Ports
Durée
Date
IP
Nmap scan report for api.production.hasbrorisk.com (44.239.208.221) Host is up (0.025s latency). Other addresses for api.production.hasbrorisk.com (not scanned): 35.160.100.101 44.242.36.48 rDNS record for 44.239.208.221: ec2-44-239-208-221.us-west-2.compute.amazonaws.com Not shown: 998 filtered tcp ports (no-response) PORT STATE SERVICE VERSION 80/tcp open http True |_http-server-header: True |_http-title: Did not follow redirect to https://api.production.hasbrorisk.com/ | fingerprint-strings: | FourOhFourRequest: | HTTP/1.1 301 Moved Permanently | Date: Wed, 25 Sep 2024 00:24:53 GMT | Content-Type: text/html; charset=iso-8859-1 | Content-Length: 309 | Connection: close | Server: True | Location: https://webapp-gamel-tskh2txoioiz-604810335.us-west-2.elb.amazonaws.com/nice%20ports,/Trinity.txt.bak | <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> | <html><head> | <title>301 Moved Permanently</title> | </head><body> | <h1>Moved Permanently</h1> | <p>The document has moved <a href="https://webapp-gamel-tskh2txoioiz-604810335.us-west-2.elb.amazonaws.com/nice%20ports,/Trinity.txt.bak">here</a>.</p> | </body></html> | GetRequest, HTTPOptions: | HTTP/1.1 301 Moved Permanently | Date: Wed, 25 Sep 2024 00:24:53 GMT | Content-Type: text/html; charset=iso-8859-1 | Content-Length: 280 | Connection: close | Server: True | Location: https://webapp-gamel-tskh2txoioiz-604810335.us-west-2.elb.amazonaws.com/ | <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> | <html><head> | <title>301 Moved Permanently</title> | </head><body> | <h1>Moved Permanently</h1> | <p>The document has moved <a href="https://webapp-gamel-tskh2txoioiz-604810335.us-west-2.elb.amazonaws.com/">here</a>.</p> | </body></html> | RTSPRequest: | <html> | <head><title>400 Bad Request</title></head> | <body> | <center><h1>400 Bad Request</h1></center> | </body> | </html> | X11Probe: | HTTP/1.1 400 Bad Request | Server: awselb/2.0 | Date: Wed, 25 Sep 2024 00:24:53 GMT | Content-Type: text/html | Content-Length: 122 | Connection: close | <html> | <head><title>400 Bad Request</title></head> | <body> | <center><h1>400 Bad Request</h1></center> | </body> |_ </html> 443/tcp open ssl/https True |_ssl-date: TLS randomness does not represent time | ssl-cert: Subject: commonName=production.hasbrorisk.com | Subject Alternative Name: DNS:production.hasbrorisk.com, DNS:*.production.hasbrorisk.com | Not valid before: 2024-03-07T00:00:00 |_Not valid after: 2025-04-05T23:59:59 |_http-server-header: True | fingerprint-strings: | GetRequest: | HTTP/1.1 200 OK | Date: Wed, 25 Sep 2024 00:24:59 GMT | Content-Type: text/html; charset=UTF-8 | Connection: close | Server: True | Content-Encoding: none | Vary: X-Forwarded-Proto | Strict-Transport-Security: max-age=63072000; includeSubdomains; | Content-Security-Policy: default-src 'self' *.hasbrorisk.com 'nonce-WnZOWVc2bjU4eDFtOVIzdkhtSnRXd0FBQUlv' *.google-analytics.com *.analytics.google.com *.doubleclick.net *.googletagmanager.com *.googleadservices.com *.fontawesome.com *.jquery.com *.youtube.com; media-src 'self' data:; img-src 'self' data: *.hasbrorisk.com *.google-analytics.com *.google.com.au *.google.com *.googletagmanager.com api.qrserver.com; style-src 'self' 'unsafe-inline' *.hasbrorisk.com *.fontawesome.com; font-src 'self' *.hasbrorisk.com *.gstatic.com *.fontawesome.com; frame-ancestors 'self'; | X-Content-Type-Options: nosniff | <!DOCTYPE html> | <html lang="en"> | <head> | HTTPOptions: | HTTP/1.1 200 OK | Date: Wed, 25 Sep 2024 00:24:59 GMT | Content-Type: text/html; charset=UTF-8 | Connection: close | Server: True | Content-Encoding: none | Vary: X-Forwarded-Proto | Strict-Transport-Security: max-age=63072000; includeSubdomains; | Content-Security-Policy: default-src 'self' *.hasbrorisk.com 'nonce-WnZOWVc2bjU4eDFtOVIzdkhtSnRhd0FBQUpB' *.google-analytics.com *.analytics.google.com *.doubleclick.net *.googletagmanager.com *.googleadservices.com *.fontawesome.com *.jquery.com *.youtube.com; media-src 'self' data:; img-src 'self' data: *.hasbrorisk.com *.google-analytics.com *.google.com.au *.google.com *.googletagmanager.com api.qrserver.com; style-src 'self' 'unsafe-inline' *.hasbrorisk.com *.fontawesome.com; font-src 'self' *.hasbrorisk.com *.gstatic.com *.fontawesome.com; frame-ancestors 'self'; | X-Content-Type-Options: nosniff | <!DOCTYPE html> | <html lang="en"> |_ <head> |_http-title: Hasbro Risk - Home | http-robots.txt: 6 disallowed entries |_/admin/ /call/ /public/ /amazonClaim /logout / 2 services unrecognized despite returning data. If you know the service/version, please submit the following fingerprints at https://nmap.org/cgi-bin/submit.cgi?new-service : ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)============== SF-Port80-TCP:V=7.92%I=7%D=9/24%Time=66F35854%P=x86_64-redhat-linux-gnu%r( SF:GetRequest,216,"HTTP/1\.1\x20301\x20Moved\x20Permanently\r\nDate:\x20We SF:d,\x2025\x20Sep\x202024\x2000:24:53\x20GMT\r\nContent-Type:\x20text/htm SF:l;\x20charset=iso-8859-1\r\nContent-Length:\x20280\r\nConnection:\x20cl SF:ose\r\nServer:\x20True\r\nLocation:\x20https://webapp-gamel-tskh2txoioi SF:z-604810335\.us-west-2\.elb\.amazonaws\.com/\r\n\r\n<!DOCTYPE\x20HTML\x SF:20PUBLIC\x20\"-//IETF//DTD\x20HTML\x202\.0//EN\">\n<html><head>\n<title SF:>301\x20Moved\x20Permanently</title>\n</head><body>\n<h1>Moved\x20Perma SF:nently</h1>\n<p>The\x20document\x20has\x20moved\x20<a\x20href=\"https:/ SF:/webapp-gamel-tskh2txoioiz-604810335\.us-west-2\.elb\.amazonaws\.com/\" SF:>here</a>\.</p>\n</body></html>\n")%r(HTTPOptions,216,"HTTP/1\.1\x20301 SF:\x20Moved\x20Permanently\r\nDate:\x20Wed,\x2025\x20Sep\x202024\x2000:24 SF::53\x20GMT\r\nContent-Type:\x20text/html;\x20charset=iso-8859-1\r\nCont SF:ent-Length:\x20280\r\nConnection:\x20close\r\nServer:\x20True\r\nLocati SF:on:\x20https://webapp-gamel-tskh2txoioiz-604810335\.us-west-2\.elb\.ama SF:zonaws\.com/\r\n\r\n<!DOCTYPE\x20HTML\x20PUBLIC\x20\"-//IETF//DTD\x20HT SF:ML\x202\.0//EN\">\n<html><head>\n<title>301\x20Moved\x20Permanently</ti SF:tle>\n</head><body>\n<h1>Moved\x20Permanently</h1>\n<p>The\x20document\ SF:x20has\x20moved\x20<a\x20href=\"https://webapp-gamel-tskh2txoioiz-60481 SF:0335\.us-west-2\.elb\.amazonaws\.com/\">here</a>\.</p>\n</body></html>\ SF:n")%r(RTSPRequest,7A,"<html>\r\n<head><title>400\x20Bad\x20Request</tit SF:le></head>\r\n<body>\r\n<center><h1>400\x20Bad\x20Request</h1></center> SF:\r\n</body>\r\n</html>\r\n")%r(X11Probe,110,"HTTP/1\.1\x20400\x20Bad\x2 SF:0Request\r\nServer:\x20awselb/2\.0\r\nDate:\x20Wed,\x2025\x20Sep\x20202 SF:4\x2000:24:53\x20GMT\r\nContent-Type:\x20text/html\r\nContent-Length:\x SF:20122\r\nConnection:\x20close\r\n\r\n<html>\r\n<head><title>400\x20Bad\ SF:x20Request</title></head>\r\n<body>\r\n<center><h1>400\x20Bad\x20Reques SF:t</h1></center>\r\n</body>\r\n</html>\r\n")%r(FourOhFourRequest,250,"HT SF:TP/1\.1\x20301\x20Moved\x20Permanently\r\nDate:\x20Wed,\x2025\x20Sep\x2 SF:02024\x2000:24:53\x20GMT\r\nContent-Type:\x20text/html;\x20charset=iso- SF:8859-1\r\nContent-Length:\x20309\r\nConnection:\x20close\r\nServer:\x20 SF:True\r\nLocation:\x20https://webapp-gamel-tskh2txoioiz-604810335\.us-we SF:st-2\.elb\.amazonaws\.com/nice%20ports,/Trinity\.txt\.bak\r\n\r\n<!DOCT SF:YPE\x20HTML\x20PUBLIC\x20\"-//IETF//DTD\x20HTML\x202\.0//EN\">\n<html>< SF:head>\n<title>301\x20Moved\x20Permanently</title>\n</head><body>\n<h1>M SF:oved\x20Permanently</h1>\n<p>The\x20document\x20has\x20moved\x20<a\x20h SF:ref=\"https://webapp-gamel-tskh2txoioiz-604810335\.us-west-2\.elb\.amaz SF:onaws\.com/nice%20ports,/Trinity\.txt\.bak\">here</a>\.</p>\n</body></h SF:tml>\n"); ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)============== SF-Port443-TCP:V=7.92%T=SSL%I=7%D=9/24%Time=66F3585A%P=x86_64-redhat-linux SF:-gnu%r(GetRequest,A355,"HTTP/1\.1\x20200\x20OK\r\nDate:\x20Wed,\x2025\x SF:20Sep\x202024\x2000:24:59\x20GMT\r\nContent-Type:\x20text/html;\x20char SF:set=UTF-8\r\nConnection:\x20close\r\nServer:\x20True\r\nContent-Encodin SF:g:\x20none\r\nVary:\x20X-Forwarded-Proto\r\nStrict-Transport-Security:\ SF:x20max-age=63072000;\x20includeSubdomains;\r\nContent-Security-Policy:\ SF:x20default-src\x20'self'\x20\*\.hasbrorisk\.com\x20'nonce-WnZOWVc2bjU4e SF:DFtOVIzdkhtSnRXd0FBQUlv'\x20\*\.google-analytics\.com\x20\*\.analytics\ SF:.google\.com\x20\*\.doubleclick\.net\x20\*\.googletagmanager\.com\x20\* SF:\.googleadservices\.com\x20\*\.fontawesome\.com\x20\*\.jquery\.com\x20\ SF:*\.youtube\.com;\x20media-src\x20'self'\x20data:;\x20img-src\x20'self'\ SF:x20data:\x20\*\.hasbrorisk\.com\x20\*\.google-analytics\.com\x20\*\.goo SF:gle\.com\.au\x20\*\.google\.com\x20\*\.googletagmanager\.com\x20api\.qr SF:server\.com;\x20style-src\x20'self'\x20'unsafe-inline'\x20\*\.hasbroris SF:k\.com\x20\*\.fontawesome\.com;\x20font-src\x20'self'\x20\*\.hasbrorisk SF:\.com\x20\*\.gstatic\.com\x20\*\.fontawesome\.com;\x20frame-ancestors\x SF:20'self';\r\nX-Content-Type-Options:\x20nosniff\r\n\r\n<!DOCTYPE\x20htm SF:l>\n<html\x20lang=\"en\">\n\x20\x20\x20\x20<head>\n\x20\x20\x20")%r(HTT SF:POptions,A355,"HTTP/1\.1\x20200\x20OK\r\nDate:\x20Wed,\x2025\x20Sep\x20 SF:2024\x2000:24:59\x20GMT\r\nContent-Type:\x20text/html;\x20charset=UTF-8 SF:\r\nConnection:\x20close\r\nServer:\x20True\r\nContent-Encoding:\x20non SF:e\r\nVary:\x20X-Forwarded-Proto\r\nStrict-Transport-Security:\x20max-ag SF:e=63072000;\x20includeSubdomains;\r\nContent-Security-Policy:\x20defaul SF:t-src\x20'self'\x20\*\.hasbrorisk\.com\x20'nonce-WnZOWVc2bjU4eDFtOVIzdk SF:htSnRhd0FBQUpB'\x20\*\.google-analytics\.com\x20\*\.analytics\.google\. SF:com\x20\*\.doubleclick\.net\x20\*\.googletagmanager\.com\x20\*\.googlea SF:dservices\.com\x20\*\.fontawesome\.com\x20\*\.jquery\.com\x20\*\.youtub SF:e\.com;\x20media-src\x20'self'\x20data:;\x20img-src\x20'self'\x20data:\ SF:x20\*\.hasbrorisk\.com\x20\*\.google-analytics\.com\x20\*\.google\.com\ SF:.au\x20\*\.google\.com\x20\*\.googletagmanager\.com\x20api\.qrserver\.c SF:om;\x20style-src\x20'self'\x20'unsafe-inline'\x20\*\.hasbrorisk\.com\x2 SF:0\*\.fontawesome\.com;\x20font-src\x20'self'\x20\*\.hasbrorisk\.com\x20 SF:\*\.gstatic\.com\x20\*\.fontawesome\.com;\x20frame-ancestors\x20'self'; SF:\r\nX-Content-Type-Options:\x20nosniff\r\n\r\n<!DOCTYPE\x20html>\n<html SF:\x20lang=\"en\">\n\x20\x20\x20\x20<head>\n\x20\x20\x20"); Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port Device type: general purpose Running (JUST GUESSING): Linux 2.6.X|3.X|4.X (90%) OS CPE: cpe:/o:linux:linux_kernel:2.6.32 cpe:/o:linux:linux_kernel:3 cpe:/o:linux:linux_kernel:4 Aggressive OS guesses: Linux 2.6.32 (90%), Linux 3.2 - 4.9 (90%), Linux 2.6.32 - 3.10 (89%), Linux 2.6.32 - 3.13 (89%), Linux 3.10 - 3.13 (86%) No exact OS matches for host (test conditions non-ideal). Network Distance: 11 hops TRACEROUTE (using port 80/tcp) HOP RTT ADDRESS 1 0.30 ms 208.76.251.177.rdns.ColocationAmerica.com (208.76.251.177) 2 0.52 ms gw.mcom-colocationamerica.com (208.64.231.81) 3 0.74 ms r2b4.n1.p1401.lax.multacom.net (64.69.46.11) 4 1.37 ms 206.72.211.146.any2ix.coresite.com (206.72.211.146) 5 ... 9 10 24.34 ms 108.166.228.50 11 24.62 ms ec2-44-239-208-221.us-west-2.compute.amazonaws.com (44.239.208.221) OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 38.27 seconds