Anonymous JTSEC #OpDomesticTerrorism Full Recon #11

1. #######################################################################################################################################
2. Hostname www.ikkkkk.org ISP GoDaddy.com, LLC
3. Continent North America Flag
4. US
5. Country United States Country Code US
6. Region Arizona Local time 25 Aug 2018 21:41 MST
7. City Scottsdale Postal Code 85260
8. IP Address 198.71.232.4 Latitude 33.612
9. Longitude -111.891
10. #######################################################################################################################################
11. HostIP:198.71.232.4
12. HostName:ikkkkk.org
13.  
14. Gathered Inet-whois information for 198.71.232.4
15. ---------------------------------------------------------------------------------------------------------------------------------------
16.  
17.  
18. inetnum: 198.55.32.0 - 198.99.147.255
19. netname: NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK
20. descr: IPv4 address block not managed by the RIPE NCC
21. remarks: ------------------------------------------------------
22. remarks:
23. remarks: You can find the whois server to query, or the
24. remarks: IANA registry to query on this web page:
25. remarks: http://www.iana.org/assignments/ipv4-address-space
26. remarks:
27. remarks: You can access databases of other RIRs at:
28. remarks:
29. remarks: AFRINIC (Africa)
30. remarks: http://www.afrinic.net/ whois.afrinic.net
31. remarks:
32. remarks: APNIC (Asia Pacific)
33. remarks: http://www.apnic.net/ whois.apnic.net
34. remarks:
35. remarks: ARIN (Northern America)
36. remarks: http://www.arin.net/ whois.arin.net
37. remarks:
38. remarks: LACNIC (Latin America and the Carribean)
39. remarks: http://www.lacnic.net/ whois.lacnic.net
40. remarks:
41. remarks: IANA IPV4 Recovered Address Space
42. remarks: http://www.iana.org/assignments/ipv4-recovered-address-space/ipv4-recovered-address-space.xhtml
43. remarks:
44. remarks: ------------------------------------------------------
45. country: EU # Country is really world wide
46. admin-c: IANA1-RIPE
47. tech-c: IANA1-RIPE
48. status: ALLOCATED UNSPECIFIED
49. mnt-by: RIPE-NCC-HM-MNT
50. mnt-lower: RIPE-NCC-HM-MNT
51. mnt-routes: RIPE-NCC-RPSL-MNT
52. created: 2016-04-14T15:18:46Z
53. last-modified: 2016-04-14T15:18:46Z
54. source: RIPE
55.  
56. role: Internet Assigned Numbers Authority
57. address: see http://www.iana.org.
58. admin-c: IANA1-RIPE
59. tech-c: IANA1-RIPE
60. nic-hdl: IANA1-RIPE
61. remarks: For more information on IANA services
62. remarks: go to IANA web site at http://www.iana.org.
63. mnt-by: RIPE-NCC-MNT
64. created: 1970-01-01T00:00:00Z
65. last-modified: 2001-09-22T09:31:27Z
66. source: RIPE # Filtered
67.  
68. % This query was served by the RIPE Database Query Service version 1.91.2 (WAGYU)
69.  
70.  
71.  
72. Gathered Inic-whois information for ikkkkk.org
73. ---------------------------------------------------------------------------------------------------------------------------------------
74. Domain Name: IKKKKK.ORG
75. Registry Domain ID: D151805712-LROR
76. Registrar WHOIS Server: whois.godaddy.com
77. Registrar URL: http://www.whois.godaddy.com
78. Updated Date: 2018-01-14T15:47:49Z
79. Creation Date: 2008-02-22T03:18:54Z
80. Registry Expiry Date: 2020-02-22T03:18:54Z
81. Registrar Registration Expiration Date:
82. Registrar: Wild West Domains, LLC
83. Registrar IANA ID: 440
84. Registrar Abuse Contact Email: abuse@wildwest.com
85. Registrar Abuse Contact Phone: +1.4806242505
86. Reseller:
87. Domain Status: ok https://icann.org/epp#ok
88. Registrant Organization: Int. Keystone Knights
89. Registrant State/Province: Arkansas
90. Registrant Country: US
91. Name Server: NS33.DOMAINCONTROL.COM
92. Name Server: NS34.DOMAINCONTROL.COM
93. DNSSEC: unsigned
94. URL of the ICANN Whois Inaccuracy Complaint Form https://www.icann.org/wicf/)
95. >>> Last update of WHOIS database: 2018-08-26T04:44:09Z <<<
96.  
97. #######################################################################################################################################
98. [i] Scanning Site: http://ikkkkk.org
99.  
100.  
101.  
102. B A S I C I N F O
103. =======================================================================================================================================
104.  
105.  
106. [+] Site Title: Home
107. [+] IP address: 198.71.232.4
108. [+] Web Server: DPS/1.4.14
109. [+] CMS: Could Not Detect
110. [+] Cloudflare: Not Detected
111. [+] Robots File: Could NOT Find robots.txt!
112.  
113.  
114.  
115.  
116. W H O I S L O O K U P
117. =======================================================================================================================================
118.  
119. Domain Name: IKKKKK.ORG
120. Registry Domain ID: D151805712-LROR
121. Registrar WHOIS Server: whois.godaddy.com
122. Registrar URL: http://www.whois.godaddy.com
123. Updated Date: 2018-01-14T15:47:49Z
124. Creation Date: 2008-02-22T03:18:54Z
125. Registry Expiry Date: 2020-02-22T03:18:54Z
126. Registrar Registration Expiration Date:
127. Registrar: Wild West Domains, LLC
128. Registrar IANA ID: 440
129. Registrar Abuse Contact Email: abuse@wildwest.com
130. Registrar Abuse Contact Phone: +1.4806242505
131. Reseller:
132. Domain Status: ok https://icann.org/epp#ok
133. Registrant Organization: Int. Keystone Knights
134. Registrant State/Province: Arkansas
135. Registrant Country: US
136. Name Server: NS33.DOMAINCONTROL.COM
137. Name Server: NS34.DOMAINCONTROL.COM
138. DNSSEC: unsigned
139. URL of the ICANN Whois Inaccuracy Complaint Form https://www.icann.org/wicf/)
140. >>> Last update of WHOIS database: 2018-08-26T04:44:21Z <<<
141.  
142. For more information on Whois status codes, please visit https://icann.org/epp
143.  
144. Access to Public Interest Registry WHOIS information is provided to assist persons in determining the contents of a domain name registration record in the Public Interest Registry registry database. The data in this record is provided by Public Interest Registry for informational purposes only, and Public Interest Registry does not guarantee its accuracy. This service is intended only for query-based access. You agree that you will use this data only for lawful purposes and that, under no circumstances will you use this data to (a) allow, enable, or otherwise support the transmission by e-mail, telephone, or facsimile of mass unsolicited, commercial advertising or solicitations to entities other than the data recipient's own existing customers; or (b) enable high volume, automated, electronic processes that send queries or data to the systems of Registry Operator, a Registrar, or Afilias except as reasonably necessary to register domain names or modify existing registrations. All rights reserved. Public Interest Registry reserves the right to modify these terms at any time. By submitting this query, you agree to abide by this policy.
145.  
146. The Registrar of Record identified in this output may have an RDDS service that can be queried for additional information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.
147.  
148.  
149.  
150.  
151. G E O I P L O O K U P
152. =======================================================================================================================================
153.  
154. [i] IP Address: 198.71.232.4
155. [i] Country: US
156. [i] State: Arizona
157. [i] City: Scottsdale
158. [i] Latitude: 33.611900
159. [i] Longitude: -111.890602
160.  
161.  
162.  
163.  
164. H T T P H E A D E R S
165. =======================================================================================================================================
166.  
167.  
168. [i] HTTP/1.1 301 Moved Permanently
169. [i] location: http://www.ikkkkk.org/
170. [i] Vary: Accept-Encoding
171. [i] Server: DPS/1.4.14
172. [i] X-SiteId: 2000
173. [i] Set-Cookie: dps_site_id=2000; path=/
174. [i] ETag: a49022a2cc7faba80e390531be177fd8
175. [i] Date: Sun, 26 Aug 2018 04:45:24 GMT
176. [i] Connection: close
177. [i] HTTP/1.1 200 OK
178. [i] Content-Type: text/html; charset=utf-8
179. [i] Cache-Control: public, max-age=60, s-maxage=300
180. [i] Vary: Accept-Encoding
181. [i] Content-Encoding: raw
182. [i] Server: DPS/1.4.14
183. [i] X-SiteId: 2000
184. [i] Set-Cookie: dps_site_id=2000; path=/
185. [i] ETag: a49022a2cc7faba80e390531be177fd8
186. [i] Date: Sun, 26 Aug 2018 04:45:25 GMT
187. [i] Connection: close
188.  
189.  
190.  
191.  
192. D N S L O O K U P
193. =======================================================================================================================================
194.  
195. ;; Truncated, retrying in TCP mode.
196. ikkkkk.org. 600 IN A 198.71.232.4
197. ikkkkk.org. 3600 IN NS ns33.domaincontrol.com.
198. ikkkkk.org. 3600 IN MX 0 smtp.secureserver.net.
199. ikkkkk.org. 3600 IN MX 10 mailstore1.secureserver.net.
200. ikkkkk.org. 3600 IN SOA ns33.domaincontrol.com. dns.jomax.net. 2018060306 28800 7200 604800 3600
201. ikkkkk.org. 3600 IN NS ns34.domaincontrol.com.
202.  
203.  
204.  
205.  
206. S U B N E T C A L C U L A T I O N
207. =======================================================================================================================================
208.  
209. Address = 198.71.232.4
210. Network = 198.71.232.4 / 32
211. Netmask = 255.255.255.255
212. Broadcast = not needed on Point-to-Point links
213. Wildcard Mask = 0.0.0.0
214. Hosts Bits = 0
215. Max. Hosts = 1 (2^0 - 0)
216. Host Range = { 198.71.232.4 - 198.71.232.4 }
217.  
218.  
219.  
220. N M A P P O R T S C A N
221. =======================================================================================================================================
222.  
223.  
224. Starting Nmap 7.40 ( https://nmap.org ) at 2018-08-26 04:45 UTC
225. Nmap scan report for ikkkkk.org (198.71.232.4)
226. Host is up (0.0075s latency).
227. rDNS record for 198.71.232.4: ip-198-71-232-4.ip.secureserver.net
228. PORT STATE SERVICE
229. 21/tcp filtered ftp
230. 22/tcp filtered ssh
231. 23/tcp filtered telnet
232. 80/tcp open http
233. 110/tcp filtered pop3
234. 143/tcp filtered imap
235. 443/tcp open https
236. 3389/tcp filtered ms-wbt-server
237.  
238. Nmap done: 1 IP address (1 host up) scanned in 1.32 seconds
239.  
240. #######################################################################################################################################
241. [?] Enter the target: http://www.ikkkkk.org/
242. [!] IP Address : 198.71.232.4
243. [!] Server: DPS/1.4.14
244. [+] Clickjacking protection is not in place.
245. [!] www.ikkkkk.org doesn't seem to use a CMS
246. [+] Honeypot Probabilty: 0%
247. ---------------------------------------------------------------------------------------------------------------------------------------
248. [~] Trying to gather whois information for www.ikkkkk.org
249. [+] Whois information found
250. [-] Unable to build response, visit https://who.is/whois/www.ikkkkk.org
251. ---------------------------------------------------------------------------------------------------------------------------------------
252. PORT STATE SERVICE
253. 21/tcp filtered ftp
254. 22/tcp filtered ssh
255. 23/tcp filtered telnet
256. 80/tcp open http
257. 110/tcp filtered pop3
258. 143/tcp filtered imap
259. 443/tcp open https
260. 3389/tcp filtered ms-wbt-server
261. Nmap done: 1 IP address (1 host up) scanned in 1.35 seconds
262. ---------------------------------------------------------------------------------------------------------------------------------------
263. #######################################################################################################################################
264.  
265. Starting Nmap 7.40 ( https://nmap.org ) at 2018-08-26 04:47 UTC
266. Nmap scan report for ikkkkk.org (198.71.232.4)
267. Host is up (0.0075s latency).
268. rDNS record for 198.71.232.4: ip-198-71-232-4.ip.secureserver.net
269. PORT STATE SERVICE
270. 21/tcp filtered ftp
271. 22/tcp filtered ssh
272. 23/tcp filtered telnet
273. 80/tcp open http
274. 110/tcp filtered pop3
275. 143/tcp filtered imap
276. 443/tcp open https
277. 3389/tcp filtered ms-wbt-server
278.  
279. Nmap done: 1 IP address (1 host up) scanned in 1.25 seconds
280.  
281. #######################################################################################################################################
282. Start: 2018-08-26T05:00:29+0000
283. HOST: web01 Loss% Snt Last Avg Best Wrst StDev
284. 1.|-- 45.79.12.202 0.0% 3 0.6 1.2 0.6 1.6 0.5
285. 2.|-- 45.79.12.6 0.0% 3 0.6 1.7 0.6 3.7 1.7
286. 3.|-- 45.79.12.8 0.0% 3 0.7 0.8 0.7 1.0 0.2
287. 4.|-- ae-37.a01.dllstx04.us.bb.gin.ntt.net 0.0% 3 2.1 6.4 2.1 13.4 6.1
288. 5.|-- ae-9.r10.dllstx09.us.bb.gin.ntt.net 0.0% 3 1.5 1.5 1.4 1.6 0.1
289. 6.|-- ??? 100.0 3 0.0 0.0 0.0 0.0 0.0
290. 7.|-- ??? 100.0 3 0.0 0.0 0.0 0.0 0.0
291. 8.|-- 4.14.98.38 0.0% 3 38.1 39.4 38.1 42.2 2.4
292. 9.|-- ip-184-168-6-81.ip.secureserver.net 0.0% 3 38.6 38.8 38.6 38.9 0.1
293. 10.|-- ip-184-168-6-81.ip.secureserver.net 0.0% 3 38.3 38.7 38.3 39.1 0.4
294. 11.|-- ??? 100.0 3 0.0 0.0 0.0 0.0 0.0
295. 12.|-- ??? 100.0 3 0.0 0.0 0.0 0.0 0.0
296. 13.|-- ??? 100.0 3 0.0 0.0 0.0 0.0 0.0
297. 14.|-- ??? 100.0 3 0.0 0.0 0.0 0.0 0.0
298. 15.|-- ??? 100.0 3 0.0 0.0 0.0 0.0 0.0
299. 16.|-- ip-198-71-232-4.ip.secureserver.net 0.0% 3 37.7 37.7 37.7 37.7 0.0
300.  
301. #######################################################################################################################################
302. *] Processing domain ikkkkk.org
303. [+] Getting nameservers
304. 173.201.74.17 - ns34.domaincontrol.com
305. 216.69.185.17 - ns33.domaincontrol.com
306. [-] Zone transfer failed
307.  
308. [+] MX records found, added to target list
309. 10 mailstore1.secureserver.net.
310. 0 smtp.secureserver.net.
311.  
312. [*] Scanning ikkkkk.org for A records
313. 198.71.232.4 - ikkkkk.org
314. 208.109.80.14 - blog.ikkkkk.org
315. 173.201.192.5 - e.ikkkkk.org
316. 173.201.192.133 - e.ikkkkk.org
317. 97.74.135.45 - e.ikkkkk.org
318. 173.201.193.148 - e.ikkkkk.org
319. 97.74.135.133 - e.ikkkkk.org
320. 68.178.252.5 - e.ikkkkk.org
321. 173.201.192.148 - e.ikkkkk.org
322. 72.167.218.55 - e.ikkkkk.org
323. 173.201.192.20 - e.ikkkkk.org
324. 68.178.252.148 - e.ikkkkk.org
325. 68.178.252.133 - e.ikkkkk.org
326. 72.167.218.45 - e.ikkkkk.org
327. 97.74.135.55 - e.ikkkkk.org
328. 68.178.252.20 - e.ikkkkk.org
329. 173.201.193.133 - e.ikkkkk.org
330. 72.167.218.173 - e.ikkkkk.org
331. 97.74.135.148 - e.ikkkkk.org
332. 72.167.218.183 - e.ikkkkk.org
333. 45.40.130.40 - e.ikkkkk.org
334. 45.40.130.41 - e.ikkkkk.org
335. 173.201.193.20 - e.ikkkkk.org
336. 173.201.193.5 - e.ikkkkk.org
337. 173.201.192.148 - email.ikkkkk.org
338. 72.167.218.183 - email.ikkkkk.org
339. 173.201.193.148 - email.ikkkkk.org
340. 72.167.218.173 - email.ikkkkk.org
341. 68.178.252.133 - email.ikkkkk.org
342. 97.74.135.55 - email.ikkkkk.org
343. 97.74.135.133 - email.ikkkkk.org
344. 68.178.252.5 - email.ikkkkk.org
345. 97.74.135.148 - email.ikkkkk.org
346. 173.201.192.20 - email.ikkkkk.org
347. 173.201.193.133 - email.ikkkkk.org
348. 97.74.135.45 - email.ikkkkk.org
349. 173.201.192.133 - email.ikkkkk.org
350. 45.40.130.41 - email.ikkkkk.org
351. 173.201.192.5 - email.ikkkkk.org
352. 173.201.193.20 - email.ikkkkk.org
353. 68.178.252.148 - email.ikkkkk.org
354. 173.201.193.5 - email.ikkkkk.org
355. 68.178.252.20 - email.ikkkkk.org
356. 72.167.218.45 - email.ikkkkk.org
357. 72.167.218.55 - email.ikkkkk.org
358. 45.40.130.40 - email.ikkkkk.org
359. 198.71.232.4 - ftp.ikkkkk.org
360. 72.167.218.138 - imap.ikkkkk.org
361. 173.201.193.97 - imap.ikkkkk.org
362. 97.74.135.10 - imap.ikkkkk.org
363. 97.74.135.143 - imap.ikkkkk.org
364. 173.201.192.129 - imap.ikkkkk.org
365. 173.201.193.129 - imap.ikkkkk.org
366. 173.201.192.158 - imap.ikkkkk.org
367. 68.178.252.117 - imap.ikkkkk.org
368. 173.201.192.129 - mail.ikkkkk.org
369. 173.201.193.129 - mail.ikkkkk.org
370. 97.74.135.10 - mail.ikkkkk.org
371. 173.201.193.97 - mail.ikkkkk.org
372. 72.167.218.138 - mail.ikkkkk.org
373. 68.178.252.117 - mail.ikkkkk.org
374. 97.74.135.143 - mail.ikkkkk.org
375. 173.201.192.158 - mail.ikkkkk.org
376. 173.201.193.5 - pda.ikkkkk.org
377. 173.201.193.129 - pop.ikkkkk.org
378. 173.201.192.158 - pop.ikkkkk.org
379. 97.74.135.143 - pop.ikkkkk.org
380. 173.201.193.97 - pop.ikkkkk.org
381. 68.178.252.117 - pop.ikkkkk.org
382. 97.74.135.10 - pop.ikkkkk.org
383. 72.167.218.138 - pop.ikkkkk.org
384. 173.201.192.129 - pop.ikkkkk.org
385. 68.178.213.37 - smtp.ikkkkk.org
386. 72.167.238.29 - smtp.ikkkkk.org
387. 68.178.213.203 - smtp.ikkkkk.org
388. 173.201.193.148 - webmail.ikkkkk.org
389. 45.40.130.40 - webmail.ikkkkk.org
390. 72.167.218.45 - webmail.ikkkkk.org
391. 173.201.192.5 - webmail.ikkkkk.org
392. 173.201.192.148 - webmail.ikkkkk.org
393. 97.74.135.133 - webmail.ikkkkk.org
394. 97.74.135.55 - webmail.ikkkkk.org
395. 72.167.218.183 - webmail.ikkkkk.org
396. 173.201.192.20 - webmail.ikkkkk.org
