Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #######################################################################################################################################
- Hostname www.glquebec.org ISP eStruxture Data Centers Inc. (AS10929)
- Continent North America Flag
- CA
- Country Canada Country Code CA (CAN)
- Region QC Local time 24 Mar 2018 17:43 EDT
- Metropolis Unknown Postal Code H3K
- City Montr�al Latitude 45.481
- IP Address 209.44.124.244 Longitude -73.555
- #######################################################################################################################################
- HostIP:209.44.124.244
- HostName:glquebec.org
- Gathered Inet-whois information for 209.44.124.244
- ---------------------------------------------------------------------------------------------------------------------------------------
- inetnum: 209.43.0.0 - 209.162.127.255
- netname: NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK
- descr: IPv4 address block not managed by the RIPE NCC
- remarks: ------------------------------------------------------
- remarks:
- remarks: You can find the whois server to query, or the
- remarks: IANA registry to query on this web page:
- remarks: http://www.iana.org/assignments/ipv4-address-space
- remarks:
- remarks: You can access databases of other RIRs at:
- remarks:
- remarks: AFRINIC (Africa)
- remarks: http://www.afrinic.net/ whois.afrinic.net
- remarks:
- remarks: APNIC (Asia Pacific)
- remarks: http://www.apnic.net/ whois.apnic.net
- remarks:
- remarks: ARIN (Northern America)
- remarks: http://www.arin.net/ whois.arin.net
- remarks:
- remarks: LACNIC (Latin America and the Carribean)
- remarks: http://www.lacnic.net/ whois.lacnic.net
- remarks:
- remarks: IANA IPV4 Recovered Address Space
- remarks: http://www.iana.org/assignments/ipv4-recovered-address-space/ipv4-recovered-address-space.xhtml
- remarks:
- remarks: ------------------------------------------------------
- country: EU # Country is really world wide
- admin-c: IANA1-RIPE
- tech-c: IANA1-RIPE
- status: ALLOCATED UNSPECIFIED
- mnt-by: RIPE-NCC-HM-MNT
- mnt-lower: RIPE-NCC-HM-MNT
- mnt-routes: RIPE-NCC-RPSL-MNT
- created: 2018-02-15T15:45:10Z
- last-modified: 2018-02-15T15:45:10Z
- source: RIPE
- role: Internet Assigned Numbers Authority
- address: see http://www.iana.org.
- admin-c: IANA1-RIPE
- tech-c: IANA1-RIPE
- nic-hdl: IANA1-RIPE
- remarks: For more information on IANA services
- remarks: go to IANA web site at http://www.iana.org.
- mnt-by: RIPE-NCC-MNT
- created: 1970-01-01T00:00:00Z
- last-modified: 2001-09-22T09:31:27Z
- source: RIPE # Filtered
- % This query was served by the RIPE Database Query Service version 1.91.1 (BLAARKOP)
- Gathered Inic-whois information for glquebec.org
- ---------------------------------------------------------------------------------------------------------------------------------------
- Domain Name: GLQUEBEC.ORG
- Registry Domain ID: D78671725-LROR
- Registrar WHOIS Server: whois.godaddy.com
- Registrar URL: http://www.godaddy.com
- Updated Date: 2017-10-17T10:25:50Z
- Creation Date: 2001-10-16T17:54:17Z
- Registry Expiry Date: 2018-10-16T17:54:17Z
- Registrar Registration Expiration Date:
- Registrar: GoDaddy.com, LLC
- Registrar IANA ID: 146
- Registrar Abuse Contact Email: abuse@godaddy.com
- Registrar Abuse Contact Phone: +1.4806242505
- Reseller:
- Domain Status: clientDeleteProhibited https://ic�U@ann.o�����rg�/epp#c}Aô�liU@entDe�Aô�le�U@tePro�������hibited�U@
- Domain Status: clientRenewProhibited https://icann.org/epp#clientRenewProhibited
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Domain Status: clientUpdateProhibited https://icann.org/epp#clientUpdateProhibited
- Registry Registrant ID: C195033035-LROR
- Registrant Name: Grand Secretaire
- Registrant Organization: Grande Loge du Quebec
- Registrant Street: 2295 Rue Saint Marc
- Registrant City: Montreal
- Registrant State/Province: Quebec
- Registrant Postal Code: H7Y2H7
- Registrant Country: CA
- Registrant Phone: +1.5149336739
- Registrant Phone Ext:
- Registrant Fax:
- Registrant Fax Ext:
- Registrant Email: admin@glquebec.ca
- Registry Admin ID: C195033037-LROR
- Admin Name: Grand Secretaire
- Admin Organization: Grande Loge du Quebec
- Admin Street: 2295 Rue Saint Marc
- Admin City: Montreal
- Admin State/Province: Quebec
- Admin Postal Code: H7Y2H7
- Admin Country: CA
- Admin Phone: +1.5149336739
- Admin Phone Ext:
- Admin Fax:
- Admin Fax Ext:
- Admin Email: admin@glquebec.ca
- Registry Tech ID: C195033036-LROR
- Tech Name: Grand Secretaire
- Tech Organization: Grande Loge du Quebec
- Tech Street: 2295 Rue Saint Marc
- Tech City: Montreal
- Tech State/Province: Quebec
- Tech Postal Code: H7Y2H7
- Tech Country: CA
- Tech Phone: +1.5149336739
- Tech Phone Ext:
- Tech Fax:
- Tech Fax Ext:
- Tech Email: admin@glquebec.ca
- Name Server: NS17.DNSPRIVE.COM
- Name Server: NS18.DNSPRIVE.COM
- DNSSEC: unsigned
- URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
- >>> Last update of WHOIS database: 2018-03-24T21:45:10Z <<<
- For more information on Whois status codes, please visit https://icann.org/epp
- Access to Public Interest Registry WHOIS information is provided to assist persons in determining the contents of a domain name registra��x���T���tion record `Aô�in the PublDô�ic Interest Regis%+@try rNSPRIVE.COM
- DNSSEC: unsigned
- URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
- >>> Last update of WHOIS database: 2018-03-24T21:45:10Z <<<
- For more information on Whois status codes, please visit https://icann.org/epp
- Access to Public Interest Registry WHOIS information is provided to assist persons in determining the contents of a domain name registration record in the Public Interest Registry registry database. The data in this record is provided by Public egistry data+base. Th��x���Te data i�Cô�n tDô�his recordGô� is provi`Eô�de�,@d by Public egistry dorg.whois-servers.netata+base. Th��x���Te data i�Cô�n tDô�higlquebec.orgs recordGô� is provi`Eô�de�,@d by Public egistry dorg.whois-servers.netata+base. Th��x���Te data i�Cô�n tDô---------------------------------
- �higlquebec.orgs recordGô� is provi`Eô�de�,@d by Public egistry dorg.whois-servers.neta`Eô�ta+��x���T@Eô�bGô�se. Th��x��@��Te `Eô�dapEô�ta209.44.124.244 i�Cô�n tDô----glquebec.org-----------------------------
- #####################################################################################################################################
- [i] Scanning Site: http://glquebec.org
- B A S I C I N F O
- ======================================================================================================================================
- [+] Site Title: Grande Loge du Québec - Grand Lodge of Québec
- [+] IP address: 209.44.124.244
- [+] Web Server: Apache
- [+] CMS: Joomla
- [+] Cloudflare: Not Detected
- [+] Robots File: Found
- -------------[ contents ]----------------
- # If the Joomla site is installed within a folder such as at
- # e.g. www.example.com/joomla/ the robots.txt file MUST be
- # moved to the site root at e.g. www.example.com/robots.txt
- # AND the joomla folder name MUST be prefixed to the disallowed
- # path, e.g. the Disallow rule for the /administrator/ folder
- # MUST be changed to read Disallow: /joomla/administrator/
- #
- # For more information about the robots.txt standard, see:
- # http://www.robotstxt.org/orig.html
- #
- # For syntax checking, see:
- # http://www.sxw.org.uk/computing/robots/check.html
- User-agent: *
- Disallow: /administrator/
- Disallow: /cache/
- Disallow: /cli/
- Disallow: /components/
- Disallow: /images/
- Disallow: /includes/
- Disallow: /installation/
- Disallow: /language/
- Disallow: /libraries/
- Disallow: /logs/
- Disallow: /media/
- Disallow: /modules/
- Disallow: /plugins/
- Disallow: /templates/
- Disallow: /tmp/
- -----------[end of contents]-------------
- W H O I S L O O K U P
- ======================================================================================================================================
- Domain Name: GLQUEBEC.ORG
- Registry Domain ID: D78671725-LROR
- Registrar WHOIS Server: whois.godaddy.com
- Registrar URL: http://www.godaddy.com
- Updated Date: 2017-10-17T10:25:50Z
- Creation Date: 2001-10-16T17:54:17Z
- Registry Expiry Date: 2018-10-16T17:54:17Z
- Registrar Registration Expiration Date:
- Registrar: GoDaddy.com, LLC
- Registrar IANA ID: 146
- Registrar Abuse Contact Email: abuse@godaddy.com
- Registrar Abuse Contact Phone: +1.4806242505
- Reseller:
- Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited
- Domain Status: clientRenewProhibited https://icann.org/epp#clientRenewProhibited
- Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
- Domain Status: clientUpdateProhibited https://icann.org/epp#clientUpdateProhibited
- Registry Registrant ID: C195033035-LROR
- Registrant Name: Grand Secretaire
- Registrant Organization: Grande Loge du Quebec
- Registrant Street: 2295 Rue Saint Marc
- Registrant City: Montreal
- Registrant State/Province: Quebec
- Registrant Postal Code: H7Y2H7
- Registrant Country: CA
- Registrant Phone: +1.5149336739
- Registrant Phone Ext:
- Registrant Fax:
- Registrant Fax Ext:
- Registrant Email: admin@glquebec.ca
- Registry Admin ID: C195033037-LROR
- Admin Name: Grand Secretaire
- Admin Organization: Grande Loge du Quebec
- Admin Street: 2295 Rue Saint Marc
- Admin City: Montreal
- Admin State/Province: Quebec
- Admin Postal Code: H7Y2H7
- Admin Country: CA
- Admin Phone: +1.5149336739
- Admin Phone Ext:
- Admin Fax:
- Admin Fax Ext:
- Admin Email: admin@glquebec.ca
- Registry Tech ID: C195033036-LROR
- Tech Name: Grand Secretaire
- Tech Organization: Grande Loge du Quebec
- Tech Street: 2295 Rue Saint Marc
- Tech City: Montreal
- Tech State/Province: Quebec
- Tech Postal Code: H7Y2H7
- Tech Country: CA
- Tech Phone: +1.5149336739
- Tech Phone Ext:
- Tech Fax:
- Tech Fax Ext:
- Tech Email: admin@glquebec.ca
- Name Server: NS17.DNSPRIVE.COM
- Name Server: NS18.DNSPRIVE.COM
- DNSSEC: unsigned
- URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
- >>> Last update of WHOIS database: 2018-03-24T21:44:57Z <<<
- For more information on Whois status codes, please visit https://icann.org/epp
- Access to Public Interest Registry WHOIS information is provided to assist persons in determining the contents of a domain name registration record in the Public Interest Registry registry database. The data in this record is provided by Public Interest Registry for informational purposes only, and Public Interest Registry does not guarantee its accuracy. This service is intended only for query-based access. You agree that you will use this data only for lawful purposes and that, under no circumstances will you use this data to: (a) allow, enable, or otherwise support the transmission by e-mail, telephone, or facsimile of mass unsolicited, commercial advertising or solicitations to entities other than the data recipient's own existing customers; or (b) enable high volume, automated, electronic processes that send queries or data to the systems of Registry Operator, a Registrar, or Afilias except as reasonably necessary to register domain names or modify existing registrations. All rights reserved. Public Interest Registry reserves the right to modify these terms at any time. By submitting this query, you agree to abide by this policy.
- G E O I P L O O K U P
- ====================================================================================================================================
- [i] IP Address: 209.44.124.244
- [i] Country: CA
- [i] State: Quebec
- [i] City: Montral
- [i] Latitude: 45.506100
- [i] Longitude: -73.557297
- H T T P H E A D E R S
- =======================================================================================================================================
- [i] HTTP/1.1 200 OK
- [i] Date: Sat, 24 Mar 2018 21:46:01 GMT
- [i] Server: Apache
- [i] X-Powered-By: PHP/5.2.17
- [i] P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
- [i] Cache-Control: no-cache
- [i] Pragma: no-cache
- [i] Set-Cookie: bb4fa0be0e6d3766edda867c462aa6ea=c2a2064136116d8290d3fb8d0884cf3c; path=/
- [i] Connection: close
- [i] Content-Type: text/html; charset=utf-8
- D N S L O O K U P
- =====================================================================================================================================
- ;; Truncated, retrying in TCP mode.
- glquebec.org. 100 IN TXT "v=spf1 a mx ip4:209.44.124.240 ~all"
- glquebec.org. 100 IN MX 10 mail.glquebec.org.
- glquebec.org. 100 IN A 209.44.124.244
- glquebec.org. 86400 IN SOA ns17.dnsprive.com. notification.citeglobe.ca. 2017102805 3600 7200 1209600 86400
- glquebec.org. 86400 IN NS ns18.dnsprive.com.
- glquebec.org. 86400 IN NS ns17.dnsprive.com.
- S U B N E T C A L C U L A T I O N
- ======================================================================================================================================
- Address = 209.44.124.244
- Network = 209.44.124.244 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 209.44.124.244 - 209.44.124.244 }
- N M A P P O R T S C A N
- ======================================================================================================================================
- Starting Nmap 7.01 ( https://nmap.org ) at 2018-03-24 21:46 UTC
- Nmap scan report for glquebec.org (209.44.124.244)
- Host is up (0.017s latency).
- rDNS record for 209.44.124.244: mailmilhouse2.dnsprive.com
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 25/tcp open smtp Postfix smtpd
- 80/tcp open http Apache httpd 2.2.16 ((Debian))
- 110/tcp filtered pop3
- 143/tcp filtered imap
- 443/tcp filtered https
- 445/tcp filtered microsoft-ds
- 3389/tcp filtered ms-wbt-server
- Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 15.61 seconds
- S U B - D O M A I N F I N D E R
- ======================================================================================================================================
- [i] Total Subdomains Found : 1
- [+] Subdomain: www.glquebec.org
- [-] IP: 209.44.124.244
- ######################################################################################################################################
- [!] IP Address : 209.44.124.244
- [!] Server: Apache
- [!] Powered By: PHP/5.2.17
- [+] Clickjacking protection is not in place.
- [!] www.glquebec.org doesn't seem to use a CMS
- [+] Honeypot Probabilty: 30%
- --------------------------------------------------------------------------------------------------------------------------------------
- [~] Trying to gather whois information for www.glquebec.org
- [+] Whois information found
- Updated Date : 2017-10-17 10:25:50, 2017-10-17 10:25:49
- Status : clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited, clientRenewProhibited https://icann.org/epp#clientRenewProhibited, clientTransferProhibited https://icann.org/epp#clientTransferProhibited, clientUpdateProhibited https://icann.org/epp#clientUpdateProhibited, clientTransferProhibited http://www.icann.org/epp#clientTransferProhibited, clientUpdateProhibited http://www.icann.org/epp#clientUpdateProhibited, clientRenewProhibited http://www.icann.org/epp#clientRenewProhibited, clientDeleteProhibited http://www.icann.org/epp#clientDeleteProhibited
- Name : Grand Secretaire, ******** ******** (see Notes section below on how to view unmasked data)
- Dnssec : unsigned
- City : Montreal
- Expiration Date : 2018-10-16 17:54:17
- Address : 2295 Rue Saint Marc
- Zipcode : H7Y2H7
- Domain Name : GLQUEBEC.ORG, glquebec.org
- Whois Server : whois.godaddy.com
- State : Quebec
- Registrar : GoDaddy.com, LLC
- Referral Url : None
- Country : CA
- Name Servers : NS17.DNSPRIVE.COM, NS18.DNSPRIVE.COM
- Org : Grande Loge du Quebec
- Creation Date : 2001-10-16 17:54:17
- Emails : abuse@godaddy.com, admin@glquebec.ca
- --------------------------------------------------------------------------------------------------------------------------------------
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 25/tcp open smtp Postfix smtpd
- 80/tcp open http Apache httpd 2.2.16 ((Debian))
- 110/tcp filtered pop3
- 143/tcp filtered imap
- 443/tcp filtered https
- 445/tcp filtered microsoft-ds
- 3389/tcp filtered ms-wbt-server
- -------------------------------------------------------------------------------------------------------------------------------------
- [+] DNS Records
- [+] Host Records (A)
- www.glquebec.orgHTTP: (mailmilhouse2.dnsprive.com) (209.44.124.244) AS10929 Netelligent Hosting Services Inc. Canada
- [+] TXT Records
- [+] DNS Map: https://dnsdumpster.com/static/map/glquebec.org.png
- [>] Initiating 3 intel modules
- [>] Loading Alpha module (1/3)
- [>] Beta module deployed (2/3)
- [>] Gamma module initiated (3/3)
- No emails found
- No hosts found
- [+] Virtual hosts:
- -----------------
- [~] Crawling the target for fuzzable URLs
- [+] Found 2 fuzzable URLs
- http://www.glquebec.org///?jsn_setmobile=no
- [~] Using SQLMap api to check for SQL injection vulnerabilities. Don't worry we are using an online service and it doesn't depend on your internet connection. This scan will take 2-3 minutes.
- [-] None of parameters is vulnerable to SQL injection
- [+] One or more parameters are vulnerable to XSS
- [+] These are the URLs having parameters:
- http://www.glquebec.org///?jsn_setmobile=no
- http://www.glquebec.org///?jsn_setmobile=yes
- #####################################################################################################################################
- [+] Getting nameservers
- 209.44.124.241 - ns17.dnsprive.com
- 209.44.124.242 - ns18.dnsprive.com
- [-] Zone transfer failed
- [+] TXT records found
- "v=spf1 a mx ip4:209.44.124.240 ~all"
- [+] MX records found, added to target list
- 10 mail.glquebec.org.
- [*] Scanning glquebec.org for A records
- 209.44.124.244 - glquebec.org
- 69.70.139.94 - admin.glquebec.org
- 209.44.124.244 - ftp.glquebec.org
- 127.0.0.1 - localhost.glquebec.org
- 209.44.124.244 - mail.glquebec.org
- 209.44.124.244 - pop.glquebec.org
- 209.44.124.244 - smtp.glquebec.org
- 209.44.124.244 - www.glquebec.org
- #######################################################################################################################################
- Ip Address Status Type Domain Name Server
- ---------- ------ ---- ----------- ------
- 69.70.139.94 host admin.glquebec.org
- 209.44.124.244 host ftp.glquebec.org
- 127.0.0.1 host localhost.glquebec.org
- 209.44.124.244 host mail.glquebec.org
- 209.44.124.244 host pop.glquebec.org
- 209.44.124.244 host smtp.glquebec.org
- 209.44.124.244 host www.glquebec.org
- #######################################################################################################################################
- Original* glquebec.org 209.44.124.244 NS:ns17.dnsprive.com MX:mail.glquebec.org
- Subdomain glqu.ebec.org 72.52.4.119 NS:ns1.sedoparking.com MX:localhost
- Subdomain glqueb.ec.org 159.203.80.200
- Subdomain glquebe.c.org 34.216.49.207
- ######################################################################################################################################
- ------------------------------------------------------------------------------------------------------------------------------------
- + Target IP: 209.44.124.244
- + Target Hostname: glquebec.org
- + Target Port: 80
- + Start Time: 2018-03-24 17:52:36 (GMT-4)
- ------------------------------------------------------------------------------------------------------------------------------------
- + Server: Apache
- + Cookie bb4fa0be0e6d3766edda867c462aa6ea created without the httponly flag
- + Retrieved x-powered-by header: PHP/5.2.17
- + The anti-clickjacking X-Frame-Options header is not present.
- + The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
- + The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
- + Cookie 962d4c090c97bbd707d9c1bb7f47e803 created without the httponly flag
- + Entry '/administrator/' in robots.txt returned a non-forbidden or redirect HTTP code (200)
- + Entry '/cache/' in robots.txt returned a non-forbidden or redirect HTTP code (200)
- + Entry '/cli/' in robots.txt returned a non-forbidden or redirect HTTP code (200)
- + Entry '/components/' in robots.txt returned a non-forbidden or redirect HTTP code (200)
- + Entry '/images/' in robots.txt returned a non-forbidden or redirect HTTP code (200)
- + Entry '/includes/' in robots.txt returned a non-forbidden or redirect HTTP code (200)
- + Entry '/language/' in robots.txt returned a non-forbidden or redirect HTTP code (200)
- + Entry '/libraries/' in robots.txt returned a non-forbidden or redirect HTTP code (200)
- + Entry '/logs/' in robots.txt returned a non-forbidden or redirect HTTP code (200)
- + Entry '/media/' in robots.txt returned a non-forbidden or redirect HTTP code (200)
- + Entry '/modules/' in robots.txt returned a non-forbidden or redirect HTTP code (200)
- + Entry '/plugins/' in robots.txt returned a non-forbidden or redirect HTTP code (200)
- + Entry '/templates/' in robots.txt returned a non-forbidden or redirect HTTP code (200)
- + Entry '/tmp/' in robots.txt returned a non-forbidden or redirect HTTP code (200)
- + "robots.txt" contains 15 entries which should be manually viewed.
- + /crossdomain.xml contains 1 line which include the following domains: *.cooliris.com
- + Web Server returns a valid response with junk HTTP methods, this may cause false positives.
- + Server banner has changed from 'Apache' to 'Apache/2.2.16 (Debian)' which may suggest a WAF, load balancer or proxy is in place
- + ERROR: Error limit (20) reached for host, giving up. Last error: opening stream: can't connect (timeout): Operation now in progress
- + Scan terminated: 20 error(s) and 23 item(s) reported on remote host
- + End Time: 2018-03-24 18:12:44 (GMT-4) (1208 seconds)
- ---------------------------------------------------------------------------
- #######################################################################################################################################
- Server: 10.211.254.254
- Address: 10.211.254.254#53
- Non-authoritative answer:
- Name: glquebec.org
- Address: 209.44.124.244
- glquebec.org has address 209.44.124.244
- glquebec.org mail is handled by 10 mail.glquebec.org.
- =======================================================================================================================================
- CHECKING OS FINGERPRINT
- ======================================================================================================================================
- Xprobe2 v.0.3 Copyright (c) 2002-2005 fyodor@o0o.nu, ofir@sys-security.com, meder@o0o.nu
- [+] Target is glquebec.org
- [+] Loading modules.
- [+] Following modules are loaded:
- [x] [1] ping:icmp_ping - ICMP echo discovery module
- [x] [2] ping:tcp_ping - TCP-based ping discovery module
- [x] [3] ping:udp_ping - UDP-based ping discovery module
- [x] [4] infogather:ttl_calc - TCP and UDP based TTL distance calculation
- [x] [5] infogather:portscan - TCP and UDP PortScanner
- [x] [6] fingerprint:icmp_echo - ICMP Echo request fingerprinting module
- [x] [7] fingerprint:icmp_tstamp - ICMP Timestamp request fingerprinting module
- [x] [8] fingerprint:icmp_amask - ICMP Address mask request fingerprinting module
- [x] [9] fingerprint:icmp_port_unreach - ICMP port unreachable fingerprinting module
- [x] [10] fingerprint:tcp_hshake - TCP Handshake fingerprinting module
- [x] [11] fingerprint:tcp_rst - TCP RST fingerprinting module
- [x] [12] fingerprint:smb - SMB fingerprinting module
- [x] [13] fingerprint:snmp - SNMPv2c fingerprinting module
- [+] 13 modules registered
- [+] Initializing scan engine
- [+] Running scan engine
- [-] ping:tcp_ping module: no closed/open TCP ports known on 209.44.124.244. Module test failed
- [-] ping:udp_ping module: no closed/open UDP ports known on 209.44.124.244. Module test failed
- [-] No distance calculation. 209.44.124.244 appears to be dead or no ports known
- [+] Host: 209.44.124.244 is down (Guess probability: 0%)
- [+] Cleaning up scan engine
- [+] Modules deinitialized
- [+] Execution completed.
- ######################################################################################################################################
- ; <<>> DiG 9.11.2-P1-1-Debian <<>> -x glquebec.org
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36716
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
- ;; OPT PSEUDOSECTION:
- ; EDNS: version: 0, flags:; udp: 4096
- ;; QUESTION SECTION:
- ;org.glquebec.in-addr.arpa. IN PTR
- ;; AUTHORITY SECTION:
- in-addr.arpa. 3600 IN SOA b.in-addr-servers.arpa. nstld.iana.org. 2018013276 1800 900 604800 3600
- ;; Query time: 665 msec
- ;; SERVER: 10.211.254.254#53(10.211.254.254)
- ;; WHEN: Sat Mar 24 18:05:40 EDT 2018
- ;; MSG SIZE rcvd: 122
- dnsenum VERSION:1.2.4
- ----- glquebec.org -----
- Host's addresses:
- __________________
- glquebec.org. 100 IN A 209.44.124.244
- Name Servers:
- ______________
- ns17.dnsprive.com. 13194 IN A 209.44.124.241
- ns18.dnsprive.com. 13194 IN A 209.44.124.242
- Mail (MX) Servers:
- ___________________
- mail.glquebec.org. 83 IN A 209.44.124.244
- Trying Zone Transfers and getting Bind Versions:
- _________________________________________________
- Trying Zone Transfer for glquebec.org on ns17.dnsprive.com ...
- Trying Zone Transfer for glquebec.org on ns18.dnsprive.com ...
- brute force file not specified, bay.
- #######################################################################################################################################
- # Coded By Ahmed Aboul-Ela - @aboul3la
- [-] Enumerating subdomains now for glquebec.org
- [-] verbosity is enabled, will show the subdomains results in realtime
- [-] Searching now in Baidu..
- [-] Searching now in Yahoo..
- [-] Searching now in Google..
- [-] Searching now in Bing..
- [-] Searching now in Ask..
- [-] Searching now in Netcraft..
- [-] Searching now in DNSdumpster..
- [-] Searching now in Virustotal..
- [-] Searching now in ThreatCrowd..
- [-] Searching now in SSL Certificates..
- [-] Searching now in PassiveDNS..
- SSL Certificates: mail.glquebec.org
- SSL Certificates: www.glquebec.org
- Virustotal: www.glquebec.org
- DNSdumpster: mail.glquebec.org
- DNSdumpster: www.glquebec.org
- Yahoo: www.glquebec.org
- [-] Saving results to file: /usr/share/sniper/loot/glquebec.org/domains/domains-glquebec.org.txt
- [-] Total Unique Subdomains Found: 2
- www.glquebec.org
- mail.glquebec.org
- #######################################################################################################################################
- Using nameservers:
- - 209.44.124.242
- - 209.44.124.241
- Checking for wildcard DNS... Done
- Running collector: Certificate Search... Done (2 hosts)
- Running collector: Google Transparency Report... Done (0 hosts)
- Running collector: Shodan... Skipped
- -> Key 'shodan' has not been set
- Running collector: Dictionary... Done (27 hosts)
- Running collector: PassiveTotal... Skipped
- -> Key 'passivetotal_key' has not been set
- Running collector: DNSDB... Done (2 hosts)
- Running collector: Threat Crowd... Done (0 hosts)
- Running collector: VirusTotal... Skipped
- -> Key 'virustotal' has not been set
- Running collector: Netcraft... Done (0 hosts)
- Running collector: Riddler... Skipped
- -> Key 'riddler_username' has not been set
- Running collector: PTRArchive... Error
- -> PTRArchive returned unexpected response code: 502
- Running collector: Wayback Machine... Done (8 hosts)
- Running collector: Censys... Skipped
- -> Key 'censys_secret' has not been set
- Running collector: PublicWWW... Done (2 hosts)
- Running collector: HackerTarget... Done (2 hosts)
- Resolving 37 unique hosts...
- 209.44.124.244 .glquebec.org
- 209.44.124.244 glquebec.org
- 209.44.124.244 mail.glquebec.org
- 209.44.124.244 www.glquebec.org
- Found subnets:
- - 209.44.124.0-255 : 4 hosts
- Wrote 4 hosts to:
- - file:///root/aquatone/glquebec.org/hosts.txt
- - file:///root/aquatone/glquebec.org/hosts.json
- __
- ____ _____ ___ ______ _/ /_____ ____ ___
- / __ `/ __ `/ / / / __ `/ __/ __ \/ __ \/ _ \
- / /_/ / /_/ / /_/ / /_/ / /_/ /_/ / / / / __/
- \__,_/\__, /\__,_/\__,_/\__/\____/_/ /_/\___/
- /_/ takeover v0.5.0 - by @michenriksen
- Loaded 4 hosts from /root/aquatone/glquebec.org/hosts.json
- Loaded 25 domain takeover detectors
- Identifying nameservers for glquebec.org... Done
- Using nameservers:
- - 209.44.124.242
- - 209.44.124.241
- Checking hosts for domain takeover vulnerabilities...
- Finished checking hosts:
- - Vulnerable : 0
- - Not Vulnerable : 4
- Wrote 0 potential subdomain takeovers to:
- - file:///root/aquatone/glquebec.org/takeovers.json
- __
- ____ _____ ___ ______ _/ /_____ ____ ___
- / __ `/ __ `/ / / / __ `/ __/ __ \/ __ \/ _ \
- / /_/ / /_/ / /_/ / /_/ / /_/ /_/ / / / / __/
- \__,_/\__, /\__,_/\__,_/\__/\____/_/ /_/\___/
- /_/ scan v0.5.0 - by @michenriksen
- Loaded 4 hosts from /root/aquatone/glquebec.org/hosts.json
- Probing 2 ports...
- Wrote open ports to file:///root/aquatone/glquebec.org/open_ports.txt
- Wrote URLs to file:///root/aquatone/glquebec.org/urls.txt
- __
- ____ _____ ___ ______ _/ /_____ ____ ___
- / __ `/ __ `/ / / / __ `/ __/ __ \/ __ \/ _ \
- / /_/ / /_/ / /_/ / /_/ / /_/ /_/ / / / / __/
- \__,_/\__, /\__,_/\__,_/\__/\____/_/ /_/\___/
- /_/ gather v0.5.0 - by @michenriksen
- ######################################################################################################################################
- [+] Emails found:
- ------------------
- info@glquebec.org
- tech@glquebec.org
- [+] Hosts found in search engines:
- ------------------------------------
- [-] Resolving hostnames IPs...
- 209.44.124.244:www.glquebec.org
- [+] Virtual hosts:
- ==================
- 209.44.124.244 www.glquebec.org
- 209.44.124.244 desintox.net
- 209.44.124.244 www.boreallabrador.com
- 209.44.124.244 www.physiotherapie-rawdon.com
- 209.44.124.244 www.fleuriste-st-martin.com
- 209.44.124.244 www.sexologuemontreal.com
- 209.44.124.244 maison-a-louer-floride.com
- 209.44.124.244 www.em3e.com
- 209.44.124.244 www.musiciensmontreal.com
- 209.44.124.244 www.unitestmartin.org
- 209.44.124.244 www.ndeauvive.org
- 209.44.124.244 tisserande-charlevoix.com
- 209.44.124.244 goveganic.net
- #######################################################################################################################################
- ====================================================================================
- PINGING HOST
- ====================================================================================
- PING glquebec.org (209.44.124.244) 56(84) bytes of data.
- --- glquebec.org ping statistics ---
- 1 packets transmitted, 0 received, 100% packet loss, time 0ms
- ====================================================================================
- RUNNING TCP PORT SCAN
- ====================================================================================
- Starting Nmap 7.60 ( https://nmap.org ) at 2018-03-24 18:16 EDT
- Nmap done: 1 IP address (1 host up) scanned in 25.70 seconds
- ====================================================================================
- RUNNING UDP PORT SCAN
- ====================================================================================
- Starting Nmap 7.60 ( https://nmap.org ) at 2018-03-24 18:16 EDT
- Nmap scan report for glquebec.org (209.44.124.244)
- Host is up.
- rDNS record for 209.44.124.244: mailmilhouse2.dnsprive.com
- PORT STATE SERVICE
- 53/udp open|filtered domain
- 67/udp open|filtered dhcps
- 68/udp open|filtered dhcpc
- 69/udp open|filtered tftp
- 88/udp open|filtered kerberos-sec
- 123/udp open|filtered ntp
- 137/udp open|filtered netbios-ns
- 138/udp open|filtered netbios-dgm
- 139/udp open|filtered netbios-ssn
- 161/udp open|filtered snmp
- 162/udp open|filtered snmptrap
- 389/udp open|filtered ldap
- 520/udp open|filtered route
- 2049/udp open|filtered nfs
- ######################################################################################################################################
- oooooo oooo .o. .oooooo..o ooooo ooo .oooooo.
- `888. .8' .888. d8P' `Y8 `888' `8' d8P' `Y8b
- `888. .8' .88888. Y88bo. 888 8 888 888
- `888.8' .8' `888. `ZY8888o. 888 8 888 888
- `888' .88ooo8888. `0Y88b 888 8 888 888
- 888 .8' `888. oo .d8P `88. .8' `88b d88'
- o888o o88o o8888o 88888888P' `YbodP' `Y8bood8P'
- Welcome to Yasuo v2.3
- Author: Saurabh Harit (@0xsauby) | Contribution & Coolness: Stephen Hall (@logicalsec)
- ######################################################################################################################################
- I, [2018-03-24T18:16:34.955081 #19029] INFO -- : Initiating port scan
- I, [2018-03-24T18:16:38.979049 #19029] INFO -- : Using nmap scan output file logs/nmap_output_2018-03-24_18-16-34.xml
- ######################################################################################################################################
- Anonymous JTSEC #OPkilluminatie full recon #13
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement