Scan report for "authzdecisionservice.prd.api.a.intuit.com"

Membership level: Free member
Scan OS information and Traceroute (nmap -A authzdecisionservice.prd.api.a.intuit.com)
Nmap scan report for authzdecisionservice.prd.api.a.intuit.com (34.223.123.101)
Host is up (0.025s latency).
Other addresses for authzdecisionservice.prd.api.a.intuit.com (not scanned): 44.237.64.185 54.149.1.253 52.36.48.147 54.212.182.52 44.240.177.233 35.84.107.139 44.226.196.140
rDNS record for 34.223.123.101: ec2-34-223-123-101.us-west-2.compute.amazonaws.com
Not shown: 998 filtered tcp ports (no-response)
PORT    STATE SERVICE        VERSION
80/tcp  open  http           awselb/2.0
| fingerprint-strings: 
|   FourOhFourRequest: 
|     HTTP/1.1 301 Moved Permanently
|     Server: awselb/2.0
|     Date: Tue, 13 Feb 2024 10:06:14 GMT
|     Content-Type: text/html
|     Content-Length: 134
|     Connection: close
|     Location: https://apigw-usw2-prd-id06-1020587130.us-west-2.elb.amazonaws.com:443/nice%20ports%2C/Tri%6Eity.txt%2ebak
|     <html>
|     <head><title>301 Moved Permanently</title></head>
|     <body>
|     <center><h1>301 Moved Permanently</h1></center>
|     </body>
|     </html>
|   GetRequest, HTTPOptions: 
|     HTTP/1.1 301 Moved Permanently
|     Server: awselb/2.0
|     Date: Tue, 13 Feb 2024 10:06:14 GMT
|     Content-Type: text/html
|     Content-Length: 134
|     Connection: close
|     Location: https://apigw-usw2-prd-id06-1020587130.us-west-2.elb.amazonaws.com:443/
|     <html>
|     <head><title>301 Moved Permanently</title></head>
|     <body>
|     <center><h1>301 Moved Permanently</h1></center>
|     </body>
|     </html>
|   RTSPRequest: 
|     <html>
|     <head><title>400 Bad Request</title></head>
|     <body>
|     <center><h1>400 Bad Request</h1></center>
|     </body>
|     </html>
|   X11Probe: 
|     HTTP/1.1 400 Bad Request
|     Server: awselb/2.0
|     Date: Tue, 13 Feb 2024 10:06:14 GMT
|     Content-Type: text/html
|     Content-Length: 122
|     Connection: close
|     <html>
|     <head><title>400 Bad Request</title></head>
|     <body>
|     <center><h1>400 Bad Request</h1></center>
|     </body>
|_    </html>
|_http-title: Did not follow redirect to https://authzdecisionservice.prd.api.a.intuit.com:443/
|_http-server-header: awselb/2.0
443/tcp open  ssl/http-proxy (bad gateway)
| fingerprint-strings: 
|   FourOhFourRequest: 
|     HTTP/1.1 502 Bad Gateway
|     Date: Tue, 13 Feb 2024 10:06:20 GMT
|     Content-Type: text/plain
|     Content-Length: 0
|     Connection: close
|     x-envoy-upstream-service-time: 0
|     strict-transport-security: max-age=31536000
|     intuit_tid: 1-65cb3f1c-7cfd266205af70aa34df9e71
|     x-request-id: 1-65cb3f1c-7cfd266205af70aa34df9e71
|     server: istio-envoy
|   GetRequest: 
|     HTTP/1.1 502 Bad Gateway
|     Date: Tue, 13 Feb 2024 10:06:20 GMT
|     Content-Type: text/plain
|     Content-Length: 0
|     Connection: close
|     x-envoy-upstream-service-time: 0
|     strict-transport-security: max-age=31536000
|     intuit_tid: 1-65cb3f1c-212d02aa3c47a9597432de87
|     x-request-id: 1-65cb3f1c-212d02aa3c47a9597432de87
|     server: istio-envoy
|   HTTPOptions: 
|     HTTP/1.1 502 Bad Gateway
|     Date: Tue, 13 Feb 2024 10:06:20 GMT
|     Content-Type: text/plain
|     Content-Length: 0
|     Connection: close
|     x-envoy-upstream-service-time: 0
|     strict-transport-security: max-age=31536000
|     intuit_tid: 1-65cb3f1c-7ecb3d474ce1996c234bca9a
|     x-request-id: 1-65cb3f1c-7ecb3d474ce1996c234bca9a
|     server: istio-envoy
|   Help, SSLSessionReq: 
|     HTTP/1.1 400 Bad Request
|     Server: awselb/2.0
|     Date: Tue, 13 Feb 2024 10:06:26 GMT
|     Content-Type: text/html
|     Content-Length: 122
|     Connection: close
|     <html>
|     <head><title>400 Bad Request</title></head>
|     <body>
|     <center><h1>400 Bad Request</h1></center>
|     </body>
|     </html>
|   RTSPRequest: 
|     <html>
|     <head><title>400 Bad Request</title></head>
|     <body>
|     <center><h1>400 Bad Request</h1></center>
|     </body>
|_    </html>
|_http-title: Site doesn't have a title (text/plain).
