53.84.114
- [INFO] Possible abuse mails are:
- [*] abuse@as42926.net
- [*] abuse@sam.gov.tr
- [INFO] NO PAC (Proxy Auto Configuration) file FOUND
- [INFO] Starting FUZZing in http://sam.gov.tr/FUzZzZzZzZz...
- [INFO] Status code Folders
- [INFO] NO passwords found in source code
- [INFO] SAME content in http://sam.gov.tr/ AND http://176.53.84.114/
- Recherche sam.gov.tr
- Connexion HTTP à sam.gov.tr
- Alerte ! : Impossible d’établir une connexion à l’hôte distant.
- lynx : accès impossible au fichier de départ http://sam.gov.tr/
- [INFO] Links found from http://sam.gov.tr/:
- [INFO] GOOGLE has 107,000,000 results (0.61 seconds) about http://sam.gov.tr/
- [INFO] Shodan detected the following opened ports on 176.53.84.114:
- [*] 1
- [*] 110
- [*] 143
- [*] 2082
- [*] 2083
- [*] 2086
- [*] 2087
- [*] 21
- [*] 2222
- [*] 26
- [*] 4
- [*] 443
- [*] 465
- [*] 53
- [*] 587
- [*] 80
- [*] 993
- [*] 995
- [INFO] ------VirusTotal SECTION------
- [INFO] VirusTotal passive DNS only stores address records. The following domains resolved to the given IP address:
- [INFO] Latest URLs hosted in this IP address detected by at least one URL scanner or malicious URL dataset:
- [INFO] Latest files that are not detected by any antivirus solution and were downloaded by VirusTotal from the IP address provided:
- [INFO] ------Alexa Rank SECTION------
- [INFO] Percent of Visitors Rank in Country:
- [INFO] Percent of Search Traffic:
- [INFO] Percent of Unique Visits:
- [INFO] Total Sites Linking In:
- [*] Total Sites
- [INFO] Useful links related to sam.gov.tr - 176.53.84.114:
- [*] https://www.virustotal.com/pt/ip-address/176.53.84.114/information/
- [*] https://www.hybrid-analysis.com/search?host=176.53.84.114
- [*] https://www.shodan.io/host/176.53.84.114
- [*] https://www.senderbase.org/lookup/?search_string=176.53.84.114
- [*] https://www.alienvault.com/open-threat-exchange/ip/176.53.84.114
- [*] http://pastebin.com/search?q=176.53.84.114
- [*] http://urlquery.net/search.php?q=176.53.84.114
- [*] http://www.alexa.com/siteinfo/sam.gov.tr
- [*] http://www.google.com/safebrowsing/diagnostic?site=sam.gov.tr
- [*] https://censys.io/ipv4/176.53.84.114
- [*] https://www.abuseipdb.com/check/176.53.84.114
- [*] https://urlscan.io/search/#176.53.84.114
- [*] https://github.com/search?q=176.53.84.114&type=Code
- [INFO] Useful links related to AS42926 - 176.53.84.0/24:
- [*] http://www.google.com/safebrowsing/diagnostic?site=AS:42926
- [*] https://www.senderbase.org/lookup/?search_string=176.53.84.0/24
- [*] http://bgp.he.net/AS42926
- [*] https://stat.ripe.net/AS42926
- [INFO] Date: 11/10/19 | Time: 16:29:01
- [INFO] Total time: 10 minute(s) and 29 second(s)
- #######################################################################################################################################
- Anonymous JTSEC #OpTurkey Full Recon #4
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement