Ports
Duration
Date
IP
Nmap scan report for elevate.gocadmium.com (52.54.253.169) Host is up (0.062s latency). Other addresses for elevate.gocadmium.com (not scanned): 3.88.77.200 3.213.19.41 rDNS record for 52.54.253.169: ec2-52-54-253-169.compute-1.amazonaws.com Not shown: 997 filtered tcp ports (no-response) PORT STATE SERVICE VERSION 80/tcp open http Apache | fingerprint-strings: | FourOhFourRequest: | HTTP/1.1 301 Moved Permanently | date: Thu, 24 Oct 2024 23:18:55 GMT | content-type: text/html; charset=iso-8859-1 | content-length: 308 | server: Apache | location: https://internal-elevate-web-alb-340830018.us-east-1.elb.amazonaws.com/nice%20ports,/Trinity.txt.bak | connection: close | <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> | <html><head> | <title>301 Moved Permanently</title> | </head><body> | <h1>Moved Permanently</h1> | <p>The document has moved <a href="https://internal-elevate-web-alb-340830018.us-east-1.elb.amazonaws.com/nice%20ports,/Trinity.txt.bak">here</a>.</p> | </body></html> | GetRequest: | HTTP/1.1 301 Moved Permanently | date: Thu, 24 Oct 2024 23:18:54 GMT | content-type: text/html; charset=iso-8859-1 | content-length: 279 | server: Apache | location: https://internal-elevate-web-alb-340830018.us-east-1.elb.amazonaws.com/ | connection: close | <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> | <html><head> | <title>301 Moved Permanently</title> | </head><body> | <h1>Moved Permanently</h1> | <p>The document has moved <a href="https://internal-elevate-web-alb-340830018.us-east-1.elb.amazonaws.com/">here</a>.</p> | </body></html> | HTTPOptions: | HTTP/1.1 403 Forbidden | date: Thu, 24 Oct 2024 23:18:54 GMT | content-type: text/html; charset=iso-8859-1 | content-length: 199 | server: Apache | connection: close | <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> | <html><head> | <title>403 Forbidden</title> | </head><body> | <h1>Forbidden</h1> | <p>You don't have permission to access this resource.</p> | </body></html> | RTSPRequest, X11Probe: | HTTP/1.1 400 Bad request | Content-length: 90 | Cache-Control: no-cache | Connection: close | Content-Type: text/html | <html><body><h1>400 Bad request</h1> | Your browser sent an invalid request. |_ </body></html> |_http-title: Did not follow redirect to https://elevate.gocadmium.com/ |_http-server-header: Apache 443/tcp open ssl/https Apache | fingerprint-strings: | FourOhFourRequest, GetRequest: | HTTP/1.1 200 OK | date: Thu, 24 Oct 2024 23:19:01 GMT | content-type: text/html; charset=UTF-8 | server: Apache | cache-control: no-cache, private | x-content-type-options: nosniff | x-xss-protection: 1; mode=block | pragma: no-cache | vary: Origin | content-security-policy: frame-ancestors 'self' | referrer-policy: origin-when-cross-origin | connection: close | <!DOCTYPE html> | <html lang="en"> | <head> | <meta http-equiv="x-ua-compatible" content="IE=edge"> | <meta charset="utf-8"> | <title>No Elevate Site is Set Up For This Hostname: internal-elevate-web-alb-340830018.us-east-1.elb.amazonaws.com</title> | <meta name="viewport" content="width=device-width, initial-scale=1.0"> | <meta name="author" content=""> | <link rel="icon" href="https://internal-elevate-web-alb-340830018.us-east-1.elb.amazonaws.com/images/admin/favicon.ico" type="image/x-icon"/> | <!--CSS to go with bootstrap and | HTTPOptions: | HTTP/1.1 403 Forbidden | date: Thu, 24 Oct 2024 23:19:01 GMT | content-type: text/html; charset=iso-8859-1 | content-length: 199 | server: Apache | connection: close | <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> | <html><head> | <title>403 Forbidden</title> | </head><body> | <h1>Forbidden</h1> | <p>You don't have permission to access this resource.</p> |_ </body></html> |_http-title: No Elevate Site is Set Up For This Hostname: elevate.gocadmium... |_http-server-header: Apache | ssl-cert: Subject: commonName=*.elevate.gocadmium.com | Subject Alternative Name: DNS:*.elevate.gocadmium.com, DNS:elevate.gocadmium.com | Not valid before: 2024-09-24T17:03:24 |_Not valid after: 2024-12-23T17:03:23 |_ssl-date: TLS randomness does not represent time 8888/tcp closed sun-answerbook 2 services unrecognized despite returning data. If you know the service/version, please submit the following fingerprints at https://nmap.org/cgi-bin/submit.cgi?new-service : ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)============== SF-Port80-TCP:V=7.92%I=7%D=10/24%Time=671AD5DD%P=x86_64-redhat-linux-gnu%r SF:(GetRequest,216,"HTTP/1\.1\x20301\x20Moved\x20Permanently\r\ndate:\x20T SF:hu,\x2024\x20Oct\x202024\x2023:18:54\x20GMT\r\ncontent-type:\x20text/ht SF:ml;\x20charset=iso-8859-1\r\ncontent-length:\x20279\r\nserver:\x20Apach SF:e\r\nlocation:\x20https://internal-elevate-web-alb-340830018\.us-east-1 SF:\.elb\.amazonaws\.com/\r\nconnection:\x20close\r\n\r\n<!DOCTYPE\x20HTML SF:\x20PUBLIC\x20\"-//IETF//DTD\x20HTML\x202\.0//EN\">\n<html><head>\n<tit SF:le>301\x20Moved\x20Permanently</title>\n</head><body>\n<h1>Moved\x20Per SF:manently</h1>\n<p>The\x20document\x20has\x20moved\x20<a\x20href=\"https SF:://internal-elevate-web-alb-340830018\.us-east-1\.elb\.amazonaws\.com/\ SF:">here</a>\.</p>\n</body></html>\n")%r(HTTPOptions,16B,"HTTP/1\.1\x2040 SF:3\x20Forbidden\r\ndate:\x20Thu,\x2024\x20Oct\x202024\x2023:18:54\x20GMT SF:\r\ncontent-type:\x20text/html;\x20charset=iso-8859-1\r\ncontent-length SF::\x20199\r\nserver:\x20Apache\r\nconnection:\x20close\r\n\r\n<!DOCTYPE\ SF:x20HTML\x20PUBLIC\x20\"-//IETF//DTD\x20HTML\x202\.0//EN\">\n<html><head SF:>\n<title>403\x20Forbidden</title>\n</head><body>\n<h1>Forbidden</h1>\n SF:<p>You\x20don't\x20have\x20permission\x20to\x20access\x20this\x20resour SF:ce\.</p>\n</body></html>\n")%r(RTSPRequest,CF,"HTTP/1\.1\x20400\x20Bad\ SF:x20request\r\nContent-length:\x2090\r\nCache-Control:\x20no-cache\r\nCo SF:nnection:\x20close\r\nContent-Type:\x20text/html\r\n\r\n<html><body><h1 SF:>400\x20Bad\x20request</h1>\nYour\x20browser\x20sent\x20an\x20invalid\x SF:20request\.\n</body></html>\n")%r(X11Probe,CF,"HTTP/1\.1\x20400\x20Bad\ SF:x20request\r\nContent-length:\x2090\r\nCache-Control:\x20no-cache\r\nCo SF:nnection:\x20close\r\nContent-Type:\x20text/html\r\n\r\n<html><body><h1 SF:>400\x20Bad\x20request</h1>\nYour\x20browser\x20sent\x20an\x20invalid\x SF:20request\.\n</body></html>\n")%r(FourOhFourRequest,250,"HTTP/1\.1\x203 SF:01\x20Moved\x20Permanently\r\ndate:\x20Thu,\x2024\x20Oct\x202024\x2023: SF:18:55\x20GMT\r\ncontent-type:\x20text/html;\x20charset=iso-8859-1\r\nco SF:ntent-length:\x20308\r\nserver:\x20Apache\r\nlocation:\x20https://inter SF:nal-elevate-web-alb-340830018\.us-east-1\.elb\.amazonaws\.com/nice%20po SF:rts,/Trinity\.txt\.bak\r\nconnection:\x20close\r\n\r\n<!DOCTYPE\x20HTML SF:\x20PUBLIC\x20\"-//IETF//DTD\x20HTML\x202\.0//EN\">\n<html><head>\n<tit SF:le>301\x20Moved\x20Permanently</title>\n</head><body>\n<h1>Moved\x20Per SF:manently</h1>\n<p>The\x20document\x20has\x20moved\x20<a\x20href=\"https SF:://internal-elevate-web-alb-340830018\.us-east-1\.elb\.amazonaws\.com/n SF:ice%20ports,/Trinity\.txt\.bak\">here</a>\.</p>\n</body></html>\n"); ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)============== SF-Port443-TCP:V=7.92%T=SSL%I=7%D=10/24%Time=671AD5E4%P=x86_64-redhat-linu SF:x-gnu%r(GetRequest,9AC,"HTTP/1\.1\x20200\x20OK\r\ndate:\x20Thu,\x2024\x SF:20Oct\x202024\x2023:19:01\x20GMT\r\ncontent-type:\x20text/html;\x20char SF:set=UTF-8\r\nserver:\x20Apache\r\ncache-control:\x20no-cache,\x20privat SF:e\r\nx-content-type-options:\x20nosniff\r\nx-xss-protection:\x201;\x20m SF:ode=block\r\npragma:\x20no-cache\r\nvary:\x20Origin\r\ncontent-security SF:-policy:\x20frame-ancestors\x20'self'\r\nreferrer-policy:\x20origin-whe SF:n-cross-origin\r\nconnection:\x20close\r\n\r\n<!DOCTYPE\x20html>\n<html SF:\x20lang=\"en\">\n<head>\n\x20\x20\x20\x20<meta\x20http-equiv=\"x-ua-co SF:mpatible\"\x20content=\"IE=edge\">\n\x20\x20\x20\x20<meta\x20charset=\" SF:utf-8\">\n\x20\x20\x20\x20<title>No\x20Elevate\x20Site\x20is\x20Set\x20 SF:Up\x20For\x20This\x20Hostname:\x20internal-elevate-web-alb-340830018\.u SF:s-east-1\.elb\.amazonaws\.com</title>\n\x20\x20\x20\x20<meta\x20name=\" SF:viewport\"\x20content=\"width=device-width,\x20initial-scale=1\.0\">\n\ SF:x20\x20\x20\x20<meta\x20name=\"author\"\x20content=\"\">\n\x20\x20\x20\ SF:x20<link\x20rel=\"icon\"\x20href=\"https://internal-elevate-web-alb-340 SF:830018\.us-east-1\.elb\.amazonaws\.com/images/admin/favicon\.ico\"\x20t SF:ype=\"image/x-icon\"/>\n\x20\x20\x20\x20<!--CSS\x20to\x20go\x20with\x20 SF:bootstrap\x20and")%r(HTTPOptions,16B,"HTTP/1\.1\x20403\x20Forbidden\r\n SF:date:\x20Thu,\x2024\x20Oct\x202024\x2023:19:01\x20GMT\r\ncontent-type:\ SF:x20text/html;\x20charset=iso-8859-1\r\ncontent-length:\x20199\r\nserver SF::\x20Apache\r\nconnection:\x20close\r\n\r\n<!DOCTYPE\x20HTML\x20PUBLIC\ SF:x20\"-//IETF//DTD\x20HTML\x202\.0//EN\">\n<html><head>\n<title>403\x20F SF:orbidden</title>\n</head><body>\n<h1>Forbidden</h1>\n<p>You\x20don't\x2 SF:0have\x20permission\x20to\x20access\x20this\x20resource\.</p>\n</body>< SF:/html>\n")%r(FourOhFourRequest,9AD,"HTTP/1\.1\x20200\x20OK\r\ndate:\x20 SF:Thu,\x2024\x20Oct\x202024\x2023:19:01\x20GMT\r\ncontent-type:\x20text/h SF:tml;\x20charset=UTF-8\r\nserver:\x20Apache\r\ncache-control:\x20no-cach SF:e,\x20private\r\nx-content-type-options:\x20nosniff\r\nx-xss-protection SF::\x201;\x20mode=block\r\npragma:\x20no-cache\r\nvary:\x20Origin\r\ncont SF:ent-security-policy:\x20frame-ancestors\x20'self'\r\nreferrer-policy:\x SF:20origin-when-cross-origin\r\nconnection:\x20close\r\n\r\n<!DOCTYPE\x20 SF:html>\n<html\x20lang=\"en\">\n<head>\n\x20\x20\x20\x20<meta\x20http-equ SF:iv=\"x-ua-compatible\"\x20content=\"IE=edge\">\n\x20\x20\x20\x20<meta\x SF:20charset=\"utf-8\">\n\x20\x20\x20\x20<title>No\x20Elevate\x20Site\x20i SF:s\x20Set\x20Up\x20For\x20This\x20Hostname:\x20internal-elevate-web-alb- SF:340830018\.us-east-1\.elb\.amazonaws\.com</title>\n\x20\x20\x20\x20<met SF:a\x20name=\"viewport\"\x20content=\"width=device-width,\x20initial-scal SF:e=1\.0\">\n\x20\x20\x20\x20<meta\x20name=\"author\"\x20content=\"\">\n\ SF:x20\x20\x20\x20<link\x20rel=\"icon\"\x20href=\"https://internal-elevate SF:-web-alb-340830018\.us-east-1\.elb\.amazonaws\.com/images/admin/favicon SF:\.ico\"\x20type=\"image/x-icon\"/>\n\x20\x20\x20\x20<!--CSS\x20to\x20go SF:\x20with\x20bootstrap\x20and"); Aggressive OS guesses: Linux 2.6.32 (91%), Linux 3.2 - 4.9 (91%), Linux 2.6.32 - 3.10 (91%), Linux 4.15 - 5.6 (90%), Linux 5.0 - 5.3 (90%), Linux 3.4 - 3.10 (89%), Linux 3.3 (88%), Synology DiskStation Manager 5.2-5644 (88%), Linux 4.2 (88%), Linux 5.0 - 5.4 (88%) No exact OS matches for host (test conditions non-ideal). Network Distance: 14 hops TRACEROUTE (using port 8888/tcp) HOP RTT ADDRESS 1 0.22 ms 208.76.251.177.rdns.ColocationAmerica.com (208.76.251.177) 2 1.58 ms gw.mcom-colocationamerica.com (208.64.231.81) 3 2.02 ms r2b4.n1.p1401.lax.multacom.net (64.69.46.11) 4 ... 5 12.59 ms be2931.ccr31.phx01.atlas.cogentco.com (154.54.44.85) 6 21.50 ms be5471.ccr21.elp02.atlas.cogentco.com (154.54.166.57) 7 92.69 ms be3821.ccr31.dfw01.atlas.cogentco.com (154.54.165.25) 8 33.34 ms be2763.ccr41.dfw03.atlas.cogentco.com (154.54.28.74) 9 ... 13 14 59.47 ms ec2-52-54-253-169.compute-1.amazonaws.com (52.54.253.169) OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 44.45 seconds