Ports
Duration
Date
IP
Nmap scan report for www.broadway.com (52.20.156.249) Host is up (0.060s latency). Other addresses for www.broadway.com (not scanned): 54.165.170.78 rDNS record for 52.20.156.249: ec2-52-20-156-249.compute-1.amazonaws.com Not shown: 998 filtered tcp ports (no-response) PORT STATE SERVICE VERSION 80/tcp open http awselb/2.0 |_http-server-header: awselb/2.0 | fingerprint-strings: | FourOhFourRequest: | HTTP/1.1 403 Forbidden | Server: awselb/2.0 | Date: Sun, 20 Oct 2024 22:24:54 GMT | Content-Type: text/html | Content-Length: 118 | Connection: close | <html> | <head><title>403 Forbidden</title></head> | <body> | <center><h1>403 Forbidden</h1></center> | </body> | </html> | GetRequest: | HTTP/1.1 301 Moved Permanently | Server: awselb/2.0 | Date: Sun, 20 Oct 2024 22:24:53 GMT | Content-Type: text/html | Content-Length: 134 | Connection: close | Location: https://broadway-production-2089351417.us-east-1.elb.amazonaws.com:443/ | <html> | <head><title>301 Moved Permanently</title></head> | <body> | <center><h1>301 Moved Permanently</h1></center> | </body> | </html> | HTTPOptions: | HTTP/1.1 301 Moved Permanently | Server: awselb/2.0 | Date: Sun, 20 Oct 2024 22:24:54 GMT | Content-Type: text/html | Content-Length: 134 | Connection: close | Location: https://broadway-production-2089351417.us-east-1.elb.amazonaws.com:443/ | <html> | <head><title>301 Moved Permanently</title></head> | <body> | <center><h1>301 Moved Permanently</h1></center> | </body> | </html> | RPCCheck: | HTTP/1.1 400 Bad Request | Server: awselb/2.0 | Date: Sun, 20 Oct 2024 22:24:59 GMT | Content-Type: text/html | Content-Length: 122 | Connection: close | <html> | <head><title>400 Bad Request</title></head> | <body> | <center><h1>400 Bad Request</h1></center> | </body> | </html> | RTSPRequest: | <html> | <head><title>400 Bad Request</title></head> | <body> | <center><h1>400 Bad Request</h1></center> | </body> | </html> | X11Probe: | HTTP/1.1 400 Bad Request | Server: awselb/2.0 | Date: Sun, 20 Oct 2024 22:24:54 GMT | Content-Type: text/html | Content-Length: 122 | Connection: close | <html> | <head><title>400 Bad Request</title></head> | <body> | <center><h1>400 Bad Request</h1></center> | </body> |_ </html> |_http-title: Did not follow redirect to https://www.broadway.com:443/ 443/tcp open ssl/https awselb/2.0 |_http-title: Broadway Tickets | Broadway Shows | Theater Tickets | Broadway... |_ssl-date: TLS randomness does not represent time | fingerprint-strings: | FourOhFourRequest: | HTTP/1.1 403 Forbidden | Server: awselb/2.0 | Date: Sun, 20 Oct 2024 22:25:00 GMT | Content-Type: text/html | Content-Length: 118 | Connection: close | <html> | <head><title>403 Forbidden</title></head> | <body> | <center><h1>403 Forbidden</h1></center> | </body> | </html> | GetRequest: | HTTP/1.1 400 Bad Request | Date: Sun, 20 Oct 2024 22:25:00 GMT | Content-Type: text/html; charset=utf-8 | Content-Length: 143 | Connection: close | X-Content-Type-Options: nosniff | Referrer-Policy: same-origin | Cross-Origin-Opener-Policy: same-origin | Age: 0 | X-Powered-By: Broadway | <!doctype html> | <html lang="en"> | <head> | <title>Bad Request (400)</title> | </head> | <body> | <h1>Bad Request (400)</h1><p></p> | </body> | </html> | HTTPOptions: | HTTP/1.1 400 Bad Request | Date: Sun, 20 Oct 2024 22:25:00 GMT | Content-Type: text/html; charset=utf-8 | Connection: close | X-Content-Type-Options: nosniff | Referrer-Policy: same-origin | Cross-Origin-Opener-Policy: same-origin | Age: 0 | X-Powered-By: Broadway | <!doctype html> | <html lang="en"> | <head> | <title>Bad Request (400)</title> | </head> | <body> | <h1>Bad Request (400)</h1><p></p> | </body> | </html> | RTSPRequest: | <html> | <head><title>400 Bad Request</title></head> | <body> | <center><h1>400 Bad Request</h1></center> | </body> | </html> | tor-versions: | HTTP/1.1 400 Bad Request | Server: awselb/2.0 | Date: Sun, 20 Oct 2024 22:25:00 GMT | Content-Type: text/html | Content-Length: 122 | Connection: close | <html> | <head><title>400 Bad Request</title></head> | <body> | <center><h1>400 Bad Request</h1></center> | </body> |_ </html> | http-robots.txt: 1 disallowed entry |_/admin | ssl-cert: Subject: commonName=*.broadway.com | Subject Alternative Name: DNS:*.broadway.com | Not valid before: 2024-08-26T00:00:00 |_Not valid after: 2025-09-24T23:59:59 |_http-server-header: awselb/2.0 2 services unrecognized despite returning data. If you know the service/version, please submit the following fingerprints at https://nmap.org/cgi-bin/submit.cgi?new-service : ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)============== SF-Port80-TCP:V=7.92%I=7%D=10/20%Time=67158335%P=x86_64-redhat-linux-gnu%r SF:(GetRequest,175,"HTTP/1\.1\x20301\x20Moved\x20Permanently\r\nServer:\x2 SF:0awselb/2\.0\r\nDate:\x20Sun,\x2020\x20Oct\x202024\x2022:24:53\x20GMT\r SF:\nContent-Type:\x20text/html\r\nContent-Length:\x20134\r\nConnection:\x SF:20close\r\nLocation:\x20https://broadway-production-2089351417\.us-east SF:-1\.elb\.amazonaws\.com:443/\r\n\r\n<html>\r\n<head><title>301\x20Moved SF:\x20Permanently</title></head>\r\n<body>\r\n<center><h1>301\x20Moved\x2 SF:0Permanently</h1></center>\r\n</body>\r\n</html>\r\n")%r(HTTPOptions,17 SF:5,"HTTP/1\.1\x20301\x20Moved\x20Permanently\r\nServer:\x20awselb/2\.0\r SF:\nDate:\x20Sun,\x2020\x20Oct\x202024\x2022:24:54\x20GMT\r\nContent-Type SF::\x20text/html\r\nContent-Length:\x20134\r\nConnection:\x20close\r\nLoc SF:ation:\x20https://broadway-production-2089351417\.us-east-1\.elb\.amazo SF:naws\.com:443/\r\n\r\n<html>\r\n<head><title>301\x20Moved\x20Permanentl SF:y</title></head>\r\n<body>\r\n<center><h1>301\x20Moved\x20Permanently</ SF:h1></center>\r\n</body>\r\n</html>\r\n")%r(RTSPRequest,7A,"<html>\r\n<h SF:ead><title>400\x20Bad\x20Request</title></head>\r\n<body>\r\n<center><h SF:1>400\x20Bad\x20Request</h1></center>\r\n</body>\r\n</html>\r\n")%r(X11 SF:Probe,110,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nServer:\x20awselb/2\.0 SF:\r\nDate:\x20Sun,\x2020\x20Oct\x202024\x2022:24:54\x20GMT\r\nContent-Ty SF:pe:\x20text/html\r\nContent-Length:\x20122\r\nConnection:\x20close\r\n\ SF:r\n<html>\r\n<head><title>400\x20Bad\x20Request</title></head>\r\n<body SF:>\r\n<center><h1>400\x20Bad\x20Request</h1></center>\r\n</body>\r\n</ht SF:ml>\r\n")%r(FourOhFourRequest,10A,"HTTP/1\.1\x20403\x20Forbidden\r\nSer SF:ver:\x20awselb/2\.0\r\nDate:\x20Sun,\x2020\x20Oct\x202024\x2022:24:54\x SF:20GMT\r\nContent-Type:\x20text/html\r\nContent-Length:\x20118\r\nConnec SF:tion:\x20close\r\n\r\n<html>\r\n<head><title>403\x20Forbidden</title></ SF:head>\r\n<body>\r\n<center><h1>403\x20Forbidden</h1></center>\r\n</body SF:>\r\n</html>\r\n")%r(RPCCheck,110,"HTTP/1\.1\x20400\x20Bad\x20Request\r SF:\nServer:\x20awselb/2\.0\r\nDate:\x20Sun,\x2020\x20Oct\x202024\x2022:24 SF::59\x20GMT\r\nContent-Type:\x20text/html\r\nContent-Length:\x20122\r\nC SF:onnection:\x20close\r\n\r\n<html>\r\n<head><title>400\x20Bad\x20Request SF:</title></head>\r\n<body>\r\n<center><h1>400\x20Bad\x20Request</h1></ce SF:nter>\r\n</body>\r\n</html>\r\n"); ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)============== SF-Port443-TCP:V=7.92%T=SSL%I=7%D=10/20%Time=6715833B%P=x86_64-redhat-linu SF:x-gnu%r(GetRequest,1A8,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nDate:\x20 SF:Sun,\x2020\x20Oct\x202024\x2022:25:00\x20GMT\r\nContent-Type:\x20text/h SF:tml;\x20charset=utf-8\r\nContent-Length:\x20143\r\nConnection:\x20close SF:\r\nX-Content-Type-Options:\x20nosniff\r\nReferrer-Policy:\x20same-orig SF:in\r\nCross-Origin-Opener-Policy:\x20same-origin\r\nAge:\x200\r\nX-Powe SF:red-By:\x20Broadway\r\n\r\n\n<!doctype\x20html>\n<html\x20lang=\"en\">\ SF:n<head>\n\x20\x20<title>Bad\x20Request\x20\(400\)</title>\n</head>\n<bo SF:dy>\n\x20\x20<h1>Bad\x20Request\x20\(400\)</h1><p></p>\n</body>\n</html SF:>\n")%r(HTTPOptions,193,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nDate:\x2 SF:0Sun,\x2020\x20Oct\x202024\x2022:25:00\x20GMT\r\nContent-Type:\x20text/ SF:html;\x20charset=utf-8\r\nConnection:\x20close\r\nX-Content-Type-Option SF:s:\x20nosniff\r\nReferrer-Policy:\x20same-origin\r\nCross-Origin-Opener SF:-Policy:\x20same-origin\r\nAge:\x200\r\nX-Powered-By:\x20Broadway\r\n\r SF:\n\n<!doctype\x20html>\n<html\x20lang=\"en\">\n<head>\n\x20\x20<title>B SF:ad\x20Request\x20\(400\)</title>\n</head>\n<body>\n\x20\x20<h1>Bad\x20R SF:equest\x20\(400\)</h1><p></p>\n</body>\n</html>\n")%r(FourOhFourRequest SF:,10A,"HTTP/1\.1\x20403\x20Forbidden\r\nServer:\x20awselb/2\.0\r\nDate:\ SF:x20Sun,\x2020\x20Oct\x202024\x2022:25:00\x20GMT\r\nContent-Type:\x20tex SF:t/html\r\nContent-Length:\x20118\r\nConnection:\x20close\r\n\r\n<html>\ SF:r\n<head><title>403\x20Forbidden</title></head>\r\n<body>\r\n<center><h SF:1>403\x20Forbidden</h1></center>\r\n</body>\r\n</html>\r\n")%r(tor-vers SF:ions,110,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nServer:\x20awselb/2\.0\ SF:r\nDate:\x20Sun,\x2020\x20Oct\x202024\x2022:25:00\x20GMT\r\nContent-Typ SF:e:\x20text/html\r\nContent-Length:\x20122\r\nConnection:\x20close\r\n\r SF:\n<html>\r\n<head><title>400\x20Bad\x20Request</title></head>\r\n<body> SF:\r\n<center><h1>400\x20Bad\x20Request</h1></center>\r\n</body>\r\n</htm SF:l>\r\n")%r(RTSPRequest,7A,"<html>\r\n<head><title>400\x20Bad\x20Request SF:</title></head>\r\n<body>\r\n<center><h1>400\x20Bad\x20Request</h1></ce SF:nter>\r\n</body>\r\n</html>\r\n"); Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port Device type: general purpose Running (JUST GUESSING): Linux 2.6.X|3.X|4.X (90%) OS CPE: cpe:/o:linux:linux_kernel:2.6.32 cpe:/o:linux:linux_kernel:3 cpe:/o:linux:linux_kernel:4 Aggressive OS guesses: Linux 2.6.32 (90%), Linux 3.2 - 4.9 (90%), Linux 2.6.32 - 3.10 (89%), Linux 2.6.32 - 3.13 (89%), Linux 3.10 - 3.13 (86%) No exact OS matches for host (test conditions non-ideal). Network Distance: 16 hops TRACEROUTE (using port 80/tcp) HOP RTT ADDRESS 1 1.04 ms 208.76.251.177.rdns.ColocationAmerica.com (208.76.251.177) 2 0.76 ms gw.mcom-colocationamerica.com (208.64.231.81) 3 0.66 ms r1b4.n1p1400.lax.multacom.net (64.69.46.9) 4 ... 5 12.60 ms be2931.ccr31.phx01.atlas.cogentco.com (154.54.44.85) 6 21.22 ms be5471.ccr21.elp02.atlas.cogentco.com (154.54.166.57) 7 32.52 ms be3821.ccr31.dfw01.atlas.cogentco.com (154.54.165.25) 8 32.39 ms be2763.ccr41.dfw03.atlas.cogentco.com (154.54.28.74) 9 ... 15 16 59.14 ms ec2-52-20-156-249.compute-1.amazonaws.com (52.20.156.249) OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 48.89 seconds