| ssl-cert: Subject: commonName=*.intuit.com/organizationName=INTUIT INC./stateOrProvinceName=California/countryName=US
| Subject Alternative Name: DNS:*.intuit.com, DNS:*.mint.com, DNS:*.sbfinance.stage.intuit.com, DNS:help.mint.com, DNS:*.mint.intuit.com, DNS:*.prd.platform.intuit.com, DNS:*.api.quickbooks.co.uk, DNS:*.sbfinance.intuit.com, DNS:*.app.intuit.com, DNS:*.location.intuit.com, DNS:*.accountant.intuit.com, DNS:*.api.intuit.co.za, DNS:*.quickbooks.intuit.com, DNS:*.qa.api.a.intuit.com, DNS:*.api.intuit.mx, DNS:*.quickbooks.com, DNS:*.workforce.intuit.com, DNS:*.api.intuit.ca, DNS:*.finance.intuit.com, DNS:*.aws.api.intuit.com, DNS:*.appfabric.intuit.com, DNS:*.contributedreports.intuit.com, DNS:*.camps.intuit.com, DNS:*.iep.intuit.com, DNS:*.e2e.api.a.intuit.com, DNS:*.a.intuit.com, DNS:*.platform.intuit.ca, DNS:*.api.intuit.ph, DNS:*.api.intuit.com.au, DNS:*.business.intuit.com, DNS:*.experimentation.intuit.com, DNS:*.hosting.intuit.com, DNS:*.banking.intuit.com, DNS:*.ffffprdstg.intuit.com, DNS:*.tax.intuit.com, DNS:*.qb.intuit.com, DNS:*.prd.api.a.intuit.com, DNS:*.turbotax.intuit.com, DNS:*.api.intuit.ae, DNS:*.api.intuit.net, DNS:*.api.intuit.sg, DNS:*.api.intuit.hk, DNS:*.api.quickbooks.com.br, DNS:*.api.intuit.fr, DNS:*.prf.api.a.intuit.com, DNS:*.ffffprd.intuit.com, DNS:*.msg.intuit.com, DNS:*.qbo.intuit.com, DNS:*.statefillableforms.com, DNS:*.stgl.intuit.com, DNS:*.turbotaxonline.intuit.com, DNS:*.intuit.ca, DNS:*.platform.intuit.com, DNS:*.api.intuit.com, DNS:*.payments.intuit.com
| Not valid before: 2023-11-10T00:00:00
|_Not valid after:  2024-12-10T23:59:59
| tls-nextprotoneg: 
|   h2
|_  http/1.1
| http-server-header: 
|   awselb/2.0
|_  istio-envoy
| tls-alpn: 
|   h2
|_  http/1.1
|_ssl-date: TLS randomness does not represent time
2 services unrecognized despite returning data. If you know the service/version, please submit the following fingerprints at https://nmap.org/cgi-bin/submit.cgi?new-service :
==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
SF-Port80-TCP:V=7.92%I=7%D=2/13%Time=65CB3F16%P=x86_64-redhat-linux-gnu%r(
SF:GetRequest,175,"HTTP/1\.1\x20301\x20Moved\x20Permanently\r\nServer:\x20
SF:awselb/2\.0\r\nDate:\x20Tue,\x2013\x20Feb\x202024\x2010:06:14\x20GMT\r\
SF:nContent-Type:\x20text/html\r\nContent-Length:\x20134\r\nConnection:\x2
SF:0close\r\nLocation:\x20https://apigw-usw2-prd-id06-1020587130\.us-west-
SF:2\.elb\.amazonaws\.com:443/\r\n\r\n<html>\r\n<head><title>301\x20Moved\
SF:x20Permanently</title></head>\r\n<body>\r\n<center><h1>301\x20Moved\x20
SF:Permanently</h1></center>\r\n</body>\r\n</html>\r\n")%r(HTTPOptions,175
SF:,"HTTP/1\.1\x20301\x20Moved\x20Permanently\r\nServer:\x20awselb/2\.0\r\
SF:nDate:\x20Tue,\x2013\x20Feb\x202024\x2010:06:14\x20GMT\r\nContent-Type:
SF:\x20text/html\r\nContent-Length:\x20134\r\nConnection:\x20close\r\nLoca
SF:tion:\x20https://apigw-usw2-prd-id06-1020587130\.us-west-2\.elb\.amazon
SF:aws\.com:443/\r\n\r\n<html>\r\n<head><title>301\x20Moved\x20Permanently
SF:</title></head>\r\n<body>\r\n<center><h1>301\x20Moved\x20Permanently</h
SF:1></center>\r\n</body>\r\n</html>\r\n")%r(RTSPRequest,7A,"<html>\r\n<he
SF:ad><title>400\x20Bad\x20Request</title></head>\r\n<body>\r\n<center><h1
SF:>400\x20Bad\x20Request</h1></center>\r\n</body>\r\n</html>\r\n")%r(X11P
SF:robe,110,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nServer:\x20awselb/2\.0\
SF:r\nDate:\x20Tue,\x2013\x20Feb\x202024\x2010:06:14\x20GMT\r\nContent-Typ
SF:e:\x20text/html\r\nContent-Length:\x20122\r\nConnection:\x20close\r\n\r
SF:\n<html>\r\n<head><title>400\x20Bad\x20Request</title></head>\r\n<body>
SF:\r\n<center><h1>400\x20Bad\x20Request</h1></center>\r\n</body>\r\n</htm
SF:l>\r\n")%r(FourOhFourRequest,198,"HTTP/1\.1\x20301\x20Moved\x20Permanen
SF:tly\r\nServer:\x20awselb/2\.0\r\nDate:\x20Tue,\x2013\x20Feb\x202024\x20
SF:10:06:14\x20GMT\r\nContent-Type:\x20text/html\r\nContent-Length:\x20134
SF:\r\nConnection:\x20close\r\nLocation:\x20https://apigw-usw2-prd-id06-10
SF:20587130\.us-west-2\.elb\.amazonaws\.com:443/nice%20ports%2C/Tri%6Eity\
SF:.txt%2ebak\r\n\r\n<html>\r\n<head><title>301\x20Moved\x20Permanently</t
SF:itle></head>\r\n<body>\r\n<center><h1>301\x20Moved\x20Permanently</h1><
SF:/center>\r\n</body>\r\n</html>\r\n");
==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
SF-Port443-TCP:V=7.92%T=SSL%I=7%D=2/13%Time=65CB3F1C%P=x86_64-redhat-linux
SF:-gnu%r(GetRequest,149,"HTTP/1\.1\x20502\x20Bad\x20Gateway\r\nDate:\x20T
SF:ue,\x2013\x20Feb\x202024\x2010:06:20\x20GMT\r\nContent-Type:\x20text/pl
SF:ain\r\nContent-Length:\x200\r\nConnection:\x20close\r\nx-envoy-upstream
SF:-service-time:\x200\r\nstrict-transport-security:\x20max-age=31536000\r
SF:\nintuit_tid:\x201-65cb3f1c-212d02aa3c47a9597432de87\r\nx-request-id:\x
SF:201-65cb3f1c-212d02aa3c47a9597432de87\r\nserver:\x20istio-envoy\r\n\r\n
SF:")%r(HTTPOptions,149,"HTTP/1\.1\x20502\x20Bad\x20Gateway\r\nDate:\x20Tu
SF:e,\x2013\x20Feb\x202024\x2010:06:20\x20GMT\r\nContent-Type:\x20text/pla
SF:in\r\nContent-Length:\x200\r\nConnection:\x20close\r\nx-envoy-upstream-
SF:service-time:\x200\r\nstrict-transport-security:\x20max-age=31536000\r\
SF:nintuit_tid:\x201-65cb3f1c-7ecb3d474ce1996c234bca9a\r\nx-request-id:\x2
SF:01-65cb3f1c-7ecb3d474ce1996c234bca9a\r\nserver:\x20istio-envoy\r\n\r\n"
SF:)%r(FourOhFourRequest,149,"HTTP/1\.1\x20502\x20Bad\x20Gateway\r\nDate:\
SF:x20Tue,\x2013\x20Feb\x202024\x2010:06:20\x20GMT\r\nContent-Type:\x20tex
SF:t/plain\r\nContent-Length:\x200\r\nConnection:\x20close\r\nx-envoy-upst
SF:ream-service-time:\x200\r\nstrict-transport-security:\x20max-age=315360
SF:00\r\nintuit_tid:\x201-65cb3f1c-7cfd266205af70aa34df9e71\r\nx-request-i
SF:d:\x201-65cb3f1c-7cfd266205af70aa34df9e71\r\nserver:\x20istio-envoy\r\n
SF:\r\n")%r(RTSPRequest,7A,"<html>\r\n<head><title>400\x20Bad\x20Request</
SF:title></head>\r\n<body>\r\n<center><h1>400\x20Bad\x20Request</h1></cent
SF:er>\r\n</body>\r\n</html>\r\n")%r(Help,110,"HTTP/1\.1\x20400\x20Bad\x20
SF:Request\r\nServer:\x20awselb/2\.0\r\nDate:\x20Tue,\x2013\x20Feb\x202024
SF:\x2010:06:26\x20GMT\r\nContent-Type:\x20text/html\r\nContent-Length:\x2
SF:0122\r\nConnection:\x20close\r\n\r\n<html>\r\n<head><title>400\x20Bad\x
SF:20Request</title></head>\r\n<body>\r\n<center><h1>400\x20Bad\x20Request
SF:</h1></center>\r\n</body>\r\n</html>\r\n")%r(SSLSessionReq,110,"HTTP/1\
SF:.1\x20400\x20Bad\x20Request\r\nServer:\x20awselb/2\.0\r\nDate:\x20Tue,\
SF:x2013\x20Feb\x202024\x2010:06:26\x20GMT\r\nContent-Type:\x20text/html\r
SF:\nContent-Length:\x20122\r\nConnection:\x20close\r\n\r\n<html>\r\n<head
SF:><title>400\x20Bad\x20Request</title></head>\r\n<body>\r\n<center><h1>4
SF:00\x20Bad\x20Request</h1></center>\r\n</body>\r\n</html>\r\n");
Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
Device type: general purpose
Running (JUST GUESSING): Linux 2.6.X|3.X|4.X (90%)
OS CPE: cpe:/o:linux:linux_kernel:2.6.32 cpe:/o:linux:linux_kernel:3 cpe:/o:linux:linux_kernel:4
Aggressive OS guesses: Linux 2.6.32 (90%), Linux 3.2 - 4.9 (90%), Linux 2.6.32 - 3.10 (89%), Linux 2.6.32 - 3.13 (89%), Linux 3.10 - 3.13 (86%)
No exact OS matches for host (test conditions non-ideal).
Network Distance: 12 hops

TRACEROUTE (using port 443/tcp)
HOP RTT      ADDRESS
1   14.93 ms 208.76.251.177.rdns.ColocationAmerica.com (208.76.251.177)
2   0.68 ms  gw.mcom-colocationamerica.com (208.64.231.81)
3   0.71 ms  r2b4.n1.p1401.lax.multacom.net (64.69.46.11)
4   0.88 ms  206.72.211.146.any2ix.coresite.com (206.72.211.146)
5   ... 8
9   26.42 ms 108.166.236.8
10  ...
11  28.37 ms 108.166.236.59
12  24.28 ms ec2-34-223-123-101.us-west-2.compute.amazonaws.com (34.223.123.101)

OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 32.12 seconds
Color Scheme
Target
authzdecisionservice.prd.api.a.intuit.com
Target IP
34.223.123.101
Target Country
US
Scan method
Scan OS information and Traceroute
Run command
nmap -A authzdecisionservice.prd.api.a.intuit.com
Scan date
13 Feb 2024 05:06
Copy scan report
Download report
Remove scan result
$
Some firewalls blocks Port scans. For get true positive results add portscanner.online IP addresses (208.76.253.232-208.76.253.239 or CIDR 208.76.253.232/29 ) to the whitelist
[scan_method]
Visibility:
Scan method: