Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #######################################################################################################################################
- Nom de l'hôte www.investinisrael.gov.il FAI Tehila Project - Prime Minister Office's (AS8867)
- Continent Asie Drapeau
- IL
- Pays Israël Code du pays IL (ISR)
- Région Inconnu Heure locale 10 Dec 2017 17:26 IST
- Ville Inconnu Latitude 31.5
- Adresse IP 147.237.1.133 Longitude 34.75
- ######################################################################################################################################
- [i] Scanning Site: http://investinisrael.gov.il
- B A S I C I N F O
- ====================
- [+] Site Title:
- Invest In Israel
- [+] IP address: 147.237.1.133
- [+] Web Server: Microsoft-IIS/8.5
- [+] CMS: Could Not Detect
- [+] Cloudflare: Not Detected
- [+] Robots File: Could NOT Find robots.txt!
- W H O I S L O O K U P
- ========================
- % The data in the WHOIS database of the .il registry is provided
- % by ISOC-IL for information purposes, and to assist persons in
- % obtaining information about or related to a domain name
- % registration record. ISOC-IL does not guarantee its accuracy.
- % By submitting a WHOIS query, you agree that you will use this
- % Data only for lawful purposes and that, under no circumstances
- % will you use this Data to: (1) allow, enable, or otherwise
- % support the transmission of mass unsolicited, commercial
- % advertising or solicitations via e-mail (spam);
- % or (2) enable high volume, automated, electronic processes that
- % apply to ISOC-IL (or its systems).
- % ISOC-IL reserves the right to modify these terms at any time.
- % By submitting this query, you agree to abide by this policy.
- % No data was found to match the request criteria.
- % Rights to the data above are restricted by copyright.
- G E O I P L O O K U P
- =========================
- [i] IP Address: 147.237.1.133
- [i] Country: IL
- [i] State: N/A
- [i] City: N/A
- [i] Latitude: 31.500000
- [i] Longitude: 34.750000
- H T T P H E A D E R S
- =======================
- [i] HTTP/1.1 302 Redirect
- [i] Content-Type: text/html; charset=UTF-8
- [i] Location: http://investinisrael.gov.il/Pages/default.aspx
- [i] Server: Microsoft-IIS/8.5
- [i] X-SharePointHealthScore: 0
- [i] SPRequestGuid: b633359e-db7b-d0d0-e5a4-eae653270415
- [i] request-id: b633359e-db7b-d0d0-e5a4-eae653270415
- [i] X-FRAME-OPTIONS: SAMEORIGIN
- [i] SPRequestDuration: 7
- [i] SPIisLatency: 0
- [i] X-MS-InvokeApp: 1; RequireReadOnly
- [i] X-Frame-Options: SAMEORIGIN
- [i] X-XSS-Protection: 1; mode=block
- [i] X-Content-Type-Options: nosniff
- [i] Date: Sun, 10 Dec 2017 15:32:41 GMT
- [i] Connection: close
- [i] Content-Length: 170
- [i] HTTP/1.1 200 OK
- [i] Cache-Control: private
- [i] Content-Type: text/html; charset=utf-8
- [i] Expires: Sun, 10 Dec 2017 15:47:50 GMT
- [i] Vary: *
- [i] Server: Microsoft-IIS/8.5
- [i] X-SharePointHealthScore: 0
- [i] Set-Cookie: ASP.NET_SessionId=gdbqpdjl254ex5zdntvlhocb; path=/; HttpOnly
- [i] SPRequestGuid: b833359e-db97-d0d0-e5a4-ef4ffc702a6a
- [i] request-id: b833359e-db97-d0d0-e5a4-ef4ffc702a6a
- [i] X-FRAME-OPTIONS: SAMEORIGIN
- [i] SPRequestDuration: 250
- [i] SPIisLatency: 0
- [i] X-MS-InvokeApp: 1; RequireReadOnly
- [i] X-Frame-Options: SAMEORIGIN
- [i] X-XSS-Protection: 1; mode=block
- [i] X-Content-Type-Options: nosniff
- [i] Date: Sun, 10 Dec 2017 15:32:50 GMT
- [i] Connection: close
- [i] Content-Length: 64408
- D N S L O O K U P
- ===================
- investinisrael.gov.il. 599 IN A 147.237.1.133
- S U B N E T C A L C U L A T I O N
- ====================================
- Address = 147.237.1.133
- Network = 147.237.1.133 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 147.237.1.133 - 147.237.1.133 }
- N M A P P O R T S C A N
- ============================
- Starting Nmap 7.01 ( https://nmap.org ) at 2017-12-10 15:33 UTC
- Nmap scan report for investinisrael.gov.il (147.237.1.133)
- Host is up (0.14s latency).
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 25/tcp filtered smtp
- 80/tcp open http?
- 110/tcp filtered pop3
- 143/tcp filtered imap
- 443/tcp filtered https
- 445/tcp filtered microsoft-ds
- 3389/tcp filtered ms-wbt-server
- 1
- S U B - D O M A I N F I N D E R
- ==================================
- [i] Total Subdomains Found : 1
- [+] Subdomain: www.investinisrael.gov.il
- [-] IP: 147.237.1.133
- [!] IP Address : 147.237.1.133
- [!] Server: Microsoft-IIS/8.5
- [!] www.investinisrael.gov.il doesn't seem to use a CMS
- [+] Honeypot Probabilty: 0%
- ----------------------------------------
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 25/tcp filtered smtp
- 80/tcp open http?
- 110/tcp filtered pop3
- 143/tcp filtered imap
- 443/tcp filtered https
- 445/tcp filtered microsoft-ds
- 3389/tcp filtered ms-wbt-server
- [+] DNS Records
- [+] Host Records (A)
- www.investinisrael.gov.il (147.237.1.133) AS8867 Tehila Project - Prime Minister Office's Israel
- [+] TXT Records
- [+] DNS Map: https://dnsdumpster.com/static/map/www.investinisrael.gov.il.png
- [>] Initiating 3 intel modules
- [>] Loading Alpha module (1/3)
- [>] Beta module deployed (2/3)
- [>] Gamma module initiated (3/3)
- No emails found
- No hosts found
- [+] Virtual hosts:
- -----------------
- [>] Crawling the target for fuzzable URLs
- [92m + -- ----------------------------=[Running Nslookup]=------------------------ -- +[0m
- Server: 2001:568:ff09:10c::53
- Address: 2001:568:ff09:10c::53#53
- Non-authoritative answer:
- Name: investinisrael.gov.il
- Address: 147.237.1.133
- investinisrael.gov.il has address 147.237.1.133
- [92m + -- ----------------------------=[Checking OS Fingerprint]=----------------- -- +[0m
- Xprobe2 v.0.3 Copyright (c) 2002-2005 fyodor@o0o.nu, ofir@sys-security.com, meder@o0o.nu
- [+] Target is investinisrael.gov.il
- [+] Loading modules.
- [+] Following modules are loaded:
- [x] [1] ping:icmp_ping - ICMP echo discovery module
- [x] [2] ping:tcp_ping - TCP-based ping discovery module
- [x] [3] ping:udp_ping - UDP-based ping discovery module
- [x] [4] infogather:ttl_calc - TCP and UDP based TTL distance calculation
- [x] [5] infogather:portscan - TCP and UDP PortScanner
- [x] [6] fingerprint:icmp_echo - ICMP Echo request fingerprinting module
- [x] [7] fingerprint:icmp_tstamp - ICMP Timestamp request fingerprinting module
- [x] [8] fingerprint:icmp_amask - ICMP Address mask request fingerprinting module
- [x] [9] fingerprint:icmp_port_unreach - ICMP port unreachable fingerprinting module
- [x] [10] fingerprint:tcp_hshake - TCP Handshake fingerprinting module
- [x] [11] fingerprint:tcp_rst - TCP RST fingerprinting module
- [x] [12] fingerprint:smb - SMB fingerprinting module
- [x] [13] fingerprint:snmp - SNMPv2c fingerprinting module
- [+] 13 modules registered
- [+] Initializing scan engine
- [+] Running scan engine
- [-] ping:tcp_ping module: no closed/open TCP ports known on 147.237.1.133. Module test failed
- [-] ping:udp_ping module: no closed/open UDP ports known on 147.237.1.133. Module test failed
- [-] No distance calculation. 147.237.1.133 appears to be dead or no ports known
- [+] Host: 147.237.1.133 is down (Guess probability: 0%)
- [+] Cleaning up scan engine
- [+] Modules deinitialized
- [+] Execution completed.
- [92m + -- ----------------------------=[Gathering Whois Info]=-------------------- -- +[0m
- % The data in the WHOIS database of the .il registry is provided
- % by ISOC-IL for information purposes, and to assist persons in
- % obtaining information about or related to a domain name
- % registration record. ISOC-IL does not guarantee its accuracy.
- % By submitting a WHOIS query, you agree that you will use this
- % Data only for lawful purposes and that, under no circumstances
- % will you use this Data to: (1) allow, enable, or otherwise
- % support the transmission of mass unsolicited, commercial
- % advertising or solicitations via e-mail (spam);
- % or (2) enable high volume, automated, electronic processes that
- % apply to ISOC-IL (or its systems).
- % ISOC-IL reserves the right to modify these terms at any time.
- % By submitting this query, you agree to abide by this policy.
- % No data was found to match the request criteria.
- % Rights to the data above are restricted by copyright.
- [92m + -- ----------------------------=[Gathering OSINT Info]=-------------------- -- +[0m
- *******************************************************************
- * *
- * | |_| |__ ___ /\ /\__ _ _ ____ _____ ___| |_ ___ _ __ *
- * | __| '_ \ / _ \ / /_/ / _` | '__\ \ / / _ \/ __| __/ _ \ '__| *
- * | |_| | | | __/ / __ / (_| | | \ V / __/\__ \ || __/ | *
- * \__|_| |_|\___| \/ /_/ \__,_|_| \_/ \___||___/\__\___|_| *
- * *
- * TheHarvester Ver. 2.7 *
- * Coded by Christian Martorella *
- * Edge-Security Research *
- * cmartorella@edge-security.com *
- *******************************************************************
- [-] Searching in Bing:
- Searching 50 results...
- Searching 100 results...
- [+] Emails found:
- ------------------
- No emails found
- [+] Hosts found in search engines:
- ------------------------------------
- [-] Resolving hostnames IPs...
- 147.237.1.133:www.investinisrael.gov.il
- [92m + -- ----------------------------=[Gathering DNS Info]=---------------------- -- +[0m
- ; <<>> DiG 9.10.6-Debian <<>> -x investinisrael.gov.il
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58776
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
- ;; OPT PSEUDOSECTION:
- ; EDNS: version: 0, flags:; udp: 4096
- ;; QUESTION SECTION:
- ;il.gov.investinisrael.in-addr.arpa. IN PTR
- ;; AUTHORITY SECTION:
- in-addr.arpa. 3600 IN SOA b.in-addr-servers.arpa. nstld.iana.org. 2017102477 1800 900 604800 3600
- ;; Query time: 480 msec
- ;; SERVER: 2001:568:ff09:10c::53#53(2001:568:ff09:10c::53)
- ;; WHEN: Sun Dec 10 10:29:42 EST 2017
- ;; MSG SIZE rcvd: 131
- dnsenum VERSION:1.2.4
- [1;34m
- ----- investinisrael.gov.il -----
- [0m[1;31m
- Host's addresses:
- __________________
- [0minvestinisrael.gov.il. 517 IN A 147.237.1.133
- [1;31m
- Name Servers:
- ______________
- [0m[92m + -- ----------------------------=[Gathering DNS Subdomains]=---------------- -- +[0m
- [91m
- ____ _ _ _ _ _____
- / ___| _ _| |__ | (_)___| |_|___ / _ __
- \___ \| | | | '_ \| | / __| __| |_ \| '__|
- ___) | |_| | |_) | | \__ \ |_ ___) | |
- |____/ \__,_|_.__/|_|_|___/\__|____/|_|[0m[93m
- # Coded By Ahmed Aboul-Ela - @aboul3la
- [94m[-] Enumerating subdomains now for investinisrael.gov.il[0m
- [93m[-] verbosity is enabled, will show the subdomains results in realtime[0m
- [92m[-] Searching now in Baidu..[0m
- [92m[-] Searching now in Yahoo..[0m
- [92m[-] Searching now in Google..[0m
- [92m[-] Searching now in Bing..[0m
- [92m[-] Searching now in Ask..[0m
- [92m[-] Searching now in Netcraft..[0m
- [92m[-] Searching now in DNSdumpster..[0m
- [92m[-] Searching now in Virustotal..[0m
- [92m[-] Searching now in ThreatCrowd..[0m
- [92m[-] Searching now in SSL Certificates..[0m
- [92m[-] Searching now in PassiveDNS..[0m
- [91mYahoo: [0mwww.investinisrael.gov.il
- [91mVirustotal: [0mwww.investinisrael.gov.il
- [91mDNSdumpster: [0me.investinisrael.gov.il
- [91mDNSdumpster: [0mwww.investinisrael.gov.il
- [93m[-] Saving results to file: [0m[91m/usr/share/sniper/loot/domains/domains-investinisrael.gov.il.txt[0m
- [93m[-] Total Unique Subdomains Found: 2[0m
- [92mwww.investinisrael.gov.il[0m
- [92me.investinisrael.gov.il[0m
- [91m ╔═╗╦═╗╔╦╗╔═╗╦ ╦[0m
- [91m ║ ╠╦╝ ║ ╚═╗╠═╣[0m
- [91m ╚═╝╩╚═ ╩o╚═╝╩ ╩[0m
- [91m + -- ----------------------------=[Gathering Certificate Subdomains]=-------- -- +[0m
- [94m
- [91m [+] Domains saved to: /usr/share/sniper/loot/domains/domains-investinisrael.gov.il-full.txt
- [0m
- [92m + -- ----------------------------=[Checking for Sub-Domain Hijacking]=------- -- +[0m
- [92m + -- ----------------------------=[Checking Email Security]=----------------- -- +[0m
- [92m + -- ----------------------------=[Pinging host]=---------------------------- -- +[0m
- PING investinisrael.gov.il (147.237.1.133) 56(84) bytes of data.
