Anonymous #OpNicaragua JTSEC Full Recon #21

1. #######################################################################################################################################
2. Nom de l'hôte www.snip.gob.ni FAI Telgua
3. Continent Amérique du Nord Drapeau
4. NI
5. Pays Nicaragua Code du pays NI
6. Région Departamento de Managua Heure locale 20 Sep 2018 21:04 CST
7. Ville Managua Code Postal Inconnu
8. Adresse IP 190.212.238.36 Latitude 12.151
9. Longitude -86.268
10. #######################################################################################################################################
11. HostIP:190.212.238.36
12. HostName:snip.gob.ni
13.  
14. Gathered Inet-whois information for 190.212.238.36
15. ---------------------------------------------------------------------------------------------------------------------------------------
16.  
17.  
18. Gathered Inic-whois information for snip.gob.ni
19. ---------------------------------
20. Error: Unable to connect - Invalid Host
21. ERROR: Connection to InicWhois Server ni.whois-servers.net failed
22. close error
23.  
24. Gathered Netcraft information for snip.gob.ni
25. ---------------------------------------------------------------------------------------------------------------------------------------
26.  
27. Retrieving Netcraft.com information for snip.gob.ni
28. Netcraft.com Information gathered
29.  
30. Gathered Subdomain information for snip.gob.ni
31. ---------------------------------------------------------------------------------------------------------------------------------------
32. Searching Google.com:80...
33. Searching Altavista.com:80...
34. Found 0 possible subdomain(s) for host snip.gob.ni, Searched 0 pages containing 0 results
35.  
36. Gathered E-Mail information for snip.gob.ni
37. ---------------------------------------------------------------------------------------------------------------------------------------
38. Searching Google.com:80...
39. Searching Altavista.com:80...
40. Found 0 E-Mail(s) for host snip.gob.ni, Searched 0 pages containing 0 results
41.  
42. Gathered TCP Port information for 190.212.238.36
43. ---------------------------------------------------------------------------------------------------------------------------------------
44.  
45. Port State
46.  
47.  
48. Portscan Finished: Scanned 150 ports, 1 ports were in state closed
49.  
50. #######################################################################################################################################
51. [i] Scanning Site: http://snip.gob.ni
52.  
53.  
54.  
55. B A S I C I N F O
56. =======================================================================================================================================
57.  
58.  
59. [+] Site Title: SNIP - Sistema Nacional de Inversiones Públicas
60. [+] IP address: 190.212.238.36
61. [+] Web Server: Microsoft-IIS/8.5
62. [+] CMS: Could Not Detect
63. [+] Cloudflare: Not Detected
64. [+] Robots File: Could NOT Find robots.txt!
65.  
66.  
67.  
68. G E O I P L O O K U P
69. =======================================================================================================================================
70.  
71. [i] IP Address: 190.212.238.36
72. [i] Country: NI
73. [i] State: Managua
74. [i] City: Managua
75. [i] Latitude: 12.150800
76. [i] Longitude: -86.268303
77.  
78.  
79.  
80.  
81. H T T P H E A D E R S
82. =======================================================================================================================================
83.  
84.  
85. [i] HTTP/1.1 200 OK
86. [i] Content-Type: text/html
87. [i] Last-Modified: Mon, 13 Aug 2018 17:37:24 GMT
88. [i] Accept-Ranges: bytes
89. [i] ETag: "8fbeb04b2c33d41:0"
90. [i] Server: Microsoft-IIS/8.5
91. [i] X-Powered-By: ASP.NET
92. [i] Date: Fri, 21 Sep 2018 03:12:10 GMT
93. [i] Connection: close
94. [i] Content-Length: 28176
95.  
96.  
97.  
98.  
99. D N S L O O K U P
100. ========================================================================================================================================
101.  
102. ;; Truncated, retrying in TCP mode.
103. snip.gob.ni. 28799 IN NS ns.enitel.net.ni.
104. snip.gob.ni. 28799 IN NS ns2.enitel.net.ni.
105.  
106.  
107.  
108.  
109. S U B N E T C A L C U L A T I O N
110. =======================================================================================================================================
111.  
112. Address = 190.212.238.36
113. Network = 190.212.238.36 / 32
114. Netmask = 255.255.255.255
115. Broadcast = not needed on Point-to-Point links
116. Wildcard Mask = 0.0.0.0
117. Hosts Bits = 0
118. Max. Hosts = 1 (2^0 - 0)
119. Host Range = { 190.212.238.36 - 190.212.238.36 }
120.  
121.  
122.  
123. N M A P P O R T S C A N
124. =======================================================================================================================================
125.  
126.  
127. Starting Nmap 7.40 ( https://nmap.org ) at 2018-09-21 03:13 UTC
128. Nmap scan report for snip.gob.ni (190.212.238.36)
129. Host is up (0.071s latency).
130. rDNS record for 190.212.238.36: www.snip.gob.ni
131. PORT STATE SERVICE
132. 21/tcp filtered ftp
133. 22/tcp filtered ssh
134. 23/tcp filtered telnet
135. 80/tcp open http
136. 110/tcp filtered pop3
137. 143/tcp filtered imap
138. 443/tcp filtered https
139. 3389/tcp filtered ms-wbt-server
140.  
141. Nmap done: 1 IP address (1 host up) scanned in 2.72 seconds
142.  
143.  
144.  
145. S U B - D O M A I N F I N D E R
146. =======================================================================================================================================
147.  
148.  
149. [i] Total Subdomains Found : 2
150.  
151. [+] Subdomain: ws.snip.gob.ni
152. [-] IP: 190.212.238.35
153.  
154. [+] Subdomain: www.snip.gob.ni
155. [-] IP: 190.212.238.36
156.  
157. #######################################################################################################################################
158. [?] Enter the target: http://www.snip.gob.ni/
159. [!] IP Address : 190.212.238.36
160. [!] Server: Microsoft-IIS/8.5
161. [!] Powered By: ASP.NET
162. [+] Clickjacking protection is not in place.
163. [+] Operating System : Windows
164. [!] www.snip.gob.ni doesn't seem to use a CMS
165. [+] Honeypot Probabilty: 0%
166. ---------------------------------------------------------------------------------------------------------------------------------------
167. [~] Trying to gather whois information for www.snip.gob.ni
168. [+] Whois information found
169. [-] Unable to build response, visit https://who.is/whois/www.snip.gob.ni
170. ---------------------------------------------------------------------------------------------------------------------------------------
171. PORT STATE SERVICE
172. 21/tcp filtered ftp
173. 22/tcp filtered ssh
174. 23/tcp filtered telnet
175. 80/tcp open http
176. 110/tcp filtered pop3
177. 143/tcp filtered imap
178. 443/tcp filtered https
179. 3389/tcp filtered ms-wbt-server
180. Nmap done: 1 IP address (1 host up) scanned in 2.08 seconds
181. ---------------------------------------------------------------------------------------------------------------------------------------
182. #######################################################################################################################################
183. [+] Hosting Info for Website: snip.gob.ni
184. [+] Visitors per day: < 200
185. [+] IP Address: ...
186. [+] Hosting Company IP Owner: Telematix/ Enitel
187. [+] Hosting IP Range: 190.212.128.0 - 190.212.255.255 (32,768 ip)
188. [+] Owner Address: Enitel Las Palmas, Del Banco Popular 3C Al Este, n/a, n/a, Ni - Managua
189. [+] Owner Country: NIC
190. , +505 2502424ne: +505 2502424 []
191. [+] Owner Website: www.claro.com.ni
192. [+] Owner CIDR: 190.212.128.0/17
193.  
194. [+] NS: ns2.enitel.net.ni
195. [+] NS: ns.enitel.net.ni
196. #######################################################################################################################################
197. Start: 2018-09-21T03:27:47+0000
198. HOST: web01 Loss% Snt Last Avg Best Wrst StDev
199. 1.|-- 45.79.12.201 0.0% 3 1.3 1.0 0.8 1.3 0.3
200. 2.|-- 45.79.12.4 0.0% 3 0.5 0.9 0.5 1.7 0.7
201. 3.|-- ae8-21.cr6-dal3.ip4.gtt.net 0.0% 3 1.2 1.0 1.0 1.2 0.1
202. 4.|-- xe-0-3-1.cr0-mia1.ip4.gtt.net 0.0% 3 30.4 30.2 30.0 30.4 0.2
203. 5.|-- ip4.gtt.net 0.0% 3 68.9 68.5 67.4 69.1 0.9
204. 6.|-- ??? 100.0 3 0.0 0.0 0.0 0.0 0.0
205.  
206. #######################################################################################################################################
207. [*] Performing General Enumeration of Domain: snip.gob.ni
208. [-] DNSSEC is not configured for snip.gob.ni
209. [*] SOA ns2.enitel.net.ni 200.62.64.65
210. [*] NS ns2.enitel.net.ni 200.62.64.65
211. [*] NS ns.enitel.net.ni 200.62.64.1
212. [*] MX mail.snip.gob.ni 190.212.238.34
213. [*] A snip.gob.ni 190.212.238.36
214. [*] TXT snip.gob.ni v=spf1 mx a ip4:190.212.238.34 a:mail.snip.gob.ni ~all
215. [*] Enumerating SRV Records
216. [-] No SRV Records Found for snip.gob.ni
217. [+] 0 Records Found
218. #######################################################################################################################################
219. [*] Processing domain snip.gob.ni
220. [+] Getting nameservers
221. 200.62.64.1 - ns.enitel.net.ni
222. 200.62.64.65 - ns2.enitel.net.ni
223. [-] Zone transfer failed
224.  
225. [+] TXT records found
226. "v=spf1 mx a ip4:190.212.238.34 a:mail.snip.gob.ni ~all"
227.  
228. [+] MX records found, added to target list
229. 0 mail.snip.gob.ni.
230.  
231. [*] Scanning snip.gob.ni for A records
232. 190.212.238.36 - snip.gob.ni
233. 190.212.238.34 - mail.snip.gob.ni
234. 190.212.238.35 - ws.snip.gob.ni
235. 190.212.238.36 - www.snip.gob.ni
236. #######################################################################################################################################
237. Ip Address Status Type Domain Name Server
238. ---------- ------ ---- ----------- ------
239. 190.212.238.34 200 host mail.snip.gob.ni Microsoft-IIS/7.5
240. 190.212.238.35 200 host ws.snip.gob.ni Microsoft-IIS/7.0
241. 190.212.238.36 200 host www.snip.gob.ni Microsoft-IIS/8.5
242. #######################################################################################################################################
243. dnsenum VERSION:1.2.4
244.  
245. ----- snip.gob.ni -----
246.  
247.  
248. Host's addresses:
249. __________________
250.  
251. snip.gob.ni. 86345 IN A 190.212.238.36
252.  
253.  
254. Name Servers:
255. ______________
256.  
257. ns.enitel.net.ni. 33121 IN A 200.62.64.1
258. ns2.enitel.net.ni. 42547 IN A 200.62.64.65
259.  
260.  
261. Mail (MX) Servers:
262. ___________________
263.  
264. mail.snip.gob.ni. 85757 IN A 190.212.238.34
265.  
266.  
267. Trying Zone Transfers and getting Bind Versions:
268. _________________________________________________
269.  
270.  
271. Trying Zone Transfer for snip.gob.ni on ns.enitel.net.ni ...
272.  
273. Trying Zone Transfer for snip.gob.ni on ns2.enitel.net.ni ...
274.  
275. brute force file not specified, bay.
276. #######################################################################################################################################
277. [-] Enumerating subdomains now for snip.gob.ni
278. [-] verbosity is enabled, will show the subdomains results in realtime
279. [-] Searching now in Baidu..
280. [-] Searching now in Yahoo..
281. [-] Searching now in Google..
282. [-] Searching now in Bing..
283. [-] Searching now in Ask..
284. [-] Searching now in Netcraft..
285. [-] Searching now in DNSdumpster..
286. [-] Searching now in Virustotal..
287. [-] Searching now in ThreatCrowd..
288. [-] Searching now in SSL Certificates..
289. [-] Searching now in PassiveDNS..
290. PassiveDNS: mail.snip.gob.ni
291. PassiveDNS: mailmx.snip.gob.ni
292. PassiveDNS: ws.snip.gob.ni
293. PassiveDNS: www.snip.gob.ni
294. Virustotal: www.snip.gob.ni
295. Virustotal: ws.snip.gob.ni
296. Virustotal: mail.snip.gob.ni
297. Yahoo: www.snip.gob.ni
298. Yahoo: ws.snip.gob.ni
299. DNSdumpster: mail.snip.gob.ni
300. DNSdumpster: ws.snip.gob.ni
301. DNSdumpster: www.snip.gob.ni
302. Google: ws.snip.gob.ni
303. [-] Saving results to file: /usr/share/sniper/loot/snip.gob.ni/domains/domains-snip.gob.ni.txt
304. [-] Total Unique Subdomains Found: 4
305. www.snip.gob.ni
306. mail.snip.gob.ni
307. mailmx.snip.gob.ni
308. ws.snip.gob.ni
309. #######################################################################################################################################
310. [*] Found SPF record:
311. [*] v=spf1 mx a ip4:190.212.238.34 a:mail.snip.gob.ni ~all
312. [*] SPF record contains an All item: ~all
313. [*] No DMARC record found. Looking for organizational record
314. [+] No organizational DMARC record
315. [+] Spoofing possible for snip.gob.ni!
316. #######################################################################################################################################
317. __
318. ____ _____ ___ ______ _/ /_____ ____ ___
319. / __ `/ __ `/ / / / __ `/ __/ __ \/ __ \/ _ \
320. / /_/ / /_/ / /_/ / /_/ / /_/ /_/ / / / / __/
321. \__,_/\__, /\__,_/\__,_/\__/\____/_/ /_/\___/
322. /_/ discover v0.5.0 - by @michenriksen
323.  
324. Identifying nameservers for snip.gob.ni... Done
325. Using nameservers:
326.  
327. - 200.62.64.1
328. - 200.62.64.65
329.  
330. Checking for wildcard DNS... Done
331.  
332. Running collector: PassiveTotal... Skipped
333. -> Key 'passivetotal_key' has not been set
334. Running collector: PTRArchive... Error
335. -> PTRArchive returned unexpected response code: 404
336. Running collector: Dictionary... Done (27 hosts)
337. Running collector: Wayback Machine... Done (6 hosts)
338. Running collector: Netcraft... Done (0 hosts)
339. Running collector: Threat Crowd... Done (0 hosts)
340. Running collector: Certificate Search... Done (0 hosts)
341. Running collector: Google Transparency Report... Done (0 hosts)
342. Running collector: VirusTotal... Skipped
343. -> Key 'virustotal' has not been set
344. Running collector: Riddler... Skipped
345. -> Key 'riddler_username' has not been set
346. Running collector: DNSDB... Error
347. -> DNSDB returned unexpected response code: 503
348. Running collector: Censys... Skipped
349. -> Key 'censys_secret' has not been set
350. Running collector: HackerTarget... Done (3 hosts)
351. Running collector: PublicWWW... Done (0 hosts)
352. Running collector: Shodan... Skipped
353. -> Key 'shodan' has not been set
354.  
355. Resolving 33 unique hosts...
356. 190.212.238.36 .snip.gob.ni
357. 190.212.238.34 mail.snip.gob.ni
358. 190.212.238.36 snip.gob.ni
359. 190.212.238.35 ws.snip.gob.ni
360. 190.212.238.36 www.snip.gob.ni
361.  
362. Found subnets:
363.  
364. - 190.212.238.0-255 : 5 hosts
365.  
366. Wrote 5 hosts to:
367.  
368. - file:///root/aquatone/snip.gob.ni/hosts.txt
369. - file:///root/aquatone/snip.gob.ni/hosts.json
370. __
371. ____ _____ ___ ______ _/ /_____ ____ ___
372. / __ `/ __ `/ / / / __ `/ __/ __ \/ __ \/ _ \
373. / /_/ / /_/ / /_/ / /_/ / /_/ /_/ / / / / __/
374. \__,_/\__, /\__,_/\__,_/\__/\____/_/ /_/\___/
375. /_/ takeover v0.5.0 - by @michenriksen
376.  
377. Loaded 5 hosts from /root/aquatone/snip.gob.ni/hosts.json
378. Loaded 25 domain takeover detectors
379.  
380. Identifying nameservers for snip.gob.ni... Done
381. Using nameservers:
382.  
383. - 200.62.64.1
384. - 200.62.64.65
385.  
386. Checking hosts for domain takeover vulnerabilities...
387.  
388. Finished checking hosts:
389.  
390. - Vulnerable : 0
391. - Not Vulnerable : 5
392.  
393. Wrote 0 potential subdomain takeovers to:
394.  
395. - file:///root/aquatone/snip.gob.ni/takeovers.json
396.  
397. __
398. ____ _____ ___ ______ _/ /_____ ____ ___
399. / __ `/ __ `/ / / / __ `/ __/ __ \/ __ \/ _ \
400. / /_/ / /_/ / /_/ / /_/ / /_/ /_/ / / / / __/
401. \__,_/\__, /\__,_/\__,_/\__/\____/_/ /_/\___/
402. /_/ scan v0.5.0 - by @michenriksen
403.  
404. Loaded 5 hosts from /root/aquatone/snip.gob.ni/hosts.json
405.  
406. Probing 6 ports...
407.  
408. Wrote open ports to file:///root/aquatone/snip.gob.ni/open_ports.txt
409. Wrote URLs to file:///root/aquatone/snip.gob.ni/urls.txt
410. __
411. ____ _____ ___ ______ _/ /_____ ____ ___
412. / __ `/ __ `/ / / / __ `/ __/ __ \/ __ \/ _ \
413. / /_/ / /_/ / /_/ / /_/ / /_/ /_/ / / / / __/
414. \__,_/\__, /\__,_/\__,_/\__/\____/_/ /_/\___/
415. /_/ gather v0.5.0 - by @michenriksen
416.  
417. Processing 0 pages...
418.  
419. Finished processing pages:
420.  
421. - Successful : 0
422. - Failed : 0
423.  
424. Generating report...done
425. Report pages generated:
426. #######################################################################################################################################
427.  
428. --------------------------------------------------------------------------------------------------------------------------------------
429.  
430. Total hosts: 8
431.  
432. [-] Resolving hostnames IPs...
433.  
434. .snip.gob.ni : empty
435. mail.snip.gob.ni : 190.212.238.34
436. ws.snip.gob.ni : 190.212.238.35
437. wwW.snip.gob.ni : 190.212.238.36
438. www.snip.gob.ni : 190.212.238.36
439.  
440. [2/25] http://www.snip.gob.ni/docs/leyes/ley550.pdf
441. [3/25] http://www.snip.gob.ni/Docs/capacitaciones/tallerInter/Nic_ServiciosEcosistemicos.pdf
442. [x] Error in the parsing process
443. [4/25] http://ws.snip.gob.ni/docs/files/ManualProcedimientos.pdf
444. [5/25] http://www.snip.gob.ni/Docs/metodologias/MetodologiaEnergia.pdf
445. [6/25] http://www.snip.gob.ni/xdc/agile/TheNewXP.pdf
446. [x] Error in the parsing process
447. [7/25] http://www.snip.gob.ni/Docs/guias/guia.pdf
448. [8/25] http://www.snip.gob.ni/Docs/precios/TasaSocialdeDescuento.pdf
449. [9/25] http://www.snip.gob.ni/Docs/formulacion/Formulaci%25C3%25B3nPIP2019_MPMP.pdf
450. [x] Error in the parsing process
451. [10/25] http://www.snip.gob.ni/Xdc/SQL/Supervision_del_rendimiento.pdf
452. [x] Error in the parsing process
453. [11/25] http://www.snip.gob.ni/Docs/precios/ManodeObraCalificadayNoCalificada.pdf
454. [12/25] http://www.snip.gob.ni/Docs/precios/TipodeCambioSocial.pdf
455. [13/25] http://www.snip.gob.ni/Docs/guias/GuiaObrasRRD.pdf
456. [14/25] http://www.snip.gob.ni/Docs/precios/Normativa.pdf
457. [15/25] http://www.snip.gob.ni/Docs/guias/GuiaTdRAP.pdf
458. [16/25] http://www.snip.gob.ni/Docs/leyes/Ley935.pdf
459. [17/25] http://www.snip.gob.ni/Docs/metodologias/MetodologiaVial.pdf
460. [18/25] http://www.snip.gob.ni/Docs/leyes/DecretoCreacionSNIP.pdf
461. [19/25] http://www.snip.gob.ni/Docs/guias/MetodologiaCambioClimaticoProductivo.pdf
462. [20/25] http://ws.snip.gob.ni/preinversion/ProyectoMHCP.pdf
463. [21/25] http://www.snip.gob.ni/Docs/metodologias/MetodologiaGeneral.pdf
464. [22/25] http://www.snip.gob.ni/Docs/guias/MetodologiaCambioClimaticoEnergetico.pdf
465. [23/25] http://www.snip.gob.ni/Docs/leyes/DecretoFuncionSNIP.pdf
466. [24/25] http://ws.snip.gob.ni/preinversion/Programa.pdf
467. [25/25] http://www.snip.gob.ni/Docs/metodologias/MetodologiaAgua.pdf
468. #######################################################################################################################################
469. [+] List of users found:
470. ---------------------------------------------------------------------------------------------------------------------------------------
471. Mfonseca
472. jdiaz
473. Jaime
474. jaime ARTIGAS
475. Osmar Cuadra Baca
476. Cuenta Microsoft
477. Utente
478. Wendollin Pereira Tercero
479. rvega
480. #######################################################################################################################################
481. [+] List of software found:
482. ---------------------------------------------------------------------------------------------------------------------------------------
483. Acrobat Distiller 5.0 (Windows)
484. PScript5.dll Version 5.2.2
485. Acrobat Distiller 5.0.5 (Windows)
486. PScript5.dll Version 5.2
487. Adobe Acrobat 6.0
488. Adobe PDF Library 10.0.1
489. Adobe InDesign CC (Windows)
490. ��Microsoft� Word 2010
491. Adobe PDF Library 15.0
492. Adobe InDesign CC 2015 (Macintosh)
493. Acrobat PDFMaker 15 para Word
494. Microsoft� Word 2010
495. ��Microsoft� Office Word 2007
496. ��Microsoft� Word 2013
497. Adobe InDesign CC (Macintosh)
498. #######################################################################################################################################
499. Starting Nmap 7.70 ( https://nmap.org ) at 2018-09-20 23:32 EDT
500. Nmap scan report for snip.gob.ni (190.212.238.36)
501. Host is up (0.87s latency).
502. rDNS record for 190.212.238.36: www.snip.gob.ni
503. Not shown: 449 closed ports, 25 filtered ports
504. Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
505. PORT STATE SERVICE
506. 80/tcp open http
507. 85/tcp open mit-ml-dev
508. #######################################################################################################################################
509. Starting Nmap 7.70 ( https://nmap.org ) at 2018-09-20 23:32 EDT
510. Nmap scan report for snip.gob.ni (190.212.238.36)
511. Host is up.
512. rDNS record for 190.212.238.36: www.snip.gob.ni
513.  
514. PORT STATE SERVICE
515. 53/udp open|filtered domain
516. 67/udp open|filtered dhcps
517. 68/udp open|filtered dhcpc
518. 69/udp open|filtered tftp
519. 88/udp open|filtered kerberos-sec
520. 123/udp open|filtered ntp
521. 137/udp open|filtered netbios-ns
522. 138/udp open|filtered netbios-dgm
523. 139/udp open|filtered netbios-ssn
524. 161/udp open|filtered snmp
525. 162/udp open|filtered snmptrap
526. 389/udp open|filtered ldap
527. 520/udp open|filtered route
528. 2049/udp open|filtered nfs
529. #######################################################################################################################################
530. ERROR:root:Site http://snip.gob.ni appears to be down
531.  
532. ^ ^
533. _ __ _ ____ _ __ _ _ ____
534. ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
535. | V V // o // _/ | V V // 0 // 0 // _/
536. |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
537. <
538. ...'
539.  
540. WAFW00F - Web Application Firewall Detection Tool
541.  
542. By Sandro Gauci && Wendel G. Henrique
543.  
544. Checking http://snip.gob.ni
545. #######################################################################################################################################
546. ---------------------------------------------------------------------------------------------------------------------------------------
547.  
548. [ ! ] Starting SCANNER INURLBR 2.1 at [20-09-2018 23:34:07]
549. [ ! ] legal disclaimer: Usage of INURLBR for attacking targets without prior mutual consent is illegal.
550. It is the end user's responsibility to obey all applicable local, state and federal laws.
551. Developers assume no liability and are not responsible for any misuse or damage caused by this program
552.  
553. [ INFO ][ OUTPUT FILE ]:: [ /usr/share/sniper/output/inurlbr-snip.gob.ni.txt ]
554. [ INFO ][ DORK ]::[ site:snip.gob.ni ]
555. [ INFO ][ SEARCHING ]:: {
556. [ INFO ][ ENGINE ]::[ GOOGLE - www.google.mk ]
557.  
558. [ INFO ][ SEARCHING ]::
559. -[:::]
560. [ INFO ][ ENGINE ]::[ GOOGLE API ]
561.  
562. [ INFO ][ SEARCHING ]::
563. -[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]
564. [ INFO ][ ENGINE ]::[ GOOGLE_GENERIC_RANDOM - www.google.com.tn ID: 012984904789461885316:oy3-mu17hxk ]
565.  
566. [ INFO ][ SEARCHING ]::
567. -[:::]-[:::]-[:::]-[:::]-[:::]-[:::]
568.  
569. [ INFO ][ TOTAL FOUND VALUES ]:: [ 100 ]
570.  
571.  
572. _[ - ]::--------------------------------------------------------------------------------------------------------------
573. |_[ + ] [ 0 / 100 ]-[23:34:30] [ - ]
574. |_[ + ] Target:: [ http://www.snip.gob.ni/ ]
575. |_[ + ] Exploit::
576. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
577. |_[ + ] More details:: / - / , ISP:
578. |_[ + ] Found:: UNIDENTIFIED
579.  
580. _[ - ]::--------------------------------------------------------------------------------------------------------------
581. |_[ + ] [ 1 / 100 ]-[23:34:33] [ - ]
582. |_[ + ] Target:: [ http://ws.snip.gob.ni/ ]
583. |_[ + ] Exploit::
584. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
585. |_[ + ] More details:: / - / , ISP:
586. |_[ + ] Found:: UNIDENTIFIED
587.  
588. _[ - ]::--------------------------------------------------------------------------------------------------------------
589. |_[ + ] [ 2 / 100 ]-[23:34:37] [ ! ]
590. |_[ + ] Target:: [ ( POTENTIALLY VULNERABLE ) http://www.snip.gob.ni/docs/leyes/ley550.pdf ]
591. |_[ + ] Exploit::
592. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
593. |_[ + ] More details:: / - / , ISP:
594. |_[ + ] Found:: POSTGRESQL-06 - VALUE: pg_
595. |_[ + ] VALUE SAVED IN THE FILE:: inurlbr-snip.gob.ni.txt
596.  
597. _[ - ]::--------------------------------------------------------------------------------------------------------------
598. |_[ + ] [ 3 / 100 ]-[23:34:39] [ - ]
599. |_[ + ] Target:: [ http://ws.snip.gob.ni/snip/ ]
600. |_[ + ] Exploit::
601. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
602. |_[ + ] More details:: / - / , ISP:
603. |_[ + ] Found:: UNIDENTIFIED
604.  
605. _[ - ]::--------------------------------------------------------------------------------------------------------------
606. |_[ + ] [ 4 / 100 ]-[23:34:42] [ - ]
607. |_[ + ] Target:: [ http://ws.snip.gob.ni/preinversion/ ]
608. |_[ + ] Exploit::
609. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
610. |_[ + ] More details:: / - / , ISP:
611. |_[ + ] Found:: UNIDENTIFIED
612.  
613. _[ - ]::--------------------------------------------------------------------------------------------------------------
614. |_[ + ] [ 5 / 100 ]-[23:34:44] [ - ]
615. |_[ + ] Target:: [ http://ws.snip.gob.ni/capacitacion/ ]
616. |_[ + ] Exploit::
617. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
618. |_[ + ] More details:: / - / , ISP:
619. |_[ + ] Found:: UNIDENTIFIED
620.  
621. _[ - ]::--------------------------------------------------------------------------------------------------------------
622. |_[ + ] [ 6 / 100 ]-[23:34:47] [ - ]
623. |_[ + ] Target:: [ http://ws.snip.gob.ni/fuentes/Backup/120.html ]
624. |_[ + ] Exploit::
625. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
626. |_[ + ] More details:: / - / , ISP:
627. |_[ + ] Found:: UNIDENTIFIED
628.  
629. _[ - ]::--------------------------------------------------------------------------------------------------------------
630. |_[ + ] [ 7 / 100 ]-[23:34:53] [ - ]
631. |_[ + ] Target:: [ http://www.snip.gob.ni/Docs/capacitaciones/tallerInter/Nic_ServiciosEcosistemicos.pdf ]
632. |_[ + ] Exploit::
633. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
634. |_[ + ] More details:: / - / , ISP:
635. |_[ + ] Found:: UNIDENTIFIED
636. |_[ + ] ERROR CONECTION:: Operation timed out after 5000 milliseconds with 857004 out of 2847471 bytes received
637.  
638. _[ - ]::--------------------------------------------------------------------------------------------------------------
639. |_[ + ] [ 8 / 100 ]-[23:34:55] [ - ]
640. |_[ + ] Target:: [ http://ws.snip.gob.ni/sip/ ]
641. |_[ + ] Exploit::
642. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
643. |_[ + ] More details:: / - / , ISP:
644. |_[ + ] Found:: UNIDENTIFIED
645.  
646. _[ - ]::--------------------------------------------------------------------------------------------------------------
647. |_[ + ] [ 9 / 100 ]-[23:34:57] [ - ]
648. |_[ + ] Target:: [ http://ws.snip.gob.ni/fuentes/Backup/121.html ]
649. |_[ + ] Exploit::
650. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
651. |_[ + ] More details:: / - / , ISP:
652. |_[ + ] Found:: UNIDENTIFIED
653.  
654. _[ - ]::--------------------------------------------------------------------------------------------------------------
655. |_[ + ] [ 10 / 100 ]-[23:35:00] [ - ]
656. |_[ + ] Target:: [ http://ws.snip.gob.ni/fuentes/Backup/122.html ]
657. |_[ + ] Exploit::
658. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
659. |_[ + ] More details:: / - / , ISP:
660. |_[ + ] Found:: UNIDENTIFIED
661.  
662. _[ - ]::--------------------------------------------------------------------------------------------------------------
663. |_[ + ] [ 11 / 100 ]-[23:35:03] [ - ]
664. |_[ + ] Target:: [ http://ws.snip.gob.ni/enlaces/ ]
665. |_[ + ] Exploit::
666. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
667. |_[ + ] More details:: / - / , ISP:
668. |_[ + ] Found:: UNIDENTIFIED
669.  
670. _[ - ]::--------------------------------------------------------------------------------------------------------------
671. |_[ + ] [ 12 / 100 ]-[23:35:09] [ - ]
672. |_[ + ] Target:: [ http://ws.snip.gob.ni/docs/files/ManualProcedimientos.pdf ]
673. |_[ + ] Exploit::
674. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
675. |_[ + ] More details:: / - / , ISP:
676. |_[ + ] Found:: UNIDENTIFIED
677. |_[ + ] ERROR CONECTION:: Operation timed out after 5000 milliseconds with 117761 out of 1393556 bytes received
678.  
679. _[ - ]::--------------------------------------------------------------------------------------------------------------
680. |_[ + ] [ 13 / 100 ]-[23:35:12] [ - ]
681. |_[ + ] Target:: [ http://ws.snip.gob.ni/fuentes/ ]
682. |_[ + ] Exploit::
683. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
684. |_[ + ] More details:: / - / , ISP:
685. |_[ + ] Found:: UNIDENTIFIED
686.  
687. _[ - ]::--------------------------------------------------------------------------------------------------------------
688. |_[ + ] [ 14 / 100 ]-[23:35:15] [ - ]
689. |_[ + ] Target:: [ http://ws.snip.gob.ni/bprep/ ]
690. |_[ + ] Exploit::
691. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
692. |_[ + ] More details:: / - / , ISP:
693. |_[ + ] Found:: UNIDENTIFIED
694.  
695. _[ - ]::--------------------------------------------------------------------------------------------------------------
696. |_[ + ] [ 15 / 100 ]-[23:35:17] [ - ]
697. |_[ + ] Target:: [ http://ws.snip.gob.ni/bps/ ]
698. |_[ + ] Exploit::
699. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
700. |_[ + ] More details:: / - / , ISP:
701. |_[ + ] Found:: UNIDENTIFIED
702.  
703. _[ - ]::--------------------------------------------------------------------------------------------------------------
704. |_[ + ] [ 16 / 100 ]-[23:35:20] [ - ]
705. |_[ + ] Target:: [ http://ws.snip.gob.ni/bps2/ ]
706. |_[ + ] Exploit::
707. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
708. |_[ + ] More details:: / - / , ISP:
709. |_[ + ] Found:: UNIDENTIFIED
710.  
711. _[ - ]::--------------------------------------------------------------------------------------------------------------
712. |_[ + ] [ 17 / 100 ]-[23:35:22] [ - ]
713. |_[ + ] Target:: [ http://www.snip.gob.ni/Account/Register ]
714. |_[ + ] Exploit::
715. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
716. |_[ + ] More details:: / - / , ISP:
717. |_[ + ] Found:: UNIDENTIFIED
718.  
719. _[ - ]::--------------------------------------------------------------------------------------------------------------
720. |_[ + ] [ 18 / 100 ]-[23:35:24] [ - ]
721. |_[ + ] Target:: [ http://ws.snip.gob.ni/BPBI/ ]
722. |_[ + ] Exploit::
723. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
724. |_[ + ] More details:: / - / , ISP:
725. |_[ + ] Found:: UNIDENTIFIED
726.  
727. _[ - ]::--------------------------------------------------------------------------------------------------------------
728. |_[ + ] [ 19 / 100 ]-[23:35:27] [ ! ]
729. |_[ + ] Target:: [ ( POTENTIALLY VULNERABLE ) http://ws.snip.gob.ni/proyectos/ ]
730. |_[ + ] Exploit::
731. |_[ + ] Information Server:: HTTP/1.1 500 Internal Server Error, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
732. |_[ + ] More details:: / - / , ISP:
733. |_[ + ] Found:: ERRORASP-04 - VALUE: ASP.NET is configured to show verbose error messages
734. |_[ + ] VALUE SAVED IN THE FILE:: inurlbr-snip.gob.ni.txt
735.  
736. _[ - ]::--------------------------------------------------------------------------------------------------------------
737. |_[ + ] [ 20 / 100 ]-[23:35:29] [ - ]
738. |_[ + ] Target:: [ http://www.snip.gob.ni/Tools/Guias.aspx ]
739. |_[ + ] Exploit::
740. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
741. |_[ + ] More details:: / - / , ISP:
742. |_[ + ] Found:: UNIDENTIFIED
743.  
744. _[ - ]::--------------------------------------------------------------------------------------------------------------
745. |_[ + ] [ 21 / 100 ]-[23:35:32] [ - ]
746. |_[ + ] Target:: [ http://www.snip.gob.ni/Nosotros/Snip.aspx ]
747. |_[ + ] Exploit::
748. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
749. |_[ + ] More details:: / - / , ISP:
750. |_[ + ] Found:: UNIDENTIFIED
751.  
752. _[ - ]::--------------------------------------------------------------------------------------------------------------
753. |_[ + ] [ 22 / 100 ]-[23:35:37] [ - ]
754. |_[ + ] Target:: [ http://www.snip.gob.ni/Normativa/MarcoLegal.aspx ]
755. |_[ + ] Exploit::
756. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
757. |_[ + ] More details:: / - / , ISP:
758. |_[ + ] Found:: UNIDENTIFIED
759.  
760. _[ - ]::--------------------------------------------------------------------------------------------------------------
761. |_[ + ] [ 23 / 100 ]-[23:35:39] [ - ]
762. |_[ + ] Target:: [ http://snip.gob.ni/preinversion/Ley550.aspx ]
763. |_[ + ] Exploit::
764. |_[ + ] Information Server:: HTTP/1.1 404 Not Found, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
765. |_[ + ] More details:: / - / , ISP:
766. |_[ + ] Found:: UNIDENTIFIED
767.  
768. _[ - ]::--------------------------------------------------------------------------------------------------------------
769. |_[ + ] [ 24 / 100 ]-[23:35:41] [ - ]
770. |_[ + ] Target:: [ http://www.snip.gob.ni/Portada/ElPip.aspx ]
771. |_[ + ] Exploit::
772. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
773. |_[ + ] More details:: / - / , ISP:
774. |_[ + ] Found:: UNIDENTIFIED
775.  
776. _[ - ]::--------------------------------------------------------------------------------------------------------------
777. |_[ + ] [ 25 / 100 ]-[23:35:44] [ - ]
778. |_[ + ] Target:: [ http://www.snip.gob.ni/Nosotros/Cti.aspx ]
779. |_[ + ] Exploit::
780. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
781. |_[ + ] More details:: / - / , ISP:
782. |_[ + ] Found:: UNIDENTIFIED
783.  
784. _[ - ]::--------------------------------------------------------------------------------------------------------------
785. |_[ + ] [ 26 / 100 ]-[23:35:46] [ - ]
786. |_[ + ] Target:: [ http://www.snip.gob.ni/Normativa/Preinversion.aspx ]
787. |_[ + ] Exploit::
788. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
789. |_[ + ] More details:: / - / , ISP:
790. |_[ + ] Found:: UNIDENTIFIED
791.  
792. _[ - ]::--------------------------------------------------------------------------------------------------------------
793. |_[ + ] [ 27 / 100 ]-[23:35:48] [ - ]
794. |_[ + ] Target:: [ http://www.snip.gob.ni/Portada/SnipAzul.aspx ]
795. |_[ + ] Exploit::
796. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
797. |_[ + ] More details:: / - / , ISP:
798. |_[ + ] Found:: UNIDENTIFIED
799.  
800. _[ - ]::--------------------------------------------------------------------------------------------------------------
801. |_[ + ] [ 28 / 100 ]-[23:35:51] [ - ]
802. |_[ + ] Target:: [ http://www.snip.gob.ni/Nosotros/Dgip.aspx ]
803. |_[ + ] Exploit::
804. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
805. |_[ + ] More details:: / - / , ISP:
806. |_[ + ] Found:: UNIDENTIFIED
807.  
808. _[ - ]::--------------------------------------------------------------------------------------------------------------
809. |_[ + ] [ 29 / 100 ]-[23:35:53] [ - ]
810. |_[ + ] Target:: [ http://www.snip.gob.ni/Portada/App.aspx ]
811. |_[ + ] Exploit::
812. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
813. |_[ + ] More details:: / - / , ISP:
814. |_[ + ] Found:: UNIDENTIFIED
815.  
816. _[ - ]::--------------------------------------------------------------------------------------------------------------
817. |_[ + ] [ 30 / 100 ]-[23:35:55] [ - ]
818. |_[ + ] Target:: [ http://www.snip.gob.ni/Tools/Sistemas.aspx ]
819. |_[ + ] Exploit::
820. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
821. |_[ + ] More details:: / - / , ISP:
822. |_[ + ] Found:: UNIDENTIFIED
823.  
824. _[ - ]::--------------------------------------------------------------------------------------------------------------
825. |_[ + ] [ 31 / 100 ]-[23:35:58] [ - ]
826. |_[ + ] Target:: [ http://www.snip.gob.ni/Pip/SectorEnergia.aspx ]
827. |_[ + ] Exploit::
828. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
829. |_[ + ] More details:: / - / , ISP:
830. |_[ + ] Found:: UNIDENTIFIED
831.  
832. _[ - ]::--------------------------------------------------------------------------------------------------------------
833. |_[ + ] [ 32 / 100 ]-[23:36:00] [ - ]
834. |_[ + ] Target:: [ http://ws.snip.gob.ni/bp.aspx ]
835. |_[ + ] Exploit::
836. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
837. |_[ + ] More details:: / - / , ISP:
838. |_[ + ] Found:: UNIDENTIFIED
839.  
840. _[ - ]::--------------------------------------------------------------------------------------------------------------
841. |_[ + ] [ 33 / 100 ]-[23:36:03] [ - ]
842. |_[ + ] Target:: [ http://www.snip.gob.ni/Pip/Proyectos.aspx ]
843. |_[ + ] Exploit::
844. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
845. |_[ + ] More details:: / - / , ISP:
846. |_[ + ] Found:: UNIDENTIFIED
847.  
848. _[ - ]::--------------------------------------------------------------------------------------------------------------
849. |_[ + ] [ 34 / 100 ]-[23:36:05] [ - ]
850. |_[ + ] Target:: [ http://www.snip.gob.ni/Pip/SectorAgua.aspx ]
851. |_[ + ] Exploit::
852. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
853. |_[ + ] More details:: / - / , ISP:
854. |_[ + ] Found:: UNIDENTIFIED
855.  
856. _[ - ]::--------------------------------------------------------------------------------------------------------------
857. |_[ + ] [ 35 / 100 ]-[23:36:08] [ - ]
858. |_[ + ] Target:: [ http://ws.snip.gob.ni/bpe/pip/ ]
859. |_[ + ] Exploit::
860. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
861. |_[ + ] More details:: / - / , ISP:
862. |_[ + ] Found:: UNIDENTIFIED
863.  
864. _[ - ]::--------------------------------------------------------------------------------------------------------------
865. |_[ + ] [ 36 / 100 ]-[23:36:10] [ - ]
866. |_[ + ] Target:: [ http://www.snip.gob.ni/Pip/SectorVial.aspx ]
867. |_[ + ] Exploit::
868. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
869. |_[ + ] More details:: / - / , ISP:
870. |_[ + ] Found:: UNIDENTIFIED
871.  
872. _[ - ]::--------------------------------------------------------------------------------------------------------------
873. |_[ + ] [ 37 / 100 ]-[23:36:12] [ - ]
874. |_[ + ] Target:: [ http://www.snip.gob.ni/Nosotros/Politicas.aspx ]
875. |_[ + ] Exploit::
876. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
877. |_[ + ] More details:: / - / , ISP:
878. |_[ + ] Found:: UNIDENTIFIED
879.  
880. _[ - ]::--------------------------------------------------------------------------------------------------------------
881. |_[ + ] [ 38 / 100 ]-[23:36:14] [ - ]
882. |_[ + ] Target:: [ http://www.snip.gob.ni/Pip/SectorSalud.aspx ]
883. |_[ + ] Exploit::
884. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
885. |_[ + ] More details:: / - / , ISP:
886. |_[ + ] Found:: UNIDENTIFIED
887.  
888. _[ - ]::--------------------------------------------------------------------------------------------------------------
889. |_[ + ] [ 39 / 100 ]-[23:36:17] [ - ]
890. |_[ + ] Target:: [ http://www.snip.gob.ni/Nosotros/Contacto.aspx ]
891. |_[ + ] Exploit::
892. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
893. |_[ + ] More details:: / - / , ISP:
894. |_[ + ] Found:: UNIDENTIFIED
895.  
896. _[ - ]::--------------------------------------------------------------------------------------------------------------
897. |_[ + ] [ 40 / 100 ]-[23:36:19] [ - ]
898. |_[ + ] Target:: [ http://www.snip.gob.ni/Pip/SectorEducacion.aspx ]
899. |_[ + ] Exploit::
900. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
901. |_[ + ] More details:: / - / , ISP:
902. |_[ + ] Found:: UNIDENTIFIED
903.  
904. _[ - ]::--------------------------------------------------------------------------------------------------------------
905. |_[ + ] [ 41 / 100 ]-[23:36:22] [ - ]
906. |_[ + ] Target:: [ http://ws.snip.gob.ni/contacto.aspx ]
907. |_[ + ] Exploit::
908. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
909. |_[ + ] More details:: / - / , ISP:
910. |_[ + ] Found:: UNIDENTIFIED
911.  
912. _[ - ]::--------------------------------------------------------------------------------------------------------------
913. |_[ + ] [ 42 / 100 ]-[23:36:24] [ - ]
914. |_[ + ] Target:: [ http://www.snip.gob.ni/Account/Login.aspx ]
915. |_[ + ] Exploit::
916. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
917. |_[ + ] More details:: / - / , ISP:
918. |_[ + ] Found:: UNIDENTIFIED
919.  
920. _[ - ]::--------------------------------------------------------------------------------------------------------------
921. |_[ + ] [ 43 / 100 ]-[23:36:26] [ - ]
922. |_[ + ] Target:: [ http://www.snip.gob.ni/Tools/Capacitaciones.aspx ]
923. |_[ + ] Exploit::
924. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
925. |_[ + ] More details:: / - / , ISP:
926. |_[ + ] Found:: UNIDENTIFIED
927.  
928. _[ - ]::--------------------------------------------------------------------------------------------------------------
929. |_[ + ] [ 44 / 100 ]-[23:36:28] [ - ]
930. |_[ + ] Target:: [ http://www.snip.gob.ni/Portada/FormulacionPip.aspx ]
931. |_[ + ] Exploit::
932. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
933. |_[ + ] More details:: / - / , ISP:
934. |_[ + ] Found:: UNIDENTIFIED
935.  
936. _[ - ]::--------------------------------------------------------------------------------------------------------------
937. |_[ + ] [ 45 / 100 ]-[23:36:34] [ - ]
938. |_[ + ] Target:: [ http://www.snip.gob.ni/Docs/metodologias/MetodologiaEnergia.pdf ]
939. |_[ + ] Exploit::
940. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
941. |_[ + ] More details:: / - / , ISP:
942. |_[ + ] Found:: UNIDENTIFIED
943. |_[ + ] ERROR CONECTION:: Operation timed out after 5000 milliseconds with 805676 out of 2380255 bytes received
944.  
945. _[ - ]::--------------------------------------------------------------------------------------------------------------
946. |_[ + ] [ 46 / 100 ]-[23:36:36] [ - ]
947. |_[ + ] Target:: [ http://www.snip.gob.ni/xdc/agile/TheNewXP.pdf ]
948. |_[ + ] Exploit::
949. |_[ + ] Information Server:: HTTP/1.1 404 Not Found, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
950. |_[ + ] More details:: / - / , ISP:
951. |_[ + ] Found:: UNIDENTIFIED
952.  
953. _[ - ]::--------------------------------------------------------------------------------------------------------------
954. |_[ + ] [ 47 / 100 ]-[23:36:40] [ - ]
955. |_[ + ] Target:: [ http://www.snip.gob.ni/Docs/guias/guia.pdf ]
956. |_[ + ] Exploit::
957. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
958. |_[ + ] More details:: / - / , ISP:
959. |_[ + ] Found:: UNIDENTIFIED
960.  
961. _[ - ]::--------------------------------------------------------------------------------------------------------------
962. |_[ + ] [ 48 / 100 ]-[23:36:44] [ - ]
963. |_[ + ] Target:: [ http://ws.snip.gob.ni/BPBI/SSD_Dashboard_SNIP.aspx ]
964. |_[ + ] Exploit::
965. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
966. |_[ + ] More details:: / - / , ISP:
967. |_[ + ] Found:: UNIDENTIFIED
968.  
969. _[ - ]::--------------------------------------------------------------------------------------------------------------
970. |_[ + ] [ 49 / 100 ]-[23:36:49] [ ! ]
971. |_[ + ] Target:: [ ( POTENTIALLY VULNERABLE ) http://www.snip.gob.ni/Docs/precios/TasaSocialdeDescuento.pdf ]
972. |_[ + ] Exploit::
973. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
974. |_[ + ] More details:: / - / , ISP:
975. |_[ + ] Found:: POSTGRESQL-06 - VALUE: pg_
976. |_[ + ] VALUE SAVED IN THE FILE:: inurlbr-snip.gob.ni.txt
977.  
978. _[ - ]::--------------------------------------------------------------------------------------------------------------
979. |_[ + ] [ 50 / 100 ]-[23:36:51] [ - ]
980. |_[ + ] Target:: [ http://www.snip.gob.ni/Docs/formulacion/FormulaciónPIP2019_MPMP.pdf ]
981. |_[ + ] Exploit::
982. |_[ + ] Information Server:: HTTP/1.1 404 Not Found, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
983. |_[ + ] More details:: / - / , ISP:
984. |_[ + ] Found:: UNIDENTIFIED
985.  
986. _[ - ]::--------------------------------------------------------------------------------------------------------------
987. |_[ + ] [ 51 / 100 ]-[23:36:53] [ - ]
988. |_[ + ] Target:: [ http://www.snip.gob.ni/Xdc/SQL/Supervision_del_rendimiento.pdf ]
989. |_[ + ] Exploit::
990. |_[ + ] Information Server:: HTTP/1.1 404 Not Found, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
991. |_[ + ] More details:: / - / , ISP:
992. |_[ + ] Found:: UNIDENTIFIED
993.  
994. _[ - ]::--------------------------------------------------------------------------------------------------------------
995. |_[ + ] [ 52 / 100 ]-[23:36:59] [ - ]
996. |_[ + ] Target:: [ http://www.snip.gob.ni/Docs/precios/ManodeObraCalificadayNoCalificada.pdf ]
997. |_[ + ] Exploit::
998. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
999. |_[ + ] More details:: / - / , ISP:
1000. |_[ + ] Found:: UNIDENTIFIED
1001. |_[ + ] ERROR CONECTION:: Operation timed out after 5000 milliseconds with 895744 out of 1179255 bytes received
1002.  
1003. _[ - ]::--------------------------------------------------------------------------------------------------------------
1004. |_[ + ] [ 53 / 100 ]-[23:37:01] [ - ]
1005. |_[ + ] Target:: [ http://ws.snip.gob.ni/snip/dfuncion.aspx ]
1006. |_[ + ] Exploit::
1007. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
1008. |_[ + ] More details:: / - / , ISP:
1009. |_[ + ] Found:: UNIDENTIFIED
1010.  
1011. _[ - ]::--------------------------------------------------------------------------------------------------------------
1012. |_[ + ] [ 54 / 100 ]-[23:37:04] [ - ]
1013. |_[ + ] Target:: [ http://ws.snip.gob.ni/snip/dcreacion.aspx ]
1014. |_[ + ] Exploit::
1015. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
1016. |_[ + ] More details:: / - / , ISP:
1017. |_[ + ] Found:: UNIDENTIFIED
1018.  
1019. _[ - ]::--------------------------------------------------------------------------------------------------------------
1020. |_[ + ] [ 55 / 100 ]-[23:37:09] [ - ]
1021. |_[ + ] Target:: [ http://www.snip.gob.ni/Docs/precios/TipodeCambioSocial.pdf ]
1022. |_[ + ] Exploit::
1023. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1024. |_[ + ] More details:: / - / , ISP:
1025. |_[ + ] Found:: UNIDENTIFIED
1026.  
1027. _[ - ]::--------------------------------------------------------------------------------------------------------------
1028. |_[ + ] [ 56 / 100 ]-[23:37:15] [ - ]
1029. |_[ + ] Target:: [ http://www.snip.gob.ni/Docs/guias/GuiaObrasRRD.pdf ]
1030. |_[ + ] Exploit::
1031. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1032. |_[ + ] More details:: / - / , ISP:
1033. |_[ + ] Found:: UNIDENTIFIED
1034. |_[ + ] ERROR CONECTION:: Operation timed out after 5000 milliseconds with 816043 out of 38414826 bytes received
1035.  
1036. _[ - ]::--------------------------------------------------------------------------------------------------------------
1037. |_[ + ] [ 57 / 100 ]-[23:37:18] [ - ]
1038. |_[ + ] Target:: [ http://ws.snip.gob.ni/noticias/noticias_anteriores.aspx ]
1039. |_[ + ] Exploit::
1040. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
1041. |_[ + ] More details:: / - / , ISP:
1042. |_[ + ] Found:: UNIDENTIFIED
1043.  
1044. _[ - ]::--------------------------------------------------------------------------------------------------------------
1045. |_[ + ] [ 58 / 100 ]-[23:37:22] [ - ]
1046. |_[ + ] Target:: [ http://www.snip.gob.ni/Docs/precios/Normativa.pdf ]
1047. |_[ + ] Exploit::
1048. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1049. |_[ + ] More details:: / - / , ISP:
1050. |_[ + ] Found:: UNIDENTIFIED
1051.  
1052. _[ - ]::--------------------------------------------------------------------------------------------------------------
1053. |_[ + ] [ 59 / 100 ]-[23:37:28] [ - ]
1054. |_[ + ] Target:: [ http://www.snip.gob.ni/Docs/guias/GuiaTdRAP.pdf ]
1055. |_[ + ] Exploit::
1056. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1057. |_[ + ] More details:: / - / , ISP:
1058. |_[ + ] Found:: UNIDENTIFIED
1059. |_[ + ] ERROR CONECTION:: Operation timed out after 5000 milliseconds with 851818 out of 15488034 bytes received
1060.  
1061. _[ - ]::--------------------------------------------------------------------------------------------------------------
1062. |_[ + ] [ 60 / 100 ]-[23:37:31] [ - ]
1063. |_[ + ] Target:: [ http://www.snip.gob.ni/Docs/leyes/Ley935.pdf ]
1064. |_[ + ] Exploit::
1065. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1066. |_[ + ] More details:: / - / , ISP:
1067. |_[ + ] Found:: UNIDENTIFIED
1068.  
1069. _[ - ]::--------------------------------------------------------------------------------------------------------------
1070. |_[ + ] [ 61 / 100 ]-[23:37:37] [ - ]
1071. |_[ + ] Target:: [ http://www.snip.gob.ni/Docs/metodologias/MetodologiaVial.pdf ]
1072. |_[ + ] Exploit::
1073. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1074. |_[ + ] More details:: / - / , ISP:
1075. |_[ + ] Found:: UNIDENTIFIED
1076. |_[ + ] ERROR CONECTION:: Operation timed out after 5000 milliseconds with 850165 out of 1798704 bytes received
1077.  
1078. _[ - ]::--------------------------------------------------------------------------------------------------------------
1079. |_[ + ] [ 62 / 100 ]-[23:37:40] [ - ]
1080. |_[ + ] Target:: [ http://www.snip.gob.ni/Docs/leyes/DecretoCreacionSNIP.pdf ]
1081. |_[ + ] Exploit::
1082. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1083. |_[ + ] More details:: / - / , ISP:
1084. |_[ + ] Found:: UNIDENTIFIED
1085.  
1086. _[ - ]::--------------------------------------------------------------------------------------------------------------
1087. |_[ + ] [ 63 / 100 ]-[23:37:46] [ - ]
1088. |_[ + ] Target:: [ http://www.snip.gob.ni/Docs/guias/MetodologiaCambioClimaticoProductivo.pdf ]
1089. |_[ + ] Exploit::
1090. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1091. |_[ + ] More details:: / - / , ISP:
1092. |_[ + ] Found:: UNIDENTIFIED
1093. |_[ + ] ERROR CONECTION:: Operation timed out after 5000 milliseconds with 852808 out of 4140597 bytes received
1094.  
1095. _[ - ]::--------------------------------------------------------------------------------------------------------------
1096. |_[ + ] [ 64 / 100 ]-[23:37:49] [ - ]
1097. |_[ + ] Target:: [ http://ws.snip.gob.ni/snip/politica.aspx ]
1098. |_[ + ] Exploit::
1099. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
1100. |_[ + ] More details:: / - / , ISP:
1101. |_[ + ] Found:: UNIDENTIFIED
1102.  
1103. _[ - ]::--------------------------------------------------------------------------------------------------------------
1104. |_[ + ] [ 65 / 100 ]-[23:37:52] [ - ]
1105. |_[ + ] Target:: [ http://ws.snip.gob.ni/preinversion/ProyectoMHCP.pdf ]
1106. |_[ + ] Exploit::
1107. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
1108. |_[ + ] More details:: / - / , ISP:
1109. |_[ + ] Found:: UNIDENTIFIED
1110.  
1111. _[ - ]::--------------------------------------------------------------------------------------------------------------
1112. |_[ + ] [ 66 / 100 ]-[23:37:55] [ - ]
1113. |_[ + ] Target:: [ http://ws.snip.gob.ni/preinversion/Ley550.aspx ]
1114. |_[ + ] Exploit::
1115. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
1116. |_[ + ] More details:: / - / , ISP:
1117. |_[ + ] Found:: UNIDENTIFIED
1118.  
1119. _[ - ]::--------------------------------------------------------------------------------------------------------------
1120. |_[ + ] [ 67 / 100 ]-[23:37:58] [ - ]
1121. |_[ + ] Target:: [ http://ws.snip.gob.ni/snip/cti.aspx ]
1122. |_[ + ] Exploit::
1123. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
1124. |_[ + ] More details:: / - / , ISP:
1125. |_[ + ] Found:: UNIDENTIFIED
1126.  
1127. _[ - ]::--------------------------------------------------------------------------------------------------------------
1128. |_[ + ] [ 68 / 100 ]-[23:38:04] [ - ]
1129. |_[ + ] Target:: [ http://www.snip.gob.ni/Docs/metodologias/MetodologiaGeneral.pdf ]
1130. |_[ + ] Exploit::
1131. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1132. |_[ + ] More details:: / - / , ISP:
1133. |_[ + ] Found:: UNIDENTIFIED
1134. |_[ + ] ERROR CONECTION:: Operation timed out after 5000 milliseconds with 879675 out of 2805286 bytes received
1135.  
1136. _[ - ]::--------------------------------------------------------------------------------------------------------------
1137. |_[ + ] [ 69 / 100 ]-[23:38:06] [ - ]
1138. |_[ + ] Target:: [ http://ws.snip.gob.ni/fuentes/fuentes.aspx ]
1139. |_[ + ] Exploit::
1140. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
1141. |_[ + ] More details:: / - / , ISP:
1142. |_[ + ] Found:: UNIDENTIFIED
1143.  
1144. _[ - ]::--------------------------------------------------------------------------------------------------------------
1145. |_[ + ] [ 70 / 100 ]-[23:38:12] [ - ]
1146. |_[ + ] Target:: [ http://www.snip.gob.ni/Docs/guias/MetodologiaCambioClimaticoEnergetico.pdf ]
1147. |_[ + ] Exploit::
1148. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1149. |_[ + ] More details:: / - / , ISP:
1150. |_[ + ] Found:: UNIDENTIFIED
1151. |_[ + ] ERROR CONECTION:: Operation timed out after 5000 milliseconds with 869821 out of 2937080 bytes received
1152.  
1153. _[ - ]::--------------------------------------------------------------------------------------------------------------
1154. |_[ + ] [ 71 / 100 ]-[23:38:15] [ - ]
1155. |_[ + ] Target:: [ http://ws.snip.gob.ni/bps/ListarProyectos.aspx ]
1156. |_[ + ] Exploit::
1157. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
1158. |_[ + ] More details:: / - / , ISP:
1159. |_[ + ] Found:: UNIDENTIFIED
1160.  
1161. _[ - ]::--------------------------------------------------------------------------------------------------------------
1162. |_[ + ] [ 72 / 100 ]-[23:38:18] [ - ]
1163. |_[ + ] Target:: [ http://www.snip.gob.ni/Docs/leyes/DecretoFuncionSNIP.pdf ]
1164. |_[ + ] Exploit::
1165. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1166. |_[ + ] More details:: / - / , ISP:
1167. |_[ + ] Found:: UNIDENTIFIED
1168.  
1169. _[ - ]::--------------------------------------------------------------------------------------------------------------
1170. |_[ + ] [ 73 / 100 ]-[23:38:21] [ - ]
1171. |_[ + ] Target:: [ http://ws.snip.gob.ni/preinversion/Programa.pdf ]
1172. |_[ + ] Exploit::
1173. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
1174. |_[ + ] More details:: / - / , ISP:
1175. |_[ + ] Found:: UNIDENTIFIED
1176.  
1177. _[ - ]::--------------------------------------------------------------------------------------------------------------
1178. |_[ + ] [ 74 / 100 ]-[23:38:27] [ - ]
1179. |_[ + ] Target:: [ http://www.snip.gob.ni/Docs/metodologias/MetodologiaAgua.pdf ]
1180. |_[ + ] Exploit::
1181. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1182. |_[ + ] More details:: / - / , ISP:
1183. |_[ + ] Found:: UNIDENTIFIED
1184. |_[ + ] ERROR CONECTION:: Operation timed out after 5000 milliseconds with 842818 out of 3756705 bytes received
1185.  
1186. _[ - ]::--------------------------------------------------------------------------------------------------------------
1187. |_[ + ] [ 75 / 100 ]-[23:38:29] [ - ]
1188. |_[ + ] Target:: [ http://www.snip.gob.ni/Pip/PerfilProyecto?idProyecto=24525 ]
1189. |_[ + ] Exploit::
1190. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1191. |_[ + ] More details:: / - / , ISP:
1192. |_[ + ] Found:: UNIDENTIFIED
1193.  
1194. _[ - ]::--------------------------------------------------------------------------------------------------------------
1195. |_[ + ] [ 76 / 100 ]-[23:38:32] [ - ]
1196. |_[ + ] Target:: [ http://www.snip.gob.ni/Tools/Documentos?idCapacita=2 ]
1197. |_[ + ] Exploit::
1198. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1199. |_[ + ] More details:: / - / , ISP:
1200. |_[ + ] Found:: UNIDENTIFIED
1201.  
1202. _[ - ]::--------------------------------------------------------------------------------------------------------------
1203. |_[ + ] [ 77 / 100 ]-[23:38:34] [ - ]
1204. |_[ + ] Target:: [ http://ws.snip.gob.ni/capacitacion/snippucv2.html ]
1205. |_[ + ] Exploit::
1206. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
1207. |_[ + ] More details:: / - / , ISP:
1208. |_[ + ] Found:: UNIDENTIFIED
1209.  
1210. _[ - ]::--------------------------------------------------------------------------------------------------------------
1211. |_[ + ] [ 78 / 100 ]-[23:38:38] [ - ]
1212. |_[ + ] Target:: [ http://www.snip.gob.ni/Docs/formulacion/DepSnip2018.pdf ]
1213. |_[ + ] Exploit::
1214. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1215. |_[ + ] More details:: / - / , ISP:
1216. |_[ + ] Found:: UNIDENTIFIED
1217.  
1218. _[ - ]::--------------------------------------------------------------------------------------------------------------
1219. |_[ + ] [ 79 / 100 ]-[23:38:40] [ - ]
1220. |_[ + ] Target:: [ http://ws.snip.gob.ni/docs/archive.aspx ]
1221. |_[ + ] Exploit::
1222. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
1223. |_[ + ] More details:: / - / , ISP:
1224. |_[ + ] Found:: UNIDENTIFIED
1225.  
1226. _[ - ]::--------------------------------------------------------------------------------------------------------------
1227. |_[ + ] [ 80 / 100 ]-[23:38:43] [ - ]
1228. |_[ + ] Target:: [ http://www.snip.gob.ni/Pip/PerfilProyecto?idProyecto=17125 ]
1229. |_[ + ] Exploit::
1230. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1231. |_[ + ] More details:: / - / , ISP:
1232. |_[ + ] Found:: UNIDENTIFIED
1233.  
1234. _[ - ]::--------------------------------------------------------------------------------------------------------------
1235. |_[ + ] [ 81 / 100 ]-[23:38:45] [ - ]
1236. |_[ + ] Target:: [ http://ws.snip.gob.ni/docs/default.aspx ]
1237. |_[ + ] Exploit::
1238. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
1239. |_[ + ] More details:: / - / , ISP:
1240. |_[ + ] Found:: UNIDENTIFIED
1241.  
1242. _[ - ]::--------------------------------------------------------------------------------------------------------------
1243. |_[ + ] [ 82 / 100 ]-[23:38:48] [ - ]
1244. |_[ + ] Target:: [ http://ws.snip.gob.ni/BPBI/SSD_DashboardTables_SNIP.aspx ]
1245. |_[ + ] Exploit::
1246. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
1247. |_[ + ] More details:: / - / , ISP:
1248. |_[ + ] Found:: UNIDENTIFIED
1249.  
1250. _[ - ]::--------------------------------------------------------------------------------------------------------------
1251. |_[ + ] [ 83 / 100 ]-[23:38:51] [ - ]
1252. |_[ + ] Target:: [ http://ws.snip.gob.ni/fuentes/detalle.aspx ]
1253. |_[ + ] Exploit::
1254. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
1255. |_[ + ] More details:: / - / , ISP:
1256. |_[ + ] Found:: UNIDENTIFIED
1257.  
1258. _[ - ]::--------------------------------------------------------------------------------------------------------------
1259. |_[ + ] [ 84 / 100 ]-[23:38:53] [ - ]
1260. |_[ + ] Target:: [ http://ws.snip.gob.ni/snip/decsnipmhcp.aspx ]
1261. |_[ + ] Exploit::
1262. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
1263. |_[ + ] More details:: / - / , ISP:
1264. |_[ + ] Found:: UNIDENTIFIED
1265.  
1266. _[ - ]::--------------------------------------------------------------------------------------------------------------
1267. |_[ + ] [ 85 / 100 ]-[23:38:56] [ - ]
1268. |_[ + ] Target:: [ http://www.snip.gob.ni/Pip/PerfilProyecto?idProyecto=14835 ]
1269. |_[ + ] Exploit::
1270. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1271. |_[ + ] More details:: / - / , ISP:
1272. |_[ + ] Found:: UNIDENTIFIED
1273.  
1274. _[ - ]::--------------------------------------------------------------------------------------------------------------
1275. |_[ + ] [ 86 / 100 ]-[23:38:59] [ - ]
1276. |_[ + ] Target:: [ http://ws.snip.gob.ni/BPBI/SSD_SNIP_Financiero.aspx ]
1277. |_[ + ] Exploit::
1278. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
1279. |_[ + ] More details:: / - / , ISP:
1280. |_[ + ] Found:: UNIDENTIFIED
1281.  
1282. _[ - ]::--------------------------------------------------------------------------------------------------------------
1283. |_[ + ] [ 87 / 100 ]-[23:39:01] [ - ]
1284. |_[ + ] Target:: [ http://www.snip.gob.ni/Pip/PerfilProyecto?idProyecto=22362 ]
1285. |_[ + ] Exploit::
1286. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1287. |_[ + ] More details:: / - / , ISP:
1288. |_[ + ] Found:: UNIDENTIFIED
1289.  
1290. _[ - ]::--------------------------------------------------------------------------------------------------------------
1291. |_[ + ] [ 88 / 100 ]-[23:39:03] [ - ]
1292. |_[ + ] Target:: [ http://www.snip.gob.ni/Pip/PerfilProyecto?idProyecto=24526 ]
1293. |_[ + ] Exploit::
1294. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1295. |_[ + ] More details:: / - / , ISP:
1296. |_[ + ] Found:: UNIDENTIFIED
1297.  
1298. _[ - ]::--------------------------------------------------------------------------------------------------------------
1299. |_[ + ] [ 89 / 100 ]-[23:39:05] [ - ]
1300. |_[ + ] Target:: [ http://www.snip.gob.ni/Pip/PerfilProyecto?idProyecto=15399 ]
1301. |_[ + ] Exploit::
1302. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1303. |_[ + ] More details:: / - / , ISP:
1304. |_[ + ] Found:: UNIDENTIFIED
1305.  
1306. _[ - ]::--------------------------------------------------------------------------------------------------------------
1307. |_[ + ] [ 90 / 100 ]-[23:39:08] [ - ]
1308. |_[ + ] Target:: [ http://www.snip.gob.ni/Pip/PerfilProyecto?idProyecto=22399 ]
1309. |_[ + ] Exploit::
1310. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1311. |_[ + ] More details:: / - / , ISP:
1312. |_[ + ] Found:: UNIDENTIFIED
1313.  
1314. _[ - ]::--------------------------------------------------------------------------------------------------------------
1315. |_[ + ] [ 91 / 100 ]-[23:39:10] [ - ]
1316. |_[ + ] Target:: [ http://www.snip.gob.ni/Pip/PerfilProyecto?idProyecto=22407 ]
1317. |_[ + ] Exploit::
1318. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1319. |_[ + ] More details:: / - / , ISP:
1320. |_[ + ] Found:: UNIDENTIFIED
1321.  
1322. _[ - ]::--------------------------------------------------------------------------------------------------------------
1323. |_[ + ] [ 92 / 100 ]-[23:39:12] [ - ]
1324. |_[ + ] Target:: [ http://www.snip.gob.ni/Pip/PerfilProyecto?idProyecto=21330 ]
1325. |_[ + ] Exploit::
1326. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1327. |_[ + ] More details:: / - / , ISP:
1328. |_[ + ] Found:: UNIDENTIFIED
1329.  
1330. _[ - ]::--------------------------------------------------------------------------------------------------------------
1331. |_[ + ] [ 93 / 100 ]-[23:39:15] [ - ]
1332. |_[ + ] Target:: [ http://ws.snip.gob.ni/snip/pip2004.aspx ]
1333. |_[ + ] Exploit::
1334. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
1335. |_[ + ] More details:: / - / , ISP:
1336. |_[ + ] Found:: UNIDENTIFIED
1337.  
1338. _[ - ]::--------------------------------------------------------------------------------------------------------------
1339. |_[ + ] [ 94 / 100 ]-[23:39:17] [ - ]
1340. |_[ + ] Target:: [ http://www.snip.gob.ni/Pip/PerfilProyecto?idProyecto=22351 ]
1341. |_[ + ] Exploit::
1342. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1343. |_[ + ] More details:: / - / , ISP:
1344. |_[ + ] Found:: UNIDENTIFIED
1345.  
1346. _[ - ]::--------------------------------------------------------------------------------------------------------------
1347. |_[ + ] [ 95 / 100 ]-[23:39:19] [ - ]
1348. |_[ + ] Target:: [ http://www.snip.gob.ni/Pip/PerfilProyecto?idProyecto=19286 ]
1349. |_[ + ] Exploit::
1350. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1351. |_[ + ] More details:: / - / , ISP:
1352. |_[ + ] Found:: UNIDENTIFIED
1353.  
1354. _[ - ]::--------------------------------------------------------------------------------------------------------------
1355. |_[ + ] [ 96 / 100 ]-[23:39:22] [ - ]
1356. |_[ + ] Target:: [ http://ws.snip.gob.ni/enlaces/otrosPoderes.aspx ]
1357. |_[ + ] Exploit::
1358. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
1359. |_[ + ] More details:: / - / , ISP:
1360. |_[ + ] Found:: UNIDENTIFIED
1361.  
1362. _[ - ]::--------------------------------------------------------------------------------------------------------------
1363. |_[ + ] [ 97 / 100 ]-[23:39:24] [ - ]
1364. |_[ + ] Target:: [ http://www.snip.gob.ni/Tools/Documentos?idCapacita=1 ]
1365. |_[ + ] Exploit::
1366. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1367. |_[ + ] More details:: / - / , ISP:
1368. |_[ + ] Found:: UNIDENTIFIED
1369.  
1370. _[ - ]::--------------------------------------------------------------------------------------------------------------
1371. |_[ + ] [ 98 / 100 ]-[23:39:27] [ - ]
1372. |_[ + ] Target:: [ http://ws.snip.gob.ni/BPBI/SSD_SNIP_FinancieroMeses.aspx ]
1373. |_[ + ] Exploit::
1374. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET, IP:190.212.238.35:80
1375. |_[ + ] More details:: / - / , ISP:
1376. |_[ + ] Found:: UNIDENTIFIED
1377.  
1378. _[ - ]::--------------------------------------------------------------------------------------------------------------
1379. |_[ + ] [ 99 / 100 ]-[23:39:29] [ - ]
1380. |_[ + ] Target:: [ http://www.snip.gob.ni/Pip/PerfilProyecto?idProyecto=15470 ]
1381. |_[ + ] Exploit::
1382. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET, IP:190.212.238.36:80
1383. |_[ + ] More details:: / - / , ISP:
1384. |_[ + ] Found:: UNIDENTIFIED
1385.  
1386. [ INFO ] [ Shutting down ]
1387. [ INFO ] [ End of process INURLBR at [20-09-2018 23:39:29]
1388. [ INFO ] [ TOTAL FILTERED VALUES ]:: [ 3 ]
1389. [ INFO ] [ OUTPUT FILE ]:: [ /usr/share/sniper/output/inurlbr-snip.gob.ni.txt ]
1390. |_________________________________________________________________________________________
1391. http://www.snip.gob.ni/docs/leyes/ley550.pdf
1392. http://ws.snip.gob.ni/proyectos/
1393. http://www.snip.gob.ni/Docs/precios/TasaSocialdeDescuento.pdf
1394. #######################################################################################################################################
1395. ---------------------------------------------------------------------------------------------------------------------------------------
1396. + Target IP: 190.212.238.36
1397. + Target Hostname: www.snip.gob.ni
1398. + Target Port: 80
1399. + Start Time: 2018-09-21 01:58:38 (GMT-4)
1400. ---------------------------------------------------------------------------------------------------------------------------------------
1401. + Server: Microsoft-IIS/8.5
1402. + Retrieved x-powered-by header: ASP.NET
1403. + The anti-clickjacking X-Frame-Options header is not present.
1404. + The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
1405. + The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
1406. + Retrieved x-aspnet-version header: 4.0.30319
1407. + RFC-1918 IP address found in the 'location' header. The IP is "192.168.5.12".
1408. + OSVDB-630: IIS may reveal its internal or real IP in the Location header via a request to the /images directory. The value is "http://192.168.5.12/images/".
1409. + Multiple index files found: /default.aspx, /index.html
1410. + Allowed HTTP Methods: OPTIONS, TRACE, GET, HEAD, POST
1411. + Public HTTP Methods: OPTIONS, TRACE, GET, HEAD, POST
1412. #######################################################################################################################################
1413. =======================================================================================================================================
1414. | Domain: http://snip.gob.ni/
1415. | Server: Microsoft-IIS/8.5
1416. | IP: 190.212.238.36
1417. =======================================================================================================================================
1418. |
1419. | Directory check:
1420. | [+] CODE: 200 URL: http://snip.gob.ni/about/
1421. | [+] CODE: 200 URL: http://snip.gob.ni/contact/
1422. | [+] CODE: 200 URL: http://snip.gob.ni/default/
1423. | [+] CODE: 200 URL: http://snip.gob.ni/error/
1424. =======================================================================================================================================
1425. |
1426. | File check:
1427. | [+] CODE: 200 URL: http://snip.gob.ni/default.aspx
1428. | [+] CODE: 200 URL: http://snip.gob.ni/favicon.ico
1429. | [+] CODE: 200 URL: http://snip.gob.ni/index.html
1430. =======================================================================================================================================
1431. ######################################################################################################################################
1432. | E-mails:
1433. | [+] E-mail Found: francisco.mena@mhcp.gob.ni
1434. | [+] E-mail Found: snipnicaragua@gmail.com.ni
1435. | [+] E-mail Found: mrodriguez@snip.gob.ni
1436. | [+] E-mail Found: upport@example.com
1437. | [+] E-mail Found: webmaster@snip.gob.ni
1438. | [+] E-mail Found: arketing@example.com
1439. | [+] E-mail Found: roger@snip.gob.ni
1440. | [+] E-mail Found: nancy.alvarado@mhcp.gob.ni
1441. |
1442. | File Upload Forms:
1443. |
1444. | FCKeditor File Upload:
1445. |
1446. | Source Code Disclosure:
1447. |
1448. | PHPinfo() Disclosure:
1449. |
1450. | External hosts:
1451. | [+] External Host Found: http://www.iadb.org
1452. | [+] External Host Found: https://code.highcharts.com
1453. | [+] External Host Found: http://www.presidencia.gob.ni
1454. | [+] External Host Found: http://www.statcounter.com
1455. | [+] External Host Found: http://www.bcn.gob.ni
1456. | [+] External Host Found: http://www.asamblea.gob.ni
1457. | [+] External Host Found: https://oss.maxcdn.com
1458. | [+] External Host Found: https://go.microsoft.com
1459. | [+] External Host Found: https://www.google.com
1460. | [+] External Host Found: http://www.hacienda.gob.ni
1461. | [+] External Host Found: http://go.microsoft.com
1462. |
1463. | Ignored Files:
1464. | http://snip.gob.ni/Docs/capacitaciones/tallerBCN/CasoProductivo.docx
1465. | http://snip.gob.ni/Docs/capacitaciones/tallerBCN/IdentificacionProyectos.pptx
1466. | http://snip.gob.ni/Docs/capacitaciones/tallerBCN/CasoSeguridad.docx
1467. | http://snip.gob.ni/Docs/capacitaciones/tallerBCN/TallerPreinversionBCN.pptx
1468. | http://snip.gob.ni/Docs/capacitaciones/tallerIdentificacionProy/AlternativasAgua.docx
1469. | http://snip.gob.ni/Docs/capacitaciones/tallerIdentificacionProy/AlternativasEducacion.docx
1470. | http://snip.gob.ni/Docs/capacitaciones/tallerBCN/CasoSalud.docx
1471. | http://snip.gob.ni/Docs/capacitaciones/tallerIdentificacionProy/AlternativasSalud.docx
1472. | http://snip.gob.ni/Docs/capacitaciones/tallerIdentificacionProy/AlternativasSeguridad.docx
1473. | http://snip.gob.ni/Docs/capacitaciones/tallerIdentificacionProy/AlternativasProductivo.docx
1474. | http://snip.gob.ni/Docs/capacitaciones/tallerBCN/CasoEducacion.docx
1475. =======================================================================================================================================
1476. #######################################################################################################################################
1477. Anonymous #OpNicaragua JTSEC Full Recon #21