Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #######################################################################################################################################
- =======================================================================================================================================
- Hostname www.ncr.gov.sd ISP NICDC
- Continent Africa Flag
- SD
- Country Sudan Country Code SD
- Region Unknown Local time 15 Jun 2019 08:44 CAT
- City Unknown Postal Code Unknown
- IP Address 62.12.105.2 Latitude 15
- Longitude 30
- =======================================================================================================================================
- #######################################################################################################################################
- > www.ncr.gov.sd
- Server: 185.93.180.131
- Address: 185.93.180.131#53
- Non-authoritative answer:
- Name: www.ncr.gov.sd
- Address: 62.12.105.2
- >
- #######################################################################################################################################
- [+] Target : www.ncr.gov.sd
- [+] IP Address : 62.12.105.2
- [+] Headers :
- [+] Server : nginx
- [+] Date : Sun, 16 Jun 2019 12:57:47 GMT
- [+] Content-Type : text/html; charset=utf-8
- [+] Transfer-Encoding : chunked
- [+] Connection : keep-alive
- [+] X-Powered-By : PHP/5.6.40, PleskLin
- [+] P3P : CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
- [+] Cache-Control : no-cache
- [+] Pragma : no-cache
- [+] Set-Cookie : e0ddbc0e0e8bfa0175c84685f00835f0=jjs4mp25sqjbkc3c9kgmibm2c6; path=/
- [+] SSL Certificate Information :
- [+] countryName : US
- [+] stateOrProvinceName : Washington
- [+] localityName : Seattle
- [+] organizationName : Odin
- [+] organizationalUnitName : Plesk
- [+] commonName : Plesk
- [+] emailAddress : info@plesk.com
- [+] countryName : US
- [+] stateOrProvinceName : Washington
- [+] localityName : Seattle
- [+] organizationName : Odin
- [+] organizationalUnitName : Plesk
- [+] commonName : Plesk
- [+] emailAddress : info@plesk.com
- [+] Version : 1
- [+] Serial Number : 5716EC1B
- [+] Not Before : Apr 20 02:40:27 2016 GMT
- [+] Not After : Apr 20 02:40:27 2017 GMT
- [+] Whois Lookup :
- [+] NIR : None
- [+] ASN Registry : afrinic
- [+] ASN : 327881
- [+] ASN CIDR : 62.12.105.0/24
- [+] ASN Country Code : SD
- [+] ASN Date : 2015-05-11
- [+] ASN Description : NICDC, SD
- [+] cidr : 62.12.105.0/24
- [+] name : ORG-MoTa1-AFRINIC
- [+] handle : IAEI1-AFRINIC
- [+] range : 62.12.105.0 - 62.12.105.255
- [+] description : National Information Center (NIC)
- [+] country : SD
- [+] state : None
- [+] city : None
- [+] address : National Information Center (NIC)
- [+] postal_code : None
- [+] emails : None
- [+] created : None
- [+] updated : None
- [+] Crawling Target...
- [+] Looking for robots.txt........[ Found ]
- [+] Extracting robots Links.......[ 16 ]
- [+] Looking for sitemap.xml.......[ Not Found ]
- [+] Extracting CSS Links..........[ 17 ]
- [+] Extracting Javascript Links...[ 10 ]
- [+] Extracting Internal Links.....[ 1 ]
- [+] Extracting External Links.....[ 12 ]
- [+] Extracting Images.............[ 14 ]
- [+] Total Links Extracted : 70
- [+] Dumping Links in /opt/FinalRecon/dumps/www.ncr.gov.sd.dump
- [+] Completed!
- #######################################################################################################################################
- [+] Starting At 2019-06-16 09:55:17.850170
- [+] Collecting Information On: www.ncr.gov.sd
- [#] Status: 200
- ---------------------------------------------------------------------------------------------------------------------------------------
- [#] Web Server Detected: nginx
- [#] X-Powered-By: PleskLin
- [!] X-Frame-Options Headers not detect! target might be vulnerable Click Jacking
- - Server: nginx
- - Date: Sun, 16 Jun 2019 12:57:46 GMT
- - Content-Type: text/html
- - Content-Length: 7199
- - Connection: keep-alive
- - Last-Modified: Mon, 03 Mar 2014 12:38:04 GMT
- - ETag: "1c1f-4f3b30f0c4300"
- - Accept-Ranges: bytes
- - X-Powered-By: PleskLin
- ---------------------------------------------------------------------------------------------------------------------------------------
- [#] Finding Location..!
- [#] as: AS327881 National Information Center (NIC)
- [#] city: Khartoum
- [#] country: Sudan
- [#] countryCode: SD
- [#] isp: National Information Center
- [#] lat: 15.5007
- [#] lon: 32.5599
- [#] org: ORG MoTa1 AFRINIC
- [#] query: 62.12.105.2
- [#] region: KH
- [#] regionName: Khartoum
- [#] status: success
- [#] timezone: Africa/Khartoum
- [#] zip:
- ---------------------------------------------------------------------------------------------------------------------------------------
- [x] Didn't Detect WAF Presence on: https://www.ncr.gov.sd/
- ---------------------------------------------------------------------------------------------------------------------------------------
- [#] Starting Reverse DNS
- [!] Found 20 any Domain
- - agricmi.gov.sd
- - cpd.gov.sd
- - eastgezira.gov.sd
- - fdrf.gov.sd
- - health.gov.sd
- - kassalamoe.gov.sd
- - mocit.gov.sd
- - mohgs.gov.sd
- - nbtc.gov.sd
- - nccw.gov.sd
- - ncr.gov.sd
- - nileuniversity.edu.sd
- - rivernilestate.gov.sd
- - rnspolice.gov.sd
- - sloc.gov.sd
- - sudan.gov.sd
- - unionkhr.sd
- - wgpolice.gov.sd
- - www.moi.gov.sd
- - www.sudan.gov.sd
- ---------------------------------------------------------------------------------------------------------------------------------------
- [!] Scanning Open Port
- [#] 21/tcp open ftp
- [#] 80/tcp open http
- [#] 110/tcp open pop3
- [#] 143/tcp open imap
- [#] 443/tcp open https
- [#] 993/tcp open imaps
- [#] 995/tcp open pop3s
- [#] 8443/tcp open https-alt
- ---------------------------------------------------------------------------------------------------------------------------------------
- [+] Collecting Information Disclosure!
- #######################################################################################################################################
- [i] Scanning Site: http://www.ncr.gov.sd
- B A S I C I N F O
- ====================
- [+] Site Title: المركز القومي للبحوث
- [+] IP address: 62.12.105.2
- [+] Web Server: nginx
- [+] CMS: Joomla
- [+] Cloudflare: Not Detected
- [+] Robots File: Found
- -------------[ contents ]----------------
- # If the Joomla site is installed within a folder such as at
- # e.g. www.example.com/joomla/ the robots.txt file MUST be
- # moved to the site root at e.g. www.example.com/robots.txt
- # AND the joomla folder name MUST be prefixed to the disallowed
- # path, e.g. the Disallow rule for the /administrator/ folder
- # MUST be changed to read Disallow: /joomla/administrator/
- #
- # For more information about the robots.txt standard, see:
- # http://www.robotstxt.org/orig.html
- #
- # For syntax checking, see:
- # http://www.sxw.org.uk/computing/robots/check.html
- User-agent: *
- Disallow: /administrator/
- Disallow: /cache/
- Disallow: /cli/
- Disallow: /components/
- Disallow: /images/
- Disallow: /includes/
- Disallow: /installation/
- Disallow: /language/
- Disallow: /libraries/
- Disallow: /logs/
- Disallow: /media/
- Disallow: /modules/
- Disallow: /plugins/
- Disallow: /templates/
- Disallow: /tmp/
- -----------[end of contents]-------------
- #######################################################################################################################################
- G E O I P L O O K U P
- =========================
- [i] IP Address: 62.12.105.2
- [i] Country: Sudan
- [i] State:
- [i] City:
- [i] Latitude: 15.0
- [i] Longitude: 30.0
- #######################################################################################################################################
- H T T P H E A D E R S
- =======================
- [i] HTTP/1.1 200 OK
- [i] Server: nginx
- [i] Date: Sun, 16 Jun 2019 12:57:49 GMT
- [i] Content-Type: text/html; charset=utf-8
- [i] Connection: close
- [i] X-Powered-By: PHP/5.6.40
- [i] P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
- [i] Cache-Control: no-cache
- [i] Pragma: no-cache
- [i] Set-Cookie: e0ddbc0e0e8bfa0175c84685f00835f0=pi0hq3r6gblqvo3n78l1srmkv4; path=/
- [i] X-Powered-By: PleskLin
- #######################################################################################################################################
- D N S L O O K U P
- ===================
- ncr.gov.sd. 21595 IN SOA ns0.ndc.gov.sd. root.ndc.gov.sd. 2017072600 10800 900 604800 86400
- ncr.gov.sd. 21595 IN NS ns0.ndc.gov.sd.
- ncr.gov.sd. 21595 IN NS ns1.ndc.gov.sd.
- ncr.gov.sd. 21595 IN A 62.12.105.2
- ncr.gov.sd. 21595 IN MX 10 mail.ncr.gov.sd.
- ncr.gov.sd. 21595 IN TXT "v=spf1 mx -all"
- #######################################################################################################################################
- S U B N E T C A L C U L A T I O N
- ====================================
- Address = 62.12.105.2
- Network = 62.12.105.2 / 32
- Netmask = 255.255.255.255
- Broadcast = not needed on Point-to-Point links
- Wildcard Mask = 0.0.0.0
- Hosts Bits = 0
- Max. Hosts = 1 (2^0 - 0)
- Host Range = { 62.12.105.2 - 62.12.105.2 }
- #######################################################################################################################################
- N M A P P O R T S C A N
- ============================
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-06-16 13:55 UTC
- Nmap scan report for ncr.gov.sd (62.12.105.2)
- Host is up (0.20s latency).
- rDNS record for 62.12.105.2: f03-web02.nic.gov.sd
- PORT STATE SERVICE
- 21/tcp open ftp
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 80/tcp open http
- 110/tcp open pop3
- 143/tcp open imap
- 443/tcp open https
- 3389/tcp filtered ms-wbt-server
- Nmap done: 1 IP address (1 host up) scanned in 2.50 seconds
- #######################################################################################################################################
- Enter Address Website = ncr.gov.sd
- Reversing IP With HackTarget 'ncr.gov.sd'
- --------------------------------------------
- [+] dalil.sd
- [+] f03-web02.nic.gov.sd
- [+] gras.gov.sd
- [+] hasahisa.gov.sd
- [+] maadin.gov.sd
- [+] mail.gras.gov.sd
- [+] mail.his.gov.sd
- [+] mail.moekh.gov.sd
- [+] mail.nahralnileinvest.gov.sd
- [+] mail.nileuniversity.edu.sd
- [+] mail.ocewc.gov.sd
- [+] mail.sas.edu.sd
- [+] mail.snapcw.gov.sd
- [+] mail.sudan.gov.sd
- [+] mocit.gov.sd
- [+] napo.gov.sd
- [+] nbtc.gov.sd
- [+] ndcc.gov.sd
- [+] nileuniversity.edu.sd
- [+] redseastate.gov.sd
- [+] rivernilestate.gov.sd
- [+] rnspolice.gov.sd
- [+] sas.edu.sd
- [+] sloc.gov.sd
- [+] sudan.gov.sd
- [+] webmail.mic.gov.sd
- [+] www.gazirastate.gov.sd
- [+] www.gisc.gov.sd
- [+] www.kassalamoe.gov.sd
- [+] www.ksp.gov.sd
- [+] www.moi.gov.sd
- [+] www.nccw.gov.sd
- [+] www.ndcc.gov.sd
- [+] www.nileuniversity.edu.sd
- [+] www.nswtoa.gov.sd
- [+] www.redseastate.gov.sd
- [+] www.rivernilestate.gov.sd
- [+] www.scvta.gov.sd
- [+] www.sloc.gov.sd
- [+] www.wrc.org.sd
- #######################################################################################################################################
- Reverse IP With YouGetSignal 'ncr.gov.sd'
- --------------------------------------------
- [*] IP: 62.12.105.2
- [*] Domain: ncr.gov.sd
- [*] Total Domains: 20
- [+] agricmi.gov.sd
- [+] cpd.gov.sd
- [+] eastgezira.gov.sd
- [+] fdrf.gov.sd
- [+] health.gov.sd
- [+] kassalamoe.gov.sd
- [+] mocit.gov.sd
- [+] mohgs.gov.sd
- [+] nbtc.gov.sd
- [+] nccw.gov.sd
- [+] ncr.gov.sd
- [+] nileuniversity.edu.sd
- [+] rivernilestate.gov.sd
- [+] rnspolice.gov.sd
- [+] sloc.gov.sd
- [+] sudan.gov.sd
- [+] unionkhr.sd
- [+] wgpolice.gov.sd
- [+] www.moi.gov.sd
- [+] www.sudan.gov.sd
- #######################################################################################################################################
- Geo IP Lookup 'ncr.gov.sd'
- -----------------------------
- [+] IP Address: 62.12.105.2
- [+] Country: Sudan
- [+] State:
- [+] City:
- [+] Latitude: 15.0
- [+] Longitude: 30.0
- #######################################################################################################################################
- Bypass Cloudflare 'ncr.gov.sd'
- ---------------------------------
- [!] CloudFlare Bypass 62.12.105.2 | webmail.ncr.gov.sd
- [!] CloudFlare Bypass 62.12.105.2 | mail.ncr.gov.sd
- [!] CloudFlare Bypass 62.12.105.2 | www.ncr.gov.sd
- #######################################################################################################################################
- DNS Lookup 'ncr.gov.sd'
- --------------------------
- [+] ncr.gov.sd. 21599 IN SOA ns0.ndc.gov.sd. root.ndc.gov.sd. 2017072600 10800 900 604800 86400
- [+] ncr.gov.sd. 21599 IN NS ns0.ndc.gov.sd.
- [+] ncr.gov.sd. 21599 IN NS ns1.ndc.gov.sd.
- [+] ncr.gov.sd. 21599 IN A 62.12.105.2
- [+] ncr.gov.sd. 21599 IN MX 10 mail.ncr.gov.sd.
- [+] ncr.gov.sd. 21599 IN TXT "v=spf1 mx -all"
- #######################################################################################################################################
- Show HTTP Header 'ncr.gov.sd'
- --------------------------------
- [+] HTTP/1.1 200 OK
- [+] Server: nginx
- [+] Date: Sun, 16 Jun 2019 12:57:50 GMT
- [+] Content-Type: text/html; charset=utf-8
- [+] Connection: keep-alive
- [+] X-Powered-By: PHP/5.6.40
- [+] P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
- [+] Cache-Control: no-cache
- [+] Pragma: no-cache
- [+] Set-Cookie: e0ddbc0e0e8bfa0175c84685f00835f0=fjrg79tequ20i5pghuelf4fmt1; path=/
- [+] X-Powered-By: PleskLin
- #######################################################################################################################################
- Port Scan 'ncr.gov.sd'
- -------------------------
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-06-16 13:55 UTC
- Nmap scan report for ncr.gov.sd (62.12.105.2)
- Host is up (0.20s latency).
- rDNS record for 62.12.105.2: f03-web02.nic.gov.sd
- PORT STATE SERVICE
- 21/tcp open ftp
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 80/tcp open http
- 110/tcp open pop3
- 143/tcp open imap
- 443/tcp open https
- 3389/tcp filtered ms-wbt-server
- Nmap done: 1 IP address (1 host up) scanned in 3.46 seconds
- #######################################################################################################################################
- Cms Scan 'ncr.gov.sd'
- ------------------------
- [+] Cms : Joomla
- [+] Web Servers : Nginx
- [+] Programming Languages : PHP
- #######################################################################################################################################
- Robot.txt 'ncr.gov.sd'
- -------------------------
- # If the Joomla site is installed within a folder such as at
- # e.g. www.example.com/joomla/ the robots.txt file MUST be
- # moved to the site root at e.g. www.example.com/robots.txt
- # AND the joomla folder name MUST be prefixed to the disallowed
- # path, e.g. the Disallow rule for the /administrator/ folder
- # MUST be changed to read Disallow: /joomla/administrator/
- #
- # For more information about the robots.txt standard, see:
- # http://www.robotstxt.org/orig.html
- #
- # For syntax checking, see:
- # http://www.sxw.org.uk/computing/robots/check.html
- User-agent: *
- Disallow: /administrator/
- Disallow: /cache/
- Disallow: /cli/
- Disallow: /components/
- Disallow: /images/
- Disallow: /includes/
- Disallow: /installation/
- Disallow: /language/
- Disallow: /libraries/
- Disallow: /logs/
- Disallow: /media/
- Disallow: /modules/
- Disallow: /plugins/
- Disallow: /templates/
- Disallow: /tmp/
- #######################################################################################################################################
- Traceroute 'ncr.gov.sd'
- --------------------------
- Start: 2019-06-16T13:55:32+0000
- HOST: web01 Loss% Snt Last Avg Best Wrst StDev
- 1.|-- 45.79.12.201 0.0% 3 0.6 0.7 0.6 0.9 0.2
- 2.|-- 45.79.12.0 0.0% 3 0.5 1.3 0.5 2.8 1.3
- 3.|-- ix-et-5-1-2-0.tcore1.dt8-dallas.as6453.net 0.0% 3 1.6 1.3 1.2 1.6 0.2
- 4.|-- if-ae-2-2.tcore2.dt8-dallas.as6453.net 0.0% 3 145.8 145.7 145.6 145.8 0.1
- 5.|-- if-ae-34-2.tcore1.lvw-los-angeles.as6453.net 0.0% 3 139.4 140.2 139.3 142.0 1.5
- 6.|-- if-ae-2-2.tcore2.lvw-los-angeles.as6453.net 0.0% 3 133.9 133.4 133.0 133.9 0.5
- 7.|-- if-et-53-2.hcore2.kv8-chiba.as6453.net 0.0% 3 137.9 138.9 137.9 140.8 1.6
- 8.|-- if-ae-24-2.tcore2.tv2-tokyo.as6453.net 0.0% 3 145.1 145.0 145.0 145.1 0.0
- 9.|-- 180.87.181.34 0.0% 3 139.2 139.4 139.2 139.6 0.2
- 10.|-- ae0.0.pjr02.wad001.flagtel.com 0.0% 3 290.8 291.8 290.8 293.7 1.6
- 11.|-- ge-0-2-0.0.pjr02.hkg005.flagtel.com 0.0% 3 292.0 291.8 291.3 292.1 0.4
- 12.|-- so-3-0-0.0.pjr02.mmb004.flagtel.com 0.0% 3 291.2 291.4 291.2 291.6 0.2
- 13.|-- xe-8-3-0.0.pjr04.mmb004.flagtel.com 0.0% 3 267.0 267.7 267.0 268.6 0.8
- 14.|-- xe-11-0-1.0.pjr04.dxb001.flagtel.com 0.0% 3 291.0 291.2 291.0 291.4 0.2
- 15.|-- 80.77.2.42 0.0% 3 266.4 266.3 266.2 266.4 0.1
- 16.|-- 196.29.177.113 0.0% 3 269.8 269.8 269.7 269.8 0.1
- 17.|-- 197.254.196.62 0.0% 3 272.9 273.4 272.9 274.0 0.5
- 18.|-- ??? 100.0 3 0.0 0.0 0.0 0.0 0.0
- #######################################################################################################################################
- Page Admin Finder 'ncr.gov.sd'
- ---------------------------------
- Avilable Links :
- Find Page >> http://ncr.gov.sd/administrator/
- Find Page >> http://ncr.gov.sd/administrator/index.php
- #######################################################################################################################################
- Trying "ncr.gov.sd"
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 26726
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 6, AUTHORITY: 2, ADDITIONAL: 2
- ;; QUESTION SECTION:
- ;ncr.gov.sd. IN ANY
- ;; ANSWER SECTION:
- ncr.gov.sd. 86400 IN TXT "v=spf1 mx -all"
- ncr.gov.sd. 86400 IN MX 10 mail.ncr.gov.sd.
- ncr.gov.sd. 86400 IN A 62.12.105.2
- ncr.gov.sd. 86400 IN SOA ns0.ndc.gov.sd. root.ndc.gov.sd. 2017072600 10800 900 604800 86400
- ncr.gov.sd. 14400 IN NS ns0.ndc.gov.sd.
- ncr.gov.sd. 14400 IN NS ns1.ndc.gov.sd.
- ;; AUTHORITY SECTION:
- ncr.gov.sd. 14400 IN NS ns1.ndc.gov.sd.
- ncr.gov.sd. 14400 IN NS ns0.ndc.gov.sd.
- ;; ADDITIONAL SECTION:
- ns1.ndc.gov.sd. 12531 IN A 62.12.109.3
- ns0.ndc.gov.sd. 12531 IN A 62.12.109.2
- Received 236 bytes from 2001:18c0:121:6900:724f:b8ff:fefd:5b6a#53 in 371 ms
- #######################################################################################################################################
- ; <<>> DiG 9.11.5-P4-5-Debian <<>> ncr.gov.sd ns
- ;; global options: +cmd
- ;; Got answer:
- ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 3526
- ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
- ;; OPT PSEUDOSECTION:
- ; EDNS: version: 0, flags:; udp: 4096
- ;; QUESTION SECTION:
- ;ncr.gov.sd. IN NS
- ;; ANSWER SECTION:
- ncr.gov.sd. 84259 IN NS ns1.ndc.gov.sd.
- ncr.gov.sd. 84259 IN NS ns0.ndc.gov.sd.
- ;; Query time: 33 msec
- ;; SERVER: 38.132.106.139#53(38.132.106.139)
- ;; WHEN: dim jun 16 10:27:56 EDT 2019
- ;; MSG SIZE rcvd: 79
- ######################################################################################################################################
- ; <<>> DiG 9.11.5-P4-5-Debian <<>> +trace ncr.gov.sd
- ;; global options: +cmd
- . 83966 IN NS l.root-servers.net.
- . 83966 IN NS f.root-servers.net.
- . 83966 IN NS g.root-servers.net.
- . 83966 IN NS d.root-servers.net.
- . 83966 IN NS h.root-servers.net.
- . 83966 IN NS e.root-servers.net.
- . 83966 IN NS k.root-servers.net.
- . 83966 IN NS a.root-servers.net.
- . 83966 IN NS i.root-servers.net.
- . 83966 IN NS m.root-servers.net.
- . 83966 IN NS c.root-servers.net.
- . 83966 IN NS b.root-servers.net.
- . 83966 IN NS j.root-servers.net.
- . 83966 IN RRSIG NS 8 0 518400 20190629050000 20190616040000 25266 . PP10xVvgFP8E/QTmJS0CuNphW+3a4CM9z/vNH/Tf97Q6DMRRoXheaT71 OC9A2R8uDT7jRHwv8hq/3sZijaJ62FWImkU6WEhvTecllaQuk2NApCCf EB6vjXe+yed9TV1rQbLu87C757E0Wu7VuihVGcLRgTk2skEpVQZ2FFgx 2AxyadeCnYOEcMOte8SkQ2p8j+GiMf8TK/cfD4DU/Ih5rvUHrxJxeJwF Jb1sgpA5K7HgMfDyOdlOchCXckpJG66RaH858zsG8G35WALxCPN0GHqp oo2g88vVz+bVCDp+Mh3H6ySx+/+cKnBCcJSZgt/YP9pwRFlx9eTZl3+Z F6PLWw==
- ;; Received 525 bytes from 38.132.106.139#53(38.132.106.139) in 36 ms
- sd. 172800 IN NS ans2.canar.sd.
- sd. 172800 IN NS ans1.canar.sd.
- sd. 172800 IN NS ns1.uaenic.ae.
- sd. 172800 IN NS sd.cctld.authdns.ripe.net.
- sd. 172800 IN NS ns2.uaenic.ae.
- sd. 172800 IN NS ans1.sis.sd.
- sd. 172800 IN NS ns-sd.afrinic.net.
- sd. 86400 IN NSEC se. NS RRSIG NSEC
- sd. 86400 IN RRSIG NSEC 8 1 86400 20190629050000 20190616040000 25266 . yziPFV0NtbF+d6N2faDv5uZ0ztYPMZ3+rp7ti8Crxm/wNExNrQ4xermT TDAC8Ab21NOQ77NfeJqV11Af0ZrZckITiQokyOArMcypoecYZVuagIp/ m/c/z5AXBuShuTSGGwH/bnmiSur1RIJ8Z7dPQNttPojK5feNdyGGx2II gmZL9/3WuPJf+THMrd8+Cn/HLqFGSolx1WlFVFAY7FtJrz4NaM5dVGAH OTCK+0Kv/8v5AWQynu7VzCnzADVpiccQpsHDpcNbhnireSNJCXbyAoEg H5swVj7+h6LR3QcZ2gJpsicPU2KurR9Vw8izseo8Wi81yj4EnZrfyblL 6IS57Q==
- ;; Received 697 bytes from 2001:503:ba3e::2:30#53(a.root-servers.net) in 47 ms
- gov.sd. 14400 IN NS sd.cctld.authdns.ripe.net.
- gov.sd. 14400 IN NS ns1.uaenic.ae.
- gov.sd. 14400 IN NS ns2.uaenic.ae.
- gov.sd. 14400 IN NS ans1.sis.sd.
- gov.sd. 14400 IN NS ans1.canar.sd.
- gov.sd. 14400 IN NS ans2.canar.sd.
- gov.sd. 14400 IN NS ns-sd.afrinic.net.
- ;; Received 266 bytes from 196.216.168.26#53(ns-sd.afrinic.net) in 273 ms
- ncr.gov.sd. 14400 IN NS ns0.ndc.gov.sd.
- ncr.gov.sd. 14400 IN NS ns1.ndc.gov.sd.
- ;; Received 111 bytes from 193.0.9.109#53(sd.cctld.authdns.ripe.net) in 101 ms
- ncr.gov.sd. 86400 IN A 62.12.105.2
- ncr.gov.sd. 86400 IN NS ns1.ndc.gov.sd.
- ncr.gov.sd. 86400 IN NS ns0.ndc.gov.sd.
- ;; Received 127 bytes from 62.12.109.2#53(ns0.ndc.gov.sd) in 232 ms
- #######################################################################################################################################
- AVAILABLE PLUGINS
- --------------------------------------------------------------------------------------------------------------------------------------
- SessionRenegotiationPlugin
- FallbackScsvPlugin
- OpenSslCipherSuitesPlugin
- EarlyDataPlugin
- HttpHeadersPlugin
- CertificateInfoPlugin
- OpenSslCcsInjectionPlugin
- RobotPlugin
- CompressionPlugin
- SessionResumptionPlugin
- HeartbleedPlugin
- CHECKING HOST(S) AVAILABILITY
- --------------------------------------------------------------------------------------------------------------------------------------
- 62.12.105.2:443 => 62.12.105.2
- SCAN RESULTS FOR 62.12.105.2:443 - 62.12.105.2
- --------------------------------------------------------------------------------------------------------------------------------------
- * TLSV1_3 Cipher Suites:
- Server rejected all cipher suites.
- * Certificate Information:
- Content
- SHA1 Fingerprint: 14796658f80369878f4254739eaf97e150dd2d68
- Common Name: Plesk
- Issuer: Plesk
- Serial Number: 1461120027
- Not Before: 2016-04-20 02:40:27
- Not After: 2017-04-20 02:40:27
- Signature Algorithm: sha256
- Public Key Algorithm: RSA
- Key Size: 2048
- Exponent: 65537 (0x10001)
- DNS Subject Alternative Names: []
- Trust
- Hostname Validation: FAILED - Certificate does NOT match 62.12.105.2
- Android CA Store (9.0.0_r9): FAILED - Certificate is NOT Trusted: self signed certificate
- iOS CA Store (12, macOS 10.14, watchOS 5, and tvOS 12):FAILED - Certificate is NOT Trusted: self signed certificate
- Java CA Store (jdk-11.0.2): FAILED - Certificate is NOT Trusted: self signed certificate
- macOS CA Store (12, macOS 10.14, watchOS 5, and tvOS 12):FAILED - Certificate is NOT Trusted: self signed certificate
- Mozilla CA Store (2018-11-22): FAILED - Certificate is NOT Trusted: self signed certificate
- OPENJDK CA Store (jdk-11.0.2): FAILED - Certificate is NOT Trusted: self signed certificate
- Windows CA Store (2018-12-08): FAILED - Certificate is NOT Trusted: self signed certificate
- Symantec 2018 Deprecation: OK - Not a Symantec-issued certificate
- Received Chain: Plesk
- Verified Chain: ERROR - Could not build verified chain (certificate untrusted?)
- Received Chain Contains Anchor: ERROR - Could not build verified chain (certificate untrusted?)
- Received Chain Order: OK - Order is valid
- Verified Chain contains SHA1: ERROR - Could not build verified chain (certificate untrusted?)
- Extensions
- OCSP Must-Staple: NOT SUPPORTED - Extension not found
- Certificate Transparency: NOT SUPPORTED - Extension not found
- OCSP Stapling
- NOT SUPPORTED - Server did not send back an OCSP response
- * Session Renegotiation:
- Client-initiated Renegotiation: OK - Rejected
- Secure Renegotiation: OK - Supported
- * Downgrade Attacks:
- TLS_FALLBACK_SCSV: OK - Supported
- * OpenSSL Heartbleed:
- OK - Not vulnerable to Heartbleed
- * TLSV1_1 Cipher Suites:
- Forward Secrecy OK - Supported
- RC4 OK - Not Supported
- Preferred:
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA 256 bits HTTP 200 OK
- Accepted:
- TLS_RSA_WITH_CAMELLIA_256_CBC_SHA 256 bits HTTP 200 OK
- TLS_RSA_WITH_CAMELLIA_128_CBC_SHA 128 bits HTTP 200 OK
- TLS_RSA_WITH_AES_256_CBC_SHA 256 bits HTTP 200 OK
- TLS_RSA_WITH_AES_128_CBC_SHA 128 bits HTTP 200 OK
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA 256 bits HTTP 200 OK
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA 128 bits HTTP 200 OK
- * TLSV1_2 Cipher Suites:
- Forward Secrecy OK - Supported
- RC4 OK - Not Supported
- Preferred:
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 256 bits HTTP 200 OK
- Accepted:
- TLS_RSA_WITH_CAMELLIA_256_CBC_SHA 256 bits HTTP 200 OK
- TLS_RSA_WITH_CAMELLIA_128_CBC_SHA 128 bits HTTP 200 OK
- TLS_RSA_WITH_AES_256_GCM_SHA384 256 bits HTTP 200 OK
- TLS_RSA_WITH_AES_256_CBC_SHA256 256 bits HTTP 200 OK
- TLS_RSA_WITH_AES_256_CBC_SHA 256 bits HTTP 200 OK
- TLS_RSA_WITH_AES_128_GCM_SHA256 128 bits HTTP 200 OK
- TLS_RSA_WITH_AES_128_CBC_SHA256 128 bits HTTP 200 OK
- TLS_RSA_WITH_AES_128_CBC_SHA 128 bits HTTP 200 OK
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 256 bits HTTP 200 OK
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 256 bits HTTP 200 OK
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA 256 bits HTTP 200 OK
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 128 bits HTTP 200 OK
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 128 bits HTTP 200 OK
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA 128 bits HTTP 200 OK
- * TLSV1 Cipher Suites:
- Forward Secrecy OK - Supported
- RC4 OK - Not Supported
- Preferred:
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA 256 bits HTTP 200 OK
- Accepted:
- TLS_RSA_WITH_CAMELLIA_256_CBC_SHA 256 bits HTTP 200 OK
- TLS_RSA_WITH_CAMELLIA_128_CBC_SHA 128 bits HTTP 200 OK
- TLS_RSA_WITH_AES_256_CBC_SHA 256 bits HTTP 200 OK
- TLS_RSA_WITH_AES_128_CBC_SHA 128 bits HTTP 200 OK
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA 256 bits HTTP 200 OK
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA 128 bits HTTP 200 OK
- * OpenSSL CCS Injection:
- OK - Not vulnerable to OpenSSL CCS injection
- * SSLV2 Cipher Suites:
- Server rejected all cipher suites.
- * SSLV3 Cipher Suites:
- Server rejected all cipher suites.
- * Deflate Compression:
- OK - Compression disabled
- * TLS 1.2 Session Resumption Support:
- With Session IDs: NOT SUPPORTED (0 successful, 5 failed, 0 errors, 5 total attempts).
- With TLS Tickets: OK - Supported
- * ROBOT Attack:
- OK - Not vulnerable
- SCAN COMPLETED IN 22.25 S
- -------------------------------------------------------------------------------------------------------------------------------------
- #######################################################################################################################################
- adding 62.12.105.2/32 mode `TCPscan' ports `7,9,11,13,18,19,21-23,25,37,39,42,49,50,53,65,67-70,79-81,88,98,100,105-107,109-111,113,118,119,123,129,135,137-139,143,150,161-164,174,177-179,191,199-202,204,206,209,210,213,220,345,346,347,369-372,389,406,407,422,443-445,487,500,512-514,517,518,520,525,533,538,548,554,563,587,610-612,631-634,636,642,653,655,657,666,706,750-752,765,779,808,873,901,923,941,946,992-995,1001,1023-1030,1080,1210,1214,1234,1241,1334,1349,1352,1423-1425,1433,1434,1524,1525,1645,1646,1649,1701,1718,1719,1720,1723,1755,1812,1813,2048-2050,2101-2104,2140,2150,2233,2323,2345,2401,2430,2431,2432,2433,2583,2628,2776,2777,2988,2989,3050,3130,3150,3232,3306,3389,3456,3493,3542-3545,3632,3690,3801,4000,4400,4321,4567,4899,5002,5136-5139,5150,5151,5222,5269,5308,5354,5355,5422-5425,5432,5503,5555,5556,5678,6000-6007,6346,6347,6543,6544,6789,6838,6666-6670,7000-7009,7028,7100,7983,8079-8082,8088,8787,8879,9090,9101-9103,9325,9359,10000,10026,10027,10067,10080,10081,10167,10498,11201,15345,17001-17003,18753,20011,20012,21554,22273,26274,27374,27444,27573,31335-31338,31787,31789,31790,31791,32668,32767-32780,33390,47262,49301,54320,54321,57341,58008,58009,58666,59211,60000,60006,61000,61348,61466,61603,63485,63808,63809,64429,65000,65506,65530-65535' pps 300
- using interface(s) eth0
- added module payload for port 80 proto 6
- added module payload for port 518 proto 17
- added module payload for port 1900 proto 17
- added module payload for port 5060 proto 17
- added module payload for port 80 proto 6
- added module payload for port 53 proto 17
- scaning 1.00e+00 total hosts with 3.38e+02 total packets, should take a little longer than 8 Seconds
- drone type Unknown on fd 4 is version 1.1
- drone type Unknown on fd 3 is version 1.1
- added module payload for port 80 proto 6
- added module payload for port 518 proto 17
- added module payload for port 1900 proto 17
- added module payload for port 5060 proto 17
- added module payload for port 80 proto 6
- added module payload for port 53 proto 17
- scan iteration 1 out of 1
- using pcap filter: `dst 192.168.0.52 and ! src 192.168.0.52 and (tcp)'
- using TSC delay
- sender statistics 299.9 pps with 338 packets sent total
- listener statistics 0 packets recieved 0 packets droped and 0 interface drops
- #######################################################################################################################################
- =======================================================================================================================================
- | E-mails:
- | [+] E-mail Found: ebtihalalassam@hotmail.com
- | [+] E-mail Found: rssa@ncr.gov.sd
- | [+] E-mail Found: lologimiabi@hotmail.com
- | [+] E-mail Found: hashim225@hotmail.com
- | [+] E-mail Found: kevinh@kevcom.com
- | [+] E-mail Found: swiba888@hotmail.com
- | [+] E-mail Found: rikbe2015@gmail.com,
- | [+] E-mail Found: saad_krom@yahoo.com
- | [+] E-mail Found: rikbe2015@gmail.co
- | [+] E-mail Found: cbge@ncr.net
- | [+] E-mail Found: rikbe2015@gmail.com
- | [+] E-mail Found: lubnatag@hotmail.com
- | [+] E-mail Found: ashtmri@gmail.com
- | [+] E-mail Found: mike@hyperreal.org
- | [+] E-mail Found: rikbe2015@ncr.gov.sd
- | [+] E-mail Found: rikbe2015@ncr.gov.com
- | [+] E-mail Found: info@ncr.gov.sd
- | [+] E-mail Found: abdullasharief@postmaster.co.uk
- | [+] E-mail Found: smohieldin@gmail.com
- | [+] E-mail Found: hibahassan50@hotmail.com
- | [+] E-mail Found: smohieldin@ncr.gov.sd
- | [+] E-mail Found: adeel2007_zl@hotmail.com
- | [+] E-mail Found: hindahmed98@hotmail.com
- | [+] E-mail Found: esh.tmri@hotmail.com
- | [+] E-mail Found: bashirm59@yahoo.com
- | [+] E-mail Found: humbedooh@apache.org
- | [+] E-mail Found: amandagimmy@yahoo.com
- =======================================================================================================================================
- | External hosts:
- | [+] External Host Found: http://www.saadyaseen.com
- | [+] External Host Found: http://intimm.oxfordjournals.org
- | [+] External Host Found: http://www.sciencedirect.com
- | [+] External Host Found: http://www.pnas.org
- | [+] External Host Found: http://httpd.apache.org
- | [+] External Host Found: http://www.biomedcentral.com
- | [+] External Host Found: http://www.amazon.com
- | [+] External Host Found: http://www.academicjournals.org
- | [+] External Host Found: http://www.scihub.org
- | [+] External Host Found: http://www.msc.gov.sd
- =======================================================================================================================================
- #######################################################################################################################################
- Starting Parsero v0.75 (https://github.com/behindthefirewalls/Parsero) at 06/16/19 10:48:11
- Parsero scan report for www.ncr.gov.sd
- http://www.ncr.gov.sd/media/ 200 OK
- http://www.ncr.gov.sd/language/ 200 OK
- http://www.ncr.gov.sd/administrator/ 303 See other
- http://www.ncr.gov.sd/images/ 200 OK
- http://www.ncr.gov.sd/logs/ 200 OK
- http://www.ncr.gov.sd/cli/ 200 OK
- http://www.ncr.gov.sd/components/ 200 OK
- http://www.ncr.gov.sd/modules/ 200 OK
- http://www.ncr.gov.sd/installation/ 404 Not Found
- http://www.ncr.gov.sd/includes/ 200 OK
- http://www.ncr.gov.sd/libraries/ 200 OK
- http://www.ncr.gov.sd/tmp/ 200 OK
- http://www.ncr.gov.sd/templates/ 200 OK
- http://www.ncr.gov.sd/plugins/ 200 OK
- http://www.ncr.gov.sd/cache/ 200 OK
- [+] 15 links have been analyzed and 13 of them are available!!!
- #######################################################################################################################################
- WhatWeb report for http://ncr.gov.sd
- Status : 200 OK
- Title : المركز القومي للبحوث
- IP : <Unknown>
- Country : <Unknown>
- Summary : Script[text/javascript], nginx, PHP[5.6.40,], JQuery[1.4.2], maybe Joomla, MetaGenerator[Joomla! - Open Source Content Management], Plesk[Lin], Cookies[e0ddbc0e0e8bfa0175c84685f00835f0], X-Powered-By[PHP/5.6.40, PleskLin], HTTPServer[nginx]
- Detected Plugins:
- [ Cookies ]
- Display the names of cookies in the HTTP headers. The
- values are not returned to save on space.
- String : e0ddbc0e0e8bfa0175c84685f00835f0
- [ HTTPServer ]
- HTTP server header string. This plugin also attempts to
- identify the operating system from the server header.
- String : nginx (from server string)
- [ JQuery ]
- A fast, concise, JavaScript that simplifies how to traverse
- HTML documents, handle events, perform animations, and add
- AJAX.
- Version : 1.4.2
- Website : http://jquery.com/
- [ Joomla ]
- Opensource CMS written in PHP. Aggressive version detection
- compares just 5 files, valid for versions 1.5.0-1.5.22 and
- 1.6.0-1.6.1.
- Certainty : maybe
- Aggressive function available (check plugin file or details).
- Google Dorks: (1)
- Website : http://joomla.org
- [ MetaGenerator ]
- This plugin identifies meta generator tags and extracts its
- value.
- String : Joomla! - Open Source Content Management
- [ PHP ]
- PHP is a widely-used general-purpose scripting language
- that is especially suited for Web development and can be
- embedded into HTML. This plugin identifies PHP errors,
- modules and versions and extracts the local file path and
- username if present.
- Version : 5.6.40,
- Google Dorks: (2)
- Website : http://www.php.net/
- [ Plesk ]
- Plesk is a web control panel
- String : Lin
- Google Dorks: (1)
- Website : http://www.parallels.com/products/plesk/
- [ Script ]
- This plugin detects instances of script HTML elements and
- returns the script language/type.
- String : text/javascript
- [ X-Powered-By ]
- X-Powered-By HTTP header
- String : PHP/5.6.40, PleskLin (from x-powered-by string)
- [ nginx ]
- Nginx (Engine-X) is a free, open-source, high-performance
- HTTP server and reverse proxy, as well as an IMAP/POP3
- proxy server.
- Website : http://nginx.net/
- HTTP Headers:
- HTTP/1.1 200 OK
- Server: nginx
- Date: Sun, 16 Jun 2019 13:52:46 GMT
- Content-Type: text/html; charset=utf-8
- Transfer-Encoding: chunked
- Connection: close
- X-Powered-By: PHP/5.6.40
- P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
- Cache-Control: no-cache
- Pragma: no-cache
- Set-Cookie: e0ddbc0e0e8bfa0175c84685f00835f0=hid92er0svi3t5dq6t76cbjge4; path=/
- X-Powered-By: PleskLin
- #######################################################################################################################################
- DNS Servers for ncr.gov.sd:
- ns0.ndc.gov.sd
- ns1.ndc.gov.sd
- Trying zone transfer first...
- Testing ns0.ndc.gov.sd
- Whoah, it worked - misconfigured DNS server found:
- ncr.gov.sd. 86400 IN SOA ( ns0.ndc.gov.sd. root.ndc.gov.sd.
- 2017072600 ;serial
- 10800 ;refresh
- 900 ;retry
- 604800 ;expire
- 86400 ;minimum
- )
- ncr.gov.sd. 86400 IN NS ns0.ndc.gov.sd.
- ncr.gov.sd. 86400 IN NS ns1.ndc.gov.sd.
- ncr.gov.sd. 86400 IN A 62.12.105.2
- ncr.gov.sd. 86400 IN MX 10 mail.ncr.gov.sd.
- ncr.gov.sd. 86400 IN TXT "v=spf1 mx -all"
- mail.ncr.gov.sd. 86400 IN A 62.12.105.2
- mail.ncr.gov.sd. 86400 IN MX 10 mail.ncr.gov.sd.
- webmail.ncr.gov.sd. 86400 IN CNAME mail.ncr.gov.sd.
- www.ncr.gov.sd. 86400 IN A 62.12.105.2
- There isn't much point continuing, you have everything.
- Have a nice day.
- Exiting...
- #######################################################################################################################################
- Domains still to check: 1
- Checking if the hostname ncr.gov.sd. given is in fact a domain...
- Analyzing domain: ncr.gov.sd.
- Checking NameServers using system default resolver...
- IP: 62.12.109.2 (Sudan)
- HostName: ns0.ndc.gov.sd Type: NS
- IP: 62.12.109.3 (Sudan)
- HostName: ns1.ndc.gov.sd Type: NS
- Checking MailServers using system default resolver...
- IP: 62.12.105.2 (Sudan)
- HostName: mail.ncr.gov.sd Type: MX
- HostName: f03-web02.nic.gov.sd Type: PTR
- Checking the zone transfer for each NS... (if this takes more than 10 seconds, just hit CTRL-C and it will continue. Bug in the libs)
- Zone transfer successful on name server 62.12.109.2 (4 hosts)
- Zone transfer successful on name server 62.12.109.3 (4 hosts)
- Checking SPF record...
- Checking 4 most common hostnames using system default resolver...
- IP: 62.12.105.2 (Sudan)
- HostName: mail.ncr.gov.sd Type: MX
- HostName: f03-web02.nic.gov.sd Type: PTR
- HostName: webmail.ncr.gov.sd. Type: A
- IP: 62.12.105.2 (Sudan)
- HostName: mail.ncr.gov.sd Type: MX
- HostName: f03-web02.nic.gov.sd Type: PTR
- HostName: webmail.ncr.gov.sd. Type: A
- HostName: mail.ncr.gov.sd. Type: A
- IP: 62.12.105.2 (Sudan)
- HostName: mail.ncr.gov.sd Type: MX
- HostName: f03-web02.nic.gov.sd Type: PTR
- HostName: webmail.ncr.gov.sd. Type: A
- HostName: mail.ncr.gov.sd. Type: A
- HostName: www.ncr.gov.sd. Type: A
- Checking with nmap the reverse DNS hostnames of every <ip>/24 netblock using system default resolver...
- Checking netblock 62.12.109.0
- Checking netblock 62.12.105.0
- Searching for ncr.gov.sd. emails in Google
- drsarrasaad@ncr.gov.sd.
- Checking 3 active hosts using nmap... (nmap -sn -n -v -PP -PM -PS80,25 -PA -PY -PU53,40125 -PE --reason <ip> -oA <output_directory>/nmap/<ip>.sn)
- Host 62.12.109.2 is up (reset ttl 64)
- Host 62.12.109.3 is up (reset ttl 64)
- Host 62.12.105.2 is up (reset ttl 64)
- Checking ports on every active host using nmap... (nmap -O --reason --webxml --traceroute -sS -sV -sC -Pn -n -v -F <ip> -oA <output_directory>/nmap/<ip>)
- Scanning ip 62.12.109.2 (ns0.ndc.gov.sd):
- 53/tcp open domain syn-ack ttl 43 (unknown banner: you guess!)
- | dns-nsid:
- |_ bind.version: you guess!
- | fingerprint-strings:
- | DNSVersionBindReqTCP:
- | version
- | bind
- |_ guess!
- Scanning ip 62.12.109.3 (ns1.ndc.gov.sd):
- 53/tcp open domain syn-ack ttl 43 (unknown banner: you guess!)
- | dns-nsid:
- |_ bind.version: you guess!
- | fingerprint-strings:
- | DNSVersionBindReqTCP:
- | version
- | bind
- |_ guess!
- Scanning ip 62.12.105.2 (www.ncr.gov.sd.):
- 21/tcp open tcpwrapped syn-ack ttl 43
- 80/tcp open http syn-ack ttl 43 nginx
- |_http-favicon: Unknown favicon MD5: 1DB747255C64A30F9236E9D929E986CA
- | http-methods:
- |_ Supported Methods: POST OPTIONS GET HEAD
- |_http-server-header: nginx
- |_http-title: Domain Default page
- 110/tcp open pop3 syn-ack ttl 43 Dovecot pop3d
- |_pop3-capabilities: PIPELINING TOP RESP-CODES AUTH-RESP-CODE USER UIDL SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) STLS CAPA APOP
- |_ssl-date: TLS randomness does not represent time
- 143/tcp open imap syn-ack ttl 43 Dovecot imapd
- |_imap-capabilities: listed ID more AUTH=PLAIN capabilities post-login LOGIN-REFERRALS IMAP4rev1 STARTTLS OK AUTH=LOGIN AUTH=CRAM-MD5A0001 have ENABLE LITERAL+ IDLE AUTH=DIGEST-MD5 Pre-login SASL-IR
- |_ssl-date: TLS randomness does not represent time
- 443/tcp open ssl/http syn-ack ttl 44 nginx
- |_http-favicon: Unknown favicon MD5: 1DB747255C64A30F9236E9D929E986CA
- | http-methods:
- |_ Supported Methods: POST OPTIONS GET HEAD
- |_http-server-header: nginx
- |_http-title: Domain Default page
- | ssl-cert: Subject: commonName=Plesk/organizationName=Odin/stateOrProvinceName=Washington/countryName=US
- | Issuer: commonName=Plesk/organizationName=Odin/stateOrProvinceName=Washington/countryName=US
- | Public Key type: rsa
- | Public Key bits: 2048
- | Signature Algorithm: sha256WithRSAEncryption
- | Not valid before: 2016-04-20T02:40:27
- | Not valid after: 2017-04-20T02:40:27
- | MD5: a38f 7308 6ca0 a95d 2faa d3f0 6cb4 5553
- |_SHA-1: 1479 6658 f803 6987 8f42 5473 9eaf 97e1 50dd 2d68
- |_ssl-date: TLS randomness does not represent time
- | tls-alpn:
- |_ http/1.1
- | tls-nextprotoneg:
- |_ http/1.1
- 993/tcp open ssl/imaps? syn-ack ttl 43
- |_ssl-date: TLS randomness does not represent time
- 995/tcp open ssl/pop3s? syn-ack ttl 43
- |_ssl-date: TLS randomness does not represent time
- 8443/tcp open ssl/http syn-ack ttl 44 sw-cp-server httpd (Plesk Onyx 17.5.3)
- | http-methods:
- |_ Supported Methods: GET HEAD POST
- |_http-server-header: sw-cp-server
- |_http-title: Plesk Onyx 17.5.3
- | ssl-cert: Subject: commonName=Plesk/organizationName=Odin/stateOrProvinceName=Washington/countryName=US
- | Issuer: commonName=Plesk/organizationName=Odin/stateOrProvinceName=Washington/countryName=US
- | Public Key type: rsa
- | Public Key bits: 2048
- | Signature Algorithm: sha256WithRSAEncryption
- | Not valid before: 2016-04-20T02:40:27
- | Not valid after: 2017-04-20T02:40:27
- | MD5: a38f 7308 6ca0 a95d 2faa d3f0 6cb4 5553
- |_SHA-1: 1479 6658 f803 6987 8f42 5473 9eaf 97e1 50dd 2d68
- |_ssl-date: TLS randomness does not represent time
- | tls-nextprotoneg:
- |_ http/1.1
- OS Info: Service Info: Host: fo3-web02.nic.gov.sd
- WebCrawling domain's web servers... up to 50 max links.
- + URL to crawl: http://www.ncr.gov.sd.
- + Date: 2019-06-16
- + Crawling URL: http://www.ncr.gov.sd.:
- + Links:
- + Crawling http://www.ncr.gov.sd.
- + Crawling http://www.ncr.gov.sd./index.php/explore/features
- + Crawling http://www.ncr.gov.sd./index.php/explore/rtl-demos
- + Crawling http://www.ncr.gov.sd./index.php/explore/2015-02-23-21-43-56
- + Crawling http://www.ncr.gov.sd./index.php/styles/style2/2015-02-23-21-46-04
- + Crawling http://www.ncr.gov.sd./index.php/styles/style2/2015-02-23-21-46-33
- + Crawling http://www.ncr.gov.sd./index.php/styles/style3/2015-02-23-21-49-01
- + Crawling http://www.ncr.gov.sd./index.php/styles/style3/2015-02-23-21-49-25
- + Crawling http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-22-24/2015-02-23-21-49-46
- + Crawling http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-22-24/2015-02-23-21-50-07
- + Crawling http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-26-52/2015-02-23-21-50-41
- + Crawling http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-26-52/2015-02-23-21-51-05
- + Crawling http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-27-18/2015-02-28-11-48-03
- + Crawling http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-27-18/2015-02-28-11-48-41
- + Crawling http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-27-45/2015-02-28-11-49-36
- + Crawling http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-27-45/2015-02-28-11-50-52
- + Crawling http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-31-01/2015-02-28-11-51-58
- + Crawling http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-31-01/2015-02-28-11-52-31
- + Crawling http://www.ncr.gov.sd./index.php/styles/style1/2015-02-28-11-54-35
- + Crawling http://www.ncr.gov.sd./index.php/styles/style1/2015-02-28-11-55-15
- + Crawling http://www.ncr.gov.sd./index.php/isdarat
- + Crawling http://www.ncr.gov.sd./index.php/2015-02-27-08-29-21
- + Crawling http://www.ncr.gov.sd./index.php/sitemap
- + Crawling http://www.ncr.gov.sd./index.php/2016-09-01-08-50-22
- + Crawling http://www.ncr.gov.sd./index.php/2019-04-01-10-42-10
- + Crawling http://www.ncr.gov.sd./index.php/contactus
- + Crawling http://www.ncr.gov.sd./en/index.php
- + Crawling http://www.ncr.gov.sd./index.php/2015-02-27-08-29-21/235-2018-07-11-09-28-53
- + Crawling http://www.ncr.gov.sd./index.php/2015-02-27-08-29-21/233-2018-04-17-05-28-19
- + Crawling http://www.ncr.gov.sd./index.php/2015-02-27-08-29-21/231-2018-04-15-10-45-57
- + Crawling http://www.ncr.gov.sd./index.php/2015-02-27-08-29-21/230-2018-03-06-08-22-22
- + Crawling http://www.ncr.gov.sd./index.php/component/content/article?id=122
- + Crawling http://www.ncr.gov.sd./index.php/component/content/article?id=116
- + Crawling http://www.ncr.gov.sd./index.php/component/content/article?id=117
- + Crawling http://www.ncr.gov.sd./index.php/component/content/article?id=121
- + Crawling http://www.ncr.gov.sd./index.php/component/content/article?id=120
- + Crawling http://www.ncr.gov.sd./index.php/component/content/article?id=119
- + Crawling http://www.ncr.gov.sd./index.php/component/content/article?id=115
- + Crawling http://www.ncr.gov.sd./index.php/component/content/article?id=118
- + Crawling http://www.ncr.gov.sd./index.php/2015-02-27-08-29-21/229-2017-12-07-06-38-44
- + Crawling http://www.ncr.gov.sd./index.php/isdarat/237-2019-04-03-07-06-14
- + Crawling http://www.ncr.gov.sd./index.php/isdarat/194-2016-11-03-09-42-53
- + Crawling http://www.ncr.gov.sd./index.php/isdarat/228-2017-12-05-10-35-53
- + Crawling http://www.ncr.gov.sd./index.php/isdarat/139-2015-03-18-10-36-05
- + Crawling http://www.ncr.gov.sd./index.php/94-2015-02-28-12-31-48/132-2015-03-02-12-46-26
- + Crawling http://www.ncr.gov.sd./index.php/92-2015-02-28-12-31-16/133-2015-03-02-12-47-15
- + Crawling http://www.ncr.gov.sd./index.php/component/content/article?id=133
- + Crawling http://www.ncr.gov.sd./index.php/component/content/article?id=134
- + Crawling http://www.ncr.gov.sd./index.php/component/content/article?id=132
- + Crawling http://www.ncr.gov.sd./index.php/explore/features?id=122
- + Searching for directories...
- - Found: http://www.ncr.gov.sd./index.php/
- - Found: http://www.ncr.gov.sd./index.php/explore/
- - Found: http://www.ncr.gov.sd./index.php/styles/
- - Found: http://www.ncr.gov.sd./index.php/styles/style2/
- - Found: http://www.ncr.gov.sd./index.php/styles/style3/
- - Found: http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-22-24/
- - Found: http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-26-52/
- - Found: http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-27-18/
- - Found: http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-27-45/
- - Found: http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-31-01/
- - Found: http://www.ncr.gov.sd./index.php/styles/style1/
- - Found: http://www.ncr.gov.sd./en/
- - Found: http://www.ncr.gov.sd./index.php/2015-02-27-08-29-21/
- - Found: http://www.ncr.gov.sd./index.php/component/
- - Found: http://www.ncr.gov.sd./index.php/component/content/
- - Found: http://www.ncr.gov.sd./index.php/isdarat/
- - Found: http://www.ncr.gov.sd./index.php/94-2015-02-28-12-31-48/
- - Found: http://www.ncr.gov.sd./index.php/92-2015-02-28-12-31-16/
- - Found: http://www.ncr.gov.sd./templates/
- - Found: http://www.ncr.gov.sd./templates/system/
- - Found: http://www.ncr.gov.sd./templates/system/css/
- - Found: http://www.ncr.gov.sd./templates/shaper_myestate/
- - Found: http://www.ncr.gov.sd./templates/shaper_myestate/css/
- - Found: http://www.ncr.gov.sd./templates/shaper_myestate/css/styles/
- - Found: http://www.ncr.gov.sd./modules/
- - Found: http://www.ncr.gov.sd./modules/mod_vvisit_counter/
- - Found: http://www.ncr.gov.sd./modules/mod_sp_news_highlighter/
- - Found: http://www.ncr.gov.sd./modules/mod_sp_news_highlighter/assets/
- - Found: http://www.ncr.gov.sd./modules/mod_sp_news_highlighter/assets/css/
- - Found: http://www.ncr.gov.sd./modules/mod_news_show_sp1/
- - Found: http://www.ncr.gov.sd./modules/mod_news_show_sp1/assets/
- - Found: http://www.ncr.gov.sd./modules/mod_news_show_sp1/assets/css/
- - Found: http://www.ncr.gov.sd./modules/mod_slideshow_pro_sp2/
- - Found: http://www.ncr.gov.sd./modules/mod_slideshow_pro_sp2/assets/
- - Found: http://www.ncr.gov.sd./modules/mod_slideshow_pro_sp2/assets/css/
- - Found: http://www.ncr.gov.sd./media/
- - Found: http://www.ncr.gov.sd./media/system/
- - Found: http://www.ncr.gov.sd./media/system/js/
- - Found: http://www.ncr.gov.sd./plugins/
- - Found: http://www.ncr.gov.sd./plugins/system/
- - Found: http://www.ncr.gov.sd./plugins/system/helix/
- - Found: http://www.ncr.gov.sd./plugins/system/helix/js/
- - Found: http://www.ncr.gov.sd./modules/mod_sp_news_highlighter/assets/js/
- - Found: http://www.ncr.gov.sd./modules/mod_slideshow_pro_sp2/assets/js/
- - Found: http://www.ncr.gov.sd./templates/shaper_myestate/images/
- - Found: http://www.ncr.gov.sd./templates/shaper_myestate/css/icons/
- - Found: http://www.ncr.gov.sd./images/
- - Found: http://www.ncr.gov.sd./images/pdf/
- - Found: http://www.ncr.gov.sd./modules/mod_vvisit_counter/images/
- - Found: http://www.ncr.gov.sd./modules/mod_vvisit_counter/images/tbl/
- - Found: http://www.ncr.gov.sd./modules/mod_vvisit_counter/images/tbl/peoples/
- - Found: http://www.ncr.gov.sd./templates/shaper_myestate/images/system/
- - Found: http://www.ncr.gov.sd./images/logos/
- - Found: http://www.ncr.gov.sd./images/TMRI/
- - Found: http://www.ncr.gov.sd./components/
- - Found: http://www.ncr.gov.sd./components/com_rsform/
- - Found: http://www.ncr.gov.sd./components/com_rsform/assets/
- - Found: http://www.ncr.gov.sd./components/com_rsform/assets/css/
- - Found: http://www.ncr.gov.sd./components/com_rsform/assets/js/
- - Found: http://www.ncr.gov.sd./en/templates/
- - Found: http://www.ncr.gov.sd./en/templates/system/
- - Found: http://www.ncr.gov.sd./en/templates/system/css/
- - Found: http://www.ncr.gov.sd./en/templates/shaper_myestate/
- - Found: http://www.ncr.gov.sd./en/templates/shaper_myestate/css/
- - Found: http://www.ncr.gov.sd./en/templates/shaper_myestate/css/styles/
- - Found: http://www.ncr.gov.sd./en/modules/
- - Found: http://www.ncr.gov.sd./en/modules/mod_vvisit_counter/
- - Found: http://www.ncr.gov.sd./en/modules/mod_sp_news_highlighter/
- - Found: http://www.ncr.gov.sd./en/modules/mod_sp_news_highlighter/assets/
- - Found: http://www.ncr.gov.sd./en/modules/mod_sp_news_highlighter/assets/css/
- - Found: http://www.ncr.gov.sd./en/modules/mod_news_show_sp1/
- - Found: http://www.ncr.gov.sd./en/modules/mod_news_show_sp1/assets/
- - Found: http://www.ncr.gov.sd./en/modules/mod_news_show_sp1/assets/css/
- - Found: http://www.ncr.gov.sd./en/modules/mod_slideshow_pro_sp2/
- - Found: http://www.ncr.gov.sd./en/modules/mod_slideshow_pro_sp2/assets/
- - Found: http://www.ncr.gov.sd./en/modules/mod_slideshow_pro_sp2/assets/css/
- - Found: http://www.ncr.gov.sd./en/media/
- - Found: http://www.ncr.gov.sd./en/media/system/
- - Found: http://www.ncr.gov.sd./en/media/system/js/
- - Found: http://www.ncr.gov.sd./en/plugins/
- - Found: http://www.ncr.gov.sd./en/plugins/system/
- - Found: http://www.ncr.gov.sd./en/plugins/system/helix/
- - Found: http://www.ncr.gov.sd./en/plugins/system/helix/js/
- - Found: http://www.ncr.gov.sd./en/modules/mod_sp_news_highlighter/assets/js/
- - Found: http://www.ncr.gov.sd./en/modules/mod_slideshow_pro_sp2/assets/js/
- - Found: http://www.ncr.gov.sd./en/templates/shaper_myestate/images/
- - Found: http://www.ncr.gov.sd./en/templates/shaper_myestate/css/icons/
- - Found: http://www.ncr.gov.sd./en/images/
- - Found: http://www.ncr.gov.sd./en/images/pdf/
- - Found: http://www.ncr.gov.sd./en/images/stories/
- - Found: http://www.ncr.gov.sd./en/modules/mod_vvisit_counter/images/
- - Found: http://www.ncr.gov.sd./en/modules/mod_vvisit_counter/images/tbl/
- - Found: http://www.ncr.gov.sd./en/modules/mod_vvisit_counter/images/tbl/peoples/
- + Searching open folders...
- - http://www.ncr.gov.sd./index.php/ (No Open Folder)
- - http://www.ncr.gov.sd./index.php/explore/ (No Open Folder)
- - http://www.ncr.gov.sd./index.php/styles/ (No Open Folder)
- - http://www.ncr.gov.sd./index.php/styles/style2/ (No Open Folder)
- - http://www.ncr.gov.sd./index.php/styles/style3/ (No Open Folder)
- - http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-22-24/ (No Open Folder)
- - http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-26-52/ (No Open Folder)
- - http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-27-18/ (No Open Folder)
- - http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-27-45/ (No Open Folder)
- - http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-31-01/ (No Open Folder)
- - http://www.ncr.gov.sd./index.php/styles/style1/ (No Open Folder)
- - http://www.ncr.gov.sd./en/ (No Open Folder)
- - http://www.ncr.gov.sd./index.php/2015-02-27-08-29-21/ (No Open Folder)
- - http://www.ncr.gov.sd./index.php/component/ (500 Internal Server Error)
- - http://www.ncr.gov.sd./index.php/component/content/ (No Open Folder)
- - http://www.ncr.gov.sd./index.php/isdarat/ (No Open Folder)
- - http://www.ncr.gov.sd./index.php/94-2015-02-28-12-31-48/ (No Open Folder)
- - http://www.ncr.gov.sd./index.php/92-2015-02-28-12-31-16/ (No Open Folder)
- - http://www.ncr.gov.sd./templates/ (No Open Folder)
- - http://www.ncr.gov.sd./templates/system/ (No Open Folder)
- - http://www.ncr.gov.sd./templates/system/css/ (No Open Folder)
- - http://www.ncr.gov.sd./templates/shaper_myestate/ (No Open Folder)
- - http://www.ncr.gov.sd./templates/shaper_myestate/css/ (No Open Folder)
- - http://www.ncr.gov.sd./templates/shaper_myestate/css/styles/ (No Open Folder)
- - http://www.ncr.gov.sd./modules/ (No Open Folder)
- - http://www.ncr.gov.sd./modules/mod_vvisit_counter/ (No Open Folder)
- - http://www.ncr.gov.sd./modules/mod_sp_news_highlighter/ (No Open Folder)
- - http://www.ncr.gov.sd./modules/mod_sp_news_highlighter/assets/ (No Open Folder)
- - http://www.ncr.gov.sd./modules/mod_sp_news_highlighter/assets/css/ (No Open Folder)
- - http://www.ncr.gov.sd./modules/mod_news_show_sp1/ (No Open Folder)
- - http://www.ncr.gov.sd./modules/mod_news_show_sp1/assets/ (No Open Folder)
- - http://www.ncr.gov.sd./modules/mod_news_show_sp1/assets/css/ (No Open Folder)
- - http://www.ncr.gov.sd./modules/mod_slideshow_pro_sp2/ (No Open Folder)
- - http://www.ncr.gov.sd./modules/mod_slideshow_pro_sp2/assets/ (No Open Folder)
- - http://www.ncr.gov.sd./modules/mod_slideshow_pro_sp2/assets/css/ (No Open Folder)
- - http://www.ncr.gov.sd./media/ (No Open Folder)
- - http://www.ncr.gov.sd./media/system/ (No Open Folder)
- - http://www.ncr.gov.sd./media/system/js/ (No Open Folder)
- - http://www.ncr.gov.sd./plugins/ (No Open Folder)
- - http://www.ncr.gov.sd./plugins/system/ (No Open Folder)
- - http://www.ncr.gov.sd./plugins/system/helix/ (No Open Folder)
- - http://www.ncr.gov.sd./plugins/system/helix/js/ (No Open Folder)
- - http://www.ncr.gov.sd./modules/mod_sp_news_highlighter/assets/js/ (No Open Folder)
- - http://www.ncr.gov.sd./modules/mod_slideshow_pro_sp2/assets/js/ (No Open Folder)
- - http://www.ncr.gov.sd./templates/shaper_myestate/images/ (No Open Folder)
- - http://www.ncr.gov.sd./templates/shaper_myestate/css/icons/ (No Open Folder)
- - http://www.ncr.gov.sd./images/ (No Open Folder)
- - http://www.ncr.gov.sd./images/pdf/ (No Open Folder)
- - http://www.ncr.gov.sd./modules/mod_vvisit_counter/images/ (No Open Folder)
- - http://www.ncr.gov.sd./modules/mod_vvisit_counter/images/tbl/ (No Open Folder)
- - http://www.ncr.gov.sd./modules/mod_vvisit_counter/images/tbl/peoples/ (No Open Folder)
- - http://www.ncr.gov.sd./templates/shaper_myestate/images/system/ (No Open Folder)
- - http://www.ncr.gov.sd./images/logos/ (403 Forbidden)
- - http://www.ncr.gov.sd./images/TMRI/ (No Open Folder)
- - http://www.ncr.gov.sd./components/ (No Open Folder)
- - http://www.ncr.gov.sd./components/com_rsform/ (No Open Folder)
- - http://www.ncr.gov.sd./components/com_rsform/assets/ (No Open Folder)
- - http://www.ncr.gov.sd./components/com_rsform/assets/css/ (No Open Folder)
- - http://www.ncr.gov.sd./components/com_rsform/assets/js/ (No Open Folder)
- - http://www.ncr.gov.sd./en/templates/ (No Open Folder)
- - http://www.ncr.gov.sd./en/templates/system/ (No Open Folder)
- - http://www.ncr.gov.sd./en/templates/system/css/ (No Open Folder)
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/ (No Open Folder)
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/css/ (No Open Folder)
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/css/styles/ (No Open Folder)
- - http://www.ncr.gov.sd./en/modules/ (No Open Folder)
- - http://www.ncr.gov.sd./en/modules/mod_vvisit_counter/ (No Open Folder)
- - http://www.ncr.gov.sd./en/modules/mod_sp_news_highlighter/ (No Open Folder)
- - http://www.ncr.gov.sd./en/modules/mod_sp_news_highlighter/assets/ (No Open Folder)
- - http://www.ncr.gov.sd./en/modules/mod_sp_news_highlighter/assets/css/ (No Open Folder)
- - http://www.ncr.gov.sd./en/modules/mod_news_show_sp1/ (No Open Folder)
- - http://www.ncr.gov.sd./en/modules/mod_news_show_sp1/assets/ (No Open Folder)
- - http://www.ncr.gov.sd./en/modules/mod_news_show_sp1/assets/css/ (No Open Folder)
- - http://www.ncr.gov.sd./en/modules/mod_slideshow_pro_sp2/ (No Open Folder)
- - http://www.ncr.gov.sd./en/modules/mod_slideshow_pro_sp2/assets/ (No Open Folder)
- - http://www.ncr.gov.sd./en/modules/mod_slideshow_pro_sp2/assets/css/ (No Open Folder)
- - http://www.ncr.gov.sd./en/media/ (No Open Folder)
- - http://www.ncr.gov.sd./en/media/system/ (No Open Folder)
- - http://www.ncr.gov.sd./en/media/system/js/ (No Open Folder)
- - http://www.ncr.gov.sd./en/plugins/ (No Open Folder)
- - http://www.ncr.gov.sd./en/plugins/system/ (No Open Folder)
- - http://www.ncr.gov.sd./en/plugins/system/helix/ (No Open Folder)
- - http://www.ncr.gov.sd./en/plugins/system/helix/js/ (No Open Folder)
- - http://www.ncr.gov.sd./en/modules/mod_sp_news_highlighter/assets/js/ (No Open Folder)
- - http://www.ncr.gov.sd./en/modules/mod_slideshow_pro_sp2/assets/js/ (No Open Folder)
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/images/ (No Open Folder)
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/css/icons/ (No Open Folder)
- - http://www.ncr.gov.sd./en/images/ (No Open Folder)
- - http://www.ncr.gov.sd./en/images/pdf/ (No Open Folder)
- - http://www.ncr.gov.sd./en/images/stories/ (No Open Folder)
- - http://www.ncr.gov.sd./en/modules/mod_vvisit_counter/images/ (No Open Folder)
- - http://www.ncr.gov.sd./en/modules/mod_vvisit_counter/images/tbl/ (No Open Folder)
- - http://www.ncr.gov.sd./en/modules/mod_vvisit_counter/images/tbl/peoples/ (No Open Folder)
- + Crawl finished successfully.
- ---------------------------------------------------------------------------------------------------------------------------------------
- Summary of http://http://www.ncr.gov.sd.
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Links crawled:
- - http://www.ncr.gov.sd.
- - http://www.ncr.gov.sd./en/index.php
- - http://www.ncr.gov.sd./index.php/2015-02-27-08-29-21
- - http://www.ncr.gov.sd./index.php/2015-02-27-08-29-21/229-2017-12-07-06-38-44
- - http://www.ncr.gov.sd./index.php/2015-02-27-08-29-21/230-2018-03-06-08-22-22
- - http://www.ncr.gov.sd./index.php/2015-02-27-08-29-21/231-2018-04-15-10-45-57
- - http://www.ncr.gov.sd./index.php/2015-02-27-08-29-21/233-2018-04-17-05-28-19
- - http://www.ncr.gov.sd./index.php/2015-02-27-08-29-21/235-2018-07-11-09-28-53
- - http://www.ncr.gov.sd./index.php/2016-09-01-08-50-22
- - http://www.ncr.gov.sd./index.php/2019-04-01-10-42-10
- - http://www.ncr.gov.sd./index.php/92-2015-02-28-12-31-16/133-2015-03-02-12-47-15
- - http://www.ncr.gov.sd./index.php/94-2015-02-28-12-31-48/132-2015-03-02-12-46-26
- - http://www.ncr.gov.sd./index.php/component/content/article?id=115
- - http://www.ncr.gov.sd./index.php/component/content/article?id=116
- - http://www.ncr.gov.sd./index.php/component/content/article?id=117
- - http://www.ncr.gov.sd./index.php/component/content/article?id=118
- - http://www.ncr.gov.sd./index.php/component/content/article?id=119
- - http://www.ncr.gov.sd./index.php/component/content/article?id=120
- - http://www.ncr.gov.sd./index.php/component/content/article?id=121
- - http://www.ncr.gov.sd./index.php/component/content/article?id=122
- - http://www.ncr.gov.sd./index.php/component/content/article?id=132
- - http://www.ncr.gov.sd./index.php/component/content/article?id=133
- - http://www.ncr.gov.sd./index.php/component/content/article?id=134
- - http://www.ncr.gov.sd./index.php/contactus
- - http://www.ncr.gov.sd./index.php/explore/2015-02-23-21-43-56
- - http://www.ncr.gov.sd./index.php/explore/features
- - http://www.ncr.gov.sd./index.php/explore/features?id=122
- - http://www.ncr.gov.sd./index.php/explore/rtl-demos
- - http://www.ncr.gov.sd./index.php/isdarat
- - http://www.ncr.gov.sd./index.php/isdarat/139-2015-03-18-10-36-05
- - http://www.ncr.gov.sd./index.php/isdarat/194-2016-11-03-09-42-53
- - http://www.ncr.gov.sd./index.php/isdarat/228-2017-12-05-10-35-53
- - http://www.ncr.gov.sd./index.php/isdarat/237-2019-04-03-07-06-14
- - http://www.ncr.gov.sd./index.php/sitemap
- - http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-22-24/2015-02-23-21-49-46
- - http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-22-24/2015-02-23-21-50-07
- - http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-26-52/2015-02-23-21-50-41
- - http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-26-52/2015-02-23-21-51-05
- - http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-27-18/2015-02-28-11-48-03
- - http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-27-18/2015-02-28-11-48-41
- - http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-27-45/2015-02-28-11-49-36
- - http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-27-45/2015-02-28-11-50-52
- - http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-31-01/2015-02-28-11-51-58
- - http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-31-01/2015-02-28-11-52-31
- - http://www.ncr.gov.sd./index.php/styles/style1/2015-02-28-11-54-35
- - http://www.ncr.gov.sd./index.php/styles/style1/2015-02-28-11-55-15
- - http://www.ncr.gov.sd./index.php/styles/style2/2015-02-23-21-46-04
- - http://www.ncr.gov.sd./index.php/styles/style2/2015-02-23-21-46-33
- - http://www.ncr.gov.sd./index.php/styles/style3/2015-02-23-21-49-01
- - http://www.ncr.gov.sd./index.php/styles/style3/2015-02-23-21-49-25
- Total links crawled: 50
- + Links to files found:
- - http://www.ncr.gov.sd./components/com_rsform/assets/css/front.css
- - http://www.ncr.gov.sd./components/com_rsform/assets/js/script.js
- - http://www.ncr.gov.sd./en/images/1.png
- - http://www.ncr.gov.sd./en/images/3.png
- - http://www.ncr.gov.sd./en/images/4.png
- - http://www.ncr.gov.sd./en/images/pdf/1991.pdf
- - http://www.ncr.gov.sd./en/images/stories/news1-Rec_thumb106.jpg
- - http://www.ncr.gov.sd./en/images/stories/news1-Recovere_thumb106.jpg
- - http://www.ncr.gov.sd./en/images/stories/news1-Recovered_thumb106.jpg
- - http://www.ncr.gov.sd./en/images/up.png
- - http://www.ncr.gov.sd./en/media/system/js/caption.js
- - http://www.ncr.gov.sd./en/media/system/js/core.js
- - http://www.ncr.gov.sd./en/media/system/js/mootools-core.js
- - http://www.ncr.gov.sd./en/media/system/js/mootools-more.js
- - http://www.ncr.gov.sd./en/modules/mod_news_show_sp1/assets/css/style.css
- - http://www.ncr.gov.sd./en/modules/mod_slideshow_pro_sp2/assets/css/mod_slideshow_pro_sp2_movie.css
- - http://www.ncr.gov.sd./en/modules/mod_slideshow_pro_sp2/assets/js/mod_slideshow_pro_sp2.js
- - http://www.ncr.gov.sd./en/modules/mod_sp_news_highlighter/assets/css/style.css
- - http://www.ncr.gov.sd./en/modules/mod_sp_news_highlighter/assets/js/sp_highlighter.js
- - http://www.ncr.gov.sd./en/modules/mod_vvisit_counter/images/tbl/peoples/vall.gif
- - http://www.ncr.gov.sd./en/modules/mod_vvisit_counter/images/tbl/peoples/vmonth.gif
- - http://www.ncr.gov.sd./en/modules/mod_vvisit_counter/images/tbl/peoples/vtoday.gif
- - http://www.ncr.gov.sd./en/modules/mod_vvisit_counter/images/tbl/peoples/vweek.gif
- - http://www.ncr.gov.sd./en/modules/mod_vvisit_counter/mvc.css
- - http://www.ncr.gov.sd./en/plugins/system/helix/js/menu.js
- - http://www.ncr.gov.sd./en/plugins/system/helix/js/totop.js
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/css/css3.css
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/css/custom.css
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/css/font.css
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/css/icons/logo.png
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/css/joomla.css
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/css/media_queries.css
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/css/menu.css
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/css/modules.css
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/css/styles/style1.css
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/css/template.css
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/css/typography.css
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/images/favicon.ico
- - http://www.ncr.gov.sd./en/templates/system/css/general.css
- - http://www.ncr.gov.sd./en/templates/system/css/system.css
- - http://www.ncr.gov.sd./favicon.ico
- - http://www.ncr.gov.sd./images/1.png
- - http://www.ncr.gov.sd./images/10scien_thumb106.png
- - http://www.ncr.gov.sd./images/149.jpg
- - http://www.ncr.gov.sd./images/3.png
- - http://www.ncr.gov.sd./images/4.png
- - http://www.ncr.gov.sd./images/8U5A0298 2.jpg
- - http://www.ncr.gov.sd./images/DS417.jpg
- - http://www.ncr.gov.sd./images/DSC_45944.jpg
- - http://www.ncr.gov.sd./images/DSC_5159.jpg
- - http://www.ncr.gov.sd./images/IMG-20180412-WA0023.jpg
- - http://www.ncr.gov.sd./images/TMRI/Abdalla.pdf
- - http://www.ncr.gov.sd./images/TMRI/Amanda.pdf
- - http://www.ncr.gov.sd./images/TMRI/Amna.pdf
- - http://www.ncr.gov.sd./images/TMRI/Ashraf.pdf
- - http://www.ncr.gov.sd./images/TMRI/DR.Awad.pdf
- - http://www.ncr.gov.sd./images/TMRI/Hadeel.pdf
- - http://www.ncr.gov.sd./images/TMRI/Haitham.pdf
- - http://www.ncr.gov.sd./images/TMRI/Hind.pdf
- - http://www.ncr.gov.sd./images/TMRI/Korti.pdf
- - http://www.ncr.gov.sd./images/TMRI/Mayada.pdf
- - http://www.ncr.gov.sd./images/TMRI/Moawia.pdf
- - http://www.ncr.gov.sd./images/TMRI/Mohammed.pdf
- - http://www.ncr.gov.sd./images/TMRI/Muataz.pdf
- - http://www.ncr.gov.sd./images/TMRI/Mubarak.pdf
- - http://www.ncr.gov.sd./images/TMRI/Naglas.pdf
- - http://www.ncr.gov.sd./images/TMRI/Nihad.pdf
- - http://www.ncr.gov.sd./images/TMRI/Omnia.pdf
- - http://www.ncr.gov.sd./images/TMRI/Samia.pdf
- - http://www.ncr.gov.sd./images/TMRI/Suhaib.pdf
- - http://www.ncr.gov.sd./images/TMRI/Tahani.pdf
- - http://www.ncr.gov.sd./images/TMRI/Tellal.pdf
- - http://www.ncr.gov.sd./images/TMRI/lubna.pdf
- - http://www.ncr.gov.sd./images/albah.pdf
- - http://www.ncr.gov.sd./images/brochre1.jpg
- - http://www.ncr.gov.sd./images/cover1.jpg
- - http://www.ncr.gov.sd./images/hikal.jpg
- - http://www.ncr.gov.sd./images/khardel.jpg
- - http://www.ncr.gov.sd./images/logos/engtec.jpg
- - http://www.ncr.gov.sd./images/logos/envor.jpg
- - http://www.ncr.gov.sd./images/logos/isra.jpg
- - http://www.ncr.gov.sd./images/logos/med.jpg
- - http://www.ncr.gov.sd./images/logos/plants.jpg
- - http://www.ncr.gov.sd./images/logos/rssa.jpg
- - http://www.ncr.gov.sd./images/logos/twthig.jpg
- - http://www.ncr.gov.sd./images/logos/wra.jpg
- - http://www.ncr.gov.sd./images/pdf/1991.pdf
- - http://www.ncr.gov.sd./images/pdf/Dr.%20Nasr%20C.V1.pdf
- - http://www.ncr.gov.sd./images/pdf/NCR%20Rep.for%202015%20.pdf
- - http://www.ncr.gov.sd./images/pdf/khardel.pdf
- - http://www.ncr.gov.sd./images/pdf/rafaapub.pdf
- - http://www.ncr.gov.sd./images/up.png
- - http://www.ncr.gov.sd./media/system/js/caption.js
- - http://www.ncr.gov.sd./media/system/js/core.js
- - http://www.ncr.gov.sd./media/system/js/mootools-core.js
- - http://www.ncr.gov.sd./media/system/js/mootools-more.js
- - http://www.ncr.gov.sd./modules/mod_news_show_sp1/assets/css/style.css
- - http://www.ncr.gov.sd./modules/mod_slideshow_pro_sp2/assets/css/mod_slideshow_pro_sp2_movie.css
- - http://www.ncr.gov.sd./modules/mod_slideshow_pro_sp2/assets/js/mod_slideshow_pro_sp2.js
- - http://www.ncr.gov.sd./modules/mod_sp_news_highlighter/assets/css/style.css
- - http://www.ncr.gov.sd./modules/mod_sp_news_highlighter/assets/js/sp_highlighter.js
- - http://www.ncr.gov.sd./modules/mod_vvisit_counter/images/tbl/peoples/vall.gif
- - http://www.ncr.gov.sd./modules/mod_vvisit_counter/images/tbl/peoples/vmonth.gif
- - http://www.ncr.gov.sd./modules/mod_vvisit_counter/images/tbl/peoples/vtoday.gif
- - http://www.ncr.gov.sd./modules/mod_vvisit_counter/images/tbl/peoples/vweek.gif
- - http://www.ncr.gov.sd./modules/mod_vvisit_counter/mvc.css
- - http://www.ncr.gov.sd./plugins/system/helix/js/menu.js
- - http://www.ncr.gov.sd./plugins/system/helix/js/totop.js
- - http://www.ncr.gov.sd./templates/shaper_myestate/css/css3.css
- - http://www.ncr.gov.sd./templates/shaper_myestate/css/custom.css
- - http://www.ncr.gov.sd./templates/shaper_myestate/css/font.css
- - http://www.ncr.gov.sd./templates/shaper_myestate/css/icons/logo.png
- - http://www.ncr.gov.sd./templates/shaper_myestate/css/joomla.css
- - http://www.ncr.gov.sd./templates/shaper_myestate/css/media_queries.css
- - http://www.ncr.gov.sd./templates/shaper_myestate/css/menu.css
- - http://www.ncr.gov.sd./templates/shaper_myestate/css/modules.css
- - http://www.ncr.gov.sd./templates/shaper_myestate/css/styles/style1.css
- - http://www.ncr.gov.sd./templates/shaper_myestate/css/template.css
- - http://www.ncr.gov.sd./templates/shaper_myestate/css/template_rtl.css
- - http://www.ncr.gov.sd./templates/shaper_myestate/css/typography.css
- - http://www.ncr.gov.sd./templates/shaper_myestate/images/favicon.ico
- - http://www.ncr.gov.sd./templates/shaper_myestate/images/system/emailButton.png
- - http://www.ncr.gov.sd./templates/shaper_myestate/images/system/printButton.png
- - http://www.ncr.gov.sd./templates/system/css/general.css
- - http://www.ncr.gov.sd./templates/system/css/system.css
- Total links to files: 125
- + Externals links found:
- - http://centrallaboratory.org
- - http://frc.gov.sd/
- - http://mail.ncr.gov.sd/
- - http://maps.google.com/maps/api/js?sensor=false
- - http://mohe.gov.sd
- - http://msc.gov.sd
- - http://ndcc.gov.sd/
- - http://nerc.gov.sd/
- - http://nic.gov.sd/
- - http://ntc.gov.sd/index.php/en/
- - http://webmail.ncr.gov.sd/
- - http://www.act.sd/
- - http://www.facebook.com/
- - http://www.msc.gov.sd/index.php/%D8%AF%D8%A7%D8%A6%D8%B1%D8%A9-%D8%A7%D9%84%D8%A7%D8%A8%D8%AD%D8%A7%D8%AB-%D8%A7%D9%84%D8%A7%D9%82%D8%AA%D8%B5%D8%A7%D8%AF%D9%8A%D8%A9-%D9%88%D8%A7%D9%84%D8%A7%D8%AC%D8%AA%D9%85%D8%A7%D8%B9%D9%8A%D8%A9.html
- - http://www.ncr.gov.sd/
- - http://www.ncr.gov.sd/en/
- - http://www.ncr.gov.sd/en/index.php
- - http://www.ncr.gov.sd/en/modules/mod_slideshow_pro_sp2/assets/images/none.gif
- - http://www.ncr.gov.sd/en/modules/mod_vtem_gmap/js/jquery-1.4.2.min.js
- - http://www.ncr.gov.sd/en/modules/mod_vtem_gmap/js/jquery.gmap.js
- - http://www.ncr.gov.sd/index.php/2015-02-27-08-29-21
- - http://www.ncr.gov.sd/index.php/2015-02-27-08-29-21/229-2017-12-07-06-38-44
- - http://www.ncr.gov.sd/index.php/2015-02-27-08-29-21/230-2018-03-06-08-22-22
- - http://www.ncr.gov.sd/index.php/2015-02-27-08-29-21/231-2018-04-15-10-45-57
- - http://www.ncr.gov.sd/index.php/2015-02-27-08-29-21/233-2018-04-17-05-28-19
- - http://www.ncr.gov.sd/index.php/2015-02-27-08-29-21/235-2018-07-11-09-28-53
- - http://www.ncr.gov.sd/index.php/2016-09-01-08-50-22
- - http://www.ncr.gov.sd/index.php/2019-04-01-10-42-10
- - http://www.ncr.gov.sd/index.php/92-2015-02-28-12-31-16/133-2015-03-02-12-47-15
- - http://www.ncr.gov.sd/index.php/94-2015-02-28-12-31-48/132-2015-03-02-12-46-26
- - http://www.ncr.gov.sd/index.php/component/content/article
- - http://www.ncr.gov.sd/index.php/contactus
- - http://www.ncr.gov.sd/index.php/explore/2015-02-23-21-43-56
- - http://www.ncr.gov.sd/index.php/explore/features
- - http://www.ncr.gov.sd/index.php/explore/rtl-demos
- - http://www.ncr.gov.sd/index.php/isdarat
- - http://www.ncr.gov.sd/index.php/isdarat/139-2015-03-18-10-36-05
- - http://www.ncr.gov.sd/index.php/isdarat/194-2016-11-03-09-42-53
- - http://www.ncr.gov.sd/index.php/isdarat/228-2017-12-05-10-35-53
- - http://www.ncr.gov.sd/index.php/isdarat/237-2019-04-03-07-06-14
- - http://www.ncr.gov.sd/index.php/sitemap
- - http://www.ncr.gov.sd/index.php/styles/2015-02-19-14-22-24/2015-02-23-21-49-46
- - http://www.ncr.gov.sd/index.php/styles/2015-02-19-14-22-24/2015-02-23-21-50-07
- - http://www.ncr.gov.sd/index.php/styles/2015-02-19-14-26-52/2015-02-23-21-50-41
- - http://www.ncr.gov.sd/index.php/styles/2015-02-19-14-26-52/2015-02-23-21-51-05
- - http://www.ncr.gov.sd/index.php/styles/2015-02-19-14-27-18/2015-02-28-11-48-03
- - http://www.ncr.gov.sd/index.php/styles/2015-02-19-14-27-18/2015-02-28-11-48-41
- - http://www.ncr.gov.sd/index.php/styles/2015-02-19-14-27-45/2015-02-28-11-49-36
- - http://www.ncr.gov.sd/index.php/styles/2015-02-19-14-27-45/2015-02-28-11-50-52
- - http://www.ncr.gov.sd/index.php/styles/2015-02-19-14-31-01/2015-02-28-11-51-58
- - http://www.ncr.gov.sd/index.php/styles/2015-02-19-14-31-01/2015-02-28-11-52-31
- - http://www.ncr.gov.sd/index.php/styles/style1/2015-02-28-11-54-35
- - http://www.ncr.gov.sd/index.php/styles/style1/2015-02-28-11-55-15
- - http://www.ncr.gov.sd/index.php/styles/style2/2015-02-23-21-46-04
- - http://www.ncr.gov.sd/index.php/styles/style2/2015-02-23-21-46-33
- - http://www.ncr.gov.sd/index.php/styles/style3/2015-02-23-21-49-01
- - http://www.ncr.gov.sd/index.php/styles/style3/2015-02-23-21-49-25
- - http://www.ncr.gov.sd/modules/mod_slideshow_pro_sp2/assets/images/none.gif
- - http://www.ncr.gov.sd/modules/mod_vtem_gmap/js/jquery-1.4.2.min.js
- - http://www.ncr.gov.sd/modules/mod_vtem_gmap/js/jquery.gmap.js
- - http://www.saadyaseen.com
- - http://www.saec.gov.sd/
- - http://www.sas.edu.sd/
- - http://www.twitter.com/
- - http://www.youtube.com/
- - https://www.facebook.com/pages/المركز-القومي-للبحوث-National-Centre-for-Research/1400956583559098
- Total external links: 66
- + Email addresses found:
- Total email address found: 0
- + Directories found:
- - http://www.ncr.gov.sd./components/ (No open folder)
- - http://www.ncr.gov.sd./components/com_rsform/ (No open folder)
- - http://www.ncr.gov.sd./components/com_rsform/assets/ (No open folder)
- - http://www.ncr.gov.sd./components/com_rsform/assets/css/ (No open folder)
- - http://www.ncr.gov.sd./components/com_rsform/assets/js/ (No open folder)
- - http://www.ncr.gov.sd./en/ (No open folder)
- - http://www.ncr.gov.sd./en/images/ (No open folder)
- - http://www.ncr.gov.sd./en/images/pdf/ (No open folder)
- - http://www.ncr.gov.sd./en/images/stories/ (No open folder)
- - http://www.ncr.gov.sd./en/media/ (No open folder)
- - http://www.ncr.gov.sd./en/media/system/ (No open folder)
- - http://www.ncr.gov.sd./en/media/system/js/ (No open folder)
- - http://www.ncr.gov.sd./en/modules/ (No open folder)
- - http://www.ncr.gov.sd./en/modules/mod_news_show_sp1/ (No open folder)
- - http://www.ncr.gov.sd./en/modules/mod_news_show_sp1/assets/ (No open folder)
- - http://www.ncr.gov.sd./en/modules/mod_news_show_sp1/assets/css/ (No open folder)
- - http://www.ncr.gov.sd./en/modules/mod_slideshow_pro_sp2/ (No open folder)
- - http://www.ncr.gov.sd./en/modules/mod_slideshow_pro_sp2/assets/ (No open folder)
- - http://www.ncr.gov.sd./en/modules/mod_slideshow_pro_sp2/assets/css/ (No open folder)
- - http://www.ncr.gov.sd./en/modules/mod_slideshow_pro_sp2/assets/js/ (No open folder)
- - http://www.ncr.gov.sd./en/modules/mod_sp_news_highlighter/ (No open folder)
- - http://www.ncr.gov.sd./en/modules/mod_sp_news_highlighter/assets/ (No open folder)
- - http://www.ncr.gov.sd./en/modules/mod_sp_news_highlighter/assets/css/ (No open folder)
- - http://www.ncr.gov.sd./en/modules/mod_sp_news_highlighter/assets/js/ (No open folder)
- - http://www.ncr.gov.sd./en/modules/mod_vvisit_counter/ (No open folder)
- - http://www.ncr.gov.sd./en/modules/mod_vvisit_counter/images/ (No open folder)
- - http://www.ncr.gov.sd./en/modules/mod_vvisit_counter/images/tbl/ (No open folder)
- - http://www.ncr.gov.sd./en/modules/mod_vvisit_counter/images/tbl/peoples/ (No open folder)
- - http://www.ncr.gov.sd./en/plugins/ (No open folder)
- - http://www.ncr.gov.sd./en/plugins/system/ (No open folder)
- - http://www.ncr.gov.sd./en/plugins/system/helix/ (No open folder)
- - http://www.ncr.gov.sd./en/plugins/system/helix/js/ (No open folder)
- - http://www.ncr.gov.sd./en/templates/ (No open folder)
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/ (No open folder)
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/css/ (No open folder)
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/css/icons/ (No open folder)
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/css/styles/ (No open folder)
- - http://www.ncr.gov.sd./en/templates/shaper_myestate/images/ (No open folder)
- - http://www.ncr.gov.sd./en/templates/system/ (No open folder)
- - http://www.ncr.gov.sd./en/templates/system/css/ (No open folder)
- - http://www.ncr.gov.sd./images/ (No open folder)
- - http://www.ncr.gov.sd./images/TMRI/ (No open folder)
- - http://www.ncr.gov.sd./images/logos/ (403 Forbidden)
- - http://www.ncr.gov.sd./images/pdf/ (No open folder)
- - http://www.ncr.gov.sd./index.php/ (No open folder)
- - http://www.ncr.gov.sd./index.php/2015-02-27-08-29-21/ (No open folder)
- - http://www.ncr.gov.sd./index.php/92-2015-02-28-12-31-16/ (No open folder)
- - http://www.ncr.gov.sd./index.php/94-2015-02-28-12-31-48/ (No open folder)
- - http://www.ncr.gov.sd./index.php/component/ (500 Internal Server Error)
- - http://www.ncr.gov.sd./index.php/component/content/ (No open folder)
- - http://www.ncr.gov.sd./index.php/explore/ (No open folder)
- - http://www.ncr.gov.sd./index.php/isdarat/ (No open folder)
- - http://www.ncr.gov.sd./index.php/styles/ (No open folder)
- - http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-22-24/ (No open folder)
- - http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-26-52/ (No open folder)
- - http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-27-18/ (No open folder)
- - http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-27-45/ (No open folder)
- - http://www.ncr.gov.sd./index.php/styles/2015-02-19-14-31-01/ (No open folder)
- - http://www.ncr.gov.sd./index.php/styles/style1/ (No open folder)
- - http://www.ncr.gov.sd./index.php/styles/style2/ (No open folder)
- - http://www.ncr.gov.sd./index.php/styles/style3/ (No open folder)
- - http://www.ncr.gov.sd./media/ (No open folder)
- - http://www.ncr.gov.sd./media/system/ (No open folder)
- - http://www.ncr.gov.sd./media/system/js/ (No open folder)
- - http://www.ncr.gov.sd./modules/ (No open folder)
- - http://www.ncr.gov.sd./modules/mod_news_show_sp1/ (No open folder)
- - http://www.ncr.gov.sd./modules/mod_news_show_sp1/assets/ (No open folder)
- - http://www.ncr.gov.sd./modules/mod_news_show_sp1/assets/css/ (No open folder)
- - http://www.ncr.gov.sd./modules/mod_slideshow_pro_sp2/ (No open folder)
- - http://www.ncr.gov.sd./modules/mod_slideshow_pro_sp2/assets/ (No open folder)
- - http://www.ncr.gov.sd./modules/mod_slideshow_pro_sp2/assets/css/ (No open folder)
- - http://www.ncr.gov.sd./modules/mod_slideshow_pro_sp2/assets/js/ (No open folder)
- - http://www.ncr.gov.sd./modules/mod_sp_news_highlighter/ (No open folder)
- - http://www.ncr.gov.sd./modules/mod_sp_news_highlighter/assets/ (No open folder)
- - http://www.ncr.gov.sd./modules/mod_sp_news_highlighter/assets/css/ (No open folder)
- - http://www.ncr.gov.sd./modules/mod_sp_news_highlighter/assets/js/ (No open folder)
- - http://www.ncr.gov.sd./modules/mod_vvisit_counter/ (No open folder)
- - http://www.ncr.gov.sd./modules/mod_vvisit_counter/images/ (No open folder)
- - http://www.ncr.gov.sd./modules/mod_vvisit_counter/images/tbl/ (No open folder)
- - http://www.ncr.gov.sd./modules/mod_vvisit_counter/images/tbl/peoples/ (No open folder)
- - http://www.ncr.gov.sd./plugins/ (No open folder)
- - http://www.ncr.gov.sd./plugins/system/ (No open folder)
- - http://www.ncr.gov.sd./plugins/system/helix/ (No open folder)
- - http://www.ncr.gov.sd./plugins/system/helix/js/ (No open folder)
- - http://www.ncr.gov.sd./templates/ (No open folder)
- - http://www.ncr.gov.sd./templates/shaper_myestate/ (No open folder)
- - http://www.ncr.gov.sd./templates/shaper_myestate/css/ (No open folder)
- - http://www.ncr.gov.sd./templates/shaper_myestate/css/icons/ (No open folder)
- - http://www.ncr.gov.sd./templates/shaper_myestate/css/styles/ (No open folder)
- - http://www.ncr.gov.sd./templates/shaper_myestate/images/ (No open folder)
- - http://www.ncr.gov.sd./templates/shaper_myestate/images/system/ (No open folder)
- - http://www.ncr.gov.sd./templates/system/ (No open folder)
- - http://www.ncr.gov.sd./templates/system/css/ (No open folder)
- Total directories: 93
- + Directory indexing found:
- Total directories with indexing: 0
- ---------------------------------------------------------------------------------------------------------------------------------------
- + URL to crawl: http://mail.ncr.gov.sd
- + Date: 2019-06-16
- + Crawling URL: http://mail.ncr.gov.sd:
- + Links:
- + Crawling http://mail.ncr.gov.sd
- + Searching for directories...
- - Found: http://mail.ncr.gov.sd/css/
- - Found: http://mail.ncr.gov.sd/img/
- + Searching open folders...
- - http://mail.ncr.gov.sd/css/ (403 Forbidden)
- - http://mail.ncr.gov.sd/img/ (403 Forbidden)
- + URL to crawl: http://webmail.ncr.gov.sd.
- + Date: 2019-06-16
- + Crawling URL: http://webmail.ncr.gov.sd.:
- + Links:
- + Crawling http://webmail.ncr.gov.sd.
- + Crawling http://webmail.ncr.gov.sd./skins/larry/styles.min.css?s=1510737769 (File! Not crawling it.)
- + Crawling http://webmail.ncr.gov.sd./skins/larry/svggradients.min.css?s=1510737769 (File! Not crawling it.)
- + Crawling http://webmail.ncr.gov.sd./plugins/jqueryui/themes/larry/jquery-ui-1.10.4.custom.css?s=1510737769 (File! Not crawling it.)
- + Crawling http://webmail.ncr.gov.sd./skins/larry/ui.min.js?s=1510737769 (File! Not crawling it.)
- + Crawling http://webmail.ncr.gov.sd./program/js/jquery.min.js?s=1510737769 (File! Not crawling it.)
- + Crawling http://webmail.ncr.gov.sd./program/js/common.min.js?s=1510737769 (File! Not crawling it.)
- + Crawling http://webmail.ncr.gov.sd./program/js/app.min.js?s=1510737769 (File! Not crawling it.)
- + Crawling http://webmail.ncr.gov.sd./program/js/jstz.min.js?s=1510737769 (File! Not crawling it.)
- + Crawling http://webmail.ncr.gov.sd./plugins/jqueryui/js/jquery-ui-1.10.4.custom.min.js?s=1510737769 (File! Not crawling it.)
- + Searching for directories...
- - Found: http://webmail.ncr.gov.sd./skins/
- - Found: http://webmail.ncr.gov.sd./skins/larry/
- - Found: http://webmail.ncr.gov.sd./skins/larry/images/
- - Found: http://webmail.ncr.gov.sd./plugins/
- - Found: http://webmail.ncr.gov.sd./plugins/jqueryui/
- - Found: http://webmail.ncr.gov.sd./plugins/jqueryui/themes/
- - Found: http://webmail.ncr.gov.sd./plugins/jqueryui/themes/larry/
- - Found: http://webmail.ncr.gov.sd./program/
- - Found: http://webmail.ncr.gov.sd./program/js/
- - Found: http://webmail.ncr.gov.sd./plugins/jqueryui/js/
- + Searching open folders...
- - http://webmail.ncr.gov.sd./skins/ (403 Forbidden)
- - http://webmail.ncr.gov.sd./skins/larry/ (403 Forbidden)
- - http://webmail.ncr.gov.sd./skins/larry/images/ (403 Forbidden)
- - http://webmail.ncr.gov.sd./plugins/ (403 Forbidden)
- - http://webmail.ncr.gov.sd./plugins/jqueryui/ (403 Forbidden)
- - http://webmail.ncr.gov.sd./plugins/jqueryui/themes/ (403 Forbidden)
- - http://webmail.ncr.gov.sd./plugins/jqueryui/themes/larry/ (403 Forbidden)
- - http://webmail.ncr.gov.sd./program/ (403 Forbidden)
- - http://webmail.ncr.gov.sd./program/js/ (403 Forbidden)
- - http://webmail.ncr.gov.sd./plugins/jqueryui/js/ (403 Forbidden)
- + URL to crawl: http://mail.ncr.gov.sd.
- + Date: 2019-06-16
- + Crawling URL: http://mail.ncr.gov.sd.:
- + Links:
- + Crawling http://mail.ncr.gov.sd.
- + Searching for directories...
- - Found: http://mail.ncr.gov.sd./css/
- - Found: http://mail.ncr.gov.sd./img/
- + Searching open folders...
- - http://mail.ncr.gov.sd./css/ (403 Forbidden)
- - http://mail.ncr.gov.sd./img/ (403 Forbidden)
- + URL to crawl: https://www.ncr.gov.sd.
- + Date: 2019-06-16
- + Crawling URL: https://www.ncr.gov.sd.:
- + Links:
- + Crawling https://www.ncr.gov.sd. ([SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:727))
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: https://mail.ncr.gov.sd
- + Date: 2019-06-16
- + Crawling URL: https://mail.ncr.gov.sd:
- + Links:
- + Crawling https://mail.ncr.gov.sd ([SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:727))
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: https://webmail.ncr.gov.sd.
- + Date: 2019-06-16
- + Crawling URL: https://webmail.ncr.gov.sd.:
- + Links:
- + Crawling https://webmail.ncr.gov.sd. ([SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:727))
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: https://mail.ncr.gov.sd.
- + Date: 2019-06-16
- + Crawling URL: https://mail.ncr.gov.sd.:
- + Links:
- + Crawling https://mail.ncr.gov.sd. ([SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:727))
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: https://www.ncr.gov.sd.:8443
- + Date: 2019-06-16
- + Crawling URL: https://www.ncr.gov.sd.:8443:
- + Links:
- + Crawling https://www.ncr.gov.sd.:8443 ([SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:727))
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: https://mail.ncr.gov.sd:8443
- + Date: 2019-06-16
- + Crawling URL: https://mail.ncr.gov.sd:8443:
- + Links:
- + Crawling https://mail.ncr.gov.sd:8443 ([SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:727))
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: https://webmail.ncr.gov.sd.:8443
- + Date: 2019-06-16
- + Crawling URL: https://webmail.ncr.gov.sd.:8443:
- + Links:
- + Crawling https://webmail.ncr.gov.sd.:8443 ([SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:727))
- + Searching for directories...
- + Searching open folders...
- + URL to crawl: https://mail.ncr.gov.sd.:8443
- + Date: 2019-06-16
- + Crawling URL: https://mail.ncr.gov.sd.:8443:
- + Links:
- + Crawling https://mail.ncr.gov.sd.:8443 ([SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:727))
- + Searching for directories...
- + Searching open folders...
- --Finished--
- Summary information for domain ncr.gov.sd.
- ---------------------------------------------------------------------------------------------------------------------------------------
- Domain Specific Information:
- Email: drsarrasaad@ncr.gov.sd.
- Domain Ips Information:
- IP: 62.12.109.2
- HostName: ns0.ndc.gov.sd Type: NS
- Country: Sudan
- Zone Transfer: 4
- Is Active: True (reset ttl 64)
- Port: 53/tcp open domain syn-ack ttl 43 (unknown banner: you guess!)
- Script Info: | dns-nsid:
- Script Info: |_ bind.version: you guess!
- Script Info: | fingerprint-strings:
- Script Info: | DNSVersionBindReqTCP:
- Script Info: | version
- Script Info: | bind
- Script Info: |_ guess!
- IP: 62.12.109.3
- HostName: ns1.ndc.gov.sd Type: NS
- Country: Sudan
- Zone Transfer: 4
- Is Active: True (reset ttl 64)
- Port: 53/tcp open domain syn-ack ttl 43 (unknown banner: you guess!)
- Script Info: | dns-nsid:
- Script Info: |_ bind.version: you guess!
- Script Info: | fingerprint-strings:
- Script Info: | DNSVersionBindReqTCP:
- Script Info: | version
- Script Info: | bind
- Script Info: |_ guess!
- IP: 62.12.105.2
- HostName: mail.ncr.gov.sd Type: MX
- HostName: f03-web02.nic.gov.sd Type: PTR
- HostName: webmail.ncr.gov.sd. Type: A
- HostName: mail.ncr.gov.sd. Type: A
- HostName: www.ncr.gov.sd. Type: A
- Country: Sudan
- Is Active: True (reset ttl 64)
- Port: 21/tcp open tcpwrapped syn-ack ttl 43
- Port: 80/tcp open http syn-ack ttl 43 nginx
- Script Info: |_http-favicon: Unknown favicon MD5: 1DB747255C64A30F9236E9D929E986CA
- Script Info: | http-methods:
- Script Info: |_ Supported Methods: POST OPTIONS GET HEAD
- Script Info: |_http-server-header: nginx
- Script Info: |_http-title: Domain Default page
- Port: 110/tcp open pop3 syn-ack ttl 43 Dovecot pop3d
- Script Info: |_pop3-capabilities: PIPELINING TOP RESP-CODES AUTH-RESP-CODE USER UIDL SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) STLS CAPA APOP
- Script Info: |_ssl-date: TLS randomness does not represent time
- Port: 143/tcp open imap syn-ack ttl 43 Dovecot imapd
- Script Info: |_imap-capabilities: listed ID more AUTH=PLAIN capabilities post-login LOGIN-REFERRALS IMAP4rev1 STARTTLS OK AUTH=LOGIN AUTH=CRAM-MD5A0001 have ENABLE LITERAL+ IDLE AUTH=DIGEST-MD5 Pre-login SASL-IR
- Script Info: |_ssl-date: TLS randomness does not represent time
- Port: 443/tcp open ssl/http syn-ack ttl 44 nginx
- Script Info: |_http-favicon: Unknown favicon MD5: 1DB747255C64A30F9236E9D929E986CA
- Script Info: | http-methods:
- Script Info: |_ Supported Methods: POST OPTIONS GET HEAD
- Script Info: |_http-server-header: nginx
- Script Info: |_http-title: Domain Default page
- Script Info: | ssl-cert: Subject: commonName=Plesk/organizationName=Odin/stateOrProvinceName=Washington/countryName=US
- Script Info: | Issuer: commonName=Plesk/organizationName=Odin/stateOrProvinceName=Washington/countryName=US
- Script Info: | Public Key type: rsa
- Script Info: | Public Key bits: 2048
- Script Info: | Signature Algorithm: sha256WithRSAEncryption
- Script Info: | Not valid before: 2016-04-20T02:40:27
- Script Info: | Not valid after: 2017-04-20T02:40:27
- Script Info: | MD5: a38f 7308 6ca0 a95d 2faa d3f0 6cb4 5553
- Script Info: |_SHA-1: 1479 6658 f803 6987 8f42 5473 9eaf 97e1 50dd 2d68
- Script Info: |_ssl-date: TLS randomness does not represent time
- Script Info: | tls-alpn:
- Script Info: |_ http/1.1
- Script Info: | tls-nextprotoneg:
- Script Info: |_ http/1.1
- Port: 993/tcp open ssl/imaps? syn-ack ttl 43
- Script Info: |_ssl-date: TLS randomness does not represent time
- Port: 995/tcp open ssl/pop3s? syn-ack ttl 43
- Script Info: |_ssl-date: TLS randomness does not represent time
- Port: 8443/tcp open ssl/http syn-ack ttl 44 sw-cp-server httpd (Plesk Onyx 17.5.3)
- Script Info: | http-methods:
- Script Info: |_ Supported Methods: GET HEAD POST
- Script Info: |_http-server-header: sw-cp-server
- Script Info: |_http-title: Plesk Onyx 17.5.3
- Script Info: | ssl-cert: Subject: commonName=Plesk/organizationName=Odin/stateOrProvinceName=Washington/countryName=US
- Script Info: | Issuer: commonName=Plesk/organizationName=Odin/stateOrProvinceName=Washington/countryName=US
- Script Info: | Public Key type: rsa
- Script Info: | Public Key bits: 2048
- Script Info: | Signature Algorithm: sha256WithRSAEncryption
- Script Info: | Not valid before: 2016-04-20T02:40:27
- Script Info: | Not valid after: 2017-04-20T02:40:27
- Script Info: | MD5: a38f 7308 6ca0 a95d 2faa d3f0 6cb4 5553
- Script Info: |_SHA-1: 1479 6658 f803 6987 8f42 5473 9eaf 97e1 50dd 2d68
- Script Info: |_ssl-date: TLS randomness does not represent time
- Script Info: | tls-nextprotoneg:
- Script Info: |_ http/1.1
- Os Info: Host: fo3-web02.nic.gov.sd
- #######################################################################################################################################
- [*] Processing domain ncr.gov.sd
- [*] Using system resolvers ['38.132.106.139', '194.187.251.67', '185.93.180.131', '192.168.0.1', '2001:18c0:121:6900:724f:b8ff:fefd:5b6a']
- [+] Getting nameservers
- 62.12.109.2 - ns0.ndc.gov.sd
- [+] Zone transfer sucessful using nameserver ns0.ndc.gov.sd
- ncr.gov.sd. 86400 IN SOA ns0.ndc.gov.sd. root.ndc.gov.sd. 2017072600 10800 900 604800 86400
- ncr.gov.sd. 86400 IN NS ns0.ndc.gov.sd.
- ncr.gov.sd. 86400 IN NS ns1.ndc.gov.sd.
- ncr.gov.sd. 86400 IN A 62.12.105.2
- ncr.gov.sd. 86400 IN MX 10 mail.ncr.gov.sd.
- ncr.gov.sd. 86400 IN TXT "v=spf1 mx -all"
- mail.ncr.gov.sd. 86400 IN A 62.12.105.2
- mail.ncr.gov.sd. 86400 IN MX 10 mail.ncr.gov.sd.
- webmail.ncr.gov.sd. 86400 IN CNAME mail.ncr.gov.sd.
- www.ncr.gov.sd. 86400 IN A 62.12.105.2
- #######################################################################################################################################
- [*] Performing General Enumeration of Domain: ncr.gov.sd
- [-] DNSSEC is not configured for ncr.gov.sd
- [*] SOA ns0.ndc.gov.sd 62.12.109.2
- [*] NS ns0.ndc.gov.sd 62.12.109.2
- [*] Bind Version for 62.12.109.2 you guess!
- [*] NS ns1.ndc.gov.sd 62.12.109.3
- [*] Bind Version for 62.12.109.3 you guess!
- [*] MX mail.ncr.gov.sd 62.12.105.2
- [*] A ncr.gov.sd 62.12.105.2
- [*] TXT ncr.gov.sd v=spf1 mx -all
- [*] Enumerating SRV Records
- [-] No SRV Records Found for ncr.gov.sd
- [+] 0 Records Found
- #######################################################################################################################################
- Ip Address Status Type Domain Name Server
- ---------- ------ ---- ----------- ------
- 62.12.105.2 200 host mail.ncr.gov.sd nginx
- 62.12.105.2 200 alias webmail.ncr.gov.sd nginx
- 62.12.105.2 200 host mail.ncr.gov.sd nginx
- 62.12.105.2 200 host www.ncr.gov.sd nginx
- #######################################################################################################################################
- [+] Testing domain
- www.ncr.gov.sd 62.12.105.2
- [+] Dns resolving
- Domain name Ip address Name server
- ncr.gov.sd 62.12.105.2 f03-web02.nic.gov.sd
- Found 1 host(s) for ncr.gov.sd
- [+] Testing wildcard
- Ok, no wildcard found.
- [+] Scanning for subdomain on ncr.gov.sd
- [!] Wordlist not specified. I scannig with my internal wordlist...
- Estimated time about 144.78 seconds
- Subdomain Ip address Name server
- mail.ncr.gov.sd 62.12.105.2 f03-web02.nic.gov.sd
- webmail.ncr.gov.sd 62.12.105.2 f03-web02.nic.gov.sd
- www.ncr.gov.sd 62.12.105.2 f03-web02.nic.gov.sd
- #######################################################################################################################################
- ----- ncr.gov.sd -----
- Host's addresses:
- __________________
- ncr.gov.sd. 80311 IN A 62.12.105.2
- ----------------
- Wildcards test:
- ----------------
- good
- Name Servers:
- ______________
- ns0.ndc.gov.sd. 10263 IN A 62.12.109.2
- ns1.ndc.gov.sd. 10263 IN A 62.12.109.3
- Mail (MX) Servers:
- ___________________
- mail.ncr.gov.sd. 84847 IN A 62.12.105.2
- Trying Zone Transfers and getting Bind Versions:
- _________________________________________________
- Trying Zone Transfer for ncr.gov.sd on ns0.ndc.gov.sd ...
- ncr.gov.sd. 86400 IN SOA (
- ncr.gov.sd. 86400 IN NS ns0.ndc.gov.sd.
- ncr.gov.sd. 86400 IN NS ns1.ndc.gov.sd.
- ncr.gov.sd. 86400 IN A 62.12.105.2
- ncr.gov.sd. 86400 IN MX 10
- ncr.gov.sd. 86400 IN TXT "v=spf1
- mail.ncr.gov.sd. 86400 IN A 62.12.105.2
- mail.ncr.gov.sd. 86400 IN MX 10
- webmail.ncr.gov.sd. 86400 IN CNAME mail.ncr.gov.sd.
- www.ncr.gov.sd. 86400 IN A 62.12.105.2
- Trying Zone Transfer for ncr.gov.sd on ns1.ndc.gov.sd ...
- ncr.gov.sd. 86400 IN SOA (
- ncr.gov.sd. 86400 IN NS ns0.ndc.gov.sd.
- ncr.gov.sd. 86400 IN NS ns1.ndc.gov.sd.
- ncr.gov.sd. 86400 IN A 62.12.105.2
- ncr.gov.sd. 86400 IN MX 10
- ncr.gov.sd. 86400 IN TXT "v=spf1
- mail.ncr.gov.sd. 86400 IN A 62.12.105.2
- mail.ncr.gov.sd. 86400 IN MX 10
- webmail.ncr.gov.sd. 86400 IN CNAME mail.ncr.gov.sd.
- www.ncr.gov.sd. 86400 IN A 62.12.105.2
- brute force file not specified, bay.
- #######################################################################################################################################
- ===============================================
- -=Subfinder v1.1.3 github.com/subfinder/subfinder
- ===============================================
- Running Source: Ask
- Running Source: Archive.is
- Running Source: Baidu
- Running Source: Bing
- Running Source: CertDB
- Running Source: CertificateTransparency
- Running Source: Certspotter
- Running Source: Commoncrawl
- Running Source: Crt.sh
- Running Source: Dnsdb
- Running Source: DNSDumpster
- Running Source: DNSTable
- Running Source: Dogpile
- Running Source: Exalead
- Running Source: Findsubdomains
- Running Source: Googleter
- Running Source: Hackertarget
- Running Source: Ipv4Info
- Running Source: PTRArchive
- Running Source: Sitedossier
- Running Source: Threatcrowd
- Running Source: ThreatMiner
- Running Source: WaybackArchive
- Running Source: Yahoo
- Running enumeration on www.ncr.gov.sd
- dnsdb: Unexpected return status 503
- waybackarchive: parse http://web.archive.org/cdx/search/cdx?url=*.www.ncr.gov.sd/*&output=json&fl=original&collapse=urlkey&page=: net/url: invalid control character in URL
- dogpile: Get https://www.dogpile.com/search/web?q=www.ncr.gov.sd&qsi=1: EOF
- ipv4info: <nil>
- Starting Bruteforcing of www.ncr.gov.sd with 9985 words
- Total 1 Unique subdomains found for www.ncr.gov.sd
- .www.ncr.gov.sd
- #######################################################################################################################################
- [+] www.ncr.gov.sd has no SPF record!
- [*] No DMARC record found. Looking for organizational record
- [+] No organizational DMARC record
- [+] Spoofing possible for www.ncr.gov.sd!
- #######################################################################################################################################
- dig: '.www.ncr.gov.sd' is not a legal name (empty label)
- SubOver v.1.2 Nizamul Rana (@Ice3man)
- ==================================================
- [~] Enjoy your hunt !
- [Not Vulnerable] domain
- [Not Vulnerable] .www.ncr.gov.sd
- [Not Vulnerable] 77.72.0.146
- [Not Vulnerable] 147.237.77.18
- [Not Vulnerable] 62.12.105.4
- [Not Vulnerable] 52.64.99.208
- [Not Vulnerable] www.cbs.gov.ws
- [Not Vulnerable] www.sviva.gov.il
- [Not Vulnerable] 62.12.105.3
- [Not Vulnerable] sennarstate.gov.sd
- [Not Vulnerable] whitenilestate.gov.sd
- [Not Vulnerable] www.ncr.gov.sd
- [Not Vulnerable] ombudsman.gov.sd
- #######################################################################################################################################
- INFO[0000] Starting to process queue....
- INFO[0000] Starting to process permutations....
- INFO[0000] FORBIDDEN http://ncr-test.s3.amazonaws.com (http://ncr.gov.sd)
- INFO[0000] FORBIDDEN http://terraform-ncr.s3.amazonaws.com (http://ncr.gov.sd)
- INFO[0000] FORBIDDEN http://ncr-reports.s3.amazonaws.com (http://ncr.gov.sd)
- INFO[0000] FORBIDDEN http://ncr-logs.s3.amazonaws.com (http://ncr.gov.sd)
- INFO[0000] FORBIDDEN http://ncr-backup.s3.amazonaws.com (http://ncr.gov.sd)
- INFO[0000] FORBIDDEN http://ncr.s3.amazonaws.com (http://ncr.gov.sd)
- INFO[0000] FORBIDDEN http://ncr-cloudformation.s3.amazonaws.com (http://ncr.gov.sd)
- #######################################################################################################################################
- 62.12.96.0/20
- 62.12.96.0/24
- 62.12.97.0/24
- 62.12.98.0/24
- 62.12.99.0/24
- 62.12.100.0/24
- 62.12.101.0/24
- 62.12.102.0/23
- 62.12.104.0/24
- 62.12.105.0/24
- 62.12.106.0/24
- 62.12.107.0/24
- 62.12.108.0/24
- 62.12.109.0/24
- 62.12.110.0/24
- 62.12.111.0/24
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-06-16 10:20 EDT
- Nmap scan report for www.ncr.gov.sd (62.12.105.2)
- Host is up (0.19s latency).
- rDNS record for 62.12.105.2: f03-web02.nic.gov.sd
- Not shown: 464 filtered ports, 4 closed ports
- Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
- PORT STATE SERVICE
- 21/tcp open ftp
- 80/tcp open http
- 110/tcp open pop3
- 143/tcp open imap
- 443/tcp open https
- 993/tcp open imaps
- 995/tcp open pop3s
- 8443/tcp open https-alt
- Nmap done: 1 IP address (1 host up) scanned in 6.01 seconds
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-06-16 10:20 EDT
- Nmap scan report for www.ncr.gov.sd (62.12.105.2)
- Host is up (0.022s latency).
- rDNS record for 62.12.105.2: f03-web02.nic.gov.sd
- Not shown: 2 filtered ports
- PORT STATE SERVICE
- 53/udp open|filtered domain
- 67/udp open|filtered dhcps
- 68/udp open|filtered dhcpc
- 69/udp open|filtered tftp
- 88/udp open|filtered kerberos-sec
- 123/udp open|filtered ntp
- 139/udp open|filtered netbios-ssn
- 161/udp open|filtered snmp
- 162/udp open|filtered snmptrap
- 389/udp open|filtered ldap
- 520/udp open|filtered route
- 2049/udp open|filtered nfs
- Nmap done: 1 IP address (1 host up) scanned in 1.39 seconds
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-06-16 10:20 EDT
- Nmap scan report for www.ncr.gov.sd (62.12.105.2)
- Host is up (0.23s latency).
- rDNS record for 62.12.105.2: f03-web02.nic.gov.sd
- PORT STATE SERVICE VERSION
- 21/tcp open tcpwrapped
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Device type: specialized|WAP|general purpose|router
- Running: AVtech embedded, Linux 2.4.X|2.6.X|3.X, MikroTik RouterOS 6.X
- OS CPE: cpe:/o:linux:linux_kernel:2.4.20 cpe:/o:linux:linux_kernel:2.6 cpe:/o:linux:linux_kernel:3.2.0 cpe:/o:mikrotik:routeros:6.15
- OS details: AVtech Room Alert 26W environmental monitor, Tomato 1.27 - 1.28 (Linux 2.4.20), Linux 2.6.18 - 2.6.22, Linux 3.2.0, MikroTik RouterOS 6.15 (Linux 3.3.5)
- Network Distance: 20 hops
- TRACEROUTE (using port 21/tcp)
- HOP RTT ADDRESS
- 1 25.20 ms 10.249.200.1
- 2 55.73 ms vlan102.as02.qc1.ca.m247.com (176.113.74.17)
- 3 31.55 ms xe-0-0-1-0.agg2.qc1.ca.m247.com (37.120.128.166)
- 4 25.43 ms vlan304.as032.buc.ro.m247.com (77.243.185.226)
- 5 25.84 ms te0-7-0-2.rcr21.ymq02.atlas.cogentco.com (38.122.42.161)
- 6 25.99 ms be2090.ccr22.ymq01.atlas.cogentco.com (154.54.45.117)
- 7 31.20 ms be2104.ccr22.alb02.atlas.cogentco.com (154.54.43.22)
- 8 34.01 ms be2915.ccr41.jfk02.atlas.cogentco.com (154.54.40.62)
- 9 33.82 ms be3362.ccr31.jfk04.atlas.cogentco.com (154.54.3.10)
- 10 34.31 ms te0-0-0-3.agr12.jfk04.atlas.cogentco.com (154.54.31.42)
- 11 34.12 ms te0-0-1-1.nr11.b001587-3.jfk04.atlas.cogentco.com (154.24.2.18)
- 12 33.28 ms 149.14.125.130
- 13 282.05 ms xe-8-3-0.0.cjr03.prs001.flagtel.com (85.95.26.222)
- 14 116.24 ms xe-8-0-2.0.cjr04.prs001.flagtel.com (85.95.25.158)
- 15 272.90 ms xe-11-3-1.0.pjr04.dxb001.flagtel.com (62.216.134.210)
- 16 338.11 ms 80.77.2.42
- 17 223.51 ms 196.29.177.113
- 18 226.10 ms 197.254.196.62
- 19 ...
- 20 226.40 ms f03-web02.nic.gov.sd (62.12.105.2)
- #######################################################################################################################################
- http://www.ncr.gov.sd [200 OK] Cookies[e0ddbc0e0e8bfa0175c84685f00835f0], HTTPServer[nginx], IP[62.12.105.2], JQuery[1.4.2], maybe Joomla, MetaGenerator[Joomla! - Open Source Content Management], PHP[5.6.40,], Plesk[Lin], Script[text/javascript], Title[المركز القومي للبحوث], X-Powered-By[PHP/5.6.40, PleskLin], nginx
- #######################################################################################################################################
- wig - WebApp Information Gatherer
- Scanning http://www.ncr.gov.sd...
- _________________________________________________ SITE INFO _________________________________________________
- IP Title
- 62.12.105.2 المركز القومي للبحوث
- __________________________________________________ VERSION __________________________________________________
- Name Versions Type
- Joomla! 2.5.8 CMS
- Apache 2.4.10 | 2.4.11 | 2.4.12 | 2.4.5 | 2.4.6 | 2.4.7 | 2.4.8 Platform
- 2.4.9
- PHP 5.6.40 Platform
- nginx Platform
- jQuery 1.4.2 JavaScript
- ________________________________________________ INTERESTING ________________________________________________
- URL Note Type
- /robots.txt robots.txt index Interesting
- ___________________________________________________ TOOLS ___________________________________________________
- Name Link Software
- CMSmap https://github.com/Dionach/CMSmap Joomla!
- joomscan http://sourceforge.net/projects/joomscan/ Joomla!
- ______________________________________________ VULNERABILITIES ______________________________________________
- Affected #Vulns Link
- Joomla! 2.5.8 0 http://cvedetails.com/version/53838
- _____________________________________________________________________________________________________________
- Time: 50.0 sec Urls: 624 Fingerprints: 40401
- #######################################################################################################################################
- HTTP/1.1 200 OK
- Server: nginx
- Date: Sun, 16 Jun 2019 13:35:46 GMT
- Content-Type: text/html; charset=utf-8
- Connection: keep-alive
- X-Powered-By: PHP/5.6.40
- P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
- Cache-Control: no-cache
- Pragma: no-cache
- Set-Cookie: e0ddbc0e0e8bfa0175c84685f00835f0=bomna2cskh4uehu0gitc79s5u5; path=/
- X-Powered-By: PleskLin
- HTTP/1.1 200 OK
- Server: nginx
- Date: Sun, 16 Jun 2019 13:35:47 GMT
- Content-Type: text/html; charset=utf-8
- Connection: keep-alive
- X-Powered-By: PHP/5.6.40
- P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
- Cache-Control: no-cache
- Pragma: no-cache
- Set-Cookie: e0ddbc0e0e8bfa0175c84685f00835f0=ijut9lkfi5aih75g2c3vmpu571; path=/
- X-Powered-By: PleskLin
- #######################################################################################################################################
- jQuery 1.4.2
- PHP 5.6.40
- Joomla
- Nginx
- MooTools
- #######################################################################################################################################
- tee: /usr/share/sniper/loot//output/nmap-www.ncr.gov.sd-port110.txt: Aucun fichier ou dossier de ce type
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-06-16 10:33 EDT
- Nmap scan report for www.ncr.gov.sd (62.12.105.2)
- Host is up (0.23s latency).
- rDNS record for 62.12.105.2: f03-web02.nic.gov.sd
- PORT STATE SERVICE VERSION
- 110/tcp open pop3 Dovecot pop3d
- | pop3-brute:
- | Accounts: No valid accounts found
- |_ Statistics: Performed 212 guesses in 183 seconds, average tps: 1.1
- |_pop3-capabilities: STLS SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) RESP-CODES CAPA AUTH-RESP-CODE USER APOP UIDL TOP PIPELINING
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Device type: specialized|WAP|general purpose|router
- Running: AVtech embedded, Linux 2.4.X|2.6.X|3.X, MikroTik RouterOS 6.X
- OS CPE: cpe:/o:linux:linux_kernel:2.4.20 cpe:/o:linux:linux_kernel:2.6 cpe:/o:linux:linux_kernel:3.2.0 cpe:/o:mikrotik:routeros:6.15
- OS details: AVtech Room Alert 26W environmental monitor, Tomato 1.27 - 1.28 (Linux 2.4.20), Linux 2.6.18 - 2.6.22, Linux 3.2.0, MikroTik RouterOS 6.15 (Linux 3.3.5)
- Network Distance: 20 hops
- Service Info: Host: fo3-web02.nic.gov.sd
- TRACEROUTE (using port 443/tcp)
- HOP RTT ADDRESS
- 1 22.43 ms 10.249.200.1
- 2 29.70 ms vlan102.as02.qc1.ca.m247.com (176.113.74.17)
- 3 28.08 ms xe-0-0-1-0.agg2.qc1.ca.m247.com (37.120.128.166)
- 4 22.59 ms vlan304.as032.buc.ro.m247.com (77.243.185.226)
- 5 23.29 ms te0-7-0-2.rcr21.ymq02.atlas.cogentco.com (38.122.42.161)
- 6 23.49 ms be2089.ccr21.ymq01.atlas.cogentco.com (154.54.45.113)
- 7 28.50 ms be2104.ccr22.alb02.atlas.cogentco.com (154.54.43.22)
- 8 31.14 ms be2916.ccr42.jfk02.atlas.cogentco.com (154.54.41.62)
- 9 31.57 ms be2854.ccr22.jfk04.atlas.cogentco.com (154.54.6.234)
- 10 31.58 ms te0-0-0-3.agr11.jfk04.atlas.cogentco.com (154.54.5.178)
- 11 30.90 ms te0-0-1-0.nr11.b001587-3.jfk04.atlas.cogentco.com (154.24.2.22)
- 12 37.79 ms 149.14.125.130
- 13 280.11 ms xe-8-3-3.0.cjr03.prs001.flagtel.com (85.95.27.25)
- 14 309.53 ms xe-11-1-1.0.pjr03.dxb001.flagtel.com (85.95.27.114)
- 15 279.63 ms xe-11-3-1.0.pjr04.dxb001.flagtel.com (62.216.134.210)
- 16 346.74 ms 80.77.2.42
- 17 229.99 ms 196.29.177.113
- 18 229.04 ms 197.254.196.62
- 19 ...
- 20 227.64 ms f03-web02.nic.gov.sd (62.12.105.2)
- #######################################################################################################################################
- Version: 1.11.13-static
- OpenSSL 1.0.2-chacha (1.0.2g-dev)
- Connected to 62.12.105.2
- Testing SSL server www.ncr.gov.sd on port 443 using SNI name www.ncr.gov.sd
- TLS Fallback SCSV:
- Server supports TLS Fallback SCSV
- TLS renegotiation:
- Secure session renegotiation supported
- TLS Compression:
- Compression disabled
- Heartbleed:
- TLS 1.2 not vulnerable to heartbleed
- TLS 1.1 not vulnerable to heartbleed
- TLS 1.0 not vulnerable to heartbleed
- Supported Server Cipher(s):
- Preferred TLSv1.2 256 bits ECDHE-RSA-AES256-GCM-SHA384 Curve P-256 DHE 256
- Accepted TLSv1.2 256 bits ECDHE-RSA-AES256-SHA384 Curve P-256 DHE 256
- Accepted TLSv1.2 256 bits ECDHE-RSA-AES256-SHA Curve P-256 DHE 256
- Accepted TLSv1.2 256 bits AES256-GCM-SHA384
- Accepted TLSv1.2 256 bits AES256-SHA256
- Accepted TLSv1.2 256 bits AES256-SHA
- Accepted TLSv1.2 256 bits CAMELLIA256-SHA
- Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-GCM-SHA256 Curve P-256 DHE 256
- Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-SHA256 Curve P-256 DHE 256
- Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-SHA Curve P-256 DHE 256
- Accepted TLSv1.2 128 bits AES128-GCM-SHA256
- Accepted TLSv1.2 128 bits AES128-SHA256
- Accepted TLSv1.2 128 bits AES128-SHA
- Accepted TLSv1.2 128 bits CAMELLIA128-SHA
- Preferred TLSv1.1 256 bits ECDHE-RSA-AES256-SHA Curve P-256 DHE 256
- Accepted TLSv1.1 256 bits AES256-SHA
- Accepted TLSv1.1 256 bits CAMELLIA256-SHA
- Accepted TLSv1.1 128 bits ECDHE-RSA-AES128-SHA Curve P-256 DHE 256
- Accepted TLSv1.1 128 bits AES128-SHA
- Accepted TLSv1.1 128 bits CAMELLIA128-SHA
- Preferred TLSv1.0 256 bits ECDHE-RSA-AES256-SHA Curve P-256 DHE 256
- Accepted TLSv1.0 256 bits AES256-SHA
- Accepted TLSv1.0 256 bits CAMELLIA256-SHA
- Accepted TLSv1.0 128 bits ECDHE-RSA-AES128-SHA Curve P-256 DHE 256
- Accepted TLSv1.0 128 bits AES128-SHA
- Accepted TLSv1.0 128 bits CAMELLIA128-SHA
- SSL Certificate:
- Signature Algorithm: sha256WithRSAEncryption
- RSA Key Strength: 2048
- Subject: Plesk
- Issuer: Plesk
- Not valid before: Apr 20 02:40:27 2016 GMT
- Not valid after: Apr 20 02:40:27 2017 GMT
- #######################################################################################################################################
- --------------------------------------------------------
- <<<Yasuo discovered following vulnerable applications>>>
- --------------------------------------------------------
- +------------+--------------------------------------+--------------------------------------------------+----------+----------+
- | App Name | URL to Application | Potential Exploit | Username | Password |
- +------------+--------------------------------------+--------------------------------------------------+----------+----------+
- | phpMyAdmin | https://62.12.105.2:8443/phpmyadmin/ | ./exploits/multi/http/phpmyadmin_preg_replace.rb | None | None |
- +------------+--------------------------------------+--------------------------------------------------+----------+----------+
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-06-16 11:19 EDT
- Nmap scan report for f03-web02.nic.gov.sd (62.12.105.2)
- Host is up (0.19s latency).
- Not shown: 464 filtered ports, 4 closed ports
- Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
- PORT STATE SERVICE
- 21/tcp open ftp
- 80/tcp open http
- 110/tcp open pop3
- 143/tcp open imap
- 443/tcp open https
- 993/tcp open imaps
- 995/tcp open pop3s
- 8443/tcp open https-alt
- Nmap done: 1 IP address (1 host up) scanned in 6.04 seconds
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-06-16 11:20 EDT
- Nmap scan report for f03-web02.nic.gov.sd (62.12.105.2)
- Host is up (0.025s latency).
- Not shown: 2 filtered ports
- PORT STATE SERVICE
- 53/udp open|filtered domain
- 67/udp open|filtered dhcps
- 68/udp open|filtered dhcpc
- 69/udp open|filtered tftp
- 88/udp open|filtered kerberos-sec
- 123/udp open|filtered ntp
- 139/udp open|filtered netbios-ssn
- 161/udp open|filtered snmp
- 162/udp open|filtered snmptrap
- 389/udp open|filtered ldap
- 520/udp open|filtered route
- 2049/udp open|filtered nfs
- Nmap done: 1 IP address (1 host up) scanned in 1.34 seconds
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-06-16 11:20 EDT
- Nmap scan report for f03-web02.nic.gov.sd (62.12.105.2)
- Host is up (0.23s latency).
- PORT STATE SERVICE VERSION
- 21/tcp open tcpwrapped
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Device type: specialized|WAP|general purpose|router
- Running: AVtech embedded, Linux 2.4.X|2.6.X|3.X, MikroTik RouterOS 6.X
- OS CPE: cpe:/o:linux:linux_kernel:2.4.20 cpe:/o:linux:linux_kernel:2.6 cpe:/o:linux:linux_kernel:3.2.0 cpe:/o:mikrotik:routeros:6.15
- OS details: AVtech Room Alert 26W environmental monitor, Tomato 1.27 - 1.28 (Linux 2.4.20), Linux 2.6.18 - 2.6.22, Linux 3.2.0, MikroTik RouterOS 6.15 (Linux 3.3.5)
- Network Distance: 20 hops
- TRACEROUTE (using port 21/tcp)
- HOP RTT ADDRESS
- 1 22.18 ms 10.249.200.1
- 2 22.53 ms vlan102.as02.qc1.ca.m247.com (176.113.74.17)
- 3 32.95 ms xe-0-0-1-0.agg2.qc1.ca.m247.com (37.120.128.166)
- 4 22.27 ms vlan304.as032.buc.ro.m247.com (77.243.185.226)
- 5 22.68 ms te0-7-0-2.rcr21.ymq02.atlas.cogentco.com (38.122.42.161)
- 6 22.63 ms be2089.ccr21.ymq01.atlas.cogentco.com (154.54.45.113)
- 7 28.22 ms be2104.ccr22.alb02.atlas.cogentco.com (154.54.43.22)
- 8 30.99 ms be2915.ccr41.jfk02.atlas.cogentco.com (154.54.40.62)
- 9 31.41 ms be2854.ccr22.jfk04.atlas.cogentco.com (154.54.6.234)
- 10 31.66 ms te0-0-0-3.agr12.jfk04.atlas.cogentco.com (154.54.31.42)
- 11 33.39 ms te0-0-1-1.nr11.b001587-3.jfk04.atlas.cogentco.com (154.24.2.18)
- 12 33.29 ms 149.14.125.130
- 13 290.77 ms xe-2-0-0.0.pjr02.nyc005.flagtel.com (85.95.25.149)
- 14 316.08 ms xe-11-1-1.0.pjr03.dxb001.flagtel.com (85.95.27.114)
- 15 283.56 ms xe-0-0-1.0.pjr04.dxb001.flagtel.com (85.95.25.94)
- 16 348.37 ms 80.77.2.42
- 17 231.21 ms 196.29.177.113
- 18 234.55 ms 197.254.196.62
- 19 ...
- 20 228.59 ms f03-web02.nic.gov.sd (62.12.105.2)
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-06-16 11:30 EDT
- Nmap scan report for f03-web02.nic.gov.sd (62.12.105.2)
- Host is up.
- PORT STATE SERVICE VERSION
- 67/udp open|filtered dhcps
- |_dhcp-discover: ERROR: Script execution failed (use -d to debug)
- Too many fingerprints match this host to give specific OS details
- TRACEROUTE (using proto 1/icmp)
- HOP RTT ADDRESS
- 1 26.54 ms 10.249.200.1
- 2 27.96 ms vlan102.as02.qc1.ca.m247.com (176.113.74.17)
- 3 62.29 ms xe-0-0-1-0.agg2.qc1.ca.m247.com (37.120.128.166)
- 4 21.22 ms vlan304.as032.buc.ro.m247.com (77.243.185.226)
- 5 21.62 ms te0-7-0-2.rcr21.ymq02.atlas.cogentco.com (38.122.42.161)
- 6 21.66 ms be2090.ccr22.ymq01.atlas.cogentco.com (154.54.45.117)
- 7 28.05 ms be2104.ccr22.alb02.atlas.cogentco.com (154.54.43.22)
- 8 30.79 ms be2916.ccr42.jfk02.atlas.cogentco.com (154.54.41.62)
- 9 30.83 ms be3363.ccr31.jfk04.atlas.cogentco.com (154.54.3.126)
- 10 30.91 ms te0-0-0-3.agr12.jfk04.atlas.cogentco.com (154.54.31.42)
- 11 29.86 ms te0-0-1-0.nr11.b001587-3.jfk04.atlas.cogentco.com (154.24.2.22)
- 12 29.20 ms 149.14.125.130
- 13 272.23 ms xe-8-3-3.0.cjr03.prs001.flagtel.com (85.95.27.25)
- 14 307.24 ms xe-11-1-2.0.pjr03.dxb001.flagtel.com (85.95.26.161)
- 15 283.42 ms xe-11-3-0.0.pjr04.dxb001.flagtel.com (62.216.129.134)
- 16 347.90 ms 80.77.2.42
- 17 227.26 ms 196.29.177.113
- 18 230.82 ms 197.254.196.62
- 19 ... 30
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-06-16 11:32 EDT
- Nmap scan report for f03-web02.nic.gov.sd (62.12.105.2)
- Host is up.
- PORT STATE SERVICE VERSION
- 68/udp open|filtered dhcpc
- Too many fingerprints match this host to give specific OS details
- TRACEROUTE (using proto 1/icmp)
- HOP RTT ADDRESS
- 1 22.91 ms 10.249.200.1
- 2 23.30 ms vlan102.as02.qc1.ca.m247.com (176.113.74.17)
- 3 44.37 ms xe-0-0-1-0.agg2.qc1.ca.m247.com (37.120.128.166)
- 4 23.28 ms vlan304.as032.buc.ro.m247.com (77.243.185.226)
- 5 23.69 ms te0-7-0-2.rcr21.ymq02.atlas.cogentco.com (38.122.42.161)
- 6 23.43 ms be2090.ccr22.ymq01.atlas.cogentco.com (154.54.45.117)
- 7 29.17 ms be2104.ccr22.alb02.atlas.cogentco.com (154.54.43.22)
- 8 31.83 ms be2916.ccr42.jfk02.atlas.cogentco.com (154.54.41.62)
- 9 31.88 ms be3363.ccr31.jfk04.atlas.cogentco.com (154.54.3.126)
- 10 32.47 ms te0-0-0-3.agr12.jfk04.atlas.cogentco.com (154.54.31.42)
- 11 31.76 ms te0-0-1-0.nr11.b001587-3.jfk04.atlas.cogentco.com (154.24.2.22)
- 12 32.35 ms 149.14.125.130
- 13 274.42 ms xe-8-3-3.0.cjr03.prs001.flagtel.com (85.95.27.25)
- 14 306.81 ms xe-11-1-2.0.pjr03.dxb001.flagtel.com (85.95.26.161)
- 15 279.50 ms xe-11-3-0.0.pjr04.dxb001.flagtel.com (62.216.129.134)
- 16 343.35 ms 80.77.2.42
- 17 227.12 ms 196.29.177.113
- 18 239.77 ms 197.254.196.62
- 19 ... 30
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-06-16 11:34 EDT
- Nmap scan report for f03-web02.nic.gov.sd (62.12.105.2)
- Host is up.
- PORT STATE SERVICE VERSION
- 69/udp open|filtered tftp
- Too many fingerprints match this host to give specific OS details
- TRACEROUTE (using proto 1/icmp)
- HOP RTT ADDRESS
- 1 27.61 ms 10.249.200.1
- 2 22.73 ms vlan102.as02.qc1.ca.m247.com (176.113.74.17)
- 3 41.63 ms xe-0-0-1-0.agg2.qc1.ca.m247.com (37.120.128.166)
- 4 22.56 ms vlan304.as032.buc.ro.m247.com (77.243.185.226)
- 5 22.91 ms te0-7-0-2.rcr21.ymq02.atlas.cogentco.com (38.122.42.161)
- 6 23.39 ms be2090.ccr22.ymq01.atlas.cogentco.com (154.54.45.117)
- 7 28.23 ms be2104.ccr22.alb02.atlas.cogentco.com (154.54.43.22)
- 8 31.46 ms be2916.ccr42.jfk02.atlas.cogentco.com (154.54.41.62)
- 9 31.10 ms be3363.ccr31.jfk04.atlas.cogentco.com (154.54.3.126)
- 10 31.76 ms te0-0-0-3.agr12.jfk04.atlas.cogentco.com (154.54.31.42)
- 11 31.30 ms te0-0-1-0.nr11.b001587-3.jfk04.atlas.cogentco.com (154.24.2.22)
- 12 30.86 ms 149.14.125.130
- 13 273.82 ms xe-8-3-3.0.cjr03.prs001.flagtel.com (85.95.27.25)
- 14 309.43 ms xe-11-1-2.0.pjr03.dxb001.flagtel.com (85.95.26.161)
- 15 279.16 ms xe-11-3-0.0.pjr04.dxb001.flagtel.com (62.216.129.134)
- 16 342.55 ms 80.77.2.42
- 17 228.53 ms 196.29.177.113
- 18 231.88 ms 197.254.196.62
- 19 ... 30
- #######################################################################################################################################
- wig - WebApp Information Gatherer
- Scanning http://62.12.105.2...
- _________________________________________ SITE INFO _________________________________________
- IP Title
- 62.12.105.2 Domain Default page
- __________________________________________ VERSION __________________________________________
- Name Versions Type
- Apache 2.4.10 | 2.4.11 | 2.4.12 | 2.4.5 | 2.4.6 | 2.4.7 | 2.4.8 Platform
- 2.4.9
- nginx Platform
- _____________________________________________________________________________________________
- Time: 45.6 sec Urls: 811 Fingerprints: 40401
- #######################################################################################################################################
- HTTP/1.1 200 OK
- Server: nginx
- Date: Sun, 16 Jun 2019 14:40:15 GMT
- Content-Type: text/html
- Content-Length: 3750
- Connection: keep-alive
- Last-Modified: Wed, 07 Feb 2018 11:25:44 GMT
- ETag: "ea6-5649d8e57844b"
- Accept-Ranges: bytes
- HTTP/1.1 200 OK
- Server: nginx
- Date: Sun, 16 Jun 2019 14:40:15 GMT
- Content-Type: text/html
- Content-Length: 3750
- Connection: keep-alive
- Last-Modified: Wed, 07 Feb 2018 11:25:44 GMT
- ETag: "ea6-5649d8e57844b"
- Accept-Ranges: bytes
- Allow: POST,OPTIONS,GET,HEAD
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-06-16 11:37 EDT
- Nmap scan report for f03-web02.nic.gov.sd (62.12.105.2)
- Host is up (0.23s latency).
- PORT STATE SERVICE VERSION
- 110/tcp open pop3 Dovecot pop3d
- | pop3-brute:
- | Accounts: No valid accounts found
- |_ Statistics: Performed 213 guesses in 184 seconds, average tps: 1.1
- |_pop3-capabilities: CAPA AUTH-RESP-CODE PIPELINING USER SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) UIDL APOP RESP-CODES STLS TOP
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Device type: specialized|WAP|general purpose|router
- Running: AVtech embedded, Linux 2.4.X|2.6.X|3.X, MikroTik RouterOS 6.X
- OS CPE: cpe:/o:linux:linux_kernel:2.4.20 cpe:/o:linux:linux_kernel:2.6 cpe:/o:linux:linux_kernel:3.2.0 cpe:/o:mikrotik:routeros:6.15
- OS details: AVtech Room Alert 26W environmental monitor, Tomato 1.27 - 1.28 (Linux 2.4.20), Linux 2.6.18 - 2.6.22, Linux 3.2.0, MikroTik RouterOS 6.15 (Linux 3.3.5)
- Network Distance: 20 hops
- Service Info: Host: fo3-web02.nic.gov.sd
- TRACEROUTE (using port 443/tcp)
- HOP RTT ADDRESS
- 1 21.39 ms 10.249.200.1
- 2 21.74 ms vlan102.as02.qc1.ca.m247.com (176.113.74.17)
- 3 31.54 ms xe-0-0-1-0.agg2.qc1.ca.m247.com (37.120.128.166)
- 4 22.43 ms vlan304.as032.buc.ro.m247.com (77.243.185.226)
- 5 21.81 ms te0-7-0-2.rcr21.ymq02.atlas.cogentco.com (38.122.42.161)
- 6 21.54 ms be2089.ccr21.ymq01.atlas.cogentco.com (154.54.45.113)
- 7 27.01 ms be2088.ccr21.alb02.atlas.cogentco.com (154.54.43.18)
- 8 29.62 ms be2916.ccr42.jfk02.atlas.cogentco.com (154.54.41.62)
- 9 29.85 ms be3363.ccr31.jfk04.atlas.cogentco.com (154.54.3.126)
- 10 30.28 ms te0-0-0-3.agr12.jfk04.atlas.cogentco.com (154.54.31.42)
- 11 30.13 ms te0-0-1-0.nr11.b001587-3.jfk04.atlas.cogentco.com (154.24.2.22)
- 12 30.03 ms 149.14.125.130
- 13 278.04 ms xe-8-3-0.0.cjr03.prs001.flagtel.com (85.95.26.222)
- 14 112.22 ms ae5.0.cjr04.prs001.flagtel.com (62.216.131.30)
- 15 274.66 ms xe-0-0-1.0.pjr04.dxb001.flagtel.com (85.95.25.94)
- 16 344.27 ms 80.77.2.42
- 17 228.60 ms 196.29.177.113
- 18 231.60 ms 197.254.196.62
- 19 ...
- 20 231.22 ms f03-web02.nic.gov.sd (62.12.105.2)
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-06-16 11:41 EDT
- Nmap scan report for f03-web02.nic.gov.sd (62.12.105.2)
- Host is up.
- PORT STATE SERVICE VERSION
- 123/udp open|filtered ntp
- Too many fingerprints match this host to give specific OS details
- TRACEROUTE (using proto 1/icmp)
- HOP RTT ADDRESS
- 1 21.27 ms 10.249.200.1
- 2 21.72 ms vlan102.as02.qc1.ca.m247.com (176.113.74.17)
- 3 70.70 ms xe-0-0-1-0.agg2.qc1.ca.m247.com (37.120.128.166)
- 4 21.72 ms vlan304.as032.buc.ro.m247.com (77.243.185.226)
- 5 22.08 ms te0-7-0-2.rcr21.ymq02.atlas.cogentco.com (38.122.42.161)
- 6 21.69 ms be2090.ccr22.ymq01.atlas.cogentco.com (154.54.45.117)
- 7 27.40 ms be2104.ccr22.alb02.atlas.cogentco.com (154.54.43.22)
- 8 30.39 ms be2916.ccr42.jfk02.atlas.cogentco.com (154.54.41.62)
- 9 30.54 ms be3363.ccr31.jfk04.atlas.cogentco.com (154.54.3.126)
- 10 30.63 ms te0-0-0-3.agr12.jfk04.atlas.cogentco.com (154.54.31.42)
- 11 29.74 ms te0-0-1-0.nr11.b001587-3.jfk04.atlas.cogentco.com (154.24.2.22)
- 12 48.33 ms 149.14.125.130
- 13 272.34 ms xe-8-3-3.0.cjr03.prs001.flagtel.com (85.95.27.25)
- 14 302.36 ms xe-11-1-2.0.pjr03.dxb001.flagtel.com (85.95.26.161)
- 15 277.66 ms xe-11-3-0.0.pjr04.dxb001.flagtel.com (62.216.129.134)
- 16 347.30 ms 80.77.2.42
- 17 231.64 ms 196.29.177.113
- 18 235.32 ms 197.254.196.62
- 19 ... 30
- #######################################################################################################################################
- Version: 1.11.13-static
- OpenSSL 1.0.2-chacha (1.0.2g-dev)
- Connected to 62.12.105.2
- Testing SSL server 62.12.105.2 on port 443 using SNI name 62.12.105.2
- TLS Fallback SCSV:
- Server supports TLS Fallback SCSV
- TLS renegotiation:
- Secure session renegotiation supported
- TLS Compression:
- Compression disabled
- Heartbleed:
- TLS 1.2 not vulnerable to heartbleed
- TLS 1.1 not vulnerable to heartbleed
- TLS 1.0 not vulnerable to heartbleed
- Supported Server Cipher(s):
- Preferred TLSv1.2 256 bits ECDHE-RSA-AES256-GCM-SHA384 Curve P-256 DHE 256
- Accepted TLSv1.2 256 bits ECDHE-RSA-AES256-SHA384 Curve P-256 DHE 256
- Accepted TLSv1.2 256 bits ECDHE-RSA-AES256-SHA Curve P-256 DHE 256
- Accepted TLSv1.2 256 bits AES256-GCM-SHA384
- Accepted TLSv1.2 256 bits AES256-SHA256
- Accepted TLSv1.2 256 bits AES256-SHA
- Accepted TLSv1.2 256 bits CAMELLIA256-SHA
- Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-GCM-SHA256 Curve P-256 DHE 256
- Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-SHA256 Curve P-256 DHE 256
- Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-SHA Curve P-256 DHE 256
- Accepted TLSv1.2 128 bits AES128-GCM-SHA256
- Accepted TLSv1.2 128 bits AES128-SHA256
- Accepted TLSv1.2 128 bits AES128-SHA
- Accepted TLSv1.2 128 bits CAMELLIA128-SHA
- Preferred TLSv1.1 256 bits ECDHE-RSA-AES256-SHA Curve P-256 DHE 256
- Accepted TLSv1.1 256 bits AES256-SHA
- Accepted TLSv1.1 256 bits CAMELLIA256-SHA
- Accepted TLSv1.1 128 bits ECDHE-RSA-AES128-SHA Curve P-256 DHE 256
- Accepted TLSv1.1 128 bits AES128-SHA
- Accepted TLSv1.1 128 bits CAMELLIA128-SHA
- Preferred TLSv1.0 256 bits ECDHE-RSA-AES256-SHA Curve P-256 DHE 256
- Accepted TLSv1.0 256 bits AES256-SHA
- Accepted TLSv1.0 256 bits CAMELLIA256-SHA
- Accepted TLSv1.0 128 bits ECDHE-RSA-AES128-SHA Curve P-256 DHE 256
- Accepted TLSv1.0 128 bits AES128-SHA
- Accepted TLSv1.0 128 bits CAMELLIA128-SHA
- SSL Certificate:
- Signature Algorithm: sha256WithRSAEncryption
- RSA Key Strength: 2048
- Subject: Plesk
- Issuer: Plesk
- Not valid before: Apr 20 02:40:27 2016 GMT
- Not valid after: Apr 20 02:40:27 2017 GMT
- #######################################################################################################################################
- --------------------------------------------------------
- <<<Yasuo discovered following vulnerable applications>>>
- --------------------------------------------------------
- +------------+--------------------------------------+--------------------------------------------------+----------+----------+
- | App Name | URL to Application | Potential Exploit | Username | Password |
- +------------+--------------------------------------+--------------------------------------------------+----------+----------+
- | phpMyAdmin | https://62.12.105.2:8443/phpmyadmin/ | ./exploits/multi/http/phpmyadmin_preg_replace.rb | None | None |
- +------------+--------------------------------------+--------------------------------------------------+----------+----------+
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-06-16 11:51 EDT
- NSE: Loaded 148 scripts for scanning.
- NSE: Script Pre-scanning.
- NSE: Starting runlevel 1 (of 2) scan.
- Initiating NSE at 11:51
- Completed NSE at 11:51, 0.00s elapsed
- NSE: Starting runlevel 2 (of 2) scan.
- Initiating NSE at 11:51
- Completed NSE at 11:51, 0.00s elapsed
- Initiating Ping Scan at 11:51
- Scanning 62.12.105.2 [4 ports]
- Completed Ping Scan at 11:51, 0.27s elapsed (1 total hosts)
- Initiating Parallel DNS resolution of 1 host. at 11:51
- Completed Parallel DNS resolution of 1 host. at 11:51, 0.04s elapsed
- Initiating Connect Scan at 11:51
- Scanning f03-web02.nic.gov.sd (62.12.105.2) [65535 ports]
- Discovered open port 995/tcp on 62.12.105.2
- Discovered open port 21/tcp on 62.12.105.2
- Discovered open port 993/tcp on 62.12.105.2
- Discovered open port 110/tcp on 62.12.105.2
- Discovered open port 80/tcp on 62.12.105.2
- Discovered open port 443/tcp on 62.12.105.2
- Discovered open port 143/tcp on 62.12.105.2
- Connect Scan Timing: About 7.92% done; ETC: 11:57 (0:06:00 remaining)
- Connect Scan Timing: About 42.67% done; ETC: 11:53 (0:01:22 remaining)
- Completed Connect Scan at 11:52, 98.75s elapsed (65535 total ports)
- Initiating Service scan at 11:52
- Scanning 7 services on f03-web02.nic.gov.sd (62.12.105.2)
- Completed Service scan at 11:53, 14.47s elapsed (7 services on 1 host)
- Initiating OS detection (try #1) against f03-web02.nic.gov.sd (62.12.105.2)
- Retrying OS detection (try #2) against f03-web02.nic.gov.sd (62.12.105.2)
- WARNING: OS didn't match until try #2
- Initiating Traceroute at 11:53
- Completed Traceroute at 11:53, 6.08s elapsed
- Initiating Parallel DNS resolution of 18 hosts. at 11:53
- Completed Parallel DNS resolution of 18 hosts. at 11:53, 0.12s elapsed
- NSE: Script scanning 62.12.105.2.
- NSE: Starting runlevel 1 (of 2) scan.
- Initiating NSE at 11:53
- NSE Timing: About 99.27% done; ETC: 11:53 (0:00:00 remaining)
- NSE Timing: About 99.37% done; ETC: 11:54 (0:00:00 remaining)
- NSE Timing: About 99.48% done; ETC: 11:54 (0:00:00 remaining)
- NSE Timing: About 99.58% done; ETC: 11:55 (0:00:01 remaining)
- Completed NSE at 11:55, 138.59s elapsed
- NSE: Starting runlevel 2 (of 2) scan.
- Initiating NSE at 11:55
- Completed NSE at 11:55, 0.51s elapsed
- Nmap scan report for f03-web02.nic.gov.sd (62.12.105.2)
- Host is up, received syn-ack ttl 45 (0.021s latency).
- Scanned at 2019-06-16 11:51:09 EDT for 264s
- Not shown: 65524 filtered ports
- Reason: 65523 no-responses and 1 host-unreach
- PORT STATE SERVICE REASON VERSION
- 21/tcp open tcpwrapped syn-ack
- 25/tcp closed smtp conn-refused
- 80/tcp open http syn-ack nginx
- |_http-favicon: Unknown favicon MD5: 1DB747255C64A30F9236E9D929E986CA
- | http-methods:
- |_ Supported Methods: POST OPTIONS GET HEAD
- |_http-server-header: nginx
- |_http-title: Domain Default page
- 110/tcp open pop3 syn-ack Dovecot pop3d
- |_pop3-capabilities: USER SASL(PLAIN LOGIN DIGEST-MD5 CRAM-MD5) TOP RESP-CODES APOP CAPA AUTH-RESP-CODE PIPELINING STLS UIDL
- |_ssl-date: TLS randomness does not represent time
- 113/tcp closed ident conn-refused
- 139/tcp closed netbios-ssn conn-refused
- 143/tcp open imap syn-ack Dovecot imapd
- |_imap-capabilities: OK SASL-IR STARTTLS LITERAL+ post-login AUTH=CRAM-MD5A0001 have IMAP4rev1 listed AUTH=DIGEST-MD5 capabilities LOGIN-REFERRALS AUTH=PLAIN ENABLE ID more AUTH=LOGIN Pre-login IDLE
- |_ssl-date: TLS randomness does not represent time
- 443/tcp open ssl/http syn-ack nginx
- | http-methods:
- |_ Supported Methods: POST OPTIONS GET HEAD
- |_http-server-header: nginx
- |_http-title: Domain Default page
- | ssl-cert: Subject: commonName=Plesk/organizationName=Odin/stateOrProvinceName=Washington/countryName=US/localityName=Seattle/organizationalUnitName=Plesk/emailAddress=info@plesk.com
- | Issuer: commonName=Plesk/organizationName=Odin/stateOrProvinceName=Washington/countryName=US/localityName=Seattle/organizationalUnitName=Plesk/emailAddress=info@plesk.com
- | Public Key type: rsa
- | Public Key bits: 2048
- | Signature Algorithm: sha256WithRSAEncryption
- | Not valid before: 2016-04-20T02:40:27
- | Not valid after: 2017-04-20T02:40:27
- | MD5: a38f 7308 6ca0 a95d 2faa d3f0 6cb4 5553
- | SHA-1: 1479 6658 f803 6987 8f42 5473 9eaf 97e1 50dd 2d68
- | -----BEGIN CERTIFICATE-----
- | MIIDfTCCAmUCBFcW7BswDQYJKoZIhvcNAQELBQAwgYIxCzAJBgNVBAYTAlVTMRMw
- | EQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdTZWF0dGxlMQ0wCwYDVQQKEwRP
- | ZGluMQ4wDAYDVQQLEwVQbGVzazEOMAwGA1UEAxMFUGxlc2sxHTAbBgkqhkiG9w0B
- | CQEWDmluZm9AcGxlc2suY29tMB4XDTE2MDQyMDAyNDAyN1oXDTE3MDQyMDAyNDAy
- | N1owgYIxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQH
- | EwdTZWF0dGxlMQ0wCwYDVQQKEwRPZGluMQ4wDAYDVQQLEwVQbGVzazEOMAwGA1UE
- | AxMFUGxlc2sxHTAbBgkqhkiG9w0BCQEWDmluZm9AcGxlc2suY29tMIIBIjANBgkq
- | hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6ZDNfEWzRPuiKR6QpFWONPYHX+Pl6rwn
- | 6ctlVkGd2xcdnPKqzuL8z06rprVz1ro/kK7O9Xna4YfMzqoZjanxdzvjg5936PKF
- | jjf5+AA4mmbD1SD1wFCE4+U4PnE2lz/Ae/Nj5wSLK1xAL3zitACHRLTXs3a4GMQC
- | Q1LD36PSzhTl2EhDgQbSK+HB3YqsuJ8tKvn7P4qIGTZJ+HPikTXZ2e+bztPJGN4H
- | iL16zcL5F8DcIKuRx6qpmGjji8As/JsNLckYD0O8CFWZHNjbAniQ+c64Umif9UrD
- | IMcNJ3sgChQA7o8A1Qlu63FqJWGwxKlnPGt94tRpTUT1SGDCCMTTTwIDAQABMA0G
- | CSqGSIb3DQEBCwUAA4IBAQAmNWQp2HI7DaKdIhVqqviur4Z852Z1RCrqWXMl95DP
- | vtMpgRNrfdqC33xw627iWLJo4vKLvFK0OBgZ6O1gcLhcOeTGGbJLykhNjiPd0YU1
- | oIg7G6HWKeQ30q2FTv43qoc1s6uiuflihbctsF7tnLxMXQcZO3nwWkkLcuQtMDFS
- | RAkfBKbIoI/36MFs4GUh/nS78k9b3RgnSWwAD7DQi2+FrVr712EelRT627XIDp0U
- | t3D2RhpH0SqBX1ncmzF5P9wll3Yqoy0nrJOpXXEf3nP9LyTBA2imWclm4NHaBVat
- | CfsxXtJeFHpedfALThLxsTPAz/fsZoMC4s4N/ViMbF62
- |_-----END CERTIFICATE-----
- |_ssl-date: TLS randomness does not represent time
- | tls-alpn:
- |_ http/1.1
- | tls-nextprotoneg:
- |_ http/1.1
- 445/tcp closed microsoft-ds conn-refused
- 993/tcp open ssl/imaps? syn-ack
- |_ssl-date: TLS randomness does not represent time
- 995/tcp open ssl/pop3s? syn-ack
- |_ssl-date: TLS randomness does not represent time
- Device type: general purpose
- Running: Linux 2.6.X
- OS CPE: cpe:/o:linux:linux_kernel:2.6
- OS details: Linux 2.6.18 - 2.6.22
- TCP/IP fingerprint:
- OS:SCAN(V=7.70%E=4%D=6/16%OT=80%CT=25%CU=%PV=N%G=N%TM=5D066675%P=x86_64-pc-
- OS:linux-gnu)SEQ(SP=106%GCD=1%ISR=107%TI=Z%CI=Z%TS=A)SEQ(CI=Z)OPS(O1=M44FST
- OS:11NW7%O2=M44FST11NW7%O3=M44FNNT11NW7%O4=M44FST11NW7%O5=M44FST11NW7%O6=M4
- OS:4FST11)WIN(W1=7120%W2=7120%W3=7120%W4=7120%W5=7120%W6=7120)ECN(R=Y%DF=Y%
- OS:TG=40%W=7210%O=M44FNNSNW7%CC=Y%Q=)ECN(R=N)T1(R=Y%DF=Y%TG=40%S=O%A=S+%F=A
- OS:S%RD=0%Q=)T2(R=N)T3(R=N)T4(R=N)T5(R=Y%DF=Y%TG=40%W=0%S=Z%A=S+%F=AR%O=%RD
- OS:=0%Q=)T6(R=Y%DF=Y%TG=40%W=0%S=A%A=Z%F=R%O=%RD=0%Q=)T7(R=N)U1(R=N)IE(R=N)
- Service Info: Host: fo3-web02.nic.gov.sd
- TRACEROUTE (using proto 1/icmp)
- HOP RTT ADDRESS
- 1 25.97 ms 10.249.200.1
- 2 26.20 ms vlan102.as02.qc1.ca.m247.com (176.113.74.17)
- 3 39.31 ms xe-0-0-1-0.agg2.qc1.ca.m247.com (37.120.128.166)
- 4 20.73 ms vlan304.as032.buc.ro.m247.com (77.243.185.226)
- 5 21.10 ms te0-7-0-2.rcr21.ymq02.atlas.cogentco.com (38.122.42.161)
- 6 21.53 ms be2090.ccr22.ymq01.atlas.cogentco.com (154.54.45.117)
- 7 26.28 ms be2104.ccr22.alb02.atlas.cogentco.com (154.54.43.22)
- 8 29.07 ms be2916.ccr42.jfk02.atlas.cogentco.com (154.54.41.62)
- 9 29.45 ms be3363.ccr31.jfk04.atlas.cogentco.com (154.54.3.126)
- 10 29.70 ms te0-0-0-3.agr12.jfk04.atlas.cogentco.com (154.54.31.42)
- 11 31.90 ms te0-0-1-0.nr11.b001587-3.jfk04.atlas.cogentco.com (154.24.2.22)
- 12 31.32 ms 149.14.125.130
- 13 274.99 ms xe-8-3-3.0.cjr03.prs001.flagtel.com (85.95.27.25)
- 14 310.11 ms xe-11-1-2.0.pjr03.dxb001.flagtel.com (85.95.26.161)
- 15 279.62 ms xe-11-3-0.0.pjr04.dxb001.flagtel.com (62.216.129.134)
- 16 343.17 ms 80.77.2.42
- 17 227.50 ms 196.29.177.113
- 18 231.01 ms 197.254.196.62
- 19 ... 30
- NSE: Script Post-scanning.
- NSE: Starting runlevel 1 (of 2) scan.
- Initiating NSE at 11:55
- Completed NSE at 11:55, 0.00s elapsed
- NSE: Starting runlevel 2 (of 2) scan.
- Initiating NSE at 11:55
- Completed NSE at 11:55, 0.00s elapsed
- Read data files from: /usr/bin/../share/nmap
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 264.64 seconds
- Raw packets sent: 174 (12.288KB) | Rcvd: 143 (22.651KB)
- #######################################################################################################################################
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-06-16 11:55 EDT
- NSE: Loaded 148 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating NSE at 11:55
- Completed NSE at 11:55, 0.00s elapsed
- Initiating NSE at 11:55
- Completed NSE at 11:55, 0.00s elapsed
- Initiating Parallel DNS resolution of 1 host. at 11:55
- Completed Parallel DNS resolution of 1 host. at 11:55, 0.03s elapsed
- Initiating UDP Scan at 11:55
- Scanning f03-web02.nic.gov.sd (62.12.105.2) [14 ports]
- Completed UDP Scan at 11:55, 1.52s elapsed (14 total ports)
- Initiating Service scan at 11:55
- Scanning 12 services on f03-web02.nic.gov.sd (62.12.105.2)
- Service scan Timing: About 8.33% done; ETC: 12:15 (0:17:58 remaining)
- Completed Service scan at 11:57, 102.58s elapsed (12 services on 1 host)
- Initiating OS detection (try #1) against f03-web02.nic.gov.sd (62.12.105.2)
- Retrying OS detection (try #2) against f03-web02.nic.gov.sd (62.12.105.2)
- Initiating Traceroute at 11:57
- Completed Traceroute at 11:57, 7.06s elapsed
- Initiating Parallel DNS resolution of 1 host. at 11:57
- Completed Parallel DNS resolution of 1 host. at 11:57, 0.00s elapsed
- NSE: Script scanning 62.12.105.2.
- Initiating NSE at 11:57
- Completed NSE at 11:57, 20.33s elapsed
- Initiating NSE at 11:57
- Completed NSE at 11:57, 1.02s elapsed
- Nmap scan report for f03-web02.nic.gov.sd (62.12.105.2)
- Host is up (0.026s latency).
- PORT STATE SERVICE VERSION
- 53/udp open|filtered domain
- 67/udp open|filtered dhcps
- 68/udp open|filtered dhcpc
- 69/udp open|filtered tftp
- 88/udp open|filtered kerberos-sec
- 123/udp open|filtered ntp
- 137/udp filtered netbios-ns
- 138/udp filtered netbios-dgm
- 139/udp open|filtered netbios-ssn
- 161/udp open|filtered snmp
- 162/udp open|filtered snmptrap
- 389/udp open|filtered ldap
- 520/udp open|filtered route
- 2049/udp open|filtered nfs
- Too many fingerprints match this host to give specific OS details
- TRACEROUTE (using port 137/udp)
- HOP RTT ADDRESS
- 1 21.07 ms 10.249.200.1
- 2 ... 3
- 4 21.22 ms 10.249.200.1
- 5 21.73 ms 10.249.200.1
- 6 21.72 ms 10.249.200.1
- 7 21.70 ms 10.249.200.1
- 8 21.58 ms 10.249.200.1
- 9 21.57 ms 10.249.200.1
- 10 21.57 ms 10.249.200.1
- 11 ... 18
- 19 23.11 ms 10.249.200.1
- 20 21.00 ms 10.249.200.1
- 21 ... 27
- 28 20.99 ms 10.249.200.1
- 29 ...
- 30 21.48 ms 10.249.200.1
- NSE: Script Post-scanning.
- Initiating NSE at 11:57
- Completed NSE at 11:57, 0.00s elapsed
- Initiating NSE at 11:57
- Completed NSE at 11:57, 0.00s elapsed
- Read data files from: /usr/bin/../share/nmap
- OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 135.68 seconds
- Raw packets sent: 147 (13.614KB) | Rcvd: 109 (15.748KB)
- #######################################################################################################################################
- Hosts
- =====
- address mac name os_name os_flavor os_sp purpose info comments
- ------- --- ---- ------- --------- ----- ------- ---- --------
- 52.64.99.208 cbs.gov.ws Linux 3.X server
- 62.12.105.2 f03-web02.nic.gov.sd Linux 2.6.X server
- 62.12.105.3 f03-web01.nic.gov.sd embedded 2.6.X device
- 62.12.105.4 f05-web03.nic.gov.sd Linux 2.6.X server
- 77.72.0.146 argon.cloudhosting.co.uk Unknown device
- 147.237.77.18 Unknown device
- Services
- ========
- host port proto name state info
- ---- ---- ----- ---- ----- ----
- 52.64.99.208 20 tcp ftp-data closed
- 52.64.99.208 21 tcp ftp open vsftpd 3.0.2
- 52.64.99.208 25 tcp smtp closed
- 52.64.99.208 53 udp domain unknown
- 52.64.99.208 67 udp dhcps unknown
- 52.64.99.208 68 udp dhcpc unknown
- 52.64.99.208 69 udp tftp unknown
- 52.64.99.208 80 tcp http open Apache httpd
- 52.64.99.208 88 udp kerberos-sec unknown
- 52.64.99.208 123 udp ntp unknown
- 52.64.99.208 137 udp netbios-ns filtered
- 52.64.99.208 138 udp netbios-dgm filtered
- 52.64.99.208 139 tcp netbios-ssn closed
- 52.64.99.208 139 udp netbios-ssn unknown
- 52.64.99.208 161 udp snmp unknown
- 52.64.99.208 162 udp snmptrap unknown
- 52.64.99.208 389 udp ldap unknown
- 52.64.99.208 443 tcp ssl/http open Apache httpd
- 52.64.99.208 445 tcp microsoft-ds closed
- 52.64.99.208 520 udp route unknown
- 52.64.99.208 1024 tcp kdm closed
- 52.64.99.208 1025 tcp nfs-or-iis closed
- 52.64.99.208 1026 tcp lsa-or-nterm closed
- 52.64.99.208 1027 tcp iis closed
- 52.64.99.208 1028 tcp unknown closed
- 52.64.99.208 1029 tcp ms-lsa closed
- 52.64.99.208 1030 tcp iad1 closed
- 52.64.99.208 1031 tcp iad2 closed
- 52.64.99.208 1032 tcp iad3 closed
- 52.64.99.208 1033 tcp netinfo closed
- 52.64.99.208 1034 tcp zincite-a closed
- 52.64.99.208 1035 tcp multidropper closed
- 52.64.99.208 1036 tcp nsstp closed
- 52.64.99.208 1037 tcp ams closed
- 52.64.99.208 1038 tcp mtqp closed
- 52.64.99.208 1039 tcp sbl closed
- 52.64.99.208 1040 tcp netsaint closed
- 52.64.99.208 1041 tcp danf-ak2 closed
- 52.64.99.208 1042 tcp afrog closed
- 52.64.99.208 1043 tcp boinc closed
- 52.64.99.208 1044 tcp dcutility closed
- 52.64.99.208 1045 tcp fpitp closed
- 52.64.99.208 1046 tcp wfremotertm closed
- 52.64.99.208 1047 tcp neod1 closed
- 52.64.99.208 1048 tcp neod2 closed
- 52.64.99.208 2049 udp nfs unknown
- 62.12.105.2 21 tcp tcpwrapped open
- 62.12.105.2 25 tcp smtp closed
- 62.12.105.2 53 udp domain unknown
- 62.12.105.2 67 udp dhcps unknown
- 62.12.105.2 68 udp dhcpc unknown
- 62.12.105.2 69 udp tftp unknown
- 62.12.105.2 80 tcp http open nginx
- 62.12.105.2 88 udp kerberos-sec unknown
- 62.12.105.2 110 tcp pop3 open Dovecot pop3d
- 62.12.105.2 113 tcp ident closed
- 62.12.105.2 123 udp ntp unknown
- 62.12.105.2 137 udp netbios-ns filtered
- 62.12.105.2 138 udp netbios-dgm filtered
- 62.12.105.2 139 tcp netbios-ssn closed
- 62.12.105.2 139 udp netbios-ssn unknown
- 62.12.105.2 143 tcp imap open Dovecot imapd
- 62.12.105.2 161 udp snmp unknown
- 62.12.105.2 162 udp snmptrap unknown
- 62.12.105.2 389 udp ldap unknown
- 62.12.105.2 443 tcp ssl/http open nginx
- 62.12.105.2 445 tcp microsoft-ds closed
- 62.12.105.2 520 udp route unknown
- 62.12.105.2 993 tcp ssl/imaps open
- 62.12.105.2 995 tcp ssl/pop3s open
- 62.12.105.2 2049 udp nfs unknown
- 62.12.105.2 8443 tcp https-alt open
- 62.12.105.3 20 tcp ftp-data closed
- 62.12.105.3 21 tcp ftp open Microsoft ftpd
- 62.12.105.3 25 tcp smtp closed
- 62.12.105.3 53 udp domain unknown
- 62.12.105.3 67 udp dhcps unknown
- 62.12.105.3 68 udp dhcpc unknown
- 62.12.105.3 69 udp tftp unknown
- 62.12.105.3 80 tcp http open Microsoft IIS httpd 8.5
- 62.12.105.3 88 udp kerberos-sec unknown
- 62.12.105.3 110 tcp pop3 open MailEnable POP3 Server
- 62.12.105.3 113 tcp ident closed
- 62.12.105.3 123 udp ntp unknown
- 62.12.105.3 137 udp netbios-ns filtered
- 62.12.105.3 138 udp netbios-dgm filtered
- 62.12.105.3 139 tcp netbios-ssn closed
- 62.12.105.3 139 udp netbios-ssn unknown
- 62.12.105.3 143 tcp imap open MailEnable imapd
- 62.12.105.3 161 udp snmp unknown
- 62.12.105.3 162 udp snmptrap unknown
- 62.12.105.3 389 udp ldap unknown
- 62.12.105.3 443 tcp https open
- 62.12.105.3 445 tcp microsoft-ds closed
- 62.12.105.3 520 udp route unknown
- 62.12.105.3 993 tcp imaps closed
- 62.12.105.3 995 tcp pop3s closed
- 62.12.105.3 1025 tcp nfs-or-iis closed
- 62.12.105.3 2049 udp nfs unknown
- 62.12.105.3 5224 tcp hpvirtctrl closed
- 62.12.105.3 8443 tcp ssl/http open Microsoft IIS httpd 8.5
- 62.12.105.4 21 tcp ftp open ProFTPD 1.3.5d
- 62.12.105.4 25 tcp smtp closed
- 62.12.105.4 53 udp domain unknown
- 62.12.105.4 67 udp dhcps unknown
- 62.12.105.4 68 udp dhcpc unknown
- 62.12.105.4 69 udp tftp unknown
- 62.12.105.4 80 tcp http open nginx
- 62.12.105.4 88 udp kerberos-sec unknown
- 62.12.105.4 110 tcp pop3 open Dovecot pop3d
- 62.12.105.4 113 tcp ident closed
- 62.12.105.4 123 udp ntp unknown
- 62.12.105.4 137 udp netbios-ns filtered
- 62.12.105.4 138 udp netbios-dgm filtered
- 62.12.105.4 139 tcp netbios-ssn closed
- 62.12.105.4 139 udp netbios-ssn unknown
- 62.12.105.4 143 tcp imap open Dovecot imapd
- 62.12.105.4 161 udp snmp unknown
- 62.12.105.4 162 udp snmptrap unknown
- 62.12.105.4 389 udp ldap unknown
- 62.12.105.4 443 tcp ssl/http open nginx
- 62.12.105.4 445 tcp microsoft-ds closed
- 62.12.105.4 520 udp route unknown
- 62.12.105.4 993 tcp ssl/imaps open
- 62.12.105.4 995 tcp ssl/pop3s open
- 62.12.105.4 2049 udp nfs unknown
- 62.12.105.4 8443 tcp https-alt open
- 77.72.0.146 21 tcp ftp open 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\x0d\x0a220-You are user number 2 of 50 allowed.\x0d\x0a220-Local time is now 23:05. Server port: 21.\x0d\x0a220-This is a private system - No anonymous login\x0d\x0a220-IPv6 connections are also welcome on this server.\x0d\x0a220 You will be disconnected after 15 minutes of inactivity.\x0d\x0a
- 77.72.0.146 67 udp dhcps unknown
- 77.72.0.146 68 udp dhcpc unknown
- 77.72.0.146 69 udp tftp unknown
- 77.72.0.146 80 tcp http open
- 77.72.0.146 88 udp kerberos-sec unknown
- 77.72.0.146 110 tcp pop3 open
- 77.72.0.146 123 udp ntp unknown
- 77.72.0.146 139 udp netbios-ssn unknown
- 77.72.0.146 143 tcp imap open
- 77.72.0.146 389 udp ldap unknown
- 77.72.0.146 443 tcp https open
- 77.72.0.146 465 tcp smtps open
- 77.72.0.146 520 udp route unknown
- 77.72.0.146 587 tcp submission open
- 77.72.0.146 993 tcp imaps open
- 77.72.0.146 995 tcp pop3s open
- 77.72.0.146 2049 udp nfs unknown
- 147.237.77.18 53 udp domain unknown
- 147.237.77.18 67 udp dhcps unknown
- 147.237.77.18 68 udp dhcpc unknown
- 147.237.77.18 69 udp tftp unknown
- 147.237.77.18 80 tcp http open
- 147.237.77.18 88 udp kerberos-sec unknown
- 147.237.77.18 123 udp ntp unknown
- 147.237.77.18 139 udp netbios-ssn unknown
- 147.237.77.18 161 udp snmp unknown
- 147.237.77.18 162 udp snmptrap unknown
- 147.237.77.18 389 udp ldap unknown
- 147.237.77.18 520 udp route unknown
- 147.237.77.18 2049 udp nfs unknown
- #######################################################################################################################################
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Target IP: 62.12.105.2
- + Target Hostname: 62.12.105.2
- + Target Port: 443
- ---------------------------------------------------------------------------------------------------------------------------------------
- + SSL Info: Subject: /C=US/ST=Washington/L=Seattle/O=Odin/OU=Plesk/CN=Plesk/emailAddress=info@plesk.com
- Ciphers: ECDHE-RSA-AES256-GCM-SHA384
- Issuer: /C=US/ST=Washington/L=Seattle/O=Odin/OU=Plesk/CN=Plesk/emailAddress=info@plesk.com
- + Start Time: 2019-06-16 11:17:03 (GMT-4)
- ---------------------------------------------------------------------------------------------------------------------------------------
- + Server: nginx
- + The anti-clickjacking X-Frame-Options header is not present.
- + The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
- + The site uses SSL and the Strict-Transport-Security HTTP header is not defined.
- + The site uses SSL and Expect-CT header is not present.
- + The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
- + Hostname '62.12.105.2' does not match certificate's names: Plesk
- + Allowed HTTP Methods: POST, OPTIONS, GET, HEAD
- + OSVDB-3233: /mailman/listinfo: Mailman was found on the server.
- + OSVDB-3268: /icons/: Directory indexing found.
- + OSVDB-3233: /icons/README: Apache default file found.
- + ERROR: Error limit (20) reached for host, giving up. Last error:
- + Scan terminated: 11 error(s) and 10 item(s) reported on remote host
- + End Time: 2019-06-16 12:57:28 (GMT-4) (6025 seconds)
- ---------------------------------------------------------------------------------------------------------------------------------------
- #######################################################################################################################################
- [I] Threads: 5
- [-] Target: http://www.ncr.gov.sd (62.12.105.2)
- [M] Website Not in HTTPS: http://www.ncr.gov.sd
- [I] Server: nginx
- [I] X-Powered-By: PHP/5.6.40
- [L] X-Frame-Options: Not Enforced
- [I] Strict-Transport-Security: Not Enforced
- [I] X-Content-Security-Policy: Not Enforced
- [I] X-Content-Type-Options: Not Enforced
- [L] Robots.txt Found: http://www.ncr.gov.sd/robots.txt
- [I] CMS Detection: Joomla
- [I] Joomla Version: 2.5.8
- [M] EDB-ID: 46710 "Joomla Core 1.5.0 - 3.9.4 - Directory Traversal / Authenticated Arbitrary File Deletion"
- [M] EDB-ID: 46200 "Joomla! Core 3.9.1 - Persistent Cross-Site Scripting in Global Configuration Textfilter Settings"
- [M] EDB-ID: 42033 "Joomla! 3.7.0 - 'com_fields' SQL Injection"
- [M] EDB-ID: 40637 "Joomla! 3.4.4 < 3.6.4 - Account Creation / Privilege Escalation"
- [M] EDB-ID: 41157 "Joomla! < 3.6.4 - Admin Takeover"
- [M] EDB-ID: 38977 "Joomla! 1.5 < 3.4.5 - Object Injection Remote Command Execution"
- [M] EDB-ID: 39033 "Joomla! 1.5 < 3.4.5 - Object Injection 'x-forwarded-for' Header Remote Code Execution"
- [M] EDB-ID: 38534 "Joomla! 3.2.x < 3.4.4 - SQL Injection"
- [M] EDB-ID: 31459 "Joomla! 3.2.1 - SQL Injection"
- [M] EDB-ID: 25087 "Joomla! 3.0.3 - 'remember.php' PHP Object Injection"
- [M] EDB-ID: 24551 "Joomla! 3.0.2 - 'highlight.php' PHP Object Injection"
- [M] EDB-ID: 44227 "Joomla! 3.7 - SQL Injection"
- [I] Joomla Website Template: shaper_myestate
- [I] Joomla Website Template: system
- [I] Autocomplete Off Not Found: http://www.ncr.gov.sd/administrator/index.php
- [-] Joomla Default Files:
- [-] Joomla is likely to have a large number of default files
- [-] Would you like to list them all?
- [y/N]: y
- [I] http://www.ncr.gov.sd/LICENSE.txt
- [I] http://www.ncr.gov.sd/README.txt
- [I] http://www.ncr.gov.sd/administrator/cache/index.html
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/mysql/2.5.0-2011-12-06.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/mysql/2.5.0-2011-12-16.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/mysql/2.5.0-2011-12-19.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/mysql/2.5.0-2011-12-20.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/mysql/2.5.0-2011-12-21-1.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/mysql/2.5.0-2011-12-21-2.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/mysql/2.5.0-2011-12-22.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/mysql/2.5.0-2011-12-23.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/mysql/2.5.0-2011-12-24.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/mysql/2.5.0-2012-01-10.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/mysql/2.5.0-2012-01-14.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/mysql/2.5.1-2012-01-26.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/mysql/2.5.2-2012-03-05.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/mysql/2.5.3-2012-03-13.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/mysql/2.5.4-2012-03-18.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/mysql/2.5.4-2012-03-19.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/mysql/2.5.5.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/mysql/2.5.6.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/mysql/2.5.7.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/sqlazure/2.5.2-2012-03-05.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/sqlazure/2.5.3-2012-03-13.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/sqlazure/2.5.4-2012-03-18.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/sqlazure/2.5.4-2012-03-19.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/sqlazure/2.5.5.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/sqlazure/2.5.6.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_admin/sql/updates/sqlazure/2.5.7.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_banners/sql/install.mysql.utf8.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_banners/sql/uninstall.mysql.utf8.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_contact/sql/install.mysql.utf8.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_contact/sql/uninstall.mysql.utf8.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_finder/sql/install.mysql.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_finder/sql/install.postgresql.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_finder/sql/uninstall.mysql.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_finder/sql/uninstall.postgresql.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_newsfeeds/sql/install.mysql.utf8.sql
- [I] http://www.ncr.gov.sd/administrator/components/com_newsfeeds/sql/uninstall.mysql.utf8.sql
- [I] http://www.ncr.gov.sd/administrator/language/overrides/index.html
- [I] http://www.ncr.gov.sd/administrator/manifests/packages/index.html
- [I] http://www.ncr.gov.sd/administrator/templates/hathor/LICENSE.txt
- [I] http://www.ncr.gov.sd/cache/index.html
- [I] http://www.ncr.gov.sd/cli/index.html
- [I] http://www.ncr.gov.sd/components/index.html
- [I] http://www.ncr.gov.sd/htaccess.txt
- [I] http://www.ncr.gov.sd/images/index.html
- [I] http://www.ncr.gov.sd/includes/index.html
- [I] http://www.ncr.gov.sd/language/index.html
- [I] http://www.ncr.gov.sd/language/overrides/index.html
- [I] http://www.ncr.gov.sd/libraries/index.html
- [I] http://www.ncr.gov.sd/media/editors/tinymce/templates/layout1.html
- [I] http://www.ncr.gov.sd/media/editors/tinymce/templates/snippet1.html
- [I] http://www.ncr.gov.sd/media/index.html
- [I] http://www.ncr.gov.sd/modules/index.html
- [I] http://www.ncr.gov.sd/plugins/index.html
- [I] http://www.ncr.gov.sd/templates/index.html
- [I] http://www.ncr.gov.sd/tmp/index.html
- [I] http://www.ncr.gov.sd/web.config.txt
- [-] Searching Joomla Components ...
- [I] mod_news_show_sp1
- [I] mod_slideshow_pro_sp2
- [I] mod_sp_news_highlighter
- [I] mod_vtem_gmap
- [I] mod_vvisit_counter
- [I] Checking for Directory Listing Enabled ...
- [-] Date & Time: 15/06/2019 03:07:44
- [-] Completed in: 0:18:34
- #######################################################################################################################################
- [+] FireWall Detector
- [++] Firewall not detected
- [+] Detecting Joomla Version
- [++] Joomla 2.5.8
- [+] Core Joomla Vulnerability
- [++] Joomla! Core Remote Privilege Escalation Vulnerability
- CVE : CVE-2016-9838
- EDB : https://www.exploit-db.com/exploits/41157/
- Joomla! Component Akeeba Kickstart - Unserialize Remote Code Execution
- CVE : CVE-2014-7228
- EDB : https://www.exploit-db.com/exploits/35033/
- Joomla! Highlighter Plugin Unspecified Cross-Site Scripting Vulnerability
- CVE : CVE-2013-3267
- https://developer.joomla.org/security/86-20130407-core-xss-vulnerability.html
- Joomla! Unspecified Cross-Site Scripting Vulnerability
- CVE : CVE-2013-3058
- http://www.securityfocus.com/bid/59483
- http://developer.joomla.org/security/81-20130403-core-xss-vulnerability.html
- Joomla! Unspecified Cross-Site Scripting Vulnerability
- CVE : CVE-2013-3059
- https://developer.joomla.org/security/80-20130405-core-xss-vulnerability.html
- Joomla! Core Authentication Bypass Vulnerability
- CVE :CVE-2014-6632
- http://developer.joomla.org/security/594-20140902-core-unauthorised-logins.html
- Joomla! Core Remote Denial of Service Vulnerability
- CVE : CVE-2014-7229
- https://developer.joomla.org/security/596-20140904-core-denial-of-service.html
- PHPMailer Remote Code Execution Vulnerability
- CVE : CVE-2016-10033
- https://www.rapid7.com/db/modules/exploit/multi/http/phpmailer_arg_injection
- https://github.com/opsxcq/exploit-CVE-2016-10033
- EDB : https://www.exploit-db.com/exploits/40969/
- PPHPMailer Incomplete Fix Remote Code Execution Vulnerability
- CVE : CVE-2016-10045
- https://www.rapid7.com/db/modules/exploit/multi/http/phpmailer_arg_injection
- EDB : https://www.exploit-db.com/exploits/40969/
- [+] Checking apache info/status files
- [++] Readable info/status files are not found
- [+] admin finder
- [++] Admin page : http://www.ncr.gov.sd/administrator/
- [+] Checking robots.txt existing
- [++] robots.txt is found
- path : http://www.ncr.gov.sd/robots.txt
- Interesting path found from robots.txt
- http://www.ncr.gov.sd/joomla/administrator/
- http://www.ncr.gov.sd/administrator/
- http://www.ncr.gov.sd/cache/
- http://www.ncr.gov.sd/cli/
- http://www.ncr.gov.sd/components/
- http://www.ncr.gov.sd/images/
- http://www.ncr.gov.sd/includes/
- http://www.ncr.gov.sd/installation/
- http://www.ncr.gov.sd/language/
- http://www.ncr.gov.sd/libraries/
- http://www.ncr.gov.sd/logs/
- http://www.ncr.gov.sd/media/
- http://www.ncr.gov.sd/modules/
- http://www.ncr.gov.sd/plugins/
- http://www.ncr.gov.sd/templates/
- http://www.ncr.gov.sd/tmp/
- [+] Finding common backup files name
- [++] Backup files are not found
- [+] Finding common log files name
- [++] error_log path : http://www.ncr.gov.sd/error_log
- [+] Checking sensitive config.php.x file
- [++] Readable config files are not found
- #######################################################################################################################################
- [✔] Target: http://ncr.gov.sd
- [✔] Detected CMS: Joomla
- [✔] CMS URL: https://joomla.org
- [✔] Joomla Version: 2.5.8
- [✔] Readme file: http://ncr.gov.sd/README.txt
- [✔] Admin URL: http://ncr.gov.sdadministrator
- [✔] Total joomla core vulnerabilities: 9
- [i] Vulnerabilities found:
- [v] Joomla! Core Remote Privilege Escalation Vulnerability
- CVE : CVE-2016-9838
- EDB : https://www.exploit-db.com/exploits/41157/
- [v] Joomla! Component Akeeba Kickstart - Unserialize Remote Code Execution
- CVE : CVE-2014-7228
- EDB : https://www.exploit-db.com/exploits/35033/
- [v] Joomla! Highlighter Plugin Unspecified Cross-Site Scripting Vulnerability
- CVE : CVE-2013-3267
- https://developer.joomla.org/security/86-20130407-core-xss-vulnerability.html
- [v] Joomla! Unspecified Cross-Site Scripting Vulnerability
- CVE : CVE-2013-3058
- http://www.securityfocus.com/bid/59483
- http://developer.joomla.org/security/81-20130403-core-xss-vulnerability.html
- [v] Joomla! Unspecified Cross-Site Scripting Vulnerability
- CVE : CVE-2013-3059
- https://developer.joomla.org/security/80-20130405-core-xss-vulnerability.html
- [v] Joomla! Core Authentication Bypass Vulnerability
- CVE :CVE-2014-6632
- http://developer.joomla.org/security/594-20140902-core-unauthorised-logins.html
- [v] Joomla! Core Remote Denial of Service Vulnerability
- CVE : CVE-2014-7229
- https://developer.joomla.org/security/596-20140904-core-denial-of-service.html
- [v] PHPMailer Remote Code Execution Vulnerability
- CVE : CVE-2016-10033
- https://www.rapid7.com/db/modules/exploit/multi/http/phpmailer_arg_injection
- https://github.com/opsxcq/exploit-CVE-2016-10033
- EDB : https://www.exploit-db.com/exploits/40969/
- [v] PPHPMailer Incomplete Fix Remote Code Execution Vulnerability
- CVE : CVE-2016-10045
- https://www.rapid7.com/db/modules/exploit/multi/http/phpmailer_arg_injection
- EDB : https://www.exploit-db.com/exploits/40969/
- #######################################################################################################################################
- Anonymous JTSEC #OpSudan Full Recon #93
Add Comment
Please, Sign In to add comment