- --- investinisrael.gov.il ping statistics ---
- 1 packets transmitted, 0 received, 100% packet loss, time 0ms
- [92m + -- ----------------------------=[Running TCP port scan]=------------------- -- +[0m
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-12-10 10:31 EST
- Nmap scan report for investinisrael.gov.il (147.237.1.133)
- Host is up (0.19s latency).
- Not shown: 472 filtered ports
- Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
- PORT STATE SERVICE
- 80/tcp open http
- Nmap done: 1 IP address (1 host up) scanned in 156.48 seconds
- [92m + -- ----------------------------=[Running Intrusive Scans]=----------------- -- +[0m
- [91m + -- --=[Port 21 closed... skipping.[0m
- [91m + -- --=[Port 22 closed... skipping.[0m
- [91m + -- --=[Port 23 closed... skipping.[0m
- [91m + -- --=[Port 25 closed... skipping.[0m
- [91m + -- --=[Port 53 closed... skipping.[0m
- [91m + -- --=[Port 79 closed... skipping.[0m
- [93m + -- --=[Port 80 opened... running tests...[0m
- [92m + -- ----------------------------=[Checking for WAF]=------------------------ -- +[0m
- ^ ^
- _ __ _ ____ _ __ _ _ ____
- ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
- | V V // o // _/ | V V // 0 // 0 // _/
- |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
- <
- ...'
- WAFW00F - Web Application Firewall Detection Tool
- By Sandro Gauci && Wendel G. Henrique
- Checking http://investinisrael.gov.il
- The site http://investinisrael.gov.il is behind a IBM Web Application Security
- Number of requests: 3
- [92m + -- ----------------------------=[Gathering HTTP Info]=--------------------- -- +[0m
- [1m[34mhttp://investinisrael.gov.il[0m [ Unassigned]
- [94m __ ______ _____ [0m
- [94m \ \/ / ___|_ _|[0m
- [94m \ /\___ \ | | [0m
- [94m / \ ___) || | [0m
- [94m /_/\_|____/ |_| [0m
- [94m+ -- --=[Cross-Site Tracer v1.3 by 1N3 @ CrowdShield[0m
- [94m+ -- --=[Target: investinisrael.gov.il:80[0m
- [93m+ -- --=[Port is closed![0m
- [92m + -- ----------------------------=[Checking HTTP Headers]=------------------- -- +[0m
- [94m+ -- --=[Checking if X-Content options are enabled on investinisrael.gov.il...[0m [93m
- [94m+ -- --=[Checking if X-Frame options are enabled on investinisrael.gov.il...[0m [93m
- [94m+ -- --=[Checking if X-XSS-Protection header is enabled on investinisrael.gov.il...[0m [93m
- [94m+ -- --=[Checking HTTP methods on investinisrael.gov.il...[0m [93m
- [94m+ -- --=[Checking if TRACE method is enabled on investinisrael.gov.il...[0m [93m
- [94m+ -- --=[Checking for META tags on investinisrael.gov.il...[0m [93m
- [94m+ -- --=[Checking for open proxy on investinisrael.gov.il...[0m [93m
- [94m+ -- --=[Enumerating software on investinisrael.gov.il...[0m [93m
- [94m+ -- --=[Checking if Strict-Transport-Security is enabled on investinisrael.gov.il...[0m [93m
- [94m+ -- --=[Checking for Flash cross-domain policy on investinisrael.gov.il...[0m [93m
- [94m+ -- --=[Checking for Silverlight cross-domain policy on investinisrael.gov.il...[0m [93m
- [94m+ -- --=[Checking for HTML5 cross-origin resource sharing on investinisrael.gov.il...[0m [93m
- [94m+ -- --=[Retrieving robots.txt on investinisrael.gov.il...[0m [93m
- [94m+ -- --=[Retrieving sitemap.xml on investinisrael.gov.il...[0m [93m
- [94m+ -- --=[Checking cookie attributes on investinisrael.gov.il...[0m [93m
- [94m+ -- --=[Checking for ASP.NET Detailed Errors on investinisrael.gov.il...[0m [93m
- [0m
- [92m + -- ----------------------------=[Running Web Vulnerability Scan]=---------- -- +[0m
- - Nikto v2.1.6
- ---------------------------------------------------------------------------
- + No web server found on investinisrael.gov.il:80
- ---------------------------------------------------------------------------
- + 0 host(s) tested
- [92m + -- ----------------------------=[Saving Web Screenshots]=------------------ -- +[0m
- [91m[+][0m Screenshot saved to /usr/share/sniper/loot/screenshots/investinisrael.gov.il-port80.jpg
- [92m + -- ----------------------------=[Running Google Hacking Queries]=--------------------- -- +[0m
- [92m + -- ----------------------------=[Running InUrlBR OSINT Queries]=---------- -- +[0m
- [1;37m _____ [1;37m .701F. .iBR. .7CL. .70BR. .7BR. .7BR'''Cq. .70BR. [0;31m.1BR'''Yp, .8BR'''Cq.
- [1;37m (_____)[1;37m 01 01N. C 01 C 01 .01. 01 [1;31m 01 Yb 01 .01.
- [1;37m (() ())[1;37m 01 C YCb C 01 C 01 ,C9 01 [0;31m 01 dP 01 ,C9
- [1;37m \ / [1;37m 01 C .CN. C 01 C 0101dC9 01 [1;31m 01'''bg. 0101dC9
- [1;37m \ / [1;37m 01 C .01.C 01 C 01 YC. 01 , [0;31m 01 .Y 01 YC.
- [1;37m /=\ [1;37m 01 C Y01 YC. ,C 01 .Cb. 01 ,C [1;31m 01 ,9 01 .Cb.
- [1;37m [___] [1;37m .J01L. .JCL. YC .b0101d'. .J01L. .J01. .J01010101C [0;31m.J0101Cd9 .J01L. .J01./ [1;37m2.1
- [1;37m__[ ! ] Neither war between hackers, nor peace for the system.
- [1;37m__[ ! ] [02;31mhttp://blog.inurl.com.br
- [1;37m__[ ! ] [02;31mhttp://fb.com/InurlBrasil
- [1;37m__[ ! ] [02;31mhttp://twitter.com/@googleinurl[0m
- [1;37m__[ ! ] [02;31mhttp://github.com/googleinurl[0m
- [1;37m__[ ! ] [02;31mCurrent PHP version::[ [1;37m7.0.26-1 [02;31m][0m
- [1;37m__[ ! ] [02;31mCurrent script owner::[ [1;37mroot [02;31m][0m
- [1;37m__[ ! ] [02;31mCurrent uname::[ [1;37mLinux Kali 4.14.0-kali1-amd64 #1 SMP Debian 4.14.2-1kali1 (2017-12-04) x86_64 [02;31m][0m
- [1;37m__[ ! ] [02;31mCurrent pwd::[ [1;37m/usr/share/sniper [02;31m][0m
- [1;37m__[ ! ] [1;33mHelp: php inurlbr.php --help[0m
- [1;37m------------------------------------------------------------------------------------------------------------------------[0m
- [1;37m[ ! ] Starting SCANNER INURLBR 2.1 at [10-12-2017 11:16:47][0;37m
- [ ! ] legal disclaimer: Usage of INURLBR for attacking targets without prior mutual consent is illegal.
- It is the end user's responsibility to obey all applicable local, state and federal laws.
- Developers assume no liability and are not responsible for any misuse or damage caused by this program[0m
- [1;37m[ INFO ][02;31m[ OUTPUT FILE ]::[1;37m [ /usr/share/sniper/output/inurlbr-investinisrael.gov.il.txt ][0m
- [1;37m[ INFO ][0m[02;31m[ DORK ]::[1;37m[ site:investinisrael.gov.il ]
- [1;37m[ INFO ][0m[02;31m[ SEARCHING ]:: [1;37m{[0m
- [1;37m[ INFO ][0m[02;31m[ ENGINE ]::[1;37m[ GOOGLE - www.google.ms ][0m
- [1;37m[ INFO ][0m[02;31m[ SEARCHING ]:: [0m
- [1;37m-[02;31m[[0;31m:::[02;31m][0m
- [1;37m[ INFO ][0m[02;31m[ ENGINE ]::[1;37m[ GOOGLE API ][0m
- [1;37m[ INFO ][0m[02;31m[ SEARCHING ]:: [0m
- [1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m
- [1;37m[ INFO ][0m[02;31m[ ENGINE ]::[1;37m[ GOOGLE_GENERIC_RANDOM - www.google.rs ID: 012984904789461885316:oy3-mu17hxk ][0m
- [1;37m[ INFO ][0m[02;31m[ SEARCHING ]:: [0m
- [1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m[1;37m-[02;31m[[0;31m:::[02;31m][0m
- [1;37m[ INFO ][0;31m[ TOTAL FOUND VALUES ]::[1;37m [ 0 ][0m
- [1;37m[ INFO ][1;33m Not a satisfactory result was found![0m
- [1;37m[ INFO ] [ Shutting down ][0m
- [1;37m[ INFO ] [ End of process INURLBR at [10-12-2017 11:18:37][0m
- [1;37m[ INFO ] [0m[02;31m[ TOTAL FILTERED VALUES ]::[1;37m [ 0 ][0m
- [1;37m[ INFO ] [02;31m[ OUTPUT FILE ]::[1;37m [ /usr/share/sniper/output/inurlbr-investinisrael.gov.il.txt ][0m
- [1;37m|_________________________________________________________________________________________[0m
- [1;37m\_________________________________________________________________________________________/[0m
- [91m + -- --=[Port 110 closed... skipping.[0m
- [91m + -- --=[Port 111 closed... skipping.[0m
- [91m + -- --=[Port 135 closed... skipping.[0m
- [91m + -- --=[Port 139 closed... skipping.[0m
- [91m + -- --=[Port 161 closed... skipping.[0m
- [91m + -- --=[Port 162 closed... skipping.[0m
- [91m + -- --=[Port 389 closed... skipping.[0m
- [91m + -- --=[Port 443 closed... skipping.[0m
- [91m + -- --=[Port 445 closed... skipping.[0m
- [91m + -- --=[Port 512 closed... skipping.[0m
- [91m + -- --=[Port 513 closed... skipping.[0m
- [91m + -- --=[Port 514 closed... skipping.[0m
- [91m + -- --=[Port 623 closed... skipping.[0m
- [91m + -- --=[Port 624 closed... skipping.[0m
- [91m + -- --=[Port 1099 closed... skipping.[0m
- [91m + -- --=[Port 1433 closed... skipping.[0m
- [91m + -- --=[Port 2049 closed... skipping.[0m
- [91m + -- --=[Port 2121 closed... skipping.[0m
- [91m + -- --=[Port 3306 closed... skipping.[0m
- [91m + -- --=[Port 3310 closed... skipping.[0m
- [91m + -- --=[Port 3128 closed... skipping.[0m
- [91m + -- --=[Port 3389 closed... skipping.[0m
- [91m + -- --=[Port 3632 closed... skipping.[0m
- [91m + -- --=[Port 4443 closed... skipping.[0m
- [91m + -- --=[Port 5432 closed... skipping.[0m
- [91m + -- --=[Port 5800 closed... skipping.[0m
- [91m + -- --=[Port 5900 closed... skipping.[0m
- [91m + -- --=[Port 5984 closed... skipping.[0m
- [91m + -- --=[Port 6000 closed... skipping.[0m
- [91m + -- --=[Port 6667 closed... skipping.[0m
- [91m + -- --=[Port 8000 closed... skipping.[0m
- [91m + -- --=[Port 8100 closed... skipping.[0m
- [91m + -- --=[Port 8080 closed... skipping.[0m
- [91m + -- --=[Port 8180 closed... skipping.[0m
- [91m + -- --=[Port 8443 closed... skipping.[0m
- [91m + -- --=[Port 8888 closed... skipping.[0m
- [91m + -- --=[Port 10000 closed... skipping.[0m
- [91m + -- --=[Port 16992 closed... skipping.[0m
- [91m + -- --=[Port 27017 closed... skipping.[0m
- [91m + -- --=[Port 27018 closed... skipping.[0m
- [91m + -- --=[Port 27019 closed... skipping.[0m
- [91m + -- --=[Port 28017 closed... skipping.[0m
- [91m + -- --=[Port 49152 closed... skipping.[0m
- [92m + -- ----------------------------=[Scanning For Common Vulnerabilities]=----- -- +[0m
- [92m + -- ----------------------------=[Skipping Full NMap Port Scan]=------------ -- +[0m
- [92m + -- ----------------------------=[Running Brute Force]=--------------------- -- +[0m
- [91m __________ __ ____ ___[0m
- [91m \______ \_______ __ ___/ |_ ____ \ \/ /[0m
- [91m | | _/\_ __ \ | \ __\/ __ \ \ / [0m
- [91m | | \ | | \/ | /| | \ ___/ / \ [0m
- [91m |______ / |__| |____/ |__| \___ >___/\ \ [0m
- [91m \/ \/ \_/[0m
- [91m + -- --=[BruteX v1.7 by 1N3[0m
- [91m + -- --=[http://crowdshield.com[0m
- [92m################################### Running Port Scan ##############################[0m
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-12-10 11:18 EST
- Nmap done: 1 IP address (1 host up) scanned in 12.54 seconds
- [92m################################### Running Brute Force ############################[0m
- [91m + -- --=[Port 21 closed... skipping.[0m
- [91m + -- --=[Port 22 closed... skipping.[0m
- [91m + -- --=[Port 23 closed... skipping.[0m
- [91m + -- --=[Port 25 closed... skipping.[0m
- [91m + -- --=[Port 80 closed... skipping.[0m
- [91m + -- --=[Port 110 closed... skipping.[0m
- [91m + -- --=[Port 139 closed... skipping.[0m
- [91m + -- --=[Port 162 closed... skipping.[0m
- [91m + -- --=[Port 389 closed... skipping.[0m
- [91m + -- --=[Port 443 closed... skipping.[0m
- [91m + -- --=[Port 445 closed... skipping.[0m
- [91m + -- --=[Port 512 closed... skipping.[0m
- [91m + -- --=[Port 513 closed... skipping.[0m
- [91m + -- --=[Port 514 closed... skipping.[0m
- [91m + -- --=[Port 993 closed... skipping.[0m
- [91m + -- --=[Port 1433 closed... skipping.[0m
- [91m + -- --=[Port 1521 closed... skipping.[0m
- [91m + -- --=[Port 3306 closed... skipping.[0m
- [91m + -- --=[Port 3389 closed... skipping.[0m
- [91m + -- --=[Port 5432 closed... skipping.[0m
- [91m + -- --=[Port 5900 closed... skipping.[0m
- [91m + -- --=[Port 5901 closed... skipping.[0m
- [91m + -- --=[Port 8000 closed... skipping.[0m
- [91m + -- --=[Port 8080 closed... skipping.[0m
- [91m + -- --=[Port 8100 closed... skipping.[0m
- [91m + -- --=[Port 6667 closed... skipping.[0m
- [92m################################### Done! ###########################################[0m
- [92m + -- ----------------------------=[Done]=------------------------------------ -- +[0m
- [91m ____ [0m
- [91m _________ / _/___ ___ _____[0m
- [91m / ___/ __ \ / // __ \/ _ \/ ___/[0m
- [91m (__ ) / / // // /_/ / __/ / [0m
- [91m /____/_/ /_/___/ .___/\___/_/ [0m
- [91m /_/ [0m
- [93m + -- --=[Current reports...[0m
- [93m + -- --=[Current workspaces...[0m
- total 12K
- drwxr-xr-x 10 root root 4,0K nov 9 20:10 default
- drwxr-xr-x 10 root root 4,0K nov 11 23:00 desktop
- drwxr-xr-x 3 root root 4,0K nov 9 15:49 usr
- [93m + -- --=[Enter a name for the workspace:[0m
- [93m + -- --=[Generating reports...[0m
- [93m + -- --=[Removing blank web screenshots...[0m
- [93m + -- --=[Starting Metasploit service...[0m
- [93m + -- --=[Importing NMap XML files into Metasploit...[0m
- [0m[36m[1m[30m ____________[37m
- [%%%%[0m%%%%%%%%[1m[30m%%%%%%%[30m%%%%%%%%%%%%%| [31m$a,[30m |%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%[37m]
- [%%%[0m%%%%%%%%%[1m[30m%%%%%%%%%%%%%%%%%%%%| [31m$S`?a,[30m |%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%[37m]
- [%%[0m%%%%%%%[1m[30m%%%%%%%%%%%[37m_[36m_[30m%%%%%%%%%%| [31m`?a,[30m |%%%%%%%%[37m_[32m_[30m%%%%%%%%%[37m_[32m_[30m%%[37m_[32m_ [30m%%%%[37m]
- [% .-[36m--[0m[36m-----.[1m[37m.-[36m-[0m[36m---.[1m[37m| [0m[36m|_ [1m[37m.-[36m-[0m[36m-.-.[1m[30m| [31m.,a$%[30m|[37m.-[32m---[0m[32m-.[1m[37m| [0m[32m|[1m[37m.-[32m--[0m[32m--.[1m[37m|[32m_[0m[32m_|[1m[37m| [0m[32m|_ [1m[30m%%[37m]
- [% | [0m[36m|[1m[37m| [0m[36m-__|[0m[36m| [0m[36m_|[1m[37m| [0m[36m_ |[1m[30m| [31m,,aS$""`[30m |[37m| [0m[32m_ |[1m[32m| [0m[32m|[1m[37m| [0m[32m_ |[1m[32m| [0m[32m|[1m[32m| [0m[32m_|[1m[30m%%[37m]
- [% [36m|[0m[36m__|__|__|[1m[36m|_[0m[36m____|[1m[36m|_[0m[36m___|[1m[36m|_[0m[36m__._|[1m[30m|[31m%$P"`[30m |[32m| [0m[32m__|[1m[32m|_[0m[32m_|[1m[32m|_[0m[32m____|[1m[32m|_[0m[32m_|[1m[32m|_[0m[32m___|[1m[30m%%[1m[37m]
- [%[0m%%%[1m[30m%%%%%%%%%%%%%%%%%%%%%%%%%%%%| [31m`"a,[30m |[0m[32m|__|[1m[30m%%%%%%%%%%%%%%%%%%%%%%%%%%[37m]
- [%[0m%%[1m[30m%%%%%%%%%%%%%%%%%%%%%%%%%%%%%|____[31m`"a,$$[30m__|%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%[37m]
- [[0m%%[1m[30m%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% [31m`"$[30m %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%[37m]
- [[0m%[1m[30m%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%[37m]
- [0m
- =[ [33mmetasploit v4.16.21-dev[0m ]
- + -- --=[ 1705 exploits - 970 auxiliary - 299 post ]
- + -- --=[ 503 payloads - 40 encoders - 10 nops ]
- + -- --=[ Free Metasploit Pro trial: http://r-7.co/trymsp ]
- [0m[1m[34m[*][0m Added workspace: default
- [0m[1m[34m[*][0m Workspace: default
- [0m[1m[34m[*][0m Importing 'Nmap XML' data
- [1m[34m[*][0m Import: Parsing with 'Nokogiri v1.8.1'
- [1m[34m[*][0m Importing host 147.237.1.133
- [1m[34m[*][0m Successfully imported /usr/share/sniper/loot/nmap/nmap-investinisrael.gov.il.xml
- [0m
- Hosts
- =====
- address mac name os_name os_flavor os_sp purpose info comments
- ------- --- ---- ------- --------- ----- ------- ---- --------
- 5.45.65.180 Unknown device
- 5.45.67.72 Unknown device
- 5.79.65.33 Unknown device
- 5.255.87.27 Unknown device
- 23.38.141.104 a23-38-141-104.deploy.static.akamaitechnologies.com Unknown device
- 46.229.163.113 Unknown device
- 46.229.174.6 Unknown device
- 51.254.238.68 ares-eam.hukot.net Linux 7.0 server
- 54.85.132.205 ec2-54-85-132-205.compute-1.amazonaws.com Unknown device
- 72.166.186.169 rt.dos.iad.qwest.net Unknown device
- 74.208.90.110 u16385664.onlinehome-server.com Unknown device
- 78.140.176.124 Unknown device
- 82.94.188.230 Unknown device
- 82.94.222.132 Unknown device
- 88.80.17.71 host-88-80-17-71.cust.prq.se Unknown device
- 94.102.48.102 server2.anonymous-hosting-service.com Linux 7.0 server
- 94.102.49.234 no-reverse-dns-configured.com Linux 8.0 server
- 94.125.167.244 nx3144.nexylan.net Unknown device
- 95.211.5.91 91.kaasserver.com Unknown device
- 95.211.239.7 Unknown device
- 95.213.224.126 Linux 14.04 server
- 96.127.141.228 sh88-477.ich-9.com Unknown device
- 104.18.48.36 104.18.48.36 Unknown device
- 104.18.49.36 104.18.49.36 Unknown device
- 104.20.44.57 Unknown device
- 104.24.98.180 104.24.98.180 Unknown device
- 104.24.99.180 104.24.99.180 Unknown device
- 104.25.189.118 104.25.189.118 Unknown device
- 104.25.190.118 104.25.190.118 Unknown device
- 104.27.146.239 104.27.146.239 Unknown device
- 104.27.147.239 104.27.147.239 Unknown device
- 104.27.148.138 104.27.148.138 Unknown device
- 104.27.149.138 104.27.149.138 Unknown device
- 104.27.154.73 104.27.154.73 Unknown device
- 104.27.155.73 104.27.155.73 Unknown device
- 104.27.159.2 Unknown device
- 104.28.16.8 104.28.16.8 Unknown device
- 104.28.16.38 104.28.16.38 Unknown device
- 104.28.17.8 104.28.17.8 Unknown device
- 104.28.17.38 104.28.17.38 Unknown device
- 104.31.74.118 Unknown device
- 104.31.78.132 104.31.78.132 Unknown device
- 104.31.79.132 104.31.79.132 Unknown device
- 104.31.92.110 104.31.92.110 Unknown device
- 104.31.93.110 104.31.93.110 Unknown device
- 104.196.229.229 229.229.196.104.bc.googleusercontent.com Unknown device
- 137.200.4.16 Unknown device
- 147.237.1.133 Unknown device
- 147.237.77.108 Unknown device
- 178.32.123.64 Linux server
- 185.17.120.155 amandatap.example.com Unknown device
- 185.82.202.39 Linux 14.04 server
- 185.112.82.253 server-185-112-82-253.creanova.org Linux 8.0 server
- 185.174.172.177 vds9691.hyperhost.name Unknown device
- 192.169.188.31 ip-192-169-188-31.ip.secureserver.net Unknown device
- 192.243.48.235 FreeBSD device
- 193.189.143.34 www.netvibes.com Unknown device
- 206.188.192.153 vux.netsolhost.com Unknown device
- 2400:cb00:2048:1::6812:3024 2400:cb00:2048:1::6812:3024 Unknown device
- 2400:cb00:2048:1::6812:3124 2400:cb00:2048:1::6812:3124 Unknown device
- 2400:cb00:2048:1::6818:62b4 2400:cb00:2048:1::6818:62b4 Unknown device
- 2400:cb00:2048:1::6818:63b4 2400:cb00:2048:1::6818:63b4 Unknown device
- 2400:cb00:2048:1::6819:bd76 2400:cb00:2048:1::6819:bd76 Unknown device
- 2400:cb00:2048:1::6819:be76 2400:cb00:2048:1::6819:be76 Unknown device
- 2400:cb00:2048:1::681b:92ef 2400:cb00:2048:1::681b:92ef Unknown device
- 2400:cb00:2048:1::681b:93ef 2400:cb00:2048:1::681b:93ef Unknown device
- 2400:cb00:2048:1::681b:948a 2400:cb00:2048:1::681b:948a Unknown device
- 2400:cb00:2048:1::681b:958a 2400:cb00:2048:1::681b:958a Unknown device
- 2400:cb00:2048:1::681b:9a49 2400:cb00:2048:1::681b:9a49 Unknown device
- 2400:cb00:2048:1::681b:9b49 2400:cb00:2048:1::681b:9b49 Unknown device
- 2400:cb00:2048:1::681c:1008 2400:cb00:2048:1::681c:1008 Unknown device
- 2400:cb00:2048:1::681c:1026 2400:cb00:2048:1::681c:1026 Unknown device
- 2400:cb00:2048:1::681c:1108 2400:cb00:2048:1::681c:1108 Unknown device
- 2400:cb00:2048:1::681c:1126 2400:cb00:2048:1::681c:1126 Unknown device
- 2400:cb00:2048:1::681f:4e84 2400:cb00:2048:1::681f:4e84 Unknown device
- 2400:cb00:2048:1::681f:4f84 2400:cb00:2048:1::681f:4f84 Unknown device
- 2400:cb00:2048:1::681f:5c6e 2400:cb00:2048:1::681f:5c6e Unknown device
- 2400:cb00:2048:1::681f:5d6e 2400:cb00:2048:1::681f:5d6e Unknown device
- [0m
- Services
- ========
- host port proto name state info
- ---- ---- ----- ---- ----- ----
- 5.45.65.180 21 tcp ftp open
- 5.45.65.180 22 tcp ssh open SSH-2.0-OpenSSH_6.6
- 5.45.65.180 80 tcp http open
- 5.45.65.180 1723 tcp pptp open
- 5.45.65.180 3306 tcp mysql open
- 5.45.65.180 8000 tcp http-alt open
- 5.45.65.180 10000 tcp snet-sensor-mgmt open
- 5.45.67.72 22 tcp ssh open
- 5.79.65.33 53 tcp domain open
- 5.79.65.33 80 tcp http open
- 5.79.65.33 111 tcp rpcbind open
- 5.79.65.33 443 tcp https open
- 5.79.65.33 3306 tcp mysql open
- 5.255.87.27 22 tcp ssh open SSH-2.0-OpenSSH_5.3
- 23.38.141.104 80 tcp http open
- 23.38.141.104 443 tcp https open
- 46.229.163.113 21 tcp ftp open
- 46.229.163.113 22 tcp ssh open SSH-2.0-OpenSSH_5.5
- 46.229.163.113 53 tcp domain open
- 46.229.163.113 80 tcp http open
- 46.229.163.113 110 tcp pop3 open
- 46.229.163.113 111 tcp rpcbind open
- 46.229.163.113 143 tcp imap open
- 46.229.163.113 222 tcp rsh-spx open
- 46.229.163.113 993 tcp imaps open
- 46.229.163.113 995 tcp pop3s open
- 46.229.163.113 8080 tcp http-proxy open
- 46.229.174.6 222 tcp rsh-spx open
- 51.254.238.68 21 tcp ftp open
- 51.254.238.68 22 tcp ssh open SSH-2.0-OpenSSH_6.0p1 Debian-4+deb7u6
- 51.254.238.68 53 tcp domain open
- 51.254.238.68 80 tcp http open
- 51.254.238.68 443 tcp https open
- 51.254.238.68 5666 tcp nrpe open
- 54.85.132.205 80 tcp http open
- 54.85.132.205 443 tcp https open
- 72.166.186.169 80 tcp http open
- 72.166.186.169 443 tcp https open
- 72.166.186.169 8008 tcp http open
- 74.208.90.110 21 tcp ftp open
- 74.208.90.110 22 tcp ssh open SSH-2.0-OpenSSH_5.3
- 74.208.90.110 53 tcp domain open
- 74.208.90.110 80 tcp http open
- 74.208.90.110 110 tcp pop3 open
- 74.208.90.110 143 tcp imap open
- 74.208.90.110 443 tcp https open
- 74.208.90.110 993 tcp imaps open
- 74.208.90.110 995 tcp pop3s open
- 74.208.90.110 8443 tcp https-alt open
- 74.208.90.110 8880 tcp cddbp-alt open
- 78.140.176.124 21 tcp ftp open
- 78.140.176.124 80 tcp http open
- 78.140.176.124 110 tcp pop3 open
- 78.140.176.124 873 tcp rsync open
- 78.140.176.124 5666 tcp nrpe open
- 82.94.188.230 80 tcp http open
- 82.94.188.230 443 tcp https open
- 82.94.222.132 80 tcp http open
- 82.94.222.132 443 tcp https open
- 82.94.222.132 993 tcp imaps open
- 82.94.222.132 995 tcp pop3s open
- 88.80.17.71 80 tcp http open
- 88.80.17.71 443 tcp https open
- 88.80.17.71 993 tcp imaps open
- 88.80.17.71 995 tcp pop3s open
- 88.80.17.71 8080 tcp http-proxy open
- 88.80.17.71 32022 tcp unknown open
- 94.102.48.102 21 tcp ftp open
- 94.102.48.102 22 tcp ssh open SSH-2.0-OpenSSH_6.0p1 Debian-4+deb7u6
- 94.102.48.102 53 tcp domain open
- 94.102.48.102 80 tcp http open
- 94.102.48.102 111 tcp rpcbind open
- 94.102.49.234 21 tcp ftp open
- 94.102.49.234 22 tcp ssh open SSH-2.0-OpenSSH_5.1p1 Debian-5
- 94.102.49.234 80 tcp http open
- 94.102.49.234 111 tcp rpcbind open
- 94.102.49.234 222 tcp rsh-spx open
- 94.102.49.234 3306 tcp mysql open
- 94.102.49.234 10050 tcp zabbix-agent open
- 94.125.167.244 21 tcp ftp open
- 94.125.167.244 53 tcp domain open
- 94.125.167.244 80 tcp http open
- 94.125.167.244 110 tcp pop3 open
- 94.125.167.244 143 tcp imap open
- 94.125.167.244 443 tcp https open
- 94.125.167.244 2121 tcp ccproxy-ftp open
- 95.211.5.91 80 tcp http open
- 95.211.239.7 22 tcp ssh open SSH-2.0-OpenSSH_5.3
- 95.213.224.126 22 tcp ssh open SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.8
- 95.213.224.126 80 tcp http open
- 96.127.141.228 21 tcp ftp open
- 96.127.141.228 53 tcp domain open
- 96.127.141.228 80 tcp http open
- 96.127.141.228 110 tcp pop3 open
- 96.127.141.228 111 tcp rpcbind open
- 96.127.141.228 143 tcp imap open
- 96.127.141.228 443 tcp https open
- 96.127.141.228 993 tcp imaps open
- 96.127.141.228 995 tcp pop3s open
- 96.127.141.228 1035 tcp multidropper open
- 96.127.141.228 3306 tcp mysql open
- 104.18.48.36 80 tcp http open
- 104.18.48.36 443 tcp https open
- 104.18.48.36 8080 tcp http-proxy open cloudflare-nginx ( 403-Forbidden )
- 104.18.48.36 8443 tcp https-alt open
- 104.18.48.36 8880 tcp cddbp-alt open
- 104.18.49.36 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.20.44.57 80 tcp http open
- 104.20.44.57 443 tcp https open
- 104.20.44.57 8080 tcp http-proxy open
- 104.20.44.57 8443 tcp https-alt open
- 104.20.44.57 8880 tcp cddbp-alt open
- 104.24.98.180 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.24.99.180 80 tcp http open
- 104.24.99.180 443 tcp https open
- 104.24.99.180 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.24.99.180 8443 tcp https-alt open
- 104.24.99.180 8880 tcp cddbp-alt open
- 104.25.189.118 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.25.190.118 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.27.146.239 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.27.147.239 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.27.148.138 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.27.149.138 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.27.149.138 8443 tcp https-alt open
- 104.27.149.138 8880 tcp cddbp-alt open
- 104.27.154.73 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.27.155.73 80 tcp http open
- 104.27.155.73 443 tcp https open
- 104.27.155.73 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.27.155.73 8443 tcp https-alt open
- 104.27.155.73 8880 tcp cddbp-alt open
- 104.27.159.2 80 tcp http open
- 104.27.159.2 443 tcp https open
- 104.27.159.2 8080 tcp http-proxy open
- 104.27.159.2 8443 tcp https-alt open
- 104.27.159.2 8880 tcp cddbp-alt open
- 104.28.16.8 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.28.16.38 80 tcp http open
- 104.28.16.38 443 tcp https open
- 104.28.16.38 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.28.16.38 8443 tcp https-alt open
- 104.28.16.38 8880 tcp cddbp-alt open
- 104.28.17.8 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.28.17.38 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.31.74.118 80 tcp http open
- 104.31.74.118 443 tcp https open
- 104.31.74.118 8080 tcp http-proxy open
- 104.31.74.118 8443 tcp https-alt open
- 104.31.74.118 8880 tcp cddbp-alt open
- 104.31.78.132 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.31.79.132 80 tcp http open
- 104.31.79.132 443 tcp https open
- 104.31.79.132 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.31.79.132 8443 tcp https-alt open
- 104.31.79.132 8880 tcp cddbp-alt open
- 104.31.92.110 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.31.93.110 80 tcp http open
- 104.31.93.110 443 tcp https open
- 104.31.93.110 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.31.93.110 8443 tcp https-alt open
- 104.31.93.110 8880 tcp cddbp-alt open
- 104.196.229.229 80 tcp http open
- 104.196.229.229 443 tcp https open
- 104.196.229.229 2222 tcp ethernetip-1 open
- 137.200.4.16 80 tcp http open
- 137.200.4.16 443 tcp https open
- 147.237.1.133 80 tcp http open
- 147.237.77.108 80 tcp http open
- 178.32.123.64 22 tcp ssh open SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.2
- 185.17.120.155 22 tcp ssh open SSH-2.0-OpenSSH_7.4
- 185.17.120.155 80 tcp http open
- 185.82.202.39 22 tcp ssh open SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2
- 185.82.202.39 80 tcp http open
- 185.112.82.253 22 tcp ssh open SSH-2.0-OpenSSH_6.7p1 Debian-5+deb8u3
- 185.112.82.253 53 tcp domain open
- 185.112.82.253 80 tcp http open
- 185.112.82.253 111 tcp rpcbind open
- 185.112.82.253 443 tcp https open
- 185.112.82.253 8333 tcp bitcoin open
- 185.174.172.177 22 tcp ssh open SSH-2.0-OpenSSH_7.4
- 185.174.172.177 80 tcp http open
- 192.169.188.31 53 tcp domain open
- 192.169.188.31 80 tcp http open
- 192.169.188.31 443 tcp https open
- 192.169.188.31 993 tcp imaps open
- 192.243.48.235 21 tcp ftp open
- 192.243.48.235 22 tcp ssh open SSH-2.0-OpenSSH_5.8p2_hpn13v11 FreeBSD-20110503
- 192.243.48.235 80 tcp http open
- 192.243.48.235 222 tcp rsh-spx open
- 193.189.143.34 80 tcp http open
- 193.189.143.34 443 tcp https open
- 206.188.192.153 21 tcp ftp open
- 206.188.192.153 22 tcp ssh open
- 206.188.192.153 80 tcp http open
- 206.188.192.153 443 tcp https open
- 2400:cb00:2048:1::6812:3024 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::6812:3124 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::6818:62b4 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::6818:63b4 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::6819:bd76 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::6819:be76 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681b:92ef 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681b:93ef 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681b:948a 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681b:958a 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681b:9a49 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681b:9b49 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681c:1008 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681c:1026 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681c:1108 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681c:1126 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681f:4e84 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681f:4f84 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681f:5c6e 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681f:5d6e 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- ######################################################################################################################################
- Nom de l'hôte www.data.gov FAI Inconnu
- Continent Inconnu Drapeau
- US
- Pays Etats-Unis d'Amérique Code du pays US
- Région Inconnu Heure locale 10 Dec 2017 11:21 CST
- Ville Inconnu Latitude 37.751
- Adresse IP (IPv6) 2600:1400:a:18b::1f36 Longitude -97.822
- ######################################################################################################################################
- [i] Scanning Site: https://data.gov
- B A S I C I N F O
- ====================
- [+] Site Title: Data.gov
- [+] IP address: 34.193.244.109
- [+] Web Server: Could Not Detect
- [+] CMS: Could Not Detect
- [+] Cloudflare: Not Detected
- [+] Robots File: Found
- -------------[ contents ]----------------
- # Hello robots!
- # For information on crawling the data.gov data catalog, see http://data.gov/developers/harvesting
- User-agent: *
- Allow: /
- # Disallow these directories, url types & file-types
- Disallow: /cgi-bin
- Disallow: /wp-admin/
- Disallow: /wp-includes/
- Disallow: /wp-content/
- Disallow: /search/*/feed
- Disallow: /search/*/*
- Disallow: /readme.html
- Disallow: /license.txt
- Disallow: /*?*
- Disallow: /*?
- Disallow: /*.php$
- Disallow: /*.js$
- Disallow: /*.inc$
- Disallow: /*.css$
- Disallow: /*.gz$
- Disallow: /*.wmv$
- Disallow: /*.cgi$
- Disallow: /*.xhtml$
- Allow: /wp-content/uploads/
- Allow: /wp-content/media/
- Allow: /*?page=*
- User-agent: Mediapartners-Google
- Allow: /
- User-agent: Adsbot-Google
- Allow: /
- User-agent: Googlebot-Image
- Allow: /
- User-agent: Googlebot-Mobile
- Allow: /
- Sitemap: http://data.gov/sitemap.xml
- -----------[end of contents]-------------
- W H O I S L O O K U P
- ========================
- % DOTGOV WHOIS Server ready
- Domain Name: DATA.GOV
- Status: ACTIVE
- >>> Last update of whois database: 2017-12-10T17:26:14Z <<<
- Please be advised that this whois server only contains information pertaining
- to the .GOV domain. For information for other domains please use the whois
- server at RS.INTERNIC.NET.
- G E O I P L O O K U P
- =========================
- [i] IP Address: 34.193.244.109
- [i] Country: US
- [i] State: Virginia
- [i] City: Ashburn
- [i] Latitude: 39.048100
- [i] Longitude: -77.472801
- H T T P H E A D E R S
- =======================
- [i] HTTP/1.1 302 Found
- [i] Date: Sun, 10 Dec 2017 17:26:33 GMT
- [i] Content-Type: text/html; charset=UTF-8
- [i] Connection: close
- [i] Location: https://www.data.gov/
- [i] Cache-Control: max-age=0, no-cache, no-store, must-revalidate
- [i] Pragma: no-cache
- [i] X-XSS-Protection: 1; mode=block
- [i] X-Content-Type-Options: nosniff
- [i] Access-Control-Allow-Origin: *
- [i] Access-Control-Allow-Methods: POST, PUT, GET, DELETE, OPTIONS
- [i] Referrer-Policy: origin
- [i] X-Frame-Options: SAMEORIGIN
- [i] Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
- [i] Set-Cookie: PHPSESSID=j7l0ejnkp10op1gltae35midj5; Path=/; Secure; HttpOnly
- [i] Set-Cookie: citrix_ns_id=Q5sYDqWVLs+ABdm5+sVgZyjg8PA0001; Domain=.data.gov; Path=/; Secure; HttpOnly
- [i] Set-Cookie: citrix_ns_id_.data.gov_%2F_wat=AAAAAAX1B2ImWYT4riCwdjmyKiU2bHOi94HaaCmUrD2N80q0mI6gYDke-hfUzfgHgweNYZ_93g3VSkbe9FCCu1O60kwE&; Domain=.data.gov; Path=/; Secure; HttpOnly
- [i] Expires: Mon, 26 Jul 1997 05:00:00 GMT
- [i] HTTP/1.0 200 OK
- [i] Content-Type: text/html; charset=UTF-8
- [i] X-Pingback: https://www.data.gov/wp/xmlrpc.php
- [i] Link: <https://www.data.gov/wp-json/>; rel="https://api.w.org/"
- [i] Link: <https://www.data.gov/>; rel=shortlink
- [i] X-TEC-API-VERSION: v1
- [i] X-TEC-API-ROOT: https://www.data.gov/wp-json/tribe/events/v1/
- [i] X-TEC-API-ORIGIN: https://www.data.gov
- [i] Pragma: no-cache
- [i] X-XSS-Protection: 1; mode=block
- [i] X-Content-Type-Options: nosniff
- [i] Access-Control-Allow-Origin: *
- [i] Access-Control-Allow-Methods: POST, PUT, GET, DELETE, OPTIONS
- [i] Referrer-Policy: origin
- [i] X-Frame-Options: SAMEORIGIN
- [i] Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
- [i] Content-Length: 45666
- [i] Cache-Control: must-revalidate, max-age=900
- [i] Date: Sun, 10 Dec 2017 17:26:41 GMT
- [i] Connection: close
- D N S L O O K U P
- ===================
- data.gov. 3599 IN SOA dns.gsa.gov. hostmaster.gsa.gov. 530976538 3600 180 1209600 3600
- data.gov. 3599 IN RRSIG SOA 8 2 3600 20171229132857 20171129132357 51550 data.gov. CfohIYs2zzctF5bBdDutb1QBbKZn9hFcd+lFX+PhyKoC5C//7NPQCr/z evAxRlzcyXF1CUQ9GDcKczEz/pa24MGFIPk1M4SaBPZIK/orCL0+Ypnu LxHS9kyQXetk2OKV9eKa8DZTrfXrlyvCOFORy/YyUvxHzDrASsMyITxW YeI=
- data.gov. 3599 IN NS dns3.gsa.gov.
- data.gov. 3599 IN NS dns2.gsa.gov.
- data.gov. 3599 IN NS dns4.gsa.gov.
- data.gov. 3599 IN NS dns5.gsa.gov.
- data.gov. 3599 IN NS dns.gsa.gov.
- data.gov. 3599 IN RRSIG NS 8 2 3600 20171229132857 20171129132357 51550 data.gov. Ru3R0W7K9icN6GhjhAuFW8r7iyQLCKexPOjqI7auNFAqjU2SLQU7M9q3 WEAFT/cgFSQ6yHx1trwT/LZIatYZGZJMV13E1uBoLTZa8vScWIs2YOw1 vjsLf0nQtSluXzZU4aTG2uRUeZWFebXlV/JOGSAoKiew404KtJInMN3K lls=
- data.gov. 299 IN A 34.193.244.109
- data.gov. 299 IN RRSIG A 8 2 300 20171229132857 20171129132357 51550 data.gov. dzszoutoI1XOk93ufBz2Unh3tI5vbVQyS8HFs4TNPrZvVtwW4RVpL3xs XZxIipo+2+qU8TsMHgP8COJt9YKHUazE+2bHYrnmckdhWSMNBVqkO0sV x3JM0b4T2RjtemBlBiDf3E9VuU2TY/Fot/NKlANlD0OoLMmpeDJDuaQj +N8=
- data.gov. 3599 IN MX 10 phx-smt-03.data.gov.
- data.gov. 3599 IN MX 30 phl-smt-04.data.gov.
- data.gov. 3599 IN RRSIG MX 8 2 3600 20171229132857 20171129132357 51550 data.gov. hFJMYWOkqhsm3TSFPW5JMVo5gMNi4Cv7/UQB/sfFV9eBpyu00oRW0DHW KNQOg3PsvacJ+cQYyQVFyjIUEFM/EHIXhIryGXDIsgc+uuUfhW1wGp1S B2ljnJWasAH7YKd8CXsejwrhPWuz02VwvpKHpotdMsR23FKD1Ox29Dyg n24=
- data.gov. 3599 IN TXT "v=spf1 mx ptr mx:phx-smt-03.cgipdc.com mx:phl-smt-04.cgipdc.com ip4:216.128.240.144/32 ip4:173.252.148.16/32 ~all"
- data.gov. 3599 IN RRSIG TXT 8 2 3600 20171229132857 20171129132357 51550 data.gov. ayloQ39rDf43AmoSHp6BKvSDfjamhMQeOioqZxnD52hcBHBz5TpWwUfN ne3X5q5i0qf0jH2Q/E98hOtXmW0/c0nvoPUiKMGdzx3e069Iv/TISNg9 qG9HSYm4mrp1kyW1x67p/Gz16hmhBbX/w1px1ZRoJGm6mu2x8F9LpPGc o9s=
- data.gov. 3599 IN DNSKEY 257 3 8 AwEAAZkYJ+gN/O+pAiHqRAzhJZgV/i36fqpHHoc8CxQEuvhSV4Zau4lD fc8CcHrbsT8ZzR0jB64fqmRStgQGh4DodiZYs8bIipeoAGkHHMFVyWrE bp1eFW3chhUoZ06iB3dLbj2710WyrSYjvvVPmPnZAv/m4LXPQa1xWaKZ 9IRtXuq1
- data.gov. 3599 IN DNSKEY 256 3 8 AwEAAbi1Zmr9cPmGjJdkwLfnYfR3LEXz5pLm/GWM2F9MQj23nQzD3dqP E8MU8L/5VzdJ3GlAQeoVf/rmdQ/jAn/rfHdVD+KVLsV7oecn1WQ2W6PS sX+3sRWAjHw0jfgFHU9ElU6Z9eYUd3mvGcRBIoIQ/ZJan8xmTKS4PC5c LAG/Y3Pt
- data.gov. 3599 IN RRSIG DNSKEY 8 2 3600 20171229132857 20171129132357 14054 data.gov. Jq7ri0oEz9ppzE9d+ybfEwAwJqJUTv61ZXerkZhSbObllJ/cnVYCBdQr h+ZzWmYD5B+e7gM8sEOyzKoI+Knyr/z8GRf1jPLCSkguakERrtvgPk5f qgWZYNBE+1DNCfHF7XomxANhWui9nFMMdWapgRQsOaQRxnOVoeQ+7bAl 95Y=
- data.gov. 3599 IN RRSIG DNSKEY 8 2 3600 20171229132857 20171129132357 51550 data.gov. ByjgCmRZc2Ni8G8o8BRr1kRnvE7nGHZXvC7Wriw4muPVPNJsBw0EkRqs 9/2h8YoFnHGHD8b/RgxsZW7h6uD5+yXcweS/2seR/WeSEpFtCNmpaH3X Hz/YynQHZ8MMsAIqjxO1iqv7xzfCLOk97VUiWVrLkSwUKk1My8Gp4FZa MvQ=
- data.gov. 0 IN NSEC3PARAM 1 0 10 -
- data.gov. 0 IN RRSIG NSEC3PARAM 8 2 0 20171229132857 20171129132357 51550 data.gov. i2IdmJGXa3Bp82WKFrtuCN8CEIXdaIc/Kdyn2iklVjjmRCKeukToR9KN ZEEZNZgKxW4wI4JrCoXOabMz8DZlvcrCx+s3hZVOjnS69eLwtw7Tm7jw G5INsdZKdxEUYK9cN6F6pCUUk2/QU5Gg3ivHu+3Ugt30tVzdBjHA5iof kdI=
- data.gov. 3599 IN SPF "v=spf1" "mx" "ptr" "mx:phx-smt-03.cgipdc.com" "mx:phl-smt-04.cgipdc.com" "ip4:216.128.240.144/32" "ip4:173.252.148.16/32" "~all"
- data.gov. 3599 IN RRSIG SPF 8 2 3600 20171229132857 20171129132357 51550 data.gov. YHwrqDPk0MdDTGfEW3JZZkIM8SqDe062tbCPbuM2FjnAkyK3pbH9jU2p HNeyzi2e2C4u1YOeXLlbqXehtRAD/tTog1ZAO/mOdN3IHX+WJVnp9j1O FBLl2vBlBU+xN3t6gvPaEPieV7uGHrNU6A/Hzyy0CzyVe/ljijTbO/o/ Wok=
- S U B N E T C A L C U L A T I O N
- ====================================
- Address = 34.193.244.109
- Network = 34.193.244.109 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 34.193.244.109 - 34.193.244.109 }
- N M A P P O R T S C A N
- ============================
- Starting Nmap 7.01 ( https://nmap.org ) at 2017-12-10 17:27 UTC
- Nmap scan report for data.gov (34.193.244.109)
- Host is up (0.0031s latency).
- rDNS record for 34.193.244.109: ec2-34-193-244-109.compute-1.amazonaws.com
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 25/tcp filtered smtp
- 80/tcp open http?
- 110/tcp filtered pop3
- 143/tcp filtered imap
- 443/tcp open ssl/https?
- 445/tcp filtered microsoft-ds
- 3389/tcp filtered ms-wbt-server
- 2 services unrecognized despite returning data. If you know the service/version, please submit the following fingerprints at
- Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 18.88 seconds
- S U B - D O M A I N F I N D E R
- ==================================
- [i] Total Subdomains Found : 9
- [+] Subdomain: phxsmt-03.data.gov
- [-] IP: 216.128.240.144
- [+] Subdomain: phlsmt-04.data.gov
- [-] IP: 173.252.148.16
- [+] Subdomain: api.data.gov
- [-] IP: 52.4.121.208
- [+] Subdomain: nal.usda.domains.api.data.gov
- [-] IP: 52.22.156.172
- [+] Subdomain: apiusa-gov.domains.api.data.gov
- [-] IP: 52.22.156.172
- [+] Subdomain: developernrel-gov.domains.api.data.gov
- [-] IP: 52.22.190.82
- [+] Subdomain: apinps-gov.domains.api.data.gov
- [-] IP: 52.22.156.172
- [+] Subdomain: developernps-gov.domains.api.data.gov
- [-] IP: 52.22.156.172
- [+] Subdomain: smallbusiness.data.gov
- [-] IP: 63.236.110.157
- R E V E R S E I P L O O K U P
- ==================================
- [i] Total Sites Found On This Server : 0
- [!] IP Address : 23.9.106.52
- [!] CMS Detected : WordPress
- [?] Would you like to use WPScan? [Y/n] y
- _______________________________________________________________
- __ _______ _____
- \ \ / / __ \ / ____|
- \ \ /\ / /| |__) | (___ ___ __ _ _ __ ®
- \ \/ \/ / | ___/ \___ \ / __|/ _` | '_ \
- \ /\ / | | ____) | (__| (_| | | | |
- \/ \/ |_| |_____/ \___|\__,_|_| |_|
- WordPress Security Scanner by the WPScan Team
- Version 2.9.3
- Sponsored by Sucuri - https://sucuri.net
- @_WPScan_, @ethicalhack3r, @erwan_lr, pvdl, @_FireFart_
- _______________________________________________________________
- [i] The remote host tried to redirect to: https://www.data.gov/
- [?] Do you want follow the redirection ? [Y]es [N]o [A]bort, default: [N]Y
- [+] URL: https://www.data.gov/
- [+] Started: Sun Dec 10 12:48:10 2017
- [+] robots.txt available under: 'https://www.data.gov/robots.txt'
- [+] Interesting entry from robots.txt: https://www.data.gov/cgi-bin
- [+] Interesting entry from robots.txt: https://www.data.gov/search/*/feed
- [+] Interesting entry from robots.txt: https://www.data.gov/search/*/*
- [+] Interesting entry from robots.txt: https://www.data.gov/readme.html
- [+] Interesting entry from robots.txt: https://www.data.gov/license.txt
- [+] Interesting entry from robots.txt: /*?*
- [+] Interesting entry from robots.txt: /*?
- [+] Interesting entry from robots.txt: https://www.data.gov/*.php$
- [+] Interesting entry from robots.txt: https://www.data.gov/*.js$
- [+] Interesting entry from robots.txt: https://www.data.gov/*.inc$
- [+] Interesting entry from robots.txt: https://www.data.gov/*.css$
- [+] Interesting entry from robots.txt: https://www.data.gov/*.gz$
- [+] Interesting entry from robots.txt: https://www.data.gov/*.wmv$
- [+] Interesting entry from robots.txt: https://www.data.gov/*.cgi$
- [+] Interesting entry from robots.txt: https://www.data.gov/*.xhtml$
- [+] Interesting entry from robots.txt: https://www.data.gov/wp-content/uploads/
- [+] Interesting entry from robots.txt: https://www.data.gov/wp-content/media/
- [+] Interesting entry from robots.txt: /*?page=*
- [+] Interesting header: ACCESS-CONTROL-ALLOW-METHODS: POST, PUT, GET, DELETE, OPTIONS
- [+] Interesting header: ACCESS-CONTROL-ALLOW-ORIGIN: *
- [+] Interesting header: LINK: <https://www.data.gov/wp-json/>; rel="https://api.w.org/"
- [+] Interesting header: LINK: <https://www.data.gov/>; rel=shortlink
- [+] Interesting header: REFERRER-POLICY: origin
- [+] Interesting header: STRICT-TRANSPORT-SECURITY: max-age=31536000; includeSubDomains; preload
- [+] Interesting header: X-CONTENT-TYPE-OPTIONS: nosniff
- [+] Interesting header: X-FRAME-OPTIONS: SAMEORIGIN
- [+] Interesting header: X-TEC-API-ORIGIN: https://www.data.gov
- [+] Interesting header: X-TEC-API-ROOT: https://www.data.gov/wp-json/tribe/events/v1/
- [+] Interesting header: X-TEC-API-VERSION: v1
- [+] Interesting header: X-XSS-PROTECTION: 1; mode=block
- [+] This site has 'Must Use Plugins' (http://codex.wordpress.org/Must_Use_Plugins)
- [+] WordPress version 4.9 (Released on 2017-11-15) identified from stylesheets numbers
- [!] 4 vulnerabilities identified from the version number
- [!] Title: WordPress 2.8.6-4.9 - Authenticated JavaScript File Upload
- Reference: https://wpvulndb.com/vulnerabilities/8966
- Reference: https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
- Reference: https://github.com/WordPress/WordPress/commit/67d03a98c2cae5f41843c897f206adde299b0509
- Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17092
- [i] Fixed in: 4.9.1
- [!] Title: WordPress 1.5.0-4.9 - RSS and Atom Feed Escaping
- Reference: https://wpvulndb.com/vulnerabilities/8967
- Reference: https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
- Reference: https://github.com/WordPress/WordPress/commit/f1de7e42df29395c3314bf85bff3d1f4f90541de
- Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17094
- [i] Fixed in: 4.9.1
- [!] Title: WordPress 4.3.0-4.9 - HTML Language Attribute Escaping
- Reference: https://wpvulndb.com/vulnerabilities/8968
- Reference: https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
- Reference: https://github.com/WordPress/WordPress/commit/3713ac5ebc90fb2011e98dfd691420f43da6c09a
- Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17093
- [i] Fixed in: 4.9.1
- [!] Title: WordPress 3.7-4.9 - 'newbloguser' Key Weak Hashing
- Reference: https://wpvulndb.com/vulnerabilities/8969
- Reference: https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
- Reference: https://github.com/WordPress/WordPress/commit/eaf1cfdc1fe0bdffabd8d879c591b864d833326c
- Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17091
- [i] Fixed in: 4.9.1
- [+] Enumerating plugins from passive detection ...
- | 9 plugins found:
- [+] Name: contact-form-7 - v4.9.1
- | Latest version: 4.9.1 (up to date)
- | Last updated: 2017-10-31T09:39:00.000Z
- | Location: https://www.data.gov/app/plugins/contact-form-7/
- | Readme: https://www.data.gov/app/plugins/contact-form-7/readme.txt
- [+] Name: custom-post-view-generator - v0.4.5
- | Last updated: 2014-08-31T22:11:00.000Z
- | Location: https://www.data.gov/app/plugins/custom-post-view-generator/
- | Readme: https://www.data.gov/app/plugins/custom-post-view-generator/readme.txt
- [!] The version is out of date, the latest version is 0.4.6
- [+] Name: google-analyticator - v6.5.4
- | Latest version: 6.5.4 (up to date)
- | Last updated: 2017-07-18T21:32:00.000Z
- | Location: https://www.data.gov/app/plugins/google-analyticator/
- | Readme: https://www.data.gov/app/plugins/google-analyticator/readme.txt
- [+] Name: m-wp-popup - v1.0
- | Last updated: 2017-09-16T19:52:00.000Z
- | Location: https://www.data.gov/app/plugins/m-wp-popup/
- | Readme: https://www.data.gov/app/plugins/m-wp-popup/readme.txt
- [!] The version is out of date, the latest version is 1.3
- [+] Name: si-captcha-for-wordpress - v3.0.2
- | Latest version: 3.0.2 (up to date)
- | Last updated: 2017-07-28T00:18:00.000Z
- | Location: https://www.data.gov/app/plugins/si-captcha-for-wordpress/
- | Readme: https://www.data.gov/app/plugins/si-captcha-for-wordpress/readme.txt
- [+] Name: simple-tooltips - v2.1.3
- | Latest version: 2.1.3 (up to date)
- | Last updated: 2016-04-21T19:43:00.000Z
- | Location: https://www.data.gov/app/plugins/simple-tooltips/
- | Readme: https://www.data.gov/app/plugins/simple-tooltips/readme.txt
- [+] Name: the-events-calendar - v4.6.6
- | Last updated: 2017-12-07T18:38:00.000Z
- | Location: https://www.data.gov/app/plugins/the-events-calendar/
- | Readme: https://www.data.gov/app/plugins/the-events-calendar/readme.txt
- [!] The version is out of date, the latest version is 4.6.7
- [+] Name: wp-open311
- | Location: https://www.data.gov/app/plugins/wp-open311/
- [+] Name: wordpress-seo - v4.9
- | Last updated: 2017-12-05T11:24:00.000Z
- | Location: https://www.data.gov/app/plugins/wordpress-seo/
- | Readme: https://www.data.gov/app/plugins/wordpress-seo/readme.txt
- [!] The version is out of date, the latest version is 5.9.1
- [!] Title: Yoast SEO <= 5.7.1 - Unauthenticated Cross-Site Scripting (XSS)
- Reference: https://wpvulndb.com/vulnerabilities/8960
- Reference: https://plugins.trac.wordpress.org/changeset/1766831/wordpress-seo/trunk/admin/google_search_console/class-gsc-table.php
- Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16842
- [i] Fixed in: 5.8
- [+] Finished: Sun Dec 10 12:50:18 2017
- [+] Requests Done: 388
- [+] Memory used: 144.988 MB
- [+] Elapsed time: 00:02:07
- [+] Honeypot Probabilty: 0%
- ----------------------------------------
- [+] Robots.txt retrieved
- User-agent: *
- Disallow: /wp/wp-admin/
- Allow: /wp/wp-admin/admin-ajax.php
- ----------------------------------------
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 25/tcp filtered smtp
- 80/tcp open http AkamaiGHost (Akamais HTTP Acceleration/Mirror service)
- 110/tcp filtered pop3
- 143/tcp filtered imap
- 443/tcp open ssl/http AkamaiGHost (Akamais HTTP Acceleration/Mirror service)
- 445/tcp filtered microsoft-ds
- 3389/tcp filtered ms-wbt-server
- ----------------------------------------
- [+] DNS Records
- [+] Host Records (A)
- www.data.govHTTP: (a96-6-50-248.deploy.akamaitechnologies.com) (96.6.50.248) AS20940 Akamai International B.V. United States
- [+] TXT Records
- [+] DNS Map: https://dnsdumpster.com/static/map/www.data.gov.png
- [>] Initiating 3 intel modules
- [>] Loading Alpha module (1/3)
- [>] Beta module deployed (2/3)
- [>] Gamma module initiated (3/3)
- No emails found
- No hosts found
- [+] Virtual hosts:
- -----------------
- [>] Crawling the target for fuzzable URLs
- #
- # ARIN WHOIS data and services are subject to the Terms of Use
- # available at: https://www.arin.net/whois_tou.html
- #
- # If you see inaccuracies in the results, please report at
- # https://www.arin.net/public/whoisinaccuracy/index.xhtml
- #
- #
- # The following results may also be obtained via:
- # https://whois.arin.net/rest/nets;q=34.193.244.109?showDetails=true&showARIN=false&showNonArinTopLevelNet=false&ext=netref2
- #
- NetRange: 34.192.0.0 - 34.255.255.255
- CIDR: 34.192.0.0/10
- NetName: AT-88-Z
- NetHandle: NET-34-192-0-0-1
- Parent: NET34 (NET-34-0-0-0-0)
- NetType: Direct Allocation
- OriginAS:
- Organization: Amazon Technologies Inc. (AT-88-Z)
- RegDate: 2016-09-12
- Updated: 2016-09-12
- Ref: https://whois.arin.net/rest/net/NET-34-192-0-0-1
- OrgName: Amazon Technologies Inc.
- OrgId: AT-88-Z
- Address: 410 Terry Ave N.
- City: Seattle
- StateProv: WA
- PostalCode: 98109
- Country: US
- RegDate: 2011-12-08
- Updated: 2017-01-28
- Comment: All abuse reports MUST include:
- Comment: * src IP
- Comment: * dest IP (your IP)
- Comment: * dest port
- Comment: * Accurate date/timestamp and timezone of activity
- Comment: * Intensity/frequency (short log extracts)
- Comment: * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time.
- Ref: https://whois.arin.net/rest/org/AT-88-Z
- OrgNOCHandle: AANO1-ARIN
- OrgNOCName: Amazon AWS Network Operations
- OrgNOCPhone: +1-206-266-4064
- OrgNOCEmail: amzn-noc-contact@amazon.com
- OrgNOCRef: https://whois.arin.net/rest/poc/AANO1-ARIN
- OrgAbuseHandle: AEA8-ARIN
- OrgAbuseName: Amazon EC2 Abuse
- OrgAbusePhone: +1-206-266-4064
- OrgAbuseEmail: abuse@amazonaws.com
- OrgAbuseRef: https://whois.arin.net/rest/poc/AEA8-ARIN
- OrgTechHandle: ANO24-ARIN
- OrgTechName: Amazon EC2 Network Operations
- OrgTechPhone: +1-206-266-4064
- OrgTechEmail: amzn-noc-contact@amazon.com
- OrgTechRef: https://whois.arin.net/rest/poc/ANO24-ARIN
- #
- # ARIN WHOIS data and services are subject to the Terms of Use
- # available at: https://www.arin.net/whois_tou.html
- #
- # If you see inaccuracies in the results, please report at
- # https://www.arin.net/public/whoisinaccuracy/index.xhtml
- #[92m + -- ----------------------------=[Running Nslookup]=------------------------ -- +[0m
- Server: 2001:568:ff09:10c::53
- Address: 2001:568:ff09:10c::53#53
- Non-authoritative answer:
- Name: investinisrael.gov.il
- Address: 147.237.1.133
- investinisrael.gov.il has address 147.237.1.133
- [92m + -- ----------------------------=[Checking OS Fingerprint]=----------------- -- +[0m
- Xprobe2 v.0.3 Copyright (c) 2002-2005 fyodor@o0o.nu, ofir@sys-security.com, meder@o0o.nu
- [+] Target is investinisrael.gov.il
- [+] Loading modules.
- [+] Following modules are loaded:
- [x] [1] ping:icmp_ping - ICMP echo discovery module
- [x] [2] ping:tcp_ping - TCP-based ping discovery module
- [x] [3] ping:udp_ping - UDP-based ping discovery module
- [x] [4] infogather:ttl_calc - TCP and UDP based TTL distance calculation
- [x] [5] infogather:portscan - TCP and UDP PortScanner
- [x] [6] fingerprint:icmp_echo - ICMP Echo request fingerprinting module
- [x] [7] fingerprint:icmp_tstamp - ICMP Timestamp request fingerprinting module
- [x] [8] fingerprint:icmp_amask - ICMP Address mask request fingerprinting module
- [x] [9] fingerprint:icmp_port_unreach - ICMP port unreachable fingerprinting module
- [x] [10] fingerprint:tcp_hshake - TCP Handshake fingerprinting module
- [x] [11] fingerprint:tcp_rst - TCP RST fingerprinting module
- [x] [12] fingerprint:smb - SMB fingerprinting module
- [x] [13] fingerprint:snmp - SNMPv2c fingerprinting module
- [+] 13 modules registered
- [+] Initializing scan engine
- [+] Running scan engine
- [-] ping:tcp_ping module: no closed/open TCP ports known on 147.237.1.133. Module test failed
- [-] ping:udp_ping module: no closed/open UDP ports known on 147.237.1.133. Module test failed
- [-] No distance calculation. 147.237.1.133 appears to be dead or no ports known
- [+] Host: 147.237.1.133 is down (Guess probability: 0%)
- [+] Cleaning up scan engine
- [+] Modules deinitialized
- [+] Execution completed.
- [92m + -- ----------------------------=[Gathering Whois Info]=-------------------- -- +[0m
- % The data in the WHOIS database of the .il registry is provided
- % by ISOC-IL for information purposes, and to assist persons in
- % obtaining information about or related to a domain name
- % registration record. ISOC-IL does not guarantee its accuracy.
- % By submitting a WHOIS query, you agree that you will use this
- % Data only for lawful purposes and that, under no circumstances
- % will you use this Data to: (1) allow, enable, or otherwise
- % support the transmission of mass unsolicited, commercial
- % advertising or solicitations via e-mail (spam);
- % or (2) enable high volume, automated, electronic processes that
- % apply to ISOC-IL (or its systems).
- % ISOC-IL reserves the right to modify these terms at any time.
- % By submitting this query, you agree to abide by this policy.
- % No data was found to match the request criteria.
- % Rights to the data above are restricted by copyright.
- [92m + -- ----------------------------=[Gathering OSINT Info]=-------------------- -- +[0m
- *******************************************************************
- * *
- * | |_| |__ ___ /\ /\__ _ _ ____ _____ ___| |_ ___ _ __ *
- * | __| '_ \ / _ \ / /_/ / _` | '__\ \ / / _ \/ __| __/ _ \ '__| *
- * | |_| | | | __/ / __ / (_| | | \ V / __/\__ \ || __/ | *
- * \__|_| |_|\___| \/ /_/ \__,_|_| \_/ \___||___/\__\___|_| *
- * *
- * TheHarvester Ver. 2.7 *
- * Coded by Christian Martorella *
- * Edge-Security Research *
- * cmartorella@edge-security.com *
- *******************************************************************
- [-] Searching in Bing:
- Searching 50 results...
- Searching 100 results...
- [+] Emails found:
- ------------------
- No emails found
- [+] Hosts found in search engines:
- ------------------------------------
- [-] Resolving hostnames IPs...
- 147.237.1.133:www.investinisrael.gov.il
- [92m + -- ----------------------------=[Gathering DNS Info]=---------------------- -- +[0m
- ; <<>> DiG 9.11.2-4-Debian <<>> -x investinisrael.gov.il
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45129
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
- ;; OPT PSEUDOSECTION:
- ; EDNS: version: 0, flags:; udp: 4096
- ;; QUESTION SECTION:
- ;il.gov.investinisrael.in-addr.arpa. IN PTR
- ;; AUTHORITY SECTION:
- in-addr.arpa. 3600 IN SOA b.in-addr-servers.arpa. nstld.iana.org. 2017102477 1800 900 604800 3600
- ;; Query time: 398 msec
- ;; SERVER: 2001:568:ff09:10c::53#53(2001:568:ff09:10c::53)
- ;; WHEN: Sun Dec 10 15:37:51 EST 2017
- ;; MSG SIZE rcvd: 131
- dnsenum VERSION:1.2.4
- [1;34m
- ----- investinisrael.gov.il -----
- [0m[1;31m
- Host's addresses:
- __________________
- [0minvestinisrael.gov.il. 517 IN A 147.237.1.133
- [1;31m
- Name Servers:
- ______________
- [0m[92m + -- ----------------------------=[Gathering DNS Subdomains]=---------------- -- +[0m
- [91m
- ____ _ _ _ _ _____
- / ___| _ _| |__ | (_)___| |_|___ / _ __
- \___ \| | | | '_ \| | / __| __| |_ \| '__|
- ___) | |_| | |_) | | \__ \ |_ ___) | |
- |____/ \__,_|_.__/|_|_|___/\__|____/|_|[0m[93m
- # Coded By Ahmed Aboul-Ela - @aboul3la
- [94m[-] Enumerating subdomains now for investinisrael.gov.il[0m
- [93m[-] verbosity is enabled, will show the subdomains results in realtime[0m
- [92m[-] Searching now in Baidu..[0m
- [92m[-] Searching now in Yahoo..[0m
- [92m[-] Searching now in Google..[0m
- [92m[-] Searching now in Bing..[0m
- [92m[-] Searching now in Ask..[0m
- [92m[-] Searching now in Netcraft..[0m
- [92m[-] Searching now in DNSdumpster..[0m
- [92m[-] Searching now in Virustotal..[0m
- [92m[-] Searching now in ThreatCrowd..[0m
- [92m[-] Searching now in SSL Certificates..[0m
- [92m[-] Searching now in PassiveDNS..[0m
- [91mYahoo: [0mwww.investinisrael.gov.il
- [91mVirustotal: [0mwww.investinisrael.gov.il
- [91mDNSdumpster: [0me.investinisrael.gov.il
- [91mDNSdumpster: [0mwww.investinisrael.gov.il
- [93m[-] Saving results to file: [0m[91m/usr/share/sniper/loot/domains/domains-investinisrael.gov.il.txt[0m
- [93m[-] Total Unique Subdomains Found: 2[0m
- [92mwww.investinisrael.gov.il[0m
- [92me.investinisrael.gov.il[0m
- [91m ╔═╗╦═╗╔╦╗╔═╗╦ ╦[0m
- [91m ║ ╠╦╝ ║ ╚═╗╠═╣[0m
- [91m ╚═╝╩╚═ ╩o╚═╝╩ ╩[0m
- [91m + -- ----------------------------=[Gathering Certificate Subdomains]=-------- -- +[0m
- [94m
- [91m [+] Domains saved to: /usr/share/sniper/loot/domains/domains-investinisrael.gov.il-full.txt
- [0m
- [92m + -- ----------------------------=[Checking for Sub-Domain Hijacking]=------- -- +[0m
- [92m + -- ----------------------------=[Checking Email Security]=----------------- -- +[0m
- [92m + -- ----------------------------=[Pinging host]=---------------------------- -- +[0m
- PING investinisrael.gov.il (147.237.1.133) 56(84) bytes of data.
- --- investinisrael.gov.il ping statistics ---
- 1 packets transmitted, 0 received, 100% packet loss, time 0ms
- [92m + -- ----------------------------=[Running TCP port scan]=------------------- -- +[0m
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-12-10 15:39 EST
- Nmap done: 1 IP address (1 host up) scanned in 33.50 seconds
- [92m + -- ----------------------------=[Running Intrusive Scans]=----------------- -- +[0m
- [91m + -- --=[Port 21 closed... skipping.[0m
- [91m + -- --=[Port 22 closed... skipping.[0m
- [91m + -- --=[Port 23 closed... skipping.[0m
- [91m + -- --=[Port 25 closed... skipping.[0m
- [91m + -- --=[Port 53 closed... skipping.[0m
- [91m + -- --=[Port 79 closed... skipping.[0m
- [91m + -- --=[Port 80 closed... skipping.[0m
- [91m + -- --=[Port 110 closed... skipping.[0m
- [91m + -- --=[Port 111 closed... skipping.[0m
- [91m + -- --=[Port 135 closed... skipping.[0m
- [91m + -- --=[Port 139 closed... skipping.[0m
- [91m + -- --=[Port 161 closed... skipping.[0m
- [91m + -- --=[Port 162 closed... skipping.[0m
- [91m + -- --=[Port 389 closed... skipping.[0m
- [91m + -- --=[Port 443 closed... skipping.[0m
- [91m + -- --=[Port 445 closed... skipping.[0m
- [91m + -- --=[Port 512 closed... skipping.[0m
- [91m + -- --=[Port 513 closed... skipping.[0m
- [91m + -- --=[Port 514 closed... skipping.[0m
- [91m + -- --=[Port 623 closed... skipping.[0m
- [91m + -- --=[Port 624 closed... skipping.[0m
- [91m + -- --=[Port 1099 closed... skipping.[0m
- [91m + -- --=[Port 1433 closed... skipping.[0m
- [91m + -- --=[Port 2049 closed... skipping.[0m
- [91m + -- --=[Port 2121 closed... skipping.[0m
- [91m + -- --=[Port 3306 closed... skipping.[0m
- [91m + -- --=[Port 3310 closed... skipping.[0m
- [91m + -- --=[Port 3128 closed... skipping.[0m
- [91m + -- --=[Port 3389 closed... skipping.[0m
- [91m + -- --=[Port 3632 closed... skipping.[0m
- [91m + -- --=[Port 4443 closed... skipping.[0m
- [91m + -- --=[Port 5432 closed... skipping.[0m
- [91m + -- --=[Port 5800 closed... skipping.[0m
- [91m + -- --=[Port 5900 closed... skipping.[0m
- [91m + -- --=[Port 5984 closed... skipping.[0m
- [91m + -- --=[Port 6000 closed... skipping.[0m
- [91m + -- --=[Port 6667 closed... skipping.[0m
- [91m + -- --=[Port 8000 closed... skipping.[0m
- [91m + -- --=[Port 8100 closed... skipping.[0m
- [91m + -- --=[Port 8080 closed... skipping.[0m
- [91m + -- --=[Port 8180 closed... skipping.[0m
- [91m + -- --=[Port 8443 closed... skipping.[0m
- [91m + -- --=[Port 8888 closed... skipping.[0m
- [91m + -- --=[Port 10000 closed... skipping.[0m
- [91m + -- --=[Port 16992 closed... skipping.[0m
- [91m + -- --=[Port 27017 closed... skipping.[0m
- [91m + -- --=[Port 27018 closed... skipping.[0m
- [91m + -- --=[Port 27019 closed... skipping.[0m
- [91m + -- --=[Port 28017 closed... skipping.[0m
- [91m + -- --=[Port 49152 closed... skipping.[0m
- [92m + -- ----------------------------=[Scanning For Common Vulnerabilities]=----- -- +[0m
- [92m + -- ----------------------------=[Skipping Full NMap Port Scan]=------------ -- +[0m
- [92m + -- ----------------------------=[Running Brute Force]=--------------------- -- +[0m
- [91m __________ __ ____ ___[0m
- [91m \______ \_______ __ ___/ |_ ____ \ \/ /[0m
- [91m | | _/\_ __ \ | \ __\/ __ \ \ / [0m
- [91m | | \ | | \/ | /| | \ ___/ / \ [0m
- [91m |______ / |__| |____/ |__| \___ >___/\ \ [0m
- [91m \/ \/ \_/[0m
- [91m + -- --=[BruteX v1.7 by 1N3[0m
- [91m + -- --=[http://crowdshield.com[0m
- [92m################################### Running Port Scan ##############################[0m
- Starting Nmap 7.60 ( https://nmap.org ) at 2017-12-10 15:39 EST
- Nmap done: 1 IP address (1 host up) scanned in 12.38 seconds
- [92m################################### Running Brute Force ############################[0m
- [91m + -- --=[Port 21 closed... skipping.[0m
- [91m + -- --=[Port 22 closed... skipping.[0m
- [91m + -- --=[Port 23 closed... skipping.[0m
- [91m + -- --=[Port 25 closed... skipping.[0m
- [91m + -- --=[Port 80 closed... skipping.[0m
- [91m + -- --=[Port 110 closed... skipping.[0m
- [91m + -- --=[Port 139 closed... skipping.[0m
- [91m + -- --=[Port 162 closed... skipping.[0m
- [91m + -- --=[Port 389 closed... skipping.[0m
- [91m + -- --=[Port 443 closed... skipping.[0m
- [91m + -- --=[Port 445 closed... skipping.[0m
- [91m + -- --=[Port 512 closed... skipping.[0m
- [91m + -- --=[Port 513 closed... skipping.[0m
- [91m + -- --=[Port 514 closed... skipping.[0m
- [91m + -- --=[Port 993 closed... skipping.[0m
- [91m + -- --=[Port 1433 closed... skipping.[0m
- [91m + -- --=[Port 1521 closed... skipping.[0m
- [91m + -- --=[Port 3306 closed... skipping.[0m
- [91m + -- --=[Port 3389 closed... skipping.[0m
- [91m + -- --=[Port 5432 closed... skipping.[0m
- [91m + -- --=[Port 5900 closed... skipping.[0m
- [91m + -- --=[Port 5901 closed... skipping.[0m
- [91m + -- --=[Port 8000 closed... skipping.[0m
- [91m + -- --=[Port 8080 closed... skipping.[0m
- [91m + -- --=[Port 8100 closed... skipping.[0m
- [91m + -- --=[Port 6667 closed... skipping.[0m
- [92m################################### Done! ###########################################[0m
- [92m + -- ----------------------------=[Done]=------------------------------------ -- +[0m
- [91m ____ [0m
- [91m _________ / _/___ ___ _____[0m
- [91m / ___/ __ \ / // __ \/ _ \/ ___/[0m
- [91m (__ ) / / // // /_/ / __/ / [0m
- [91m /____/_/ /_/___/ .___/\___/_/ [0m
- [91m /_/ [0m
- [93m + -- --=[Current reports...[0m
- [93m + -- --=[Current workspaces...[0m
- total 12K
- drwxr-xr-x 10 root root 4,0K nov 9 20:10 default
- drwxr-xr-x 10 root root 4,0K nov 11 23:00 desktop
- drwxr-xr-x 3 root root 4,0K nov 9 15:49 usr
- [93m + -- --=[Enter a name for the workspace:[0m
- [93m + -- --=[Generating reports...[0m
- [93m + -- --=[Removing blank web screenshots...[0m
- [93m + -- --=[Starting Metasploit service...[0m
- [93m + -- --=[Importing NMap XML files into Metasploit...[0m
- [0m[36m[37m
- _---------.
- .' ####### ;."
- .---,. ;@ @@`; .---,..
- ." @@@@@'.,'@@ @@@@@',.'@@@@ ".
- '-.@@@@@@@@@@@@@ @@@@@@@@@@@@@ @;
- `.@@@@@@@@@@@@ @@@@@@@@@@@@@@ .'
- "--'.@@@ -.@ @ ,'- .'--"
- ".@' ; @ @ `. ;'
- |@@@@ @@@ @ .
- ' @@@ @@ @@ ,
- `.@@@@ @@ .
- ',@@ @ ; _____________
- ( 3 C ) /|___ / Metasploit! \
- ;@'. __*__,." \|--- \_____________/
- '(.,...."/[0m
- [0m
- =[ [33mmetasploit v4.16.21-dev[0m ]
- + -- --=[ 1705 exploits - 970 auxiliary - 299 post ]
- + -- --=[ 503 payloads - 40 encoders - 10 nops ]
- + -- --=[ Free Metasploit Pro trial: http://r-7.co/trymsp ]
- [0m[1m[34m[*][0m Added workspace: default
- [0m[1m[34m[*][0m Workspace: default
- [0m[1m[34m[*][0m Importing 'Nmap XML' data
- [1m[34m[*][0m Import: Parsing with 'Nokogiri v1.8.1'
- [1m[34m[*][0m Successfully imported /usr/share/sniper/loot/nmap/nmap-investinisrael.gov.il.xml
- [1m[34m[*][0m Importing 'Nmap XML' data
- [1m[34m[*][0m Import: Parsing with 'Nokogiri v1.8.1'
- [1m[34m[*][0m Importing host 23.38.141.104
- [1m[34m[*][0m Successfully imported /usr/share/sniper/loot/nmap/nmap-whitehouse.gov.xml
- [1m[34m[*][0m Importing 'Nmap XML' data
- [1m[34m[*][0m Import: Parsing with 'Nokogiri v1.8.1'
- [1m[34m[*][0m Importing host 34.193.244.109
- [1m[34m[*][0m Successfully imported /usr/share/sniper/loot/nmap/nmap-data.gov.xml
- [1m[34m[*][0m Importing 'Nmap XML' data
- [1m[34m[*][0m Import: Parsing with 'Nokogiri v1.8.1'
- [1m[34m[*][0m Importing host 137.200.4.16
- [1m[34m[*][0m Successfully imported /usr/share/sniper/loot/nmap/nmap-ssa.gov.xml
- [0m
- Hosts
- =====
- address mac name os_name os_flavor os_sp purpose info comments
- ------- --- ---- ------- --------- ----- ------- ---- --------
- 5.45.65.180 Unknown device
- 5.45.67.72 Unknown device
- 5.79.65.33 Unknown device
- 5.255.87.27 Unknown device
- 23.38.141.104 a23-38-141-104.deploy.static.akamaitechnologies.com Unknown device
- 34.193.244.109 ec2-34-193-244-109.compute-1.amazonaws.com Unknown device
- 46.229.163.113 Unknown device
- 46.229.174.6 Unknown device
- 51.254.238.68 ares-eam.hukot.net Linux 7.0 server
- 54.85.132.205 ec2-54-85-132-205.compute-1.amazonaws.com Unknown device
- 72.166.186.169 rt.dos.iad.qwest.net Unknown device
- 74.208.90.110 u16385664.onlinehome-server.com Unknown device
- 78.140.176.124 Unknown device
- 82.94.188.230 Unknown device
- 82.94.222.132 Unknown device
- 88.80.17.71 host-88-80-17-71.cust.prq.se Unknown device
- 94.102.48.102 server2.anonymous-hosting-service.com Linux 7.0 server
- 94.102.49.234 no-reverse-dns-configured.com Linux 8.0 server
- 94.125.167.244 nx3144.nexylan.net Unknown device
- 95.211.5.91 91.kaasserver.com Unknown device
- 95.211.239.7 Unknown device
- 95.213.224.126 Linux 14.04 server
- 96.127.141.228 sh88-477.ich-9.com Unknown device
- 104.18.48.36 104.18.48.36 Unknown device
- 104.18.49.36 104.18.49.36 Unknown device
- 104.20.44.57 Unknown device
- 104.24.98.180 104.24.98.180 Unknown device
- 104.24.99.180 104.24.99.180 Unknown device
- 104.25.189.118 104.25.189.118 Unknown device
- 104.25.190.118 104.25.190.118 Unknown device
- 104.27.146.239 104.27.146.239 Unknown device
- 104.27.147.239 104.27.147.239 Unknown device
- 104.27.148.138 104.27.148.138 Unknown device
- 104.27.149.138 104.27.149.138 Unknown device
- 104.27.154.73 104.27.154.73 Unknown device
- 104.27.155.73 104.27.155.73 Unknown device
- 104.27.159.2 Unknown device
- 104.28.16.8 104.28.16.8 Unknown device
- 104.28.16.38 104.28.16.38 Unknown device
- 104.28.17.8 104.28.17.8 Unknown device
- 104.28.17.38 104.28.17.38 Unknown device
- 104.31.74.118 Unknown device
- 104.31.78.132 104.31.78.132 Unknown device
- 104.31.79.132 104.31.79.132 Unknown device
- 104.31.92.110 104.31.92.110 Unknown device
- 104.31.93.110 104.31.93.110 Unknown device
- 104.196.229.229 229.229.196.104.bc.googleusercontent.com Unknown device
- 137.200.4.16 Unknown device
- 147.237.1.133 Unknown device
- 147.237.77.108 Unknown device
- 178.32.123.64 Linux server
- 185.17.120.155 amandatap.example.com Unknown device
- 185.82.202.39 Linux 14.04 server
- 185.112.82.253 server-185-112-82-253.creanova.org Linux 8.0 server
- 185.174.172.177 vds9691.hyperhost.name Unknown device
- 192.169.188.31 ip-192-169-188-31.ip.secureserver.net Unknown device
- 192.243.48.235 FreeBSD device
- 193.189.143.34 www.netvibes.com Unknown device
- 206.188.192.153 vux.netsolhost.com Unknown device
- 2400:cb00:2048:1::6812:3024 2400:cb00:2048:1::6812:3024 Unknown device
- 2400:cb00:2048:1::6812:3124 2400:cb00:2048:1::6812:3124 Unknown device
- 2400:cb00:2048:1::6818:62b4 2400:cb00:2048:1::6818:62b4 Unknown device
- 2400:cb00:2048:1::6818:63b4 2400:cb00:2048:1::6818:63b4 Unknown device
- 2400:cb00:2048:1::6819:bd76 2400:cb00:2048:1::6819:bd76 Unknown device
- 2400:cb00:2048:1::6819:be76 2400:cb00:2048:1::6819:be76 Unknown device