397. 45.40.130.41 - webmail.ikkkkk.org
398. 173.201.193.5 - webmail.ikkkkk.org
399. 72.167.218.173 - webmail.ikkkkk.org
400. 68.178.252.148 - webmail.ikkkkk.org
401. 72.167.218.55 - webmail.ikkkkk.org
402. 173.201.193.20 - webmail.ikkkkk.org
403. 68.178.252.133 - webmail.ikkkkk.org
404. 173.201.193.133 - webmail.ikkkkk.org
405. 97.74.135.148 - webmail.ikkkkk.org
406. 173.201.192.133 - webmail.ikkkkk.org
407. 68.178.252.20 - webmail.ikkkkk.org
408. 97.74.135.45 - webmail.ikkkkk.org
409. 68.178.252.5 - webmail.ikkkkk.org
410. 198.71.232.4 - www.ikkkkk.org
411. #######################################################################################################################################
412. Ip Address Status Type Domain Name Server
413. ---------- ------ ---- ----------- ------
414. 208.109.80.14 host blog.ikkkkk.org
415. 68.178.252.148 301 alias e.ikkkkk.org Apache
416. 68.178.252.148 301 host email.secureserver.net Apache
417. 173.201.192.5 301 host email.secureserver.net Apache
418. 173.201.193.20 301 host email.secureserver.net Apache
419. 72.167.218.55 301 host email.secureserver.net Apache
420. 97.74.135.45 301 host email.secureserver.net Apache
421. 173.201.192.20 301 host email.secureserver.net Apache
422. 72.167.218.183 301 host email.secureserver.net Apache
423. 173.201.193.133 301 host email.secureserver.net Apache
424. 97.74.135.55 301 host email.secureserver.net Apache
425. 45.40.130.41 301 host email.secureserver.net Apache
426. 68.178.252.20 301 host email.secureserver.net Apache
427. 97.74.135.133 301 host email.secureserver.net Apache
428. 173.201.192.148 301 host email.secureserver.net Apache
429. 173.201.193.148 301 host email.secureserver.net Apache
430. 45.40.130.40 301 host email.secureserver.net Apache
431. 68.178.252.5 301 host email.secureserver.net Apache
432. 68.178.252.133 301 host email.secureserver.net Apache
433. 173.201.192.133 301 host email.secureserver.net Apache
434. 72.167.218.173 301 host email.secureserver.net Apache
435. 72.167.218.45 301 host email.secureserver.net Apache
436. 97.74.135.148 301 host email.secureserver.net Apache
437. 173.201.193.5 301 host email.secureserver.net Apache
438. 173.201.193.5 301 alias email.ikkkkk.org Apache
439. 173.201.193.5 301 host email.secureserver.net Apache
440. 173.201.192.148 301 host email.secureserver.net Apache
441. 173.201.192.133 301 host email.secureserver.net Apache
442. 173.201.193.133 301 host email.secureserver.net Apache
443. 97.74.135.148 301 host email.secureserver.net Apache
444. 97.74.135.55 301 host email.secureserver.net Apache
445. 68.178.252.148 301 host email.secureserver.net Apache
446. 72.167.218.183 301 host email.secureserver.net Apache
447. 173.201.192.20 301 host email.secureserver.net Apache
448. 68.178.252.20 301 host email.secureserver.net Apache
449. 68.178.252.5 301 host email.secureserver.net Apache
450. 173.201.193.20 301 host email.secureserver.net Apache
451. 173.201.193.148 301 host email.secureserver.net Apache
452. 72.167.218.45 301 host email.secureserver.net Apache
453. 45.40.130.41 301 host email.secureserver.net Apache
454. 72.167.218.173 301 host email.secureserver.net Apache
455. 68.178.252.133 301 host email.secureserver.net Apache
456. 173.201.192.5 301 host email.secureserver.net Apache
457. 72.167.218.55 301 host email.secureserver.net Apache
458. 45.40.130.40 301 host email.secureserver.net Apache
459. 97.74.135.133 301 host email.secureserver.net Apache
460. 97.74.135.45 301 host email.secureserver.net Apache
461. 198.71.232.4 404 alias ftp.ikkkkk.org DPS/1.4.14
462. 198.71.232.4 404 host ikkkkk.org DPS/1.4.14
463. 173.201.193.97 alias imap.ikkkkk.org
464. 173.201.193.97 host imap.secureserver.net
465. 173.201.192.158 host imap.secureserver.net
466. 173.201.193.129 host imap.secureserver.net
467. 72.167.218.138 host imap.secureserver.net
468. 68.178.252.117 host imap.secureserver.net
469. 97.74.135.143 host imap.secureserver.net
470. 97.74.135.10 host imap.secureserver.net
471. 173.201.192.129 host imap.secureserver.net
472. 97.74.135.143 alias mail.ikkkkk.org
473. 97.74.135.143 host pop.secureserver.net
474. 72.167.218.138 host pop.secureserver.net
475. 173.201.192.129 host pop.secureserver.net
476. 173.201.193.97 host pop.secureserver.net
477. 68.178.252.117 host pop.secureserver.net
478. 173.201.192.158 host pop.secureserver.net
479. 97.74.135.10 host pop.secureserver.net
480. 173.201.193.129 host pop.secureserver.net
481. 173.201.193.5 301 alias pda.ikkkkk.org Apache
482. 173.201.193.5 301 host mobilemail-v01.prod.mesa1.secureserver.net Apache
483. 68.178.252.117 alias pop.ikkkkk.org
484. 68.178.252.117 host pop.secureserver.net
485. 173.201.193.97 host pop.secureserver.net
486. 97.74.135.143 host pop.secureserver.net
487. 173.201.193.129 host pop.secureserver.net
488. 72.167.218.138 host pop.secureserver.net
489. 173.201.192.158 host pop.secureserver.net
490. 173.201.192.129 host pop.secureserver.net
491. 97.74.135.10 host pop.secureserver.net
492. 68.178.213.203 alias smtp.ikkkkk.org
493. 68.178.213.203 host smtp.secureserver.net
494. 72.167.238.29 host smtp.secureserver.net
495. 68.178.213.37 host smtp.secureserver.net
496. 97.74.135.55 301 alias webmail.ikkkkk.org Apache
497. 97.74.135.55 301 alias webmail.secureserver.net Apache
498. 97.74.135.55 301 host email.secureserver.net Apache
499. 173.201.193.5 301 host email.secureserver.net Apache
500. 97.74.135.133 301 host email.secureserver.net Apache
501. 68.178.252.20 301 host email.secureserver.net Apache
502. 97.74.135.148 301 host email.secureserver.net Apache
503. 68.178.252.148 301 host email.secureserver.net Apache
504. 72.167.218.173 301 host email.secureserver.net Apache
505. 173.201.193.133 301 host email.secureserver.net Apache
506. 72.167.218.55 301 host email.secureserver.net Apache
507. 173.201.192.148 301 host email.secureserver.net Apache
508. 173.201.193.148 301 host email.secureserver.net Apache
509. 68.178.252.133 301 host email.secureserver.net Apache
510. 68.178.252.5 301 host email.secureserver.net Apache
511. 173.201.192.5 301 host email.secureserver.net Apache
512. 173.201.192.133 301 host email.secureserver.net Apache
513. 72.167.218.45 301 host email.secureserver.net Apache
514. 45.40.130.40 301 host email.secureserver.net Apache
515. 173.201.192.20 301 host email.secureserver.net Apache
516. 72.167.218.183 301 host email.secureserver.net Apache
517. 97.74.135.45 301 host email.secureserver.net Apache
518. 173.201.193.20 301 host email.secureserver.net Apache
519. 45.40.130.41 301 host email.secureserver.net Apache
520. 198.71.232.4 404 alias www.ikkkkk.org DPS/1.4.14
521. 198.71.232.4 404 host ikkkkk.org DPS/1.4.14
522. #######################################################################################################################################
523. [*] Performing General Enumeration of Domain: ikkkkk.org
524. [-] DNSSEC is not configured for ikkkkk.org
525. [*] SOA ns33.domaincontrol.com 216.69.185.17
526. [*] NS ns34.domaincontrol.com 173.201.74.17
527. [*] NS ns34.domaincontrol.com 2603:5:22a1::11
528. [*] NS ns33.domaincontrol.com 216.69.185.17
529. [*] NS ns33.domaincontrol.com 2607:f208:206::11
530. [*] MX mailstore1.secureserver.net 68.178.213.244
531. [*] MX mailstore1.secureserver.net 72.167.238.32
532. [*] MX mailstore1.secureserver.net 68.178.213.243
533. [*] MX smtp.secureserver.net 68.178.213.37
534. [*] MX smtp.secureserver.net 72.167.238.29
535. [*] MX smtp.secureserver.net 68.178.213.203
536. [*] A ikkkkk.org 198.71.232.4
537. [*] Enumerating SRV Records
538. [-] No SRV Records Found for ikkkkk.org
539. #######################################################################################################################################
540. blog.ikkkkk.org
541. IP address #1: 208.109.80.14
542.  
543. e.ikkkkk.org
544. IP address #1: 97.74.135.133
545. IP address #2: 45.40.130.41
546. IP address #3: 173.201.193.133
547. IP address #4: 68.178.252.20
548. IP address #5: 173.201.192.148
549. IP address #6: 72.167.218.173
550. IP address #7: 45.40.130.40
551. IP address #8: 68.178.252.133
552. IP address #9: 72.167.218.55
553. IP address #10: 72.167.218.45
554. IP address #11: 97.74.135.55
555. IP address #12: 72.167.218.183
556. IP address #13: 68.178.252.5
557. IP address #14: 173.201.193.5
558. IP address #15: 173.201.192.5
559. IP address #16: 173.201.192.20
560. IP address #17: 173.201.192.133
561. IP address #18: 173.201.193.20
562. IP address #19: 173.201.193.148
563. IP address #20: 97.74.135.148
564. IP address #21: 97.74.135.45
565. IP address #22: 68.178.252.148
566.  
567. email.ikkkkk.org
568. IP address #1: 173.201.193.20
569. IP address #2: 72.167.218.55
570. IP address #3: 45.40.130.41
571. IP address #4: 173.201.192.133
572. IP address #5: 97.74.135.55
573. IP address #6: 173.201.193.5
574. IP address #7: 68.178.252.5
575. IP address #8: 97.74.135.148
576. IP address #9: 173.201.192.5
577. IP address #10: 97.74.135.45
578. IP address #11: 68.178.252.148
579. IP address #12: 72.167.218.183
580. IP address #13: 45.40.130.40
581. IP address #14: 97.74.135.133
582. IP address #15: 68.178.252.133
583. IP address #16: 173.201.192.20
584. IP address #17: 173.201.193.133
585. IP address #18: 173.201.193.148
586. IP address #19: 72.167.218.173
587. IP address #20: 68.178.252.20
588. IP address #21: 173.201.192.148
589. IP address #22: 72.167.218.45
590.  
591. ftp.ikkkkk.org
592. IP address #1: 198.71.232.4
593.  
594. imap.ikkkkk.org
595. IP address #1: 173.201.193.97
596. IP address #2: 173.201.192.158
597. IP address #3: 173.201.193.129
598. IP address #4: 68.178.252.117
599. IP address #5: 97.74.135.10
600. IP address #6: 173.201.192.129
601. IP address #7: 72.167.218.138
602. IP address #8: 97.74.135.143
603.  
604. mail.ikkkkk.org
605. IP address #1: 173.201.193.97
606. IP address #2: 173.201.193.129
607. IP address #3: 173.201.192.129
608. IP address #4: 97.74.135.10
609. IP address #5: 97.74.135.143
610. IP address #6: 72.167.218.138
611. IP address #7: 68.178.252.117
612. IP address #8: 173.201.192.158
613.  
614. pop.ikkkkk.org
615. IP address #1: 173.201.192.129
616. IP address #2: 72.167.218.138
617. IP address #3: 97.74.135.10
618. IP address #4: 173.201.193.97
619. IP address #5: 68.178.252.117
620. IP address #6: 97.74.135.143
621. IP address #7: 173.201.192.158
622. IP address #8: 173.201.193.129
623.  
624. smtp.ikkkkk.org
625. IP address #1: 68.178.213.37
626. IP address #2: 72.167.238.29
627. IP address #3: 68.178.213.203
628.  
629. webmail.ikkkkk.org
630. IP address #1: 68.178.252.20
631. IP address #2: 173.201.193.5
632. IP address #3: 97.74.135.133
633. IP address #4: 173.201.192.20
634. IP address #5: 173.201.192.133
635. IP address #6: 68.178.252.133
636. IP address #7: 173.201.192.5
637. IP address #8: 45.40.130.41
638. IP address #9: 72.167.218.183
639. IP address #10: 173.201.192.148
640. IP address #11: 97.74.135.55
641. IP address #12: 72.167.218.173
642. IP address #13: 97.74.135.148
643. IP address #14: 68.178.252.148
644. IP address #15: 173.201.193.20
645. IP address #16: 68.178.252.5
646. IP address #17: 173.201.193.133
647. IP address #18: 173.201.193.148
648. IP address #19: 97.74.135.45
649. IP address #20: 45.40.130.40
650. IP address #21: 72.167.218.55
651. IP address #22: 72.167.218.45
652.  
653. www.ikkkkk.org
654. IP address #1: 198.71.232.4
655.  
656. #######################################################################################################################################
657. =======================================================================================================================================
658. Hosts 10
659. DNS Records 12
660. Subdomains 4
661.  
662. Hosts (10)
663. =======================================================================================================================================
664. 68.178.213.37
665. 68.178.213.203
666. 68.178.213.243
667. 68.178.213.244
668. 72.167.238.29
669. 72.167.238.32
670. 173.201.74.17
671. 198.71.232.4
672. 208.109.80.14
673. 216.69.185.17
674.  
675. DNS Records (12)
676. =======================================================================================================================================
677. ikkkkk.org A 198.71.232.4
678. smtp.secureserver.net MX 68.178.213.203
679. mailstore1.secureserver.net MX 68.178.213.243
680. mailstore1.secureserver.net MX 68.178.213.244
681. smtp.secureserver.net MX 68.178.213.37
682. smtp.secureserver.net MX 72.167.238.29
683. mailstore1.secureserver.net MX 72.167.238.32
684. ns34.domaincontrol.com NS 173.201.74.17
685. ns33.domaincontrol.com NS 216.69.185.17
686. ns34.domaincontrol.com NS 2603:5:22a1::11
687. ns33.domaincontrol.com NS 2607:f208:206::11
688. ns33.domaincontrol.com SOA 216.69.185.17
689.  
690. Subdomains (4)
691. =======================================================================================================================================
692. blog.ikkkkk.org 208.109.80.14
693. ftp.ikkkkk.org 198.71.232.4
694. ikkkkk.org 198.71.232.4
695. www.ikkkkk.org 198.71.232.4
696.  
697. Loadbalancing
698. =======================================================================================================================================
699. Checking for DNS-Loadbalancing:
700. NOT FOUND
701.  
702. Checking for HTTP-Loadbalancing [Server]:
703. DPS/1.4.14
704. NOT FOUND
705.  
706. Checking for HTTP-Loadbalancing [Date]:
707. 05:36:40, 05:36:42, 05:36:44, 05:36:45, 05:36:47, 05:36:49, 05:36:50, 05:36:52, 05:36:54, 05:36:55,
708. 05:36:57, 05:36:59, 05:37:00, 05:37:02, 05:37:03, 05:37:05, 05:37:07, 05:37:08, 05:37:10, 05:37:12,
709. 05:37:13, 05:37:15, 05:37:17, 05:37:18, 05:37:20, 05:37:21, 05:37:23, 05:37:24, 05:37:26, 05:37:27,
710. 05:37:29, 05:37:30, 05:37:32, 05:37:33, 05:37:35, 05:37:36, 05:37:38, 05:37:39, 05:37:41, 05:37:42,
711. 05:37:44, 05:37:45, 05:37:47, 05:37:49, 05:37:50, 05:37:52, 05:37:53, 05:37:55, 05:37:57, 05:37:58,
712. NOT FOUND
713.  
714. Checking for HTTP-Loadbalancing [Diff]:
715. NOT FOUND
716. #######################################################################################################################################
717. UDP
718. 1 * *
719. 2 * *
720. 3 * *
721. 4 * *
722. 5 * *
723. 6 * *
724. 7 * *
725. 8 * *
726. 9 * *
727. 10 * *
728. 11 * *
729. 12 * *
730. 13 * *
731. 14 * *
732. 15 * *
733. 16 * *
734. 17 * *
735. 18 * *
736. 19 * *
737. 20 * *
738. 21 * *
739. 22 * *
740. 23 * *
741. 24 * *
742. 25 * *
743. 26 * *
744. 27 * *
745. 28 * *
746. 29 * *
747. 30 * *
748.  
749. ICMP ECHO
750. 1 public-gw.vpngate.net (10.211.254.254)
751. 2 _gateway (192.168.0.1)
752. 3 sprBBAR002-1.bb.kddi.ne.jp (106.162.211.17)
753. 4 27.80.241.141 (27.80.241.141)
754. 5 sjeGCS001.int-gw.kddi.ne.jp.13.187.106.in-addr.arpa (106.187.13.14)
755. 6 111.87.3.234 (111.87.3.234)
756. 7 * *
757. 8 * *
758. 9 4.14.98.38 (4.14.98.38)
759. 10 ip-184-168-6-81.ip.secureserver.net (184.168.6.81)
760. 11 ip-184-168-6-81.ip.secureserver.net (184.168.6.81)
761. 12 * *
762. 13 * *
763. 14 * *
764. 15 * *
765. 16 * *
766. 17 ip-198-71-232-4.ip.secureserver.net (198.71.232.4)
767.  
768. TCP SYN
769. 1 ip-198-71-232-4.ip.secureserver.net (198.71.232.4)
770.  
771. Zone Transfer
772. =======================================================================================================================================
773. Resolving SOA Record
774. SOA ns33.domaincontrol.com 216.69.185.17
775. Resolving NS Records
776. NS ns34.domaincontrol.com 173.201.74.17
777. NS ns34.domaincontrol.com 2603:5:22a1::11
778. NS ns33.domaincontrol.com 216.69.185.17
779. NS ns33.domaincontrol.com 2607:f208:206::11
780.  
781. Trying NS server 173.201.74.17
782.  
783. Trying NS server 2607:f208:206::11
784.  
785. Trying NS server 216.69.185.17
786.  
787. Trying NS server 2603:5:22a1::11
788.  
789. Whatweb
790. =======================================================================================================================================
791. blog.ikkkkk.org [ Unassigned]
792.  
793. ftp.ikkkkk.org [404 Not Found] Cookies[dps_site_id]
794. HTML5
795. HTTPServer[DPS/1.4.14]
796. IP[198.71.232.4]
797. Title[404 Not Found]
798. UncommonHeaders[x-siteid]
799.  
800. ikkkkk.org [301 Moved Permanently] Cookies[dps_site_id]
801. HTTPServer[DPS/1.4.14]
802. IP[198.71.232.4]
803. RedirectLocation[www.ikkkkk.org/]
804. UncommonHeaders[x-siteid]
805.  
806. www.ikkkkk.org [200 OK] Cookies[dps_site_id]
807. Email[Impwizard1996@gmail.com]
808. HTML5
809. HTTPServer[DPS/1.4.14]
810. IP[198.71.232.4]
811. MetaGenerator[Starfield Technologies; Website Builder 7.0.5350]
812. Open-Graph-Protocol[website]
813. Script[text/javascript]
814. Title[Home]
815. UncommonHeaders[x-siteid]
816. X-UA-Compatible[IE=edge]
817.  
818. www.ikkkkk.org/ [200 OK] Cookies[dps_site_id]
819. Email[Impwizard1996@gmail.com]
820. HTML5
821. HTTPServer[DPS/1.4.14]
822. IP[198.71.232.4]
823. MetaGenerator[Starfield Technologies; Website Builder 7.0.5350]
824. Open-Graph-Protocol[website]
825. Script[text/javascript]
826. Title[Home]
827. UncommonHeaders[x-siteid]
828. X-UA-Compatible[IE=edge]
829. #######################################################################################################################################
830.  
831. Gathered Inic-whois information for ip-198-71-232-4.ip.secureserver.net
832. ---------------------------------------------------------------------------------------------------------------------------------------
833. ERROR: Unable to locate Name Whois data on ip-198-71-232-4.ip.secureserver.net
834.  
835. Gathered Netcraft information for ip-198-71-232-4.ip.secureserver.net
836. ---------------------------------------------------------------------------------------------------------------------------------------
837.  
838. Retrieving Netcraft.com information for ip-198-71-232-4.ip.secureserver.net
839. Netcraft.com Information gathered
840.  
841. Gathered Subdomain information for ip-198-71-232-4.ip.secureserver.net
842. ---------------------------------------------------------------------------------------------------------------------------------------
843. Searching Google.com:80...
844. Searching Altavista.com:80...
845. Found 0 possible subdomain(s) for host ip-198-71-232-4.ip.secureserver.net, Searched 0 pages containing 0 results
846.  
847. Gathered E-Mail information for ip-198-71-232-4.ip.secureserver.net
848. ---------------------------------------------------------------------------------------------------------------------------------------
849. Searching Google.com:80...
850. Searching Altavista.com:80...
851. Found 0 E-Mail(s) for host ip-198-71-232-4.ip.secureserver.net, Searched 0 pages containing 0 results
852.  
853. Gathered TCP Port information for 198.71.232.4
854. ---------------------------------------------------------------------------------------------------------------------------------------
855.  
856. Port State
857.  
858. 80/tcp open
859. >>
860.  
861. Portscan Finished: Scanned 150 ports, 148 ports were in state closed
862.  
863. #######################################################################################################################################
864. dnsenum VERSION:1.2.4
865.  
866. ----- ikkkkk.org -----
867.  
868.  
869. Host's addresses:
870. __________________
871.  
872. ikkkkk.org. 599 IN A 198.71.232.4
873.  
874.  
875. Name Servers:
876. ______________
877.  
878. ns34.domaincontrol.com. 248 IN A 173.201.74.17
879. ns33.domaincontrol.com. 12107 IN A 216.69.185.17
880.  
881.  
882. Mail (MX) Servers:
883. ___________________
884.  
885. mailstore1.secureserver.net. 57 IN A 68.178.213.243
886. mailstore1.secureserver.net. 57 IN A 72.167.238.32
887. mailstore1.secureserver.net. 57 IN A 68.178.213.244
888. smtp.secureserver.net. 58 IN A 68.178.213.37
889. smtp.secureserver.net. 58 IN A 72.167.238.29
890. smtp.secureserver.net. 58 IN A 68.178.213.203
891.  
892.  
893. Trying Zone Transfers and getting Bind Versions:
894. _________________________________________________
895.  
896.  
897. Trying Zone Transfer for ikkkkk.org on ns34.domaincontrol.com ...
898.  
899. Trying Zone Transfer for ikkkkk.org on ns33.domaincontrol.com ...
900.  
901. brute force file not specified, bay.
902. #######################################################################################################################################
903. Domain Name: IKKKKK.ORG
904. Registry Domain ID: D151805712-LROR
905. Registrar WHOIS Server: whois.godaddy.com
906. Registrar URL: http://www.whois.godaddy.com
907. Updated Date: 2018-01-14T15:47:49Z
908. Creation Date: 2008-02-22T03:18:54Z
909. Registry Expiry Date: 2020-02-22T03:18:54Z
910. Registrar Registration Expiration Date:
911. Registrar: Wild West Domains, LLC
912. Registrar IANA ID: 440
913. Registrar Abuse Contact Email: abuse@wildwest.com
914. Registrar Abuse Contact Phone: +1.4806242505
915. Reseller:
916. Domain Status: ok https://icann.org/epp#ok
917. Registrant Organization: Int. Keystone Knights
918. Registrant State/Province: Arkansas
919. Registrant Country: US
920. Name Server: NS33.DOMAINCONTROL.COM
921. Name Server: NS34.DOMAINCONTROL.COM
922. DNSSEC: unsigned
923. URL of the ICANN Whois Inaccuracy Complaint Form https://www.icann.org/wicf/)
924. >>> Last update of WHOIS database: 2018-08-26T04:43:27Z <<<
925.  
926. For more information on Whois status codes, please visit https://icann.org/epp
927.  
928. Access to Public Interest Registry WHOIS information is provided to assist persons in determining the contents of a domain name registration record in the Public Interest Registry registry database. The data in this record is provided by Public Interest Registry for informational purposes only, and Public Interest Registry does not guarantee its accuracy. This service is intended only for query-based access. You agree that you will use this data only for lawful purposes and that, under no circumstances will you use this data to (a) allow, enable, or otherwise support the transmission by e-mail, telephone, or facsimile of mass unsolicited, commercial advertising or solicitations to entities other than the data recipient's own existing customers; or (b) enable high volume, automated, electronic processes that send queries or data to the systems of Registry Operator, a Registrar, or Afilias except as reasonably necessary to register domain names or modify existing registrations. All rights reserved. Public Interest Registry reserves the right to modify these terms at any time. By submitting this query, you agree to abide by this policy.
929.  
930. The Registrar of Record identified in this output may have an RDDS service that can be queried for additional information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.
931. ######################################################################################################################################
932. [-] Enumerating subdomains now for ikkkkk.org
933. [-] verbosity is enabled, will show the subdomains results in realtime
934. [-] Searching now in Baidu..
935. [-] Searching now in Yahoo..
936. [-] Searching now in Google..
937. [-] Searching now in Bing..
938. [-] Searching now in Ask..
939. [-] Searching now in Netcraft..
940. [-] Searching now in DNSdumpster..
941. [-] Searching now in Virustotal..
942. [-] Searching now in ThreatCrowd..
943. [-] Searching now in SSL Certificates..
944. [-] Searching now in PassiveDNS..
945. Virustotal: www.ikkkkk.org
946. Yahoo: www.ikkkkk.org
947. [-] Saving results to file: /usr/share/sniper/loot/ikkkkk.org/domains/domains-ikkkkk.org.txt
948. [-] Total Unique Subdomains Found: 1
949. www.ikkkkk.org
950. #######################################################################################################################################
951.  
952.  
953. Running Source: Ask
954. Running Source: Archive.is
955. Running Source: Baidu
956. Running Source: Bing
957. Running Source: CertDB
958. Running Source: CertificateTransparency
959. Running Source: Certspotter
960. Running Source: Commoncrawl
961. Running Source: Crt.sh
962. Running Source: Dnsdb
963. Running Source: DNSDumpster
964. Running Source: Dogpile
965. Running Source: Exalead
966. Running Source: Findsubdomains
967. Running Source: Googleter
968. Running Source: Hackertarget
969. Running Source: Ipv4Info
970. Running Source: PTRArchive
971. Running Source: Sitedossier
972. Running Source: Threatcrowd
973. Running Source: ThreatMiner
974. Running Source: WaybackArchive
975. Running Source: Yahoo
976.  
977. Running enumeration on ikkkkk.org
978. #######################################################################################################################################
979. [*] Processing domain ikkkkk.org
980. [+] Getting nameservers
981. 173.201.74.17 - ns34.domaincontrol.com
982. 216.69.185.17 - ns33.domaincontrol.com
983. [-] Zone transfer failed
984.  
985. [+] MX records found, added to target list
986. 10 mailstore1.secureserver.net.
987. 0 smtp.secureserver.net.
988.  
989. [*] Scanning ikkkkk.org for A records
990. 198.71.232.4 - ikkkkk.org
991.  
992. #######################################################################################################################################
993. [+] ikkkkk.org has no SPF record!
994. [*] No DMARC record found. Looking for organizational record
995. [+] No organizational DMARC record
996. [+] Spoofing possible for ikkkkk.org!
997. #######################################################################################################################################
998. __
999. ____ _____ ___ ______ _/ /_____ ____ ___
1000. / __ `/ __ `/ / / / __ `/ __/ __ \/ __ \/ _ \
1001. / /_/ / /_/ / /_/ / /_/ / /_/ /_/ / / / / __/
1002. \__,_/\__, /\__,_/\__,_/\__/\____/_/ /_/\___/
1003. /_/ discover v0.5.0 - by @michenriksen
1004.  
1005. Identifying nameservers for ikkkkk.org... Done
1006. Using nameservers:
1007.  
1008. - 173.201.74.17
1009. - 216.69.185.17
1010.  
1011. Checking for wildcard DNS... Done
1012.  
1013. Running collector: Threat Crowd... Done (0 hosts)
1014. Running collector: Wayback Machine... Done (4 hosts)
1015. Running collector: Shodan... Skipped
1016. -> Key 'shodan' has not been set
1017. Running collector: PTRArchive... Error
1018. -> PTRArchive returned unexpected response code: 404
1019. Running collector: Censys... Skipped
1020. -> Key 'censys_secret' has not been set
1021. Running collector: HackerTarget... Done (1 host)
1022. Running collector: DNSDB... Error
1023. -> DNSDB returned unexpected response code: 503
1024. Running collector: Netcraft... Done (0 hosts)
1025. Running collector: PublicWWW... Done (0 hosts)
1026. Running collector: Dictionary... Done (27 hosts)
1027. Running collector: PassiveTotal... Skipped
1028. -> Key 'passivetotal_key' has not been set
1029. Running collector: Riddler... Skipped
1030. -> Key 'riddler_username' has not been set
1031. Running collector: VirusTotal... Skipped
1032. -> Key 'virustotal' has not been set
1033. Running collector: Google Transparency Report... Done (0 hosts)
1034. Running collector: Certificate Search... Done (0 hosts)
1035.  
1036. Resolving 31 unique hosts...
1037. 198.71.232.4 .ikkkkk.org
1038. 198.71.232.4 ikkkkk.org
1039. 198.71.232.4 www.ikkkkk.org
1040.  
1041. Found subnets:
1042.  
1043. - 198.71.232.0-255 : 3 hosts
1044.  
1045. Wrote 3 hosts to:
1046.  
1047. - file:///root/aquatone/ikkkkk.org/hosts.txt
1048. - file:///root/aquatone/ikkkkk.org/hosts.json
1049. __
1050. ____ _____ ___ ______ _/ /_____ ____ ___
1051. / __ `/ __ `/ / / / __ `/ __/ __ \/ __ \/ _ \
1052. / /_/ / /_/ / /_/ / /_/ / /_/ /_/ / / / / __/
1053. \__,_/\__, /\__,_/\__,_/\__/\____/_/ /_/\___/
1054. /_/ takeover v0.5.0 - by @michenriksen
1055.  
1056. Loaded 3 hosts from /root/aquatone/ikkkkk.org/hosts.json
1057. Loaded 25 domain takeover detectors
1058.  
1059. Identifying nameservers for ikkkkk.org... Done
1060. Using nameservers:
1061.  
1062. - 173.201.74.17
1063. - 216.69.185.17
1064.  
1065. Checking hosts for domain takeover vulnerabilities...
1066.  
1067. Finished checking hosts:
1068.  
1069. - Vulnerable : 0
1070. - Not Vulnerable : 3
1071.  
1072. Wrote 0 potential subdomain takeovers to:
1073.  
1074. - file:///root/aquatone/ikkkkk.org/takeovers.json
1075.  
1076. __
1077. ____ _____ ___ ______ _/ /_____ ____ ___
1078. / __ `/ __ `/ / / / __ `/ __/ __ \/ __ \/ _ \
1079. / /_/ / /_/ / /_/ / /_/ / /_/ /_/ / / / / __/
1080. \__,_/\__, /\__,_/\__,_/\__/\____/_/ /_/\___/
1081. /_/ scan v0.5.0 - by @michenriksen
1082.  
1083. Loaded 3 hosts from /root/aquatone/ikkkkk.org/hosts.json
1084.  
1085. Probing 2 ports...
1086.  
1087. Wrote open ports to file:///root/aquatone/ikkkkk.org/open_ports.txt
1088. Wrote URLs to file:///root/aquatone/ikkkkk.org/urls.txt
1089. __
1090. ____ _____ ___ ______ _/ /_____ ____ ___
1091. / __ `/ __ `/ / / / __ `/ __/ __ \/ __ \/ _ \
1092. / /_/ / /_/ / /_/ / /_/ / /_/ /_/ / / / / __/
1093. \__,_/\__, /\__,_/\__,_/\__/\____/_/ /_/\___/
1094. /_/ gather v0.5.0 - by @michenriksen
1095.  
1096. Installing Nightmare.js package, please wait... Done
1097.  
1098. Processing 0 pages...
1099.  
1100. Finished processing pages:
1101.  
1102. - Successful : 0
1103. - Failed : 0
1104.  
1105. Generating report...done
1106. Report pages generated:
1107. #######################################################################################################################################
1108. INFO[0004] Starting to process queue....
1109. INFO[0004] Starting to process permutations....
1110. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1111. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1112. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1113. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1114. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1115. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1116. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1117. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1118. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1119. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1120. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1121. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1122. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1123. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1124. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1125. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1126. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1127. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1128. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1129. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1130. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1131. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1132. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1133. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1134. ERRO[0004] Get http://s3-1-w.amazonaws.com: dial tcp 52.216.65.144:80: getsockopt: connection refused
1135. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:48928->52.216.65.144:80: read: connection reset by peer
1136. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:48960->52.216.65.144:80: read: connection reset by peer
1137. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:48878->52.216.65.144:80: read: connection reset by peer
1138. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:48920->52.216.65.144:80: read: connection reset by peer
1139. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:48968->52.216.65.144:80: read: connection reset by peer
1140. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:48966->52.216.65.144:80: read: connection reset by peer
1141. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:48954->52.216.65.144:80: read: connection reset by peer
1142. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:48940->52.216.65.144:80: read: connection reset by peer
1143. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:48942->52.216.65.144:80: read: connection reset by peer
1144. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:48948->52.216.65.144:80: read: connection reset by peer
1145. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:48956->52.216.65.144:80: read: connection reset by peer
1146. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:48952->52.216.65.144:80: read: connection reset by peer
1147. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:48950->52.216.65.144:80: read: connection reset by peer
1148. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:48958->52.216.65.144:80: read: connection reset by peer
1149. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:48922->52.216.65.144:80: read: connection reset by peer
1150. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:52094->52.216.19.64:80: read: connection reset by peer
1151. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:52128->52.216.19.64:80: read: connection reset by peer
1152. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:52112->52.216.19.64:80: read: connection reset by peer
1153. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:52082->52.216.19.64:80: read: connection reset by peer
1154. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:52084->52.216.19.64:80: read: connection reset by peer
1155. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:52108->52.216.19.64:80: read: connection reset by peer
1156. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:52124->52.216.19.64:80: read: connection reset by peer
1157. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:52086->52.216.19.64:80: read: connection reset by peer
1158. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:52098->52.216.19.64:80: read: connection reset by peer
1159. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:52120->52.216.19.64:80: read: connection reset by peer
1160. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:52088->52.216.19.64:80: read: connection reset by peer
1161. ERRO[0005] Get http://s3-1-w.amazonaws.com: dial tcp 54.231.81.16:80: getsockopt: connection refused
1162. ERRO[0005] Get http://s3-1-w.amazonaws.com: dial tcp 54.231.81.16:80: getsockopt: connection refused
1163. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:52096->52.216.19.64:80: read: connection reset by peer
1164. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:52100->52.216.19.64:80: read: connection reset by peer
1165. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:52102->52.216.19.64:80: read: connection reset by peer
1166. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:52106->52.216.19.64:80: read: connection reset by peer
1167. ERRO[0005] Get http://s3-1-w.amazonaws.com: read tcp 10.211.1.29:52090->52.216.19.64:80: read: connection reset by peer
1168. ERRO[0006] Get http://s3-1-w.amazonaws.com: dial tcp 54.231.81.16:80: getsockopt: connection refused
1169. ERRO[0006] Get http://s3-1-w.amazonaws.com: dial tcp 54.231.81.16:80: getsockopt: connection refused
1170. ERRO[0006] Get http://s3-1-w.amazonaws.com: dial tcp 54.231.81.16:80: getsockopt: connection refused
1171. #######################################################################################################################################
1172. ---------------------------------------------------------------------------------------------------------------------------------------
1173.  
1174. Total hosts: 6
1175.  
1176. [-] Resolving hostnames IPs...
1177.  
1178. .ikkkkk.org : empty
1179. ww.ikkkkk.org : empty
1180. www.ikkkkk.org : 198.71.232.4
1181.  
1182. [+] Virtual hosts:
1183. ---------------------------------------------------------------------------------------------------------------------------------------
1184. #######################################################################################################################################
1185. Starting Nmap 7.70 ( https://nmap.org ) at 2018-08-26 03:08 EDT
1186. Nmap scan report for ikkkkk.org (198.71.232.4)
1187. Host is up (0.85s latency).
1188. rDNS record for 198.71.232.4: ip-198-71-232-4.ip.secureserver.net
1189. Not shown: 463 closed ports, 11 filtered ports
1190. Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
1191. PORT STATE SERVICE
1192. 80/tcp open http
1193. 443/tcp open https
1194. #######################################################################################################################################
1195. Starting Nmap 7.70 ( https://nmap.org ) at 2018-08-26 03:08 EDT
1196. Nmap scan report for ikkkkk.org (198.71.232.4)
1197. Host is up.
1198. rDNS record for 198.71.232.4: ip-198-71-232-4.ip.secureserver.net
1199.  
1200. PORT STATE SERVICE
1201. 53/udp open|filtered domain
1202. 67/udp open|filtered dhcps
1203. 68/udp open|filtered dhcpc
1204. 69/udp open|filtered tftp
1205. 88/udp open|filtered kerberos-sec
1206. 123/udp open|filtered ntp
1207. 137/udp open|filtered netbios-ns
1208. 138/udp open|filtered netbios-dgm
1209. 139/udp open|filtered netbios-ssn
1210. 161/udp open|filtered snmp
1211. 162/udp open|filtered snmptrap
1212. 389/udp open|filtered ldap
1213. 520/udp open|filtered route
1214. 2049/udp open|filtered nfs
1215.  
1216. Nmap done: 1 IP address (1 host up) scanned in 3.68 seconds
1217. #######################################################################################################################################
1218.  
1219. ^ ^
1220. _ __ _ ____ _ __ _ _ ____
1221. ///7/ /.' \ / __////7/ /,' \ ,' \ / __/
1222. | V V // o // _/ | V V // 0 // 0 // _/
1223. |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/
1224. <
1225. ...'
1226.  
1227. WAFW00F - Web Application Firewall Detection Tool
1228.  
1229. By Sandro Gauci && Wendel G. Henrique
1230.  
1231. Checking http://ikkkkk.org
1232. Generic Detection results:
1233. No WAF detected by the generic detection
1234. Number of requests: 14
1235.  
1236. #######################################################################################################################################
1237.  
1238. wig - WebApp Information Gatherer
1239.  
1240.  
1241. Scanning http://www.ikkkkk.org...
1242. __________________ SITE INFO __________________
1243. IP Title
1244. 198.71.232.4 Home
1245.  
1246. ___________________ VERSION ___________________
1247. Name Versions Type
1248. dps 1.4.14 Platform
1249.  
1250. _______________________________________________
1251. Time: 100.1 sec Urls: 600 Fingerprints: 40401
1252. #######################################################################################################################################
1253. HTTP/1.1 301 Moved Permanently
1254. location: http://www.ikkkkk.org/
1255. Vary: Accept-Encoding
1256. Server: DPS/1.4.14
1257. X-SiteId: 2000
1258. Set-Cookie: dps_site_id=2000; path=/
1259. Date: Sun, 26 Aug 2018 07:10:51 GMT
1260. Connection: keep-alive
1261. #######################################################################################################################################
1262. ---------------------------------------------------------------------------------------------------------------------------------------
1263.  
1264. [ ! ] Starting SCANNER INURLBR 2.1 at [26-08-2018 03:11:31]
1265. [ ! ] legal disclaimer: Usage of INURLBR for attacking targets without prior mutual consent is illegal.
1266. It is the end user's responsibility to obey all applicable local, state and federal laws.
1267. Developers assume no liability and are not responsible for any misuse or damage caused by this program
1268.  
1269. [ INFO ][ OUTPUT FILE ]:: [ /usr/share/sniper/output/inurlbr-ikkkkk.org.txt ]
1270. [ INFO ][ DORK ]::[ site:ikkkkk.org ]
1271. [ INFO ][ SEARCHING ]:: {
1272. [ INFO ][ ENGINE ]::[ GOOGLE - www.google.co.ve ]
1273.  
1274. [ INFO ][ SEARCHING ]::
1275. -[:::]
1276. [ INFO ][ ENGINE ]::[ GOOGLE API ]
1277.  
1278. [ INFO ][ SEARCHING ]::
1279. -[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]-[:::]
1280. [ INFO ][ ENGINE ]::[ GOOGLE_GENERIC_RANDOM - www.google.co.nz ID: 006688160405527839966:yhpefuwybre ]
1281.  
1282. [ INFO ][ SEARCHING ]::
1283. -[:::]-[:::]-[:::]-[:::]-[:::]-[:::]
1284.  
1285. [ INFO ][ TOTAL FOUND VALUES ]:: [ 9 ]
1286.  
1287.  
1288. _[ - ]::--------------------------------------------------------------------------------------------------------------
1289. |_[ + ] [ 0 / 9 ]-[03:11:53] [ - ]
1290. |_[ + ] Target:: [ http://www.ikkkkk.org/ ]
1291. |_[ + ] Exploit::
1292. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: DPS/1.4.14 , IP:198.71.232.4:80
1293. |_[ + ] More details:: / - / , ISP:
1294. |_[ + ] Found:: UNIDENTIFIED
1295.  
1296. _[ - ]::--------------------------------------------------------------------------------------------------------------
1297. |_[ + ] [ 1 / 9 ]-[03:11:56] [ - ]
1298. |_[ + ] Target:: [ http://www.ikkkkk.org/contact-us.html ]
1299. |_[ + ] Exploit::
1300. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: DPS/1.4.14 , IP:198.71.232.4:80
1301. |_[ + ] More details:: / - / , ISP:
1302. |_[ + ] Found:: UNIDENTIFIED
1303.  
1304. _[ - ]::--------------------------------------------------------------------------------------------------------------
1305. |_[ + ] [ 2 / 9 ]-[03:11:59] [ - ]
1306. |_[ + ] Target:: [ http://www.ikkkkk.org/upcoming-events.html ]
1307. |_[ + ] Exploit::
1308. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: DPS/1.4.14 , IP:198.71.232.4:80
1309. |_[ + ] More details:: / - / , ISP:
1310. |_[ + ] Found:: UNIDENTIFIED
1311.  
1312. _[ - ]::--------------------------------------------------------------------------------------------------------------
1313. |_[ + ] [ 3 / 9 ]-[03:12:02] [ - ]
1314. |_[ + ] Target:: [ http://www.ikkkkk.org/upcoming-events2.html ]
1315. |_[ + ] Exploit::
1316. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: DPS/1.4.14 , IP:198.71.232.4:80
1317. |_[ + ] More details:: / - / , ISP:
1318. |_[ + ] Found:: UNIDENTIFIED
1319.  
1320. _[ - ]::--------------------------------------------------------------------------------------------------------------
1321. |_[ + ] [ 4 / 9 ]-[03:12:05] [ - ]
1322. |_[ + ] Target:: [ http://www.ikkkkk.org/wall-of-shame.html ]
1323. |_[ + ] Exploit::
1324. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: DPS/1.4.14 , IP:198.71.232.4:80
1325. |_[ + ] More details:: / - / , ISP:
1326. |_[ + ] Found:: UNIDENTIFIED
1327.  
1328. _[ - ]::--------------------------------------------------------------------------------------------------------------
1329. |_[ + ] [ 5 / 9 ]-[03:12:08] [ - ]
1330. |_[ + ] Target:: [ http://www.ikkkkk.org/wall-of-shame2.html ]
1331. |_[ + ] Exploit::
1332. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: DPS/1.4.14 , IP:198.71.232.4:80
1333. |_[ + ] More details:: / - / , ISP:
1334. |_[ + ] Found:: UNIDENTIFIED
1335.  
1336. _[ - ]::--------------------------------------------------------------------------------------------------------------
1337. |_[ + ] [ 6 / 9 ]-[03:12:12] [ - ]
1338. |_[ + ] Target:: [ http://www.ikkkkk.org/online-kluxer-magazine.html ]
1339. |_[ + ] Exploit::
1340. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: DPS/1.4.14 , IP:198.71.232.4:80
1341. |_[ + ] More details:: / - / , ISP:
1342. |_[ + ] Found:: UNIDENTIFIED
1343.  
1344. _[ - ]::--------------------------------------------------------------------------------------------------------------
1345. |_[ + ] [ 7 / 9 ]-[03:12:15] [ - ]
1346. |_[ + ] Target:: [ http://www.ikkkkk.org/the--ikk-online-.html ]
1347. |_[ + ] Exploit::
1348. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: DPS/1.4.14 , IP:198.71.232.4:80
1349. |_[ + ] More details:: / - / , ISP:
1350. |_[ + ] Found:: UNIDENTIFIED
1351.  
1352. _[ - ]::--------------------------------------------------------------------------------------------------------------
1353. |_[ + ] [ 8 / 9 ]-[03:12:18] [ - ]
1354. |_[ + ] Target:: [ http://www.ikkkkk.org/sermans-from-our--imperial-kludd-.html ]
1355. |_[ + ] Exploit::
1356. |_[ + ] Information Server:: HTTP/1.1 200 OK, Server: DPS/1.4.14 , IP:198.71.232.4:80
1357. |_[ + ] More details:: / - / , ISP:
1358. |_[ + ] Found:: UNIDENTIFIED
1359.  
1360. [ INFO ] [ Shutting down ]
1361. [ INFO ] [ End of process INURLBR at [26-08-2018 03:12:18]
1362. [ INFO ] [ TOTAL FILTERED VALUES ]:: [ 0 ]
1363. [ INFO ] [ OUTPUT FILE ]:: [ /usr/share/sniper/output/inurlbr-ikkkkk.org.txt ]
1364. |_________________________________________________________________________________________
1365.  
1366. \_________________________________________________________________________________________/
1367. #######################################################################################################################################
1368. https://ikkkkk.org [301 Moved Permanently] Cookies[dps_site_id], Country[UNITED STATES][US], HTTPServer[DPS/1.4.14], IP[198.71.232.4], RedirectLocation[http://www.ikkkkk.org/], UncommonHeaders[x-siteid]
1369. http://www.ikkkkk.org/ [200 OK] Cookies[dps_site_id], Country[UNITED STATES][US], Email[Impwizard1996@gmail.com], HTML5, HTTPServer[DPS/1.4.14], IP[198.71.232.4], MetaGenerator[Starfield Technologies; Website Builder 7.0.5350], Open-Graph-Protocol[website], Script[text/javascript], Title[Home], UncommonHeaders[x-siteid], X-UA-Compatible[IE=edge]
1370. #######################################################################################################################################
1371.  
1372.  
1373. AVAILABLE PLUGINS
1374. -----------------
1375.  
1376. PluginHeartbleed
1377. PluginCompression
1378. PluginCertInfo
1379. PluginSessionRenegotiation
1380. PluginSessionResumption
1381. PluginHSTS
1382. PluginChromeSha1Deprecation
1383. PluginOpenSSLCipherSuites
1384.  
1385.  
1386.  
1387. CHECKING HOST(S) AVAILABILITY
1388. -----------------------------
1389.  
1390. ikkkkk.org:443 => 198.71.232.4:443
1391.  
1392.  
1393.  
1394. SCAN RESULTS FOR IKKKKK.ORG:443 - 198.71.232.4:443
1395. --------------------------------------------------
1396.  
1397. * Deflate Compression:
1398. OK - Compression disabled
1399.  
1400. * Session Renegotiation:
1401. Client-initiated Renegotiations: VULNERABLE - Server honors client-initiated renegotiations
1402. Secure Renegotiation: OK - Supported
1403.  
1404. * Certificate - Content:
1405. SHA1 Fingerprint: b1537ac2715544ccb677f59518a122fe3b132da5
1406. Common Name: *.secureserversites.net
1407. Issuer: Starfield Secure Certificate Authority - G2
1408. Serial Number: CBF2D2D75794813C
1409. Not Before: Aug 3 17:30:12 2018 GMT
1410. Not After: Aug 3 17:30:12 2020 GMT
1411. Signature Algorithm: sha256WithRSAEncryption
1412. Public Key Algorithm: rsaEncryption
1413. Key Size: 2048 bit
1414. Exponent: 65537 (0x10001)
1415. X509v3 Subject Alternative Name: {'DNS': ['*.secureserversites.net', 'secureserversites.net']}
1416.  
1417. * Certificate - Trust:
1418. Hostname Validation: FAILED - Certificate does NOT match ikkkkk.org
1419. Google CA Store (09/2015): OK - Certificate is trusted
1420. Java 6 CA Store (Update 65): OK - Certificate is trusted
1421. Microsoft CA Store (09/2015): OK - Certificate is trusted
1422. Apple CA Store (OS X 10.10.5): OK - Certificate is trusted
1423. Mozilla NSS CA Store (09/2015): OK - Certificate is trusted
1424. Certificate Chain Received: ['*.secureserversites.net', 'Starfield Secure Certificate Authority - G2', 'Starfield Root Certificate Authority - G2']
1425.  
1426. * Certificate - OCSP Stapling:
1427. NOT SUPPORTED - Server did not send back an OCSP response.
1428.  
1429. * SSLV2 Cipher Suites:
1430. Server rejected all cipher suites.
1431.  
1432. * Session Resumption:
1433. With Session IDs: NOT SUPPORTED (0 successful, 5 failed, 0 errors, 5 total attempts).
1434. With TLS Session Tickets: NOT SUPPORTED - TLS ticket assigned but not accepted.
1435.  
1436. * SSLV3 Cipher Suites:
1437. Server rejected all cipher suites.
1438.  
1439.  
1440.  
1441. SCAN COMPLETED IN 9.97 S
1442. ------------------------
1443. Version: 1.11.11-static
1444. OpenSSL 1.0.2-chacha (1.0.2g-dev)
1445.  
1446. Connected to 198.71.232.4
1447.  
1448. Testing SSL server ikkkkk.org on port 443 using SNI name ikkkkk.org
1449.  
1450. TLS Fallback SCSV:
1451. Server supports TLS Fallback SCSV
1452.  
1453. TLS renegotiation:
1454. Secure session renegotiation supported
1455.  
1456. TLS Compression:
1457. Compression disabled
1458.  
1459. Heartbleed:
1460. TLS 1.2 not vulnerable to heartbleed
1461. TLS 1.1 not vulnerable to heartbleed
1462. TLS 1.0 not vulnerable to heartbleed
1463.  
1464. Supported Server Cipher(s):
1465. Preferred TLSv1.2 256 bits ECDHE-RSA-AES256-GCM-SHA384 Curve P-256 DHE 256
1466. Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-GCM-SHA256 Curve P-256 DHE 256
1467. Accepted TLSv1.2 256 bits ECDHE-RSA-AES256-SHA384 Curve P-256 DHE 256
1468. Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-SHA256 Curve P-256 DHE 256
1469. Accepted TLSv1.2 256 bits ECDHE-RSA-AES256-SHA Curve P-256 DHE 256
1470. Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-SHA Curve P-256 DHE 256
1471. Accepted TLSv1.2 112 bits ECDHE-RSA-DES-CBC3-SHA Curve P-256 DHE 256
1472. Accepted TLSv1.2 256 bits AES256-GCM-SHA384
1473. Accepted TLSv1.2 128 bits AES128-GCM-SHA256
1474. Accepted TLSv1.2 256 bits AES256-SHA256
1475. Accepted TLSv1.2 128 bits AES128-SHA256
1476. Accepted TLSv1.2 256 bits AES256-SHA
1477. Accepted TLSv1.2 128 bits AES128-SHA
1478. Accepted TLSv1.2 112 bits DES-CBC3-SHA
1479. Accepted TLSv1.2 256 bits CAMELLIA256-SHA
1480. Accepted TLSv1.2 128 bits CAMELLIA128-SHA
1481. Preferred TLSv1.1 256 bits ECDHE-RSA-AES256-SHA Curve P-256 DHE 256
1482. Accepted TLSv1.1 128 bits ECDHE-RSA-AES128-SHA Curve P-256 DHE 256
1483. Accepted TLSv1.1 112 bits ECDHE-RSA-DES-CBC3-SHA Curve P-256 DHE 256
1484. Accepted TLSv1.1 256 bits AES256-SHA
1485. Accepted TLSv1.1 128 bits AES128-SHA
1486. Accepted TLSv1.1 112 bits DES-CBC3-SHA
1487. Accepted TLSv1.1 256 bits CAMELLIA256-SHA
1488. Accepted TLSv1.1 128 bits CAMELLIA128-SHA
1489. Preferred TLSv1.0 256 bits ECDHE-RSA-AES256-SHA Curve P-256 DHE 256
1490. Accepted TLSv1.0 128 bits ECDHE-RSA-AES128-SHA Curve P-256 DHE 256
1491. Accepted TLSv1.0 112 bits ECDHE-RSA-DES-CBC3-SHA Curve P-256 DHE 256
1492. Accepted TLSv1.0 256 bits AES256-SHA
1493. Accepted TLSv1.0 128 bits AES128-SHA
1494. Accepted TLSv1.0 112 bits DES-CBC3-SHA
1495. Accepted TLSv1.0 256 bits CAMELLIA256-SHA
1496. Accepted TLSv1.0 128 bits CAMELLIA128-SHA
1497.  
1498. SSL Certificate:
1499. Signature Algorithm: sha256WithRSAEncryption
1500. RSA Key Strength: 2048
1501.  
1502. Subject: *.secureserversites.net
1503. Altnames: DNS:*.secureserversites.net, DNS:secureserversites.net
1504. Issuer: Starfield Secure Certificate Authority - G2
1505.  
1506. Not valid before: Aug 3 17:30:12 2018 GMT
1507. Not valid after: Aug 3 17:30:12 2020 GMT
1508. #######################################################################################################################################
1509.  
1510. I, [2018-08-26T03:14:33.766222 #6796] INFO -- : Initiating port scan
1511. RTTVAR has grown to over 2.3 seconds, decreasing to 2.0
1512. RTTVAR has grown to over 2.3 seconds, decreasing to 2.0
1513. RTTVAR has grown to over 2.3 seconds, decreasing to 2.0
1514. RTTVAR has grown to over 2.3 seconds, decreasing to 2.0
1515. RTTVAR has grown to over 2.3 seconds, decreasing to 2.0
1516. RTTVAR has grown to over 2.3 seconds, decreasing to 2.0
1517. RTTVAR has grown to over 2.3 seconds, decreasing to 2.0
1518. RTTVAR has grown to over 2.3 seconds, decreasing to 2.0
1519. RTTVAR has grown to over 2.3 seconds, decreasing to 2.0
1520. I, [2018-08-26T03:18:52.459685 #6796] INFO -- : Using nmap scan output file logs/nmap_output_2018-08-26_03-14-33.xml
1521. I, [2018-08-26T03:18:52.483777 #6796] INFO -- : Discovered open port: 198.71.232.4:80
1522. I, [2018-08-26T03:18:54.662737 #6796] INFO -- : Discovered open port: 198.71.232.4:443
1523. I, [2018-08-26T03:18:58.911060 #6796] INFO -- : <<<Enumerating vulnerable applications>>>
1524. #######################################################################################################################################
1525. Anonymous JTSEC #OpDomesticTerrorism Full Recon #11