- 2400:cb00:2048:1::681b:92ef 2400:cb00:2048:1::681b:92ef Unknown device
- 2400:cb00:2048:1::681b:93ef 2400:cb00:2048:1::681b:93ef Unknown device
- 2400:cb00:2048:1::681b:948a 2400:cb00:2048:1::681b:948a Unknown device
- 2400:cb00:2048:1::681b:958a 2400:cb00:2048:1::681b:958a Unknown device
- 2400:cb00:2048:1::681b:9a49 2400:cb00:2048:1::681b:9a49 Unknown device
- 2400:cb00:2048:1::681b:9b49 2400:cb00:2048:1::681b:9b49 Unknown device
- 2400:cb00:2048:1::681c:1008 2400:cb00:2048:1::681c:1008 Unknown device
- 2400:cb00:2048:1::681c:1026 2400:cb00:2048:1::681c:1026 Unknown device
- 2400:cb00:2048:1::681c:1108 2400:cb00:2048:1::681c:1108 Unknown device
- 2400:cb00:2048:1::681c:1126 2400:cb00:2048:1::681c:1126 Unknown device
- 2400:cb00:2048:1::681f:4e84 2400:cb00:2048:1::681f:4e84 Unknown device
- 2400:cb00:2048:1::681f:4f84 2400:cb00:2048:1::681f:4f84 Unknown device
- 2400:cb00:2048:1::681f:5c6e 2400:cb00:2048:1::681f:5c6e Unknown device
- 2400:cb00:2048:1::681f:5d6e 2400:cb00:2048:1::681f:5d6e Unknown device
- [0m
- Services
- ========
- host port proto name state info
- ---- ---- ----- ---- ----- ----
- 5.45.65.180 21 tcp ftp open
- 5.45.65.180 22 tcp ssh open SSH-2.0-OpenSSH_6.6
- 5.45.65.180 80 tcp http open
- 5.45.65.180 1723 tcp pptp open
- 5.45.65.180 3306 tcp mysql open
- 5.45.65.180 8000 tcp http-alt open
- 5.45.65.180 10000 tcp snet-sensor-mgmt open
- 5.45.67.72 22 tcp ssh open
- 5.79.65.33 53 tcp domain open
- 5.79.65.33 80 tcp http open
- 5.79.65.33 111 tcp rpcbind open
- 5.79.65.33 443 tcp https open
- 5.79.65.33 3306 tcp mysql open
- 5.255.87.27 22 tcp ssh open SSH-2.0-OpenSSH_5.3
- 23.38.141.104 80 tcp http open
- 23.38.141.104 443 tcp https open
- 34.193.244.109 80 tcp http open
- 34.193.244.109 443 tcp https open
- 46.229.163.113 21 tcp ftp open
- 46.229.163.113 22 tcp ssh open SSH-2.0-OpenSSH_5.5
- 46.229.163.113 53 tcp domain open
- 46.229.163.113 80 tcp http open
- 46.229.163.113 110 tcp pop3 open
- 46.229.163.113 111 tcp rpcbind open
- 46.229.163.113 143 tcp imap open
- 46.229.163.113 222 tcp rsh-spx open
- 46.229.163.113 993 tcp imaps open
- 46.229.163.113 995 tcp pop3s open
- 46.229.163.113 8080 tcp http-proxy open
- 46.229.174.6 222 tcp rsh-spx open
- 51.254.238.68 21 tcp ftp open
- 51.254.238.68 22 tcp ssh open SSH-2.0-OpenSSH_6.0p1 Debian-4+deb7u6
- 51.254.238.68 53 tcp domain open
- 51.254.238.68 80 tcp http open
- 51.254.238.68 443 tcp https open
- 51.254.238.68 5666 tcp nrpe open
- 54.85.132.205 80 tcp http open
- 54.85.132.205 443 tcp https open
- 72.166.186.169 80 tcp http open
- 72.166.186.169 443 tcp https open
- 72.166.186.169 8008 tcp http open
- 74.208.90.110 21 tcp ftp open
- 74.208.90.110 22 tcp ssh open SSH-2.0-OpenSSH_5.3
- 74.208.90.110 53 tcp domain open
- 74.208.90.110 80 tcp http open
- 74.208.90.110 110 tcp pop3 open
- 74.208.90.110 143 tcp imap open
- 74.208.90.110 443 tcp https open
- 74.208.90.110 993 tcp imaps open
- 74.208.90.110 995 tcp pop3s open
- 74.208.90.110 8443 tcp https-alt open
- 74.208.90.110 8880 tcp cddbp-alt open
- 78.140.176.124 21 tcp ftp open
- 78.140.176.124 80 tcp http open
- 78.140.176.124 110 tcp pop3 open
- 78.140.176.124 873 tcp rsync open
- 78.140.176.124 5666 tcp nrpe open
- 82.94.188.230 80 tcp http open
- 82.94.188.230 443 tcp https open
- 82.94.222.132 80 tcp http open
- 82.94.222.132 443 tcp https open
- 82.94.222.132 993 tcp imaps open
- 82.94.222.132 995 tcp pop3s open
- 88.80.17.71 80 tcp http open
- 88.80.17.71 443 tcp https open
- 88.80.17.71 993 tcp imaps open
- 88.80.17.71 995 tcp pop3s open
- 88.80.17.71 8080 tcp http-proxy open
- 88.80.17.71 32022 tcp unknown open
- 94.102.48.102 21 tcp ftp open
- 94.102.48.102 22 tcp ssh open SSH-2.0-OpenSSH_6.0p1 Debian-4+deb7u6
- 94.102.48.102 53 tcp domain open
- 94.102.48.102 80 tcp http open
- 94.102.48.102 111 tcp rpcbind open
- 94.102.49.234 21 tcp ftp open
- 94.102.49.234 22 tcp ssh open SSH-2.0-OpenSSH_5.1p1 Debian-5
- 94.102.49.234 80 tcp http open
- 94.102.49.234 111 tcp rpcbind open
- 94.102.49.234 222 tcp rsh-spx open
- 94.102.49.234 3306 tcp mysql open
- 94.102.49.234 10050 tcp zabbix-agent open
- 94.125.167.244 21 tcp ftp open
- 94.125.167.244 53 tcp domain open
- 94.125.167.244 80 tcp http open
- 94.125.167.244 110 tcp pop3 open
- 94.125.167.244 143 tcp imap open
- 94.125.167.244 443 tcp https open
- 94.125.167.244 2121 tcp ccproxy-ftp open
- 95.211.5.91 80 tcp http open
- 95.211.239.7 22 tcp ssh open SSH-2.0-OpenSSH_5.3
- 95.213.224.126 22 tcp ssh open SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.8
- 95.213.224.126 80 tcp http open
- 96.127.141.228 21 tcp ftp open
- 96.127.141.228 53 tcp domain open
- 96.127.141.228 80 tcp http open
- 96.127.141.228 110 tcp pop3 open
- 96.127.141.228 111 tcp rpcbind open
- 96.127.141.228 143 tcp imap open
- 96.127.141.228 443 tcp https open
- 96.127.141.228 993 tcp imaps open
- 96.127.141.228 995 tcp pop3s open
- 96.127.141.228 1035 tcp multidropper open
- 96.127.141.228 3306 tcp mysql open
- 104.18.48.36 80 tcp http open
- 104.18.48.36 443 tcp https open
- 104.18.48.36 8080 tcp http-proxy open cloudflare-nginx ( 403-Forbidden )
- 104.18.48.36 8443 tcp https-alt open
- 104.18.48.36 8880 tcp cddbp-alt open
- 104.18.49.36 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.20.44.57 80 tcp http open
- 104.20.44.57 443 tcp https open
- 104.20.44.57 8080 tcp http-proxy open
- 104.20.44.57 8443 tcp https-alt open
- 104.20.44.57 8880 tcp cddbp-alt open
- 104.24.98.180 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.24.99.180 80 tcp http open
- 104.24.99.180 443 tcp https open
- 104.24.99.180 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.24.99.180 8443 tcp https-alt open
- 104.24.99.180 8880 tcp cddbp-alt open
- 104.25.189.118 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.25.190.118 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.27.146.239 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.27.147.239 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.27.148.138 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.27.149.138 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.27.149.138 8443 tcp https-alt open
- 104.27.149.138 8880 tcp cddbp-alt open
- 104.27.154.73 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.27.155.73 80 tcp http open
- 104.27.155.73 443 tcp https open
- 104.27.155.73 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.27.155.73 8443 tcp https-alt open
- 104.27.155.73 8880 tcp cddbp-alt open
- 104.27.159.2 80 tcp http open
- 104.27.159.2 443 tcp https open
- 104.27.159.2 8080 tcp http-proxy open
- 104.27.159.2 8443 tcp https-alt open
- 104.27.159.2 8880 tcp cddbp-alt open
- 104.28.16.8 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.28.16.38 80 tcp http open
- 104.28.16.38 443 tcp https open
- 104.28.16.38 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.28.16.38 8443 tcp https-alt open
- 104.28.16.38 8880 tcp cddbp-alt open
- 104.28.17.8 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.28.17.38 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.31.74.118 80 tcp http open
- 104.31.74.118 443 tcp https open
- 104.31.74.118 8080 tcp http-proxy open
- 104.31.74.118 8443 tcp https-alt open
- 104.31.74.118 8880 tcp cddbp-alt open
- 104.31.78.132 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.31.79.132 80 tcp http open
- 104.31.79.132 443 tcp https open
- 104.31.79.132 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.31.79.132 8443 tcp https-alt open
- 104.31.79.132 8880 tcp cddbp-alt open
- 104.31.92.110 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.31.93.110 80 tcp http open
- 104.31.93.110 443 tcp https open
- 104.31.93.110 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 104.31.93.110 8443 tcp https-alt open
- 104.31.93.110 8880 tcp cddbp-alt open
- 104.196.229.229 80 tcp http open
- 104.196.229.229 443 tcp https open
- 104.196.229.229 2222 tcp ethernetip-1 open
- 137.200.4.16 80 tcp http open
- 137.200.4.16 443 tcp https open
- 147.237.1.133 80 tcp http open
- 147.237.77.108 80 tcp http open
- 178.32.123.64 22 tcp ssh open SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.2
- 185.17.120.155 22 tcp ssh open SSH-2.0-OpenSSH_7.4
- 185.17.120.155 80 tcp http open
- 185.82.202.39 22 tcp ssh open SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2
- 185.82.202.39 80 tcp http open
- 185.112.82.253 22 tcp ssh open SSH-2.0-OpenSSH_6.7p1 Debian-5+deb8u3
- 185.112.82.253 53 tcp domain open
- 185.112.82.253 80 tcp http open
- 185.112.82.253 111 tcp rpcbind open
- 185.112.82.253 443 tcp https open
- 185.112.82.253 8333 tcp bitcoin open
- 185.174.172.177 22 tcp ssh open SSH-2.0-OpenSSH_7.4
- 185.174.172.177 80 tcp http open
- 192.169.188.31 53 tcp domain open
- 192.169.188.31 80 tcp http open
- 192.169.188.31 443 tcp https open
- 192.169.188.31 993 tcp imaps open
- 192.243.48.235 21 tcp ftp open
- 192.243.48.235 22 tcp ssh open SSH-2.0-OpenSSH_5.8p2_hpn13v11 FreeBSD-20110503
- 192.243.48.235 80 tcp http open
- 192.243.48.235 222 tcp rsh-spx open
- 193.189.143.34 80 tcp http open
- 193.189.143.34 443 tcp https open
- 206.188.192.153 21 tcp ftp open
- 206.188.192.153 22 tcp ssh open
- 206.188.192.153 80 tcp http open
- 206.188.192.153 443 tcp https open
- 2400:cb00:2048:1::6812:3024 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::6812:3124 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::6818:62b4 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::6818:63b4 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::6819:bd76 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::6819:be76 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681b:92ef 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681b:93ef 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681b:948a 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681b:958a 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681b:9a49 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681b:9b49 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681c:1008 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681c:1026 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681c:1108 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681c:1126 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681f:4e84 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681f:4f84 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681f:5c6e 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- 2400:cb00:2048:1::681f:5d6e 8080 tcp http open cloudflare-nginx ( 403-Forbidden )
- #######################################################################################################################################
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement