Viewing Collection: web_static_analysis_nmap_scan

Simple
Advanced

_id	created_at	url	tool	result	summary
692de463be4e13df0db25906	Mon Dec 01 2025 18:54:27 GMT+0000 (Coordinated Universal Time)	https://mahatenders.gov.in/	nmap_scan
692de4857950362303041efe	Mon Dec 01 2025 18:55:01 GMT+0000 (Coordinated Universal Time)	https://mahatenders.gov.in/	nmap_scan
69327cf922f9ccfd9bbdcb70	Fri Dec 05 2025 06:34:33 GMT+0000 (Coordinated Universal Time)	https://mahatenders.gov.in/	nmap_scan	{ "target": "https://mahatenders.gov.in/", "output_dir": "./results/advanced_nmap_analysis", "error": null, "warning": "Warning: Nmap scans are more effective when run as root.", "timestamp": "2025-12-05T06:34:33.166398" }
69328cecfd06a1c2267e8bff	Fri Dec 05 2025 07:42:36 GMT+0000 (Coordinated Universal Time)	https://www.internationalpoliceexpo.com/	nmap_scan	{ "target": "https://www.internationalpoliceexpo.com/", "output_dir": "./results/advanced_nmap_analysis", "error": null, "warning": "Warning: Nmap scans are more effective when run as root.", "timestamp": "2025-12-05T07:42:36.661852" }
6932b1d80f2723ccde0ed755	Fri Dec 05 2025 10:20:08 GMT+0000 (Coordinated Universal Time)	https://mahatenders.gov.in/	nmap_scan	{ "report_metadata": { "target": "mahatenders.gov.in", "original_target": "https://mahatenders.gov.in/", "scan_timestamp": "20251205_095725", "scan_date": "2025-12-05T10:16:55.480974", "scanner_version": "Enhanced Blue Team Scanner v3.0 - Consolidated Edition", "total_scans_executed": 18 }, "executive_summary": { "total_open_ports": 5, "total_services_detected": 3, "total_vulnerabilities": 2, "critical_vulnerabilities": 0, "high_vulnerabilities": 0, "medium_vulnerabilities": 0, "low_vulnerabilities": 0, "risk_score": 30, "risk_level": "LOW" }, "port_analysis": { "open_ports": [ { "port": "80", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": null, "product": "Apache httpd", "extrainfo": null, "cpe": [ "cpe:/a:apache:http_server" ], "scripts": [ { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." }, { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "http-server-header", "output": "Apache" }, { "id": "http-title", "output": "Did not follow redirect to https://mahatenders.gov.in/" }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." } ] }, { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": null, "product": "Apache httpd", "extrainfo": null, "cpe": [ "cpe:/a:apache:http_server" ], "scripts": [ { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." }, { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "http-server-header", "output": "Apache" }, { "id": "http-title", "output": "Site doesn't have a title (text/html; charset=UTF-8)." }, { "id": "ssl-cert", "output": "Subject: commonName=mahatenders.gov.in/organizationName=General Administration Department, Maharashtra/stateOrProvinceName=Maharashtra/countryName=IN\nSubject Alternative Name: DNS:mahatenders.gov.in\nNot valid before: 2025-07-18T11:57:13\nNot valid after: 2026-08-19T11:57:12" }, { "id": "http-robots.txt", "output": "1 disallowed entry \n/" } ] }, { "port": "8008", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "http-aspnet-debug", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." } ] }, { "port": "8015", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "cfg-cloud", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "fingerprint-strings", "output": "\n GenericLines, GetRequest: \n HTTP/1.1 200 OK\n Content-Length: 4492\n Connection: close\n Cache-Control: no-cache\n Content-Type: text/html; charset=utf-8\n X-Frame-Options: SAMEORIGIN\n X-XSS-Protection: 1; mode=block\n X-Content-Type-Options: nosniff\n Content-Security-Policy: frame-ancestors 'self'\n <!DOCTYPE html>\n <html lang=\"en\">\n <head>\n <meta charset=\"UTF-8\">\n <meta http-equiv=\"X-UA-Compatible\" content=\"IE=8; IE=EDGE\">\n <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">\n <style type=\"text/css\">\n body {\n height: 100%;\n font-family: Helvetica, Arial, sans-serif;\n color: #6a6a6a;\n margin: 0;\n display: flex;\n align-items: center;\n justify-content: center;\n input[type=date], input[type=email], input[type=number], input[type=password]" }, { "id": "ssl-date", "output": "TLS randomness does not represent time" }, { "id": "ssl-cert", "output": "Subject: commonName=mahatenders.gov.in\nSubject Alternative Name: DNS:mahatenders.gov.in\nNot valid before: 2025-11-05T10:01:35\nNot valid after: 2026-12-05T10:01:35" } ] }, { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "https", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [] } ], "high_risk_ports": [] }, "service_analysis": { "services_detected": { "http": [ { "port": "80", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": null, "product": "Apache httpd", "extrainfo": null, "cpe": [ "cpe:/a:apache:http_server" ], "scripts": [ { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." }, { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "http-server-header", "output": "Apache" }, { "id": "http-title", "output": "Did not follow redirect to https://mahatenders.gov.in/" }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." } ] }, { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": null, "product": "Apache httpd", "extrainfo": null, "cpe": [ "cpe:/a:apache:http_server" ], "scripts": [ { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." }, { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "http-server-header", "output": "Apache" }, { "id": "http-title", "output": "Site doesn't have a title (text/html; charset=UTF-8)." }, { "id": "ssl-cert", "output": "Subject: commonName=mahatenders.gov.in/organizationName=General Administration Department, Maharashtra/stateOrProvinceName=Maharashtra/countryName=IN\nSubject Alternative Name: DNS:mahatenders.gov.in\nNot valid before: 2025-07-18T11:57:13\nNot valid after: 2026-08-19T11:57:12" }, { "id": "http-robots.txt", "output": "1 disallowed entry \n/" } ] }, { "port": "8008", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "http-aspnet-debug", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." } ] } ], "cfg-cloud": [ { "port": "8015", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "cfg-cloud", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "fingerprint-strings", "output": "\n GenericLines, GetRequest: \n HTTP/1.1 200 OK\n Content-Length: 4492\n Connection: close\n Cache-Control: no-cache\n Content-Type: text/html; charset=utf-8\n X-Frame-Options: SAMEORIGIN\n X-XSS-Protection: 1; mode=block\n X-Content-Type-Options: nosniff\n Content-Security-Policy: frame-ancestors 'self'\n <!DOCTYPE html>\n <html lang=\"en\">\n <head>\n <meta charset=\"UTF-8\">\n <meta http-equiv=\"X-UA-Compatible\" content=\"IE=8; IE=EDGE\">\n <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">\n <style type=\"text/css\">\n body {\n height: 100%;\n font-family: Helvetica, Arial, sans-serif;\n color: #6a6a6a;\n margin: 0;\n display: flex;\n align-items: center;\n justify-content: center;\n input[type=date], input[type=email], input[type=number], input[type=password]" }, { "id": "ssl-date", "output": "TLS randomness does not represent time" }, { "id": "ssl-cert", "output": "Subject: commonName=mahatenders.gov.in\nSubject Alternative Name: DNS:mahatenders.gov.in\nNot valid before: 2025-11-05T10:01:35\nNot valid after: 2026-12-05T10:01:35" } ] } ], "https": [ { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "https", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [] } ] }, "service_fingerprints": { "80_tcp": [ { "port": "80", "protocol": "tcp", "service": "http", "product": "Apache httpd", "version": null, "cpe": [ "cpe:/a:apache:http_server" ], "method": null, "confidence": null, "scan": "service_ssh_analysis", "timestamp": "2025-12-05T10:10:50.240749" }, { "port": "80", "protocol": "tcp", "service": "http", "product": "Apache httpd", "version": null, "cpe": [ "cpe:/a:apache:http_server" ], "method": null, "confidence": null, "scan": "service_ssl_analysis", "timestamp": "2025-12-05T10:11:03.487385" }, { "port": "80", "protocol": "tcp", "service": "http", "product": "Apache httpd", "version": null, "cpe": [ "cpe:/a:apache:http_server" ], "method": null, "confidence": null, "scan": "service_web_comprehensive", "timestamp": "2025-12-05T10:11:22.773433" } ], "443_tcp": [ { "port": "443", "protocol": "tcp", "service": "http", "product": "Apache httpd", "version": null, "cpe": [ "cpe:/a:apache:http_server" ], "method": null, "confidence": null, "scan": "service_ssh_analysis", "timestamp": "2025-12-05T10:10:50.240749" }, { "port": "443", "protocol": "tcp", "service": "http", "product": "Apache httpd", "version": null, "cpe": [ "cpe:/a:apache:http_server" ], "method": null, "confidence": null, "scan": "service_ssl_analysis", "timestamp": "2025-12-05T10:11:03.487385" }, { "port": "443", "protocol": "tcp", "service": "http", "product": "Apache httpd", "version": null, "cpe": [ "cpe:/a:apache:http_server" ], "method": null, "confidence": null, "scan": "service_web_comprehensive", "timestamp": "2025-12-05T10:11:22.773433" } ], "8008_tcp": [ { "port": "8008", "protocol": "tcp", "service": "http", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssh_analysis", "timestamp": "2025-12-05T10:10:50.240749" }, { "port": "8008", "protocol": "tcp", "service": "http", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssl_analysis", "timestamp": "2025-12-05T10:11:03.487385" }, { "port": "8008", "protocol": "tcp", "service": "http", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_web_comprehensive", "timestamp": "2025-12-05T10:11:22.773433" } ], "8015_tcp": [ { "port": "8015", "protocol": "tcp", "service": "cfg-cloud", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssh_analysis", "timestamp": "2025-12-05T10:10:50.240749" }, { "port": "8015", "protocol": "tcp", "service": "cfg-cloud", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssl_analysis", "timestamp": "2025-12-05T10:11:03.487385" }, { "port": "8015", "protocol": "tcp", "service": "cfg-cloud", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_web_comprehensive", "timestamp": "2025-12-05T10:11:22.773433" } ] } }, "vulnerability_analysis": { "vulnerabilities": [ { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)", "port": "80", "protocol": "tcp", "service": "http", "version": null, "cve_ids": [] }, { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)", "port": "8008", "protocol": "tcp", "service": "http", "version": null, "cve_ids": [] } ], "vulnerability_database": {} }, "os_detection": { "detected_os": [] }, "host_scripts": [], "recommendations": [ { "priority": "HIGH", "category": "Vulnerabilities", "finding": "2 total vulnerabilities detected", "recommendation": "Review and patch all identified vulnerabilities according to severity" }, { "priority": "MEDIUM", "category": "Best Practices", "finding": "Regular security assessments needed", "recommendation": "Schedule quarterly security scans" }, { "priority": "MEDIUM", "category": "Monitoring", "finding": "Continuous monitoring recommended", "recommendation": "Implement IDS/IPS for real-time threat detection" } ] }	# **SECURITY ASSESSMENT INVESTIGATIVE ANALYSIS RE…
6932b72d05e38e4bba57880b	Fri Dec 05 2025 10:42:53 GMT+0000 (Coordinated Universal Time)	https://www.internationalpoliceexpo.com/	nmap_scan	{ "report_metadata": { "target": "www.internationalpoliceexpo.com", "original_target": "https://www.internationalpoliceexpo.com/", "scan_timestamp": "20251205_101023", "scan_date": "2025-12-05T10:40:39.853890", "scanner_version": "Enhanced Blue Team Scanner v3.0 - Consolidated Edition", "total_scans_executed": 14 }, "executive_summary": { "total_open_ports": 4, "total_services_detected": 4, "total_vulnerabilities": 0, "critical_vulnerabilities": 0, "high_vulnerabilities": 0, "medium_vulnerabilities": 0, "low_vulnerabilities": 0, "risk_score": 8, "risk_level": "LOW" }, "port_analysis": { "open_ports": [ { "port": "22", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "ssh", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [] }, { "port": "80", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [] }, { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "https", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [] }, { "port": "53", "protocol": "udp", "state": "open", "reason": "udp-response", "service": "domain", "version": "9.11.4-P2", "product": "ISC BIND", "extrainfo": "RedHat Enterprise Linux 7", "cpe": [ "cpe:/a:isc:bind:9.11.4-p2", "cpe:/o:redhat:enterprise_linux:7" ], "scripts": [] } ], "high_risk_ports": [] }, "service_analysis": { "services_detected": { "ssh": [ { "port": "22", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "ssh", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [] } ], "http": [ { "port": "80", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [] } ], "https": [ { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "https", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [] } ], "domain": [ { "port": "53", "protocol": "udp", "state": "open", "reason": "udp-response", "service": "domain", "version": "9.11.4-P2", "product": "ISC BIND", "extrainfo": "RedHat Enterprise Linux 7", "cpe": [ "cpe:/a:isc:bind:9.11.4-p2", "cpe:/o:redhat:enterprise_linux:7" ], "scripts": [] } ] }, "service_fingerprints": {} }, "vulnerability_analysis": { "vulnerabilities": [], "vulnerability_database": {} }, "os_detection": { "detected_os": [ { "name": "Linux 3.18", "accuracy": "87" }, { "name": "Linux 3.4", "accuracy": "87" }, { "name": "IPCop 2 firewall (Linux 3.4)", "accuracy": "86" }, { "name": "Tiandy NVR", "accuracy": "85" } ] }, "host_scripts": [], "recommendations": [ { "priority": "MEDIUM", "category": "Best Practices", "finding": "Regular security assessments needed", "recommendation": "Schedule quarterly security scans" }, { "priority": "MEDIUM", "category": "Monitoring", "finding": "Continuous monitoring recommended", "recommendation": "Implement IDS/IPS for real-time threat detection" } ] }	# **Comprehensive Security Analysis Report: Inter…
69354231c11d54afb5354339	Sun Dec 07 2025 09:00:33 GMT+0000 (Coordinated Universal Time)	https://gehu.ac.in/	nmap_scan	{ "report_metadata": { "target": "gehu.ac.in", "original_target": "https://gehu.ac.in/", "scan_timestamp": "20251207_074347", "scan_date": "2025-12-07T08:00:34.901721", "scanner_version": "Enhanced Blue Team Scanner v3.0 - Consolidated Edition", "total_scans_executed": 18 }, "executive_summary": { "total_open_ports": 5, "total_services_detected": 3, "total_vulnerabilities": 6, "critical_vulnerabilities": 0, "high_vulnerabilities": 0, "medium_vulnerabilities": 0, "low_vulnerabilities": 0, "risk_score": 70, "risk_level": "MEDIUM" }, "port_analysis": { "open_ports": [ { "port": "80", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": "2.4.58", "product": "Apache httpd", "extrainfo": "(Ubuntu)", "cpe": [ "cpe:/a:apache:http_server:2.4.58" ], "scripts": [ { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "vulners", "output": "\n cpe:/a:apache:http_server:2.4.58: \n \tCVE-2024-38476\t9.8\thttps://vulners.com/cve/CVE-2024-38476\n \tCVE-2024-38474\t9.8\thttps://vulners.com/cve/CVE-2024-38474\n \tCNVD-2024-36391\t9.8\thttps://vulners.com/cnvd/CNVD-2024-36391\n \tCNVD-2024-36388\t9.8\thttps://vulners.com/cnvd/CNVD-2024-36388\n \tFD2EE3A5-BAEA-5845-BA35-E6889992214F\t9.1\thttps://vulners.com/githubexploit/FD2EE3A5-BAEA-5845-BA35-E6889992214F\tEXPLOIT\n \tFBC8A8BE-F00A-5B6D-832E-F99A72E7A3F7\t9.1\thttps://vulners.com/githubexploit/FBC8A8BE-F00A-5B6D-832E-F99A72E7A3F7\tEXPLOIT\n \tE606D7F4-5FA2-5907-B30E-367D6FFECD89\t9.1\thttps://vulners.com/githubexploit/E606D7F4-5FA2-5907-B30E-367D6FFECD89\tEXPLOIT\n \tD8A19443-2A37-5592-8955-F614504AAF45\t9.1\thttps://vulners.com/githubexploit/D8A19443-2A37-5592-8955-F614504AAF45\tEXPLOIT\n \tCVE-2025-23048\t9.1\thttps://vulners.com/cve/CVE-2025-23048\n \tCVE-2024-40898\t9.1\thttps://vulners.com/cve/CVE-2024-40898\n \tCVE-2024-38475\t9.1\thttps://vulners.com/cve/CVE-2024-38475\n \tCNVD-2025-16610\t9.1\thttps://vulners.com/cnvd/CNVD-2025-16610\n \tCNVD-2024-36387\t9.1\thttps://vulners.com/cnvd/CNVD-2024-36387\n \tCNVD-2024-33814\t9.1\thttps://vulners.com/cnvd/CNVD-2024-33814\n \tB5E74010-A082-5ECE-AB37-623A5B33FE7D\t9.1\thttps://vulners.com/githubexploit/B5E74010-A082-5ECE-AB37-623A5B33FE7D\tEXPLOIT\n \t5418A85B-F4B7-5BBD-B106-0800AC961C7A\t9.1\thttps://vulners.com/githubexploit/5418A85B-F4B7-5BBD-B106-0800AC961C7A\tEXPLOIT\n \tB0A9E5E8-7CCC-5984-9922-A89F11D6BF38\t8.2\thttps://vulners.com/githubexploit/B0A9E5E8-7CCC-5984-9922-A89F11D6BF38\tEXPLOIT\n \tCVE-2024-38473\t8.1\thttps://vulners.com/cve/CVE-2024-38473\n \t249A954E-0189-5182-AE95-31C866A057E1\t8.1\thttps://vulners.com/githubexploit/249A954E-0189-5182-AE95-31C866A057E1\tEXPLOIT\n \t23079A70-8B37-56D2-9D37-F638EBF7F8B5\t8.1\thttps://vulners.com/githubexploit/23079A70-8B37-56D2-9D37-F638EBF7F8B5\tEXPLOIT\n \tCVE-2025-59775\t7.5\thttps://vulners.com/cve/CVE-2025-59775\n \tCVE-2025-55753\t7.5\thttps://vulners.com/cve/CVE-2025-55753\n \tCVE-2025-53020\t7.5\thttps://vulners.com/cve/CVE-2025-53020\n \tCVE-2025-49630\t7.5\thttps://vulners.com/cve/CVE-2025-49630\n \tCVE-2024-47252\t7.5\thttps://vulners.com/cve/CVE-2024-47252\n \tCVE-2024-43394\t7.5\thttps://vulners.com/cve/CVE-2024-43394\n \tCVE-2024-43204\t7.5\thttps://vulners.com/cve/CVE-2024-43204\n \tCVE-2024-42516\t7.5\thttps://vulners.com/cve/CVE-2024-42516\n \tCVE-2024-39573\t7.5\thttps://vulners.com/cve/CVE-2024-39573\n \tCVE-2024-38477\t7.5\thttps://vulners.com/cve/CVE-2024-38477\n \tCVE-2024-38472\t7.5\thttps://vulners.com/cve/CVE-2024-38472\n \tCVE-2024-27316\t7.5\thttps://vulners.com/cve/CVE-2024-27316\n \tCNVD-2025-16614\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16614\n \tCNVD-2025-16613\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16613\n \tCNVD-2025-16612\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16612\n \tCNVD-2025-16609\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16609\n \tCNVD-2025-16608\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16608\n \tCNVD-2025-16603\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16603\n \tCNVD-2024-36393\t7.5\thttps://vulners.com/cnvd/CNVD-2024-36393\n \tCNVD-2024-36390\t7.5\thttps://vulners.com/cnvd/CNVD-2024-36390\n \tCNVD-2024-36389\t7.5\thttps://vulners.com/cnvd/CNVD-2024-36389\n \tCNVD-2024-20839\t7.5\thttps://vulners.com/cnvd/CNVD-2024-20839\n \tCDC791CD-A414-5ABE-A897-7CFA3C2D3D29\t7.5\thttps://vulners.com/githubexploit/CDC791CD-A414-5ABE-A897-7CFA3C2D3D29\tEXPLOIT\n \t45D138AD-BEC6-552A-91EA-8816914CA7F4\t7.5\thttps://vulners.com/githubexploit/45D138AD-BEC6-552A-91EA-8816914CA7F4\tEXPLOIT\n \tCVE-2025-49812\t7.4\thttps://vulners.com/cve/CVE-2025-49812\n \tCVE-2023-38709\t7.3\thttps://vulners.com/cve/CVE-2023-38709\n \tCNVD-2024-36395\t7.3\thttps://vulners.com/cnvd/CNVD-2024-36395\n \tCVE-2025-65082\t6.5\thttps://vulners.com/cve/CVE-2025-65082\n \tCVE-2024-24795\t6.3\thttps://vulners.com/cve/CVE-2024-24795\n \tCNVD-2024-36394\t6.3\thttps://vulners.com/cnvd/CNVD-2024-36394\n \tCVE-2025-66200\t5.4\thttps://vulners.com/cve/CVE-2025-66200\n \tCVE-2024-36387\t5.4\thttps://vulners.com/cve/CVE-2024-36387\n \tCNVD-2024-36392\t5.4\thttps://vulners.com/cnvd/CNVD-2024-36392" }, { "id": "http-title", "output": "Did not follow redirect to https://gehu.ac.in/" }, { "id": "http-server-header", "output": "Apache/2.4.58 (Ubuntu)" } ] }, { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": "2.4.58", "product": "Apache httpd", "extrainfo": "(Ubuntu)", "cpe": [ "cpe:/a:apache:http_server:2.4.58" ], "scripts": [ { "id": "http-server-header", "output": "Apache/2.4.58 (Ubuntu)" }, { "id": "ssl-date", "output": "TLS randomness does not represent time" }, { "id": "http-title", "output": "400 The plain HTTP request was sent to HTTPS port" }, { "id": "http-majordomo2-dir-traversal", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "vulners", "output": "\n cpe:/a:apache:http_server:2.4.58: \n \tCVE-2024-38476\t9.8\thttps://vulners.com/cve/CVE-2024-38476\n \tCVE-2024-38474\t9.8\thttps://vulners.com/cve/CVE-2024-38474\n \tCNVD-2024-36391\t9.8\thttps://vulners.com/cnvd/CNVD-2024-36391\n \tCNVD-2024-36388\t9.8\thttps://vulners.com/cnvd/CNVD-2024-36388\n \tFD2EE3A5-BAEA-5845-BA35-E6889992214F\t9.1\thttps://vulners.com/githubexploit/FD2EE3A5-BAEA-5845-BA35-E6889992214F\tEXPLOIT\n \tFBC8A8BE-F00A-5B6D-832E-F99A72E7A3F7\t9.1\thttps://vulners.com/githubexploit/FBC8A8BE-F00A-5B6D-832E-F99A72E7A3F7\tEXPLOIT\n \tE606D7F4-5FA2-5907-B30E-367D6FFECD89\t9.1\thttps://vulners.com/githubexploit/E606D7F4-5FA2-5907-B30E-367D6FFECD89\tEXPLOIT\n \tD8A19443-2A37-5592-8955-F614504AAF45\t9.1\thttps://vulners.com/githubexploit/D8A19443-2A37-5592-8955-F614504AAF45\tEXPLOIT\n \tCVE-2025-23048\t9.1\thttps://vulners.com/cve/CVE-2025-23048\n \tCVE-2024-40898\t9.1\thttps://vulners.com/cve/CVE-2024-40898\n \tCVE-2024-38475\t9.1\thttps://vulners.com/cve/CVE-2024-38475\n \tCNVD-2025-16610\t9.1\thttps://vulners.com/cnvd/CNVD-2025-16610\n \tCNVD-2024-36387\t9.1\thttps://vulners.com/cnvd/CNVD-2024-36387\n \tCNVD-2024-33814\t9.1\thttps://vulners.com/cnvd/CNVD-2024-33814\n \tB5E74010-A082-5ECE-AB37-623A5B33FE7D\t9.1\thttps://vulners.com/githubexploit/B5E74010-A082-5ECE-AB37-623A5B33FE7D\tEXPLOIT\n \t5418A85B-F4B7-5BBD-B106-0800AC961C7A\t9.1\thttps://vulners.com/githubexploit/5418A85B-F4B7-5BBD-B106-0800AC961C7A\tEXPLOIT\n \tB0A9E5E8-7CCC-5984-9922-A89F11D6BF38\t8.2\thttps://vulners.com/githubexploit/B0A9E5E8-7CCC-5984-9922-A89F11D6BF38\tEXPLOIT\n \tCVE-2024-38473\t8.1\thttps://vulners.com/cve/CVE-2024-38473\n \t249A954E-0189-5182-AE95-31C866A057E1\t8.1\thttps://vulners.com/githubexploit/249A954E-0189-5182-AE95-31C866A057E1\tEXPLOIT\n \t23079A70-8B37-56D2-9D37-F638EBF7F8B5\t8.1\thttps://vulners.com/githubexploit/23079A70-8B37-56D2-9D37-F638EBF7F8B5\tEXPLOIT\n \tCVE-2025-59775\t7.5\thttps://vulners.com/cve/CVE-2025-59775\n \tCVE-2025-55753\t7.5\thttps://vulners.com/cve/CVE-2025-55753\n \tCVE-2025-53020\t7.5\thttps://vulners.com/cve/CVE-2025-53020\n \tCVE-2025-49630\t7.5\thttps://vulners.com/cve/CVE-2025-49630\n \tCVE-2024-47252\t7.5\thttps://vulners.com/cve/CVE-2024-47252\n \tCVE-2024-43394\t7.5\thttps://vulners.com/cve/CVE-2024-43394\n \tCVE-2024-43204\t7.5\thttps://vulners.com/cve/CVE-2024-43204\n \tCVE-2024-42516\t7.5\thttps://vulners.com/cve/CVE-2024-42516\n \tCVE-2024-39573\t7.5\thttps://vulners.com/cve/CVE-2024-39573\n \tCVE-2024-38477\t7.5\thttps://vulners.com/cve/CVE-2024-38477\n \tCVE-2024-38472\t7.5\thttps://vulners.com/cve/CVE-2024-38472\n \tCVE-2024-27316\t7.5\thttps://vulners.com/cve/CVE-2024-27316\n \tCNVD-2025-16614\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16614\n \tCNVD-2025-16613\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16613\n \tCNVD-2025-16612\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16612\n \tCNVD-2025-16609\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16609\n \tCNVD-2025-16608\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16608\n \tCNVD-2025-16603\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16603\n \tCNVD-2024-36393\t7.5\thttps://vulners.com/cnvd/CNVD-2024-36393\n \tCNVD-2024-36390\t7.5\thttps://vulners.com/cnvd/CNVD-2024-36390\n \tCNVD-2024-36389\t7.5\thttps://vulners.com/cnvd/CNVD-2024-36389\n \tCNVD-2024-20839\t7.5\thttps://vulners.com/cnvd/CNVD-2024-20839\n \tCDC791CD-A414-5ABE-A897-7CFA3C2D3D29\t7.5\thttps://vulners.com/githubexploit/CDC791CD-A414-5ABE-A897-7CFA3C2D3D29\tEXPLOIT\n \t45D138AD-BEC6-552A-91EA-8816914CA7F4\t7.5\thttps://vulners.com/githubexploit/45D138AD-BEC6-552A-91EA-8816914CA7F4\tEXPLOIT\n \tCVE-2025-49812\t7.4\thttps://vulners.com/cve/CVE-2025-49812\n \tCVE-2023-38709\t7.3\thttps://vulners.com/cve/CVE-2023-38709\n \tCNVD-2024-36395\t7.3\thttps://vulners.com/cnvd/CNVD-2024-36395\n \tCVE-2025-65082\t6.5\thttps://vulners.com/cve/CVE-2025-65082\n \tCVE-2024-24795\t6.3\thttps://vulners.com/cve/CVE-2024-24795\n \tCNVD-2024-36394\t6.3\thttps://vulners.com/cnvd/CNVD-2024-36394\n \tCVE-2025-66200\t5.4\thttps://vulners.com/cve/CVE-2025-66200\n \tCVE-2024-36387\t5.4\thttps://vulners.com/cve/CVE-2024-36387\n \tCNVD-2024-36392\t5.4\thttps://vulners.com/cnvd/CNVD-2024-36392" }, { "id": "http-phpmyadmin-dir-traversal", "output": "\n VULNERABLE:\n phpMyAdmin grab_globals.lib.php subform Parameter Traversal Local File Inclusion\n State: VULNERABLE (Exploitable)\n IDs: CVE:CVE-2005-3299\n PHP file inclusion vulnerability in grab_globals.lib.php in phpMyAdmin 2.6.4 and 2.6.4-pl1 allows remote attackers to include local files via the $__redirect parameter, possibly involving the subform array.\n \n Disclosure date: 2005-10-nil\n Extra information:\n ../../../../../etc/passwd :\n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n </html>\n References:\n https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3299\n http://www.exploit-db.com/exploits/1244/\n" }, { "id": "http-vuln-cve2017-1001000", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "ssl-cert", "output": "Subject: commonName=gehu.ac.in\nSubject Alternative Name: DNS:gehu.ac.in, DNS:.gehu.ac.in\nNot valid before: 2025-02-20T00:00:00\nNot valid after: 2026-03-21T23:59:59" } ] }, { "port": "8008", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-aspnet-debug", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." } ] }, { "port": "8015", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "cfg-cloud", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "ssl-cert", "output": "Subject: commonName=gehu.ac.in\nSubject Alternative Name: DNS:gehu.ac.in\nNot valid before: 2025-11-07T07:47:55\nNot valid after: 2026-12-07T07:47:55" }, { "id": "ssl-date", "output": "TLS randomness does not represent time" }, { "id": "fingerprint-strings", "output": "\n GenericLines, GetRequest: \n HTTP/1.1 200 OK\n Content-Length: 4492\n Connection: close\n Cache-Control: no-cache\n Content-Type: text/html; charset=utf-8\n X-Frame-Options: SAMEORIGIN\n X-XSS-Protection: 1; mode=block\n X-Content-Type-Options: nosniff\n Content-Security-Policy: frame-ancestors 'self'\n <!DOCTYPE html>\n <html lang=\"en\">\n <head>\n <meta charset=\"UTF-8\">\n <meta http-equiv=\"X-UA-Compatible\" content=\"IE=8; IE=EDGE\">\n <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">\n <style type=\"text/css\">\n body {\n height: 100%;\n font-family: Helvetica, Arial, sans-serif;\n color: #6a6a6a;\n margin: 0;\n display: flex;\n align-items: center;\n justify-content: center;\n input[type=date], input[type=email], input[type=number], input[type=password]" } ] }, { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "https", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [] } ], "high_risk_ports": [] }, "service_analysis": { "services_detected": { "http": [ { "port": "80", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": "2.4.58", "product": "Apache httpd", "extrainfo": "(Ubuntu)", "cpe": [ "cpe:/a:apache:http_server:2.4.58" ], "scripts": [ { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "vulners", "output": "\n cpe:/a:apache:http_server:2.4.58: \n \tCVE-2024-38476\t9.8\thttps://vulners.com/cve/CVE-2024-38476\n \tCVE-2024-38474\t9.8\thttps://vulners.com/cve/CVE-2024-38474\n \tCNVD-2024-36391\t9.8\thttps://vulners.com/cnvd/CNVD-2024-36391\n \tCNVD-2024-36388\t9.8\thttps://vulners.com/cnvd/CNVD-2024-36388\n \tFD2EE3A5-BAEA-5845-BA35-E6889992214F\t9.1\thttps://vulners.com/githubexploit/FD2EE3A5-BAEA-5845-BA35-E6889992214F\tEXPLOIT\n \tFBC8A8BE-F00A-5B6D-832E-F99A72E7A3F7\t9.1\thttps://vulners.com/githubexploit/FBC8A8BE-F00A-5B6D-832E-F99A72E7A3F7\tEXPLOIT\n \tE606D7F4-5FA2-5907-B30E-367D6FFECD89\t9.1\thttps://vulners.com/githubexploit/E606D7F4-5FA2-5907-B30E-367D6FFECD89\tEXPLOIT\n \tD8A19443-2A37-5592-8955-F614504AAF45\t9.1\thttps://vulners.com/githubexploit/D8A19443-2A37-5592-8955-F614504AAF45\tEXPLOIT\n \tCVE-2025-23048\t9.1\thttps://vulners.com/cve/CVE-2025-23048\n \tCVE-2024-40898\t9.1\thttps://vulners.com/cve/CVE-2024-40898\n \tCVE-2024-38475\t9.1\thttps://vulners.com/cve/CVE-2024-38475\n \tCNVD-2025-16610\t9.1\thttps://vulners.com/cnvd/CNVD-2025-16610\n \tCNVD-2024-36387\t9.1\thttps://vulners.com/cnvd/CNVD-2024-36387\n \tCNVD-2024-33814\t9.1\thttps://vulners.com/cnvd/CNVD-2024-33814\n \tB5E74010-A082-5ECE-AB37-623A5B33FE7D\t9.1\thttps://vulners.com/githubexploit/B5E74010-A082-5ECE-AB37-623A5B33FE7D\tEXPLOIT\n \t5418A85B-F4B7-5BBD-B106-0800AC961C7A\t9.1\thttps://vulners.com/githubexploit/5418A85B-F4B7-5BBD-B106-0800AC961C7A\tEXPLOIT\n \tB0A9E5E8-7CCC-5984-9922-A89F11D6BF38\t8.2\thttps://vulners.com/githubexploit/B0A9E5E8-7CCC-5984-9922-A89F11D6BF38\tEXPLOIT\n \tCVE-2024-38473\t8.1\thttps://vulners.com/cve/CVE-2024-38473\n \t249A954E-0189-5182-AE95-31C866A057E1\t8.1\thttps://vulners.com/githubexploit/249A954E-0189-5182-AE95-31C866A057E1\tEXPLOIT\n \t23079A70-8B37-56D2-9D37-F638EBF7F8B5\t8.1\thttps://vulners.com/githubexploit/23079A70-8B37-56D2-9D37-F638EBF7F8B5\tEXPLOIT\n \tCVE-2025-59775\t7.5\thttps://vulners.com/cve/CVE-2025-59775\n \tCVE-2025-55753\t7.5\thttps://vulners.com/cve/CVE-2025-55753\n \tCVE-2025-53020\t7.5\thttps://vulners.com/cve/CVE-2025-53020\n \tCVE-2025-49630\t7.5\thttps://vulners.com/cve/CVE-2025-49630\n \tCVE-2024-47252\t7.5\thttps://vulners.com/cve/CVE-2024-47252\n \tCVE-2024-43394\t7.5\thttps://vulners.com/cve/CVE-2024-43394\n \tCVE-2024-43204\t7.5\thttps://vulners.com/cve/CVE-2024-43204\n \tCVE-2024-42516\t7.5\thttps://vulners.com/cve/CVE-2024-42516\n \tCVE-2024-39573\t7.5\thttps://vulners.com/cve/CVE-2024-39573\n \tCVE-2024-38477\t7.5\thttps://vulners.com/cve/CVE-2024-38477\n \tCVE-2024-38472\t7.5\thttps://vulners.com/cve/CVE-2024-38472\n \tCVE-2024-27316\t7.5\thttps://vulners.com/cve/CVE-2024-27316\n \tCNVD-2025-16614\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16614\n \tCNVD-2025-16613\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16613\n \tCNVD-2025-16612\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16612\n \tCNVD-2025-16609\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16609\n \tCNVD-2025-16608\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16608\n \tCNVD-2025-16603\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16603\n \tCNVD-2024-36393\t7.5\thttps://vulners.com/cnvd/CNVD-2024-36393\n \tCNVD-2024-36390\t7.5\thttps://vulners.com/cnvd/CNVD-2024-36390\n \tCNVD-2024-36389\t7.5\thttps://vulners.com/cnvd/CNVD-2024-36389\n \tCNVD-2024-20839\t7.5\thttps://vulners.com/cnvd/CNVD-2024-20839\n \tCDC791CD-A414-5ABE-A897-7CFA3C2D3D29\t7.5\thttps://vulners.com/githubexploit/CDC791CD-A414-5ABE-A897-7CFA3C2D3D29\tEXPLOIT\n \t45D138AD-BEC6-552A-91EA-8816914CA7F4\t7.5\thttps://vulners.com/githubexploit/45D138AD-BEC6-552A-91EA-8816914CA7F4\tEXPLOIT\n \tCVE-2025-49812\t7.4\thttps://vulners.com/cve/CVE-2025-49812\n \tCVE-2023-38709\t7.3\thttps://vulners.com/cve/CVE-2023-38709\n \tCNVD-2024-36395\t7.3\thttps://vulners.com/cnvd/CNVD-2024-36395\n \tCVE-2025-65082\t6.5\thttps://vulners.com/cve/CVE-2025-65082\n \tCVE-2024-24795\t6.3\thttps://vulners.com/cve/CVE-2024-24795\n \tCNVD-2024-36394\t6.3\thttps://vulners.com/cnvd/CNVD-2024-36394\n \tCVE-2025-66200\t5.4\thttps://vulners.com/cve/CVE-2025-66200\n \tCVE-2024-36387\t5.4\thttps://vulners.com/cve/CVE-2024-36387\n \tCNVD-2024-36392\t5.4\thttps://vulners.com/cnvd/CNVD-2024-36392" }, { "id": "http-title", "output": "Did not follow redirect to https://gehu.ac.in/" }, { "id": "http-server-header", "output": "Apache/2.4.58 (Ubuntu)" } ] }, { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": "2.4.58", "product": "Apache httpd", "extrainfo": "(Ubuntu)", "cpe": [ "cpe:/a:apache:http_server:2.4.58" ], "scripts": [ { "id": "http-server-header", "output": "Apache/2.4.58 (Ubuntu)" }, { "id": "ssl-date", "output": "TLS randomness does not represent time" }, { "id": "http-title", "output": "400 The plain HTTP request was sent to HTTPS port" }, { "id": "http-majordomo2-dir-traversal", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "vulners", "output": "\n cpe:/a:apache:http_server:2.4.58: \n \tCVE-2024-38476\t9.8\thttps://vulners.com/cve/CVE-2024-38476\n \tCVE-2024-38474\t9.8\thttps://vulners.com/cve/CVE-2024-38474\n \tCNVD-2024-36391\t9.8\thttps://vulners.com/cnvd/CNVD-2024-36391\n \tCNVD-2024-36388\t9.8\thttps://vulners.com/cnvd/CNVD-2024-36388\n \tFD2EE3A5-BAEA-5845-BA35-E6889992214F\t9.1\thttps://vulners.com/githubexploit/FD2EE3A5-BAEA-5845-BA35-E6889992214F\tEXPLOIT\n \tFBC8A8BE-F00A-5B6D-832E-F99A72E7A3F7\t9.1\thttps://vulners.com/githubexploit/FBC8A8BE-F00A-5B6D-832E-F99A72E7A3F7\tEXPLOIT\n \tE606D7F4-5FA2-5907-B30E-367D6FFECD89\t9.1\thttps://vulners.com/githubexploit/E606D7F4-5FA2-5907-B30E-367D6FFECD89\tEXPLOIT\n \tD8A19443-2A37-5592-8955-F614504AAF45\t9.1\thttps://vulners.com/githubexploit/D8A19443-2A37-5592-8955-F614504AAF45\tEXPLOIT\n \tCVE-2025-23048\t9.1\thttps://vulners.com/cve/CVE-2025-23048\n \tCVE-2024-40898\t9.1\thttps://vulners.com/cve/CVE-2024-40898\n \tCVE-2024-38475\t9.1\thttps://vulners.com/cve/CVE-2024-38475\n \tCNVD-2025-16610\t9.1\thttps://vulners.com/cnvd/CNVD-2025-16610\n \tCNVD-2024-36387\t9.1\thttps://vulners.com/cnvd/CNVD-2024-36387\n \tCNVD-2024-33814\t9.1\thttps://vulners.com/cnvd/CNVD-2024-33814\n \tB5E74010-A082-5ECE-AB37-623A5B33FE7D\t9.1\thttps://vulners.com/githubexploit/B5E74010-A082-5ECE-AB37-623A5B33FE7D\tEXPLOIT\n \t5418A85B-F4B7-5BBD-B106-0800AC961C7A\t9.1\thttps://vulners.com/githubexploit/5418A85B-F4B7-5BBD-B106-0800AC961C7A\tEXPLOIT\n \tB0A9E5E8-7CCC-5984-9922-A89F11D6BF38\t8.2\thttps://vulners.com/githubexploit/B0A9E5E8-7CCC-5984-9922-A89F11D6BF38\tEXPLOIT\n \tCVE-2024-38473\t8.1\thttps://vulners.com/cve/CVE-2024-38473\n \t249A954E-0189-5182-AE95-31C866A057E1\t8.1\thttps://vulners.com/githubexploit/249A954E-0189-5182-AE95-31C866A057E1\tEXPLOIT\n \t23079A70-8B37-56D2-9D37-F638EBF7F8B5\t8.1\thttps://vulners.com/githubexploit/23079A70-8B37-56D2-9D37-F638EBF7F8B5\tEXPLOIT\n \tCVE-2025-59775\t7.5\thttps://vulners.com/cve/CVE-2025-59775\n \tCVE-2025-55753\t7.5\thttps://vulners.com/cve/CVE-2025-55753\n \tCVE-2025-53020\t7.5\thttps://vulners.com/cve/CVE-2025-53020\n \tCVE-2025-49630\t7.5\thttps://vulners.com/cve/CVE-2025-49630\n \tCVE-2024-47252\t7.5\thttps://vulners.com/cve/CVE-2024-47252\n \tCVE-2024-43394\t7.5\thttps://vulners.com/cve/CVE-2024-43394\n \tCVE-2024-43204\t7.5\thttps://vulners.com/cve/CVE-2024-43204\n \tCVE-2024-42516\t7.5\thttps://vulners.com/cve/CVE-2024-42516\n \tCVE-2024-39573\t7.5\thttps://vulners.com/cve/CVE-2024-39573\n \tCVE-2024-38477\t7.5\thttps://vulners.com/cve/CVE-2024-38477\n \tCVE-2024-38472\t7.5\thttps://vulners.com/cve/CVE-2024-38472\n \tCVE-2024-27316\t7.5\thttps://vulners.com/cve/CVE-2024-27316\n \tCNVD-2025-16614\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16614\n \tCNVD-2025-16613\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16613\n \tCNVD-2025-16612\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16612\n \tCNVD-2025-16609\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16609\n \tCNVD-2025-16608\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16608\n \tCNVD-2025-16603\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16603\n \tCNVD-2024-36393\t7.5\thttps://vulners.com/cnvd/CNVD-2024-36393\n \tCNVD-2024-36390\t7.5\thttps://vulners.com/cnvd/CNVD-2024-36390\n \tCNVD-2024-36389\t7.5\thttps://vulners.com/cnvd/CNVD-2024-36389\n \tCNVD-2024-20839\t7.5\thttps://vulners.com/cnvd/CNVD-2024-20839\n \tCDC791CD-A414-5ABE-A897-7CFA3C2D3D29\t7.5\thttps://vulners.com/githubexploit/CDC791CD-A414-5ABE-A897-7CFA3C2D3D29\tEXPLOIT\n \t45D138AD-BEC6-552A-91EA-8816914CA7F4\t7.5\thttps://vulners.com/githubexploit/45D138AD-BEC6-552A-91EA-8816914CA7F4\tEXPLOIT\n \tCVE-2025-49812\t7.4\thttps://vulners.com/cve/CVE-2025-49812\n \tCVE-2023-38709\t7.3\thttps://vulners.com/cve/CVE-2023-38709\n \tCNVD-2024-36395\t7.3\thttps://vulners.com/cnvd/CNVD-2024-36395\n \tCVE-2025-65082\t6.5\thttps://vulners.com/cve/CVE-2025-65082\n \tCVE-2024-24795\t6.3\thttps://vulners.com/cve/CVE-2024-24795\n \tCNVD-2024-36394\t6.3\thttps://vulners.com/cnvd/CNVD-2024-36394\n \tCVE-2025-66200\t5.4\thttps://vulners.com/cve/CVE-2025-66200\n \tCVE-2024-36387\t5.4\thttps://vulners.com/cve/CVE-2024-36387\n \tCNVD-2024-36392\t5.4\thttps://vulners.com/cnvd/CNVD-2024-36392" }, { "id": "http-phpmyadmin-dir-traversal", "output": "\n VULNERABLE:\n phpMyAdmin grab_globals.lib.php subform Parameter Traversal Local File Inclusion\n State: VULNERABLE (Exploitable)\n IDs: CVE:CVE-2005-3299\n PHP file inclusion vulnerability in grab_globals.lib.php in phpMyAdmin 2.6.4 and 2.6.4-pl1 allows remote attackers to include local files via the $__redirect parameter, possibly involving the subform array.\n \n Disclosure date: 2005-10-nil\n Extra information:\n ../../../../../etc/passwd :\n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n </html>\n References:\n https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3299\n http://www.exploit-db.com/exploits/1244/\n" }, { "id": "http-vuln-cve2017-1001000", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "ssl-cert", "output": "Subject: commonName=gehu.ac.in\nSubject Alternative Name: DNS:gehu.ac.in, DNS:.gehu.ac.in\nNot valid before: 2025-02-20T00:00:00\nNot valid after: 2026-03-21T23:59:59" } ] }, { "port": "8008", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-aspnet-debug", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." } ] } ], "cfg-cloud": [ { "port": "8015", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "cfg-cloud", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "ssl-cert", "output": "Subject: commonName=gehu.ac.in\nSubject Alternative Name: DNS:gehu.ac.in\nNot valid before: 2025-11-07T07:47:55\nNot valid after: 2026-12-07T07:47:55" }, { "id": "ssl-date", "output": "TLS randomness does not represent time" }, { "id": "fingerprint-strings", "output": "\n GenericLines, GetRequest: \n HTTP/1.1 200 OK\n Content-Length: 4492\n Connection: close\n Cache-Control: no-cache\n Content-Type: text/html; charset=utf-8\n X-Frame-Options: SAMEORIGIN\n X-XSS-Protection: 1; mode=block\n X-Content-Type-Options: nosniff\n Content-Security-Policy: frame-ancestors 'self'\n <!DOCTYPE html>\n <html lang=\"en\">\n <head>\n <meta charset=\"UTF-8\">\n <meta http-equiv=\"X-UA-Compatible\" content=\"IE=8; IE=EDGE\">\n <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">\n <style type=\"text/css\">\n body {\n height: 100%;\n font-family: Helvetica, Arial, sans-serif;\n color: #6a6a6a;\n margin: 0;\n display: flex;\n align-items: center;\n justify-content: center;\n input[type=date], input[type=email], input[type=number], input[type=password]" } ] } ], "https": [ { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "https", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [] } ] }, "service_fingerprints": { "80_tcp": [ { "port": "80", "protocol": "tcp", "service": "http", "product": "Apache httpd", "version": "2.4.58", "cpe": [ "cpe:/a:apache:http_server:2.4.58" ], "method": null, "confidence": null, "scan": "service_ssh_analysis", "timestamp": "2025-12-07T07:54:29.379209" }, { "port": "80", "protocol": "tcp", "service": "http", "product": "Apache httpd", "version": "2.4.58", "cpe": [ "cpe:/a:apache:http_server:2.4.58" ], "method": null, "confidence": null, "scan": "service_ssl_analysis", "timestamp": "2025-12-07T07:54:42.311553" }, { "port": "80", "protocol": "tcp", "service": "http", "product": "Apache httpd", "version": "2.4.58", "cpe": [ "cpe:/a:apache:http_server:2.4.58" ], "method": null, "confidence": null, "scan": "service_web_comprehensive", "timestamp": "2025-12-07T07:55:01.795820" } ], "443_tcp": [ { "port": "443", "protocol": "tcp", "service": "http", "product": "Apache httpd", "version": "2.4.58", "cpe": [ "cpe:/a:apache:http_server:2.4.58" ], "method": null, "confidence": null, "scan": "service_ssh_analysis", "timestamp": "2025-12-07T07:54:29.379209" }, { "port": "443", "protocol": "tcp", "service": "http", "product": "Apache httpd", "version": "2.4.58", "cpe": [ "cpe:/a:apache:http_server:2.4.58" ], "method": null, "confidence": null, "scan": "service_ssl_analysis", "timestamp": "2025-12-07T07:54:42.311553" }, { "port": "443", "protocol": "tcp", "service": "http", "product": "Apache httpd", "version": "2.4.58", "cpe": [ "cpe:/a:apache:http_server:2.4.58" ], "method": null, "confidence": null, "scan": "service_web_comprehensive", "timestamp": "2025-12-07T07:55:01.795820" } ], "8008_tcp": [ { "port": "8008", "protocol": "tcp", "service": "http", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssh_analysis", "timestamp": "2025-12-07T07:54:29.379209" }, { "port": "8008", "protocol": "tcp", "service": "http", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssl_analysis", "timestamp": "2025-12-07T07:54:42.311553" }, { "port": "8008", "protocol": "tcp", "service": "http", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_web_comprehensive", "timestamp": "2025-12-07T07:55:01.795820" } ], "8015_tcp": [ { "port": "8015", "protocol": "tcp", "service": "cfg-cloud", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssh_analysis", "timestamp": "2025-12-07T07:54:29.379209" }, { "port": "8015", "protocol": "tcp", "service": "cfg-cloud", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssl_analysis", "timestamp": "2025-12-07T07:54:42.311553" }, { "port": "8015", "protocol": "tcp", "service": "cfg-cloud", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_web_comprehensive", "timestamp": "2025-12-07T07:55:01.795820" } ] } }, "vulnerability_analysis": { "vulnerabilities": [ { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)", "port": "80", "protocol": "tcp", "service": "http", "version": "2.4.58", "cve_ids": [] }, { "id": "vulners", "output": "\n cpe:/a:apache:http_server:2.4.58: \n \tCVE-2024-38476\t9.8\thttps://vulners.com/cve/CVE-2024-38476\n \tCVE-2024-38474\t9.8\thttps://vulners.com/cve/CVE-2024-38474\n \tCNVD-2024-36391\t9.8\thttps://vulners.com/cnvd/CNVD-2024-36391\n \tCNVD-2024-36388\t9.8\thttps://vulners.com/cnvd/CNVD-2024-36388\n \tFD2EE3A5-BAEA-5845-BA35-E6889992214F\t9.1\thttps://vulners.com/githubexploit/FD2EE3A5-BAEA-5845-BA35-E6889992214F\tEXPLOIT\n \tFBC8A8BE-F00A-5B6D-832E-F99A72E7A3F7\t9.1\thttps://vulners.com/githubexploit/FBC8A8BE-F00A-5B6D-832E-F99A72E7A3F7\tEXPLOIT\n \tE606D7F4-5FA2-5907-B30E-367D6FFECD89\t9.1\thttps://vulners.com/githubexploit/E606D7F4-5FA2-5907-B30E-367D6FFECD89\tEXPLOIT\n \tD8A19443-2A37-5592-8955-F614504AAF45\t9.1\thttps://vulners.com/githubexploit/D8A19443-2A37-5592-8955-F614504AAF45\tEXPLOIT\n \tCVE-2025-23048\t9.1\thttps://vulners.com/cve/CVE-2025-23048\n \tCVE-2024-40898\t9.1\thttps://vulners.com/cve/CVE-2024-40898\n \tCVE-2024-38475\t9.1\thttps://vulners.com/cve/CVE-2024-38475\n \tCNVD-2025-16610\t9.1\thttps://vulners.com/cnvd/CNVD-2025-16610\n \tCNVD-2024-36387\t9.1\thttps://vulners.com/cnvd/CNVD-2024-36387\n \tCNVD-2024-33814\t9.1\thttps://vulners.com/cnvd/CNVD-2024-33814\n \tB5E74010-A082-5ECE-AB37-623A5B33FE7D\t9.1\thttps://vulners.com/githubexploit/B5E74010-A082-5ECE-AB37-623A5B33FE7D\tEXPLOIT\n \t5418A85B-F4B7-5BBD-B106-0800AC961C7A\t9.1\thttps://vulners.com/githubexploit/5418A85B-F4B7-5BBD-B106-0800AC961C7A\tEXPLOIT\n \tB0A9E5E8-7CCC-5984-9922-A89F11D6BF38\t8.2\thttps://vulners.com/githubexploit/B0A9E5E8-7CCC-5984-9922-A89F11D6BF38\tEXPLOIT\n \tCVE-2024-38473\t8.1\thttps://vulners.com/cve/CVE-2024-38473\n \t249A954E-0189-5182-AE95-31C866A057E1\t8.1\thttps://vulners.com/githubexploit/249A954E-0189-5182-AE95-31C866A057E1\tEXPLOIT\n \t23079A70-8B37-56D2-9D37-F638EBF7F8B5\t8.1\thttps://vulners.com/githubexploit/23079A70-8B37-56D2-9D37-F638EBF7F8B5\tEXPLOIT\n \tCVE-2025-59775\t7.5\thttps://vulners.com/cve/CVE-2025-59775\n \tCVE-2025-55753\t7.5\thttps://vulners.com/cve/CVE-2025-55753\n \tCVE-2025-53020\t7.5\thttps://vulners.com/cve/CVE-2025-53020\n \tCVE-2025-49630\t7.5\thttps://vulners.com/cve/CVE-2025-49630\n \tCVE-2024-47252\t7.5\thttps://vulners.com/cve/CVE-2024-47252\n \tCVE-2024-43394\t7.5\thttps://vulners.com/cve/CVE-2024-43394\n \tCVE-2024-43204\t7.5\thttps://vulners.com/cve/CVE-2024-43204\n \tCVE-2024-42516\t7.5\thttps://vulners.com/cve/CVE-2024-42516\n \tCVE-2024-39573\t7.5\thttps://vulners.com/cve/CVE-2024-39573\n \tCVE-2024-38477\t7.5\thttps://vulners.com/cve/CVE-2024-38477\n \tCVE-2024-38472\t7.5\thttps://vulners.com/cve/CVE-2024-38472\n \tCVE-2024-27316\t7.5\thttps://vulners.com/cve/CVE-2024-27316\n \tCNVD-2025-16614\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16614\n \tCNVD-2025-16613\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16613\n \tCNVD-2025-16612\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16612\n \tCNVD-2025-16609\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16609\n \tCNVD-2025-16608\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16608\n \tCNVD-2025-16603\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16603\n \tCNVD-2024-36393\t7.5\thttps://vulners.com/cnvd/CNVD-2024-36393\n \tCNVD-2024-36390\t7.5\thttps://vulners.com/cnvd/CNVD-2024-36390\n \tCNVD-2024-36389\t7.5\thttps://vulners.com/cnvd/CNVD-2024-36389\n \tCNVD-2024-20839\t7.5\thttps://vulners.com/cnvd/CNVD-2024-20839\n \tCDC791CD-A414-5ABE-A897-7CFA3C2D3D29\t7.5\thttps://vulners.com/githubexploit/CDC791CD-A414-5ABE-A897-7CFA3C2D3D29\tEXPLOIT\n \t45D138AD-BEC6-552A-91EA-8816914CA7F4\t7.5\thttps://vulners.com/githubexploit/45D138AD-BEC6-552A-91EA-8816914CA7F4\tEXPLOIT\n \tCVE-2025-49812\t7.4\thttps://vulners.com/cve/CVE-2025-49812\n \tCVE-2023-38709\t7.3\thttps://vulners.com/cve/CVE-2023-38709\n \tCNVD-2024-36395\t7.3\thttps://vulners.com/cnvd/CNVD-2024-36395\n \tCVE-2025-65082\t6.5\thttps://vulners.com/cve/CVE-2025-65082\n \tCVE-2024-24795\t6.3\thttps://vulners.com/cve/CVE-2024-24795\n \tCNVD-2024-36394\t6.3\thttps://vulners.com/cnvd/CNVD-2024-36394\n \tCVE-2025-66200\t5.4\thttps://vulners.com/cve/CVE-2025-66200\n \tCVE-2024-36387\t5.4\thttps://vulners.com/cve/CVE-2024-36387\n \tCNVD-2024-36392\t5.4\thttps://vulners.com/cnvd/CNVD-2024-36392", "port": "80", "protocol": "tcp", "service": "http", "version": "2.4.58", "cve_ids": [ "CVE-2023-38709", "CVE-2024-24795", "CVE-2024-27316", "CVE-2024-36387", "CVE-2024-38472", "CVE-2024-38473", "CVE-2024-38474", "CVE-2024-38475", "CVE-2024-38476", "CVE-2024-38477", "CVE-2024-39573", "CVE-2024-40898", "CVE-2024-42516", "CVE-2024-43204", "CVE-2024-43394", "CVE-2024-47252", "CVE-2025-23048", "CVE-2025-49630", "CVE-2025-49812", "CVE-2025-53020", "CVE-2025-55753", "CVE-2025-59775", "CVE-2025-65082", "CVE-2025-66200" ] }, { "id": "vulners", "output": "\n cpe:/a:apache:http_server:2.4.58: \n \tCVE-2024-38476\t9.8\thttps://vulners.com/cve/CVE-2024-38476\n \tCVE-2024-38474\t9.8\thttps://vulners.com/cve/CVE-2024-38474\n \tCNVD-2024-36391\t9.8\thttps://vulners.com/cnvd/CNVD-2024-36391\n \tCNVD-2024-36388\t9.8\thttps://vulners.com/cnvd/CNVD-2024-36388\n \tFD2EE3A5-BAEA-5845-BA35-E6889992214F\t9.1\thttps://vulners.com/githubexploit/FD2EE3A5-BAEA-5845-BA35-E6889992214F\tEXPLOIT\n \tFBC8A8BE-F00A-5B6D-832E-F99A72E7A3F7\t9.1\thttps://vulners.com/githubexploit/FBC8A8BE-F00A-5B6D-832E-F99A72E7A3F7\tEXPLOIT\n \tE606D7F4-5FA2-5907-B30E-367D6FFECD89\t9.1\thttps://vulners.com/githubexploit/E606D7F4-5FA2-5907-B30E-367D6FFECD89\tEXPLOIT\n \tD8A19443-2A37-5592-8955-F614504AAF45\t9.1\thttps://vulners.com/githubexploit/D8A19443-2A37-5592-8955-F614504AAF45\tEXPLOIT\n \tCVE-2025-23048\t9.1\thttps://vulners.com/cve/CVE-2025-23048\n \tCVE-2024-40898\t9.1\thttps://vulners.com/cve/CVE-2024-40898\n \tCVE-2024-38475\t9.1\thttps://vulners.com/cve/CVE-2024-38475\n \tCNVD-2025-16610\t9.1\thttps://vulners.com/cnvd/CNVD-2025-16610\n \tCNVD-2024-36387\t9.1\thttps://vulners.com/cnvd/CNVD-2024-36387\n \tCNVD-2024-33814\t9.1\thttps://vulners.com/cnvd/CNVD-2024-33814\n \tB5E74010-A082-5ECE-AB37-623A5B33FE7D\t9.1\thttps://vulners.com/githubexploit/B5E74010-A082-5ECE-AB37-623A5B33FE7D\tEXPLOIT\n \t5418A85B-F4B7-5BBD-B106-0800AC961C7A\t9.1\thttps://vulners.com/githubexploit/5418A85B-F4B7-5BBD-B106-0800AC961C7A\tEXPLOIT\n \tB0A9E5E8-7CCC-5984-9922-A89F11D6BF38\t8.2\thttps://vulners.com/githubexploit/B0A9E5E8-7CCC-5984-9922-A89F11D6BF38\tEXPLOIT\n \tCVE-2024-38473\t8.1\thttps://vulners.com/cve/CVE-2024-38473\n \t249A954E-0189-5182-AE95-31C866A057E1\t8.1\thttps://vulners.com/githubexploit/249A954E-0189-5182-AE95-31C866A057E1\tEXPLOIT\n \t23079A70-8B37-56D2-9D37-F638EBF7F8B5\t8.1\thttps://vulners.com/githubexploit/23079A70-8B37-56D2-9D37-F638EBF7F8B5\tEXPLOIT\n \tCVE-2025-59775\t7.5\thttps://vulners.com/cve/CVE-2025-59775\n \tCVE-2025-55753\t7.5\thttps://vulners.com/cve/CVE-2025-55753\n \tCVE-2025-53020\t7.5\thttps://vulners.com/cve/CVE-2025-53020\n \tCVE-2025-49630\t7.5\thttps://vulners.com/cve/CVE-2025-49630\n \tCVE-2024-47252\t7.5\thttps://vulners.com/cve/CVE-2024-47252\n \tCVE-2024-43394\t7.5\thttps://vulners.com/cve/CVE-2024-43394\n \tCVE-2024-43204\t7.5\thttps://vulners.com/cve/CVE-2024-43204\n \tCVE-2024-42516\t7.5\thttps://vulners.com/cve/CVE-2024-42516\n \tCVE-2024-39573\t7.5\thttps://vulners.com/cve/CVE-2024-39573\n \tCVE-2024-38477\t7.5\thttps://vulners.com/cve/CVE-2024-38477\n \tCVE-2024-38472\t7.5\thttps://vulners.com/cve/CVE-2024-38472\n \tCVE-2024-27316\t7.5\thttps://vulners.com/cve/CVE-2024-27316\n \tCNVD-2025-16614\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16614\n \tCNVD-2025-16613\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16613\n \tCNVD-2025-16612\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16612\n \tCNVD-2025-16609\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16609\n \tCNVD-2025-16608\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16608\n \tCNVD-2025-16603\t7.5\thttps://vulners.com/cnvd/CNVD-2025-16603\n \tCNVD-2024-36393\t7.5\thttps://vulners.com/cnvd/CNVD-2024-36393\n \tCNVD-2024-36390\t7.5\thttps://vulners.com/cnvd/CNVD-2024-36390\n \tCNVD-2024-36389\t7.5\thttps://vulners.com/cnvd/CNVD-2024-36389\n \tCNVD-2024-20839\t7.5\thttps://vulners.com/cnvd/CNVD-2024-20839\n \tCDC791CD-A414-5ABE-A897-7CFA3C2D3D29\t7.5\thttps://vulners.com/githubexploit/CDC791CD-A414-5ABE-A897-7CFA3C2D3D29\tEXPLOIT\n \t45D138AD-BEC6-552A-91EA-8816914CA7F4\t7.5\thttps://vulners.com/githubexploit/45D138AD-BEC6-552A-91EA-8816914CA7F4\tEXPLOIT\n \tCVE-2025-49812\t7.4\thttps://vulners.com/cve/CVE-2025-49812\n \tCVE-2023-38709\t7.3\thttps://vulners.com/cve/CVE-2023-38709\n \tCNVD-2024-36395\t7.3\thttps://vulners.com/cnvd/CNVD-2024-36395\n \tCVE-2025-65082\t6.5\thttps://vulners.com/cve/CVE-2025-65082\n \tCVE-2024-24795\t6.3\thttps://vulners.com/cve/CVE-2024-24795\n \tCNVD-2024-36394\t6.3\thttps://vulners.com/cnvd/CNVD-2024-36394\n \tCVE-2025-66200\t5.4\thttps://vulners.com/cve/CVE-2025-66200\n \tCVE-2024-36387\t5.4\thttps://vulners.com/cve/CVE-2024-36387\n \tCNVD-2024-36392\t5.4\thttps://vulners.com/cnvd/CNVD-2024-36392", "port": "443", "protocol": "tcp", "service": "http", "version": "2.4.58", "cve_ids": [ "CVE-2023-38709", "CVE-2024-24795", "CVE-2024-27316", "CVE-2024-36387", "CVE-2024-38472", "CVE-2024-38473", "CVE-2024-38474", "CVE-2024-38475", "CVE-2024-38476", "CVE-2024-38477", "CVE-2024-39573", "CVE-2024-40898", "CVE-2024-42516", "CVE-2024-43204", "CVE-2024-43394", "CVE-2024-47252", "CVE-2025-23048", "CVE-2025-49630", "CVE-2025-49812", "CVE-2025-53020", "CVE-2025-55753", "CVE-2025-59775", "CVE-2025-65082", "CVE-2025-66200" ] }, { "id": "http-phpmyadmin-dir-traversal", "output": "\n VULNERABLE:\n phpMyAdmin grab_globals.lib.php subform Parameter Traversal Local File Inclusion\n State: VULNERABLE (Exploitable)\n IDs: CVE:CVE-2005-3299\n PHP file inclusion vulnerability in grab_globals.lib.php in phpMyAdmin 2.6.4 and 2.6.4-pl1 allows remote attackers to include local files via the $__redirect parameter, possibly involving the subform array.\n \n Disclosure date: 2005-10-nil\n Extra information:\n ../../../../../etc/passwd :\n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n \n </html>\n References:\n https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3299\n http://www.exploit-db.com/exploits/1244/\n", "port": "443", "protocol": "tcp", "service": "http", "version": "2.4.58", "cve_ids": [ "CVE-2005-3299" ] }, { "id": "http-vuln-cve2017-1001000", "output": "ERROR: Script execution failed (use -d to debug)", "port": "443", "protocol": "tcp", "service": "http", "version": "2.4.58", "cve_ids": [] }, { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)", "port": "8008", "protocol": "tcp", "service": "http", "version": null, "cve_ids": [] } ], "vulnerability_database": {} }, "os_detection": { "detected_os": [] }, "host_scripts": [], "recommendations": [ { "priority": "CRITICAL", "category": "Critical Vulnerabilities", "finding": "3 critical vulnerabilities detected", "recommendation": "Apply emergency security patches immediately - system is at high risk" }, { "priority": "HIGH", "category": "Vulnerabilities", "finding": "6 total vulnerabilities detected", "recommendation": "Review and patch all identified vulnerabilities according to severity" }, { "priority": "MEDIUM", "category": "Best Practices", "finding": "Regular security assessments needed", "recommendation": "Schedule quarterly security scans" }, { "priority": "MEDIUM", "category": "Monitoring", "finding": "Continuous monitoring recommended", "recommendation": "Implement IDS/IPS for real-time threat detection" } ] }	Error: An error occurred (ValidationException) wh…
693568ddd2423356a0810444	Sun Dec 07 2025 11:45:33 GMT+0000 (Coordinated Universal Time)	https://www.nobroker.in/	nmap_scan	{ "report_metadata": { "target": "www.nobroker.in", "original_target": "https://www.nobroker.in/", "scan_timestamp": "20251207_075332", "scan_date": "2025-12-07T09:48:08.396868", "scanner_version": "Enhanced Blue Team Scanner v3.0 - Consolidated Edition", "total_scans_executed": 623 }, "executive_summary": { "total_open_ports": 5, "total_services_detected": 3, "total_vulnerabilities": 4, "critical_vulnerabilities": 0, "high_vulnerabilities": 0, "medium_vulnerabilities": 0, "low_vulnerabilities": 0, "risk_score": 50, "risk_level": "MEDIUM" }, "port_analysis": { "open_ports": [ { "port": "80", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "http-title", "output": "Did not follow redirect to https://www.nobroker.in:443/" }, { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "http-slowloris-check", "output": "\n VULNERABLE:\n Slowloris DOS attack\n State: LIKELY VULNERABLE\n IDs: CVE:CVE-2007-6750\n Slowloris tries to keep many connections to the target web server open and hold\n them open as long as possible. It accomplishes this by opening connections to\n the target web server and sending a partial request. By doing so, it starves\n the http server's resources causing Denial Of Service.\n \n Disclosure date: 2009-09-17\n References:\n http://ha.ckers.org/slowloris/\n https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6750\n" }, { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." }, { "id": "fingerprint-strings", "output": "\n DNSStatusRequestTCP, DNSVersionBindReqTCP: \n HTTP/1.0 400 Bad Request\n Content-Length: 54\n Content-Type: text/html; charset=UTF-8\n Date: Sun, 07 Dec 2025 07:55:35 GMT\n <html><title>Error 400 (Bad Request)!!1</title></html>\n FourOhFourRequest: \n HTTP/1.0 301 Moved Permanently\n Cache-Control: private\n Location: https://34.8.106.105:443/nice%20ports%2C/Trinity.txt.bak\n Content-Length: 0\n Date: Sun, 07 Dec 2025 07:55:25 GMT\n Content-Type: text/html; charset=UTF-8\n GetRequest, HTTPOptions: \n HTTP/1.0 301 Moved Permanently\n Cache-Control: private\n Location: https://34.8.106.105:443/\n Content-Length: 0\n Date: Sun, 07 Dec 2025 07:55:20 GMT\n Content-Type: text/html; charset=UTF-8\n Help: \n HTTP/1.0 400 Bad Request\n Content-Type: text/html; charset=UTF-8\n Referrer-Policy: no-referrer\n Content-Length: 273\n Date: Sun, 07 Dec 2025 07:55:35 GMT\n <html><head>\n <meta http-equiv=\"content-type\" content=\"text/html;charset=utf-8\">\n <title>400 Bad Request</title>\n </head>\n <body text=#000000 bgcolor=#ffffff>\n <h1>Error: Bad Request</h1>\n <h2>Your client has issued a malformed or illegal request.</h2>\n <h2></h2>\n </body></html>\n RTSPRequest: \n HTTP/1.0 400 Bad Request\n Content-Type: text/html; charset=UTF-8\n Referrer-Policy: no-referrer\n Content-Length: 273\n Date: Sun, 07 Dec 2025 07:55:20 GMT\n <html><head>\n <meta http-equiv=\"content-type\" content=\"text/html;charset=utf-8\">\n <title>400 Bad Request</title>\n </head>\n <body text=#000000 bgcolor=#ffffff>\n <h1>Error: Bad Request</h1>\n <h2>Your client has issued a malformed or illegal request.</h2>\n <h2></h2>\n </body></html>" } ] }, { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "https", "version": null, "product": "nginx", "extrainfo": null, "cpe": [], "scripts": [ { "id": "http-robots.txt", "output": "51 disallowed entries (15 shown)\n/admin /api/v1/admin/* /api/v1//notification/ \n/signout ?amp=1 ?amp=2 /redirectUrl?redirectUrl=* /falcon/* \n/_proxy_ /.env /admin/ /analytics/ /api/space/ /api/v1/ /api/v2/" }, { "id": "http-slowloris-check", "output": "\n VULNERABLE:\n Slowloris DOS attack\n State: LIKELY VULNERABLE\n IDs: CVE:CVE-2007-6750\n Slowloris tries to keep many connections to the target web server open and hold\n them open as long as possible. It accomplishes this by opening connections to\n the target web server and sending a partial request. By doing so, it starves\n the http server's resources causing Denial Of Service.\n \n Disclosure date: 2009-09-17\n References:\n http://ha.ckers.org/slowloris/\n https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6750\n" }, { "id": "tls-nextprotoneg", "output": "\n grpc-exp\n h2\n http/1.1\n http/1.0" }, { "id": "ssl-cert", "output": "Subject: commonName=.nobroker.in\nSubject Alternative Name: DNS:.nobroker.in, DNS:nobroker.in\nNot valid before: 2025-09-15T00:00:00\nNot valid after: 2026-08-26T23:59:59" }, { "id": "tls-alpn", "output": "\n grpc-exp\n h2\n http/1.1\n http/1.0" }, { "id": "http-server-header", "output": "nginx" }, { "id": "ssl-date", "output": "TLS randomness does not represent time" }, { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "fingerprint-strings", "output": "\n GetRequest: \n HTTP/1.0 200 OK\n server: nginx\n x-powered-by: Express\n cloudfront-viewer-address: 125.19.217.182\n cloudfront-viewer-country: IN\n cloudfront-viewer-latitude: \n cloudfront-viewer-longitude: \n cache-tag: home-page\n via: 1.1 google\n Date: Sun, 07 Dec 2025 07:39:46 GMT\n Cache-Control: public, max-age=7200\n Content-Type: text/html\n Vary: Accept-Encoding,Accept-Encoding\n Age: 940\n X-CACHE-STATUS: hit\n cdn-cache-id: BOM\n Alt-Svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\n <!DOCTYPE html><html lang=\"en\"><head>\n <meta property=\"fb:pages\" content=\"794951570520699\" />\n <link rel=\"canonical\" href=\"https://www.nobroker.in\" />\n <link rel=\"dns-prefetch preconnect\" href=\"//www.googletagmanager.com\">\n <link rel=\"dns-prefetch preconnect\" href=\"//www.google-analytics.com\">\n <link rel=\"dns-prefetch\" href\n SIPOptions: \n HTTP/1.0 400 Bad Request\n Content-Type: text/html; charset=UTF-8\n Referrer-Policy: no-referrer\n Content-Length: 273\n Date: Sun, 07 Dec 2025 07:55:52 GMT\n <html><head>\n <meta http-equiv=\"content-type\" content=\"text/html;charset=utf-8\">\n <title>400 Bad Request</title>\n </head>\n <body text=#000000 bgcolor=#ffffff>\n <h1>Error: Bad Request</h1>\n <h2>Your client has issued a malformed or illegal request.</h2>\n <h2></h2>\n </body></html>" }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." } ] }, { "port": "8008", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "http-aspnet-debug", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." } ] }, { "port": "8015", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "cfg-cloud", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "ssl-date", "output": "TLS randomness does not represent time" }, { "id": "ssl-cert", "output": "Subject: commonName=www.nobroker.in\nSubject Alternative Name: DNS:www.nobroker.in\nNot valid before: 2025-11-07T07:57:48\nNot valid after: 2026-12-07T07:57:48" }, { "id": "fingerprint-strings", "output": "\n GenericLines, GetRequest: \n HTTP/1.1 200 OK\n Content-Length: 4492\n Connection: close\n Cache-Control: no-cache\n Content-Type: text/html; charset=utf-8\n X-Frame-Options: SAMEORIGIN\n X-XSS-Protection: 1; mode=block\n X-Content-Type-Options: nosniff\n Content-Security-Policy: frame-ancestors 'self'\n <!DOCTYPE html>\n <html lang=\"en\">\n <head>\n <meta charset=\"UTF-8\">\n <meta http-equiv=\"X-UA-Compatible\" content=\"IE=8; IE=EDGE\">\n <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">\n <style type=\"text/css\">\n body {\n height: 100%;\n font-family: Helvetica, Arial, sans-serif;\n color: #6a6a6a;\n margin: 0;\n display: flex;\n align-items: center;\n justify-content: center;\n input[type=date], input[type=email], input[type=number], input[type=password]" } ] }, { "port": "443", "protocol": "udp", "state": "open", "reason": "udp-response", "service": "https", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [] } ], "high_risk_ports": [] }, "service_analysis": { "services_detected": { "http": [ { "port": "80", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "http-title", "output": "Did not follow redirect to https://www.nobroker.in:443/" }, { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "http-slowloris-check", "output": "\n VULNERABLE:\n Slowloris DOS attack\n State: LIKELY VULNERABLE\n IDs: CVE:CVE-2007-6750\n Slowloris tries to keep many connections to the target web server open and hold\n them open as long as possible. It accomplishes this by opening connections to\n the target web server and sending a partial request. By doing so, it starves\n the http server's resources causing Denial Of Service.\n \n Disclosure date: 2009-09-17\n References:\n http://ha.ckers.org/slowloris/\n https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6750\n" }, { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." }, { "id": "fingerprint-strings", "output": "\n DNSStatusRequestTCP, DNSVersionBindReqTCP: \n HTTP/1.0 400 Bad Request\n Content-Length: 54\n Content-Type: text/html; charset=UTF-8\n Date: Sun, 07 Dec 2025 07:55:35 GMT\n <html><title>Error 400 (Bad Request)!!1</title></html>\n FourOhFourRequest: \n HTTP/1.0 301 Moved Permanently\n Cache-Control: private\n Location: https://34.8.106.105:443/nice%20ports%2C/Trinity.txt.bak\n Content-Length: 0\n Date: Sun, 07 Dec 2025 07:55:25 GMT\n Content-Type: text/html; charset=UTF-8\n GetRequest, HTTPOptions: \n HTTP/1.0 301 Moved Permanently\n Cache-Control: private\n Location: https://34.8.106.105:443/\n Content-Length: 0\n Date: Sun, 07 Dec 2025 07:55:20 GMT\n Content-Type: text/html; charset=UTF-8\n Help: \n HTTP/1.0 400 Bad Request\n Content-Type: text/html; charset=UTF-8\n Referrer-Policy: no-referrer\n Content-Length: 273\n Date: Sun, 07 Dec 2025 07:55:35 GMT\n <html><head>\n <meta http-equiv=\"content-type\" content=\"text/html;charset=utf-8\">\n <title>400 Bad Request</title>\n </head>\n <body text=#000000 bgcolor=#ffffff>\n <h1>Error: Bad Request</h1>\n <h2>Your client has issued a malformed or illegal request.</h2>\n <h2></h2>\n </body></html>\n RTSPRequest: \n HTTP/1.0 400 Bad Request\n Content-Type: text/html; charset=UTF-8\n Referrer-Policy: no-referrer\n Content-Length: 273\n Date: Sun, 07 Dec 2025 07:55:20 GMT\n <html><head>\n <meta http-equiv=\"content-type\" content=\"text/html;charset=utf-8\">\n <title>400 Bad Request</title>\n </head>\n <body text=#000000 bgcolor=#ffffff>\n <h1>Error: Bad Request</h1>\n <h2>Your client has issued a malformed or illegal request.</h2>\n <h2></h2>\n </body></html>" } ] }, { "port": "8008", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "http-aspnet-debug", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." } ] } ], "https": [ { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "https", "version": null, "product": "nginx", "extrainfo": null, "cpe": [], "scripts": [ { "id": "http-robots.txt", "output": "51 disallowed entries (15 shown)\n/admin /api/v1/admin/* /api/v1//notification/ \n/signout ?amp=1 ?amp=2 /redirectUrl?redirectUrl=* /falcon/* \n/_proxy_ /.env /admin/ /analytics/ /api/space/ /api/v1/ /api/v2/" }, { "id": "http-slowloris-check", "output": "\n VULNERABLE:\n Slowloris DOS attack\n State: LIKELY VULNERABLE\n IDs: CVE:CVE-2007-6750\n Slowloris tries to keep many connections to the target web server open and hold\n them open as long as possible. It accomplishes this by opening connections to\n the target web server and sending a partial request. By doing so, it starves\n the http server's resources causing Denial Of Service.\n \n Disclosure date: 2009-09-17\n References:\n http://ha.ckers.org/slowloris/\n https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6750\n" }, { "id": "tls-nextprotoneg", "output": "\n grpc-exp\n h2\n http/1.1\n http/1.0" }, { "id": "ssl-cert", "output": "Subject: commonName=.nobroker.in\nSubject Alternative Name: DNS:.nobroker.in, DNS:nobroker.in\nNot valid before: 2025-09-15T00:00:00\nNot valid after: 2026-08-26T23:59:59" }, { "id": "tls-alpn", "output": "\n grpc-exp\n h2\n http/1.1\n http/1.0" }, { "id": "http-server-header", "output": "nginx" }, { "id": "ssl-date", "output": "TLS randomness does not represent time" }, { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "fingerprint-strings", "output": "\n GetRequest: \n HTTP/1.0 200 OK\n server: nginx\n x-powered-by: Express\n cloudfront-viewer-address: 125.19.217.182\n cloudfront-viewer-country: IN\n cloudfront-viewer-latitude: \n cloudfront-viewer-longitude: \n cache-tag: home-page\n via: 1.1 google\n Date: Sun, 07 Dec 2025 07:39:46 GMT\n Cache-Control: public, max-age=7200\n Content-Type: text/html\n Vary: Accept-Encoding,Accept-Encoding\n Age: 940\n X-CACHE-STATUS: hit\n cdn-cache-id: BOM\n Alt-Svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\n <!DOCTYPE html><html lang=\"en\"><head>\n <meta property=\"fb:pages\" content=\"794951570520699\" />\n <link rel=\"canonical\" href=\"https://www.nobroker.in\" />\n <link rel=\"dns-prefetch preconnect\" href=\"//www.googletagmanager.com\">\n <link rel=\"dns-prefetch preconnect\" href=\"//www.google-analytics.com\">\n <link rel=\"dns-prefetch\" href\n SIPOptions: \n HTTP/1.0 400 Bad Request\n Content-Type: text/html; charset=UTF-8\n Referrer-Policy: no-referrer\n Content-Length: 273\n Date: Sun, 07 Dec 2025 07:55:52 GMT\n <html><head>\n <meta http-equiv=\"content-type\" content=\"text/html;charset=utf-8\">\n <title>400 Bad Request</title>\n </head>\n <body text=#000000 bgcolor=#ffffff>\n <h1>Error: Bad Request</h1>\n <h2>Your client has issued a malformed or illegal request.</h2>\n <h2></h2>\n </body></html>" }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." } ] }, { "port": "443", "protocol": "udp", "state": "open", "reason": "udp-response", "service": "https", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [] } ], "cfg-cloud": [ { "port": "8015", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "cfg-cloud", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "ssl-date", "output": "TLS randomness does not represent time" }, { "id": "ssl-cert", "output": "Subject: commonName=www.nobroker.in\nSubject Alternative Name: DNS:www.nobroker.in\nNot valid before: 2025-11-07T07:57:48\nNot valid after: 2026-12-07T07:57:48" }, { "id": "fingerprint-strings", "output": "\n GenericLines, GetRequest: \n HTTP/1.1 200 OK\n Content-Length: 4492\n Connection: close\n Cache-Control: no-cache\n Content-Type: text/html; charset=utf-8\n X-Frame-Options: SAMEORIGIN\n X-XSS-Protection: 1; mode=block\n X-Content-Type-Options: nosniff\n Content-Security-Policy: frame-ancestors 'self'\n <!DOCTYPE html>\n <html lang=\"en\">\n <head>\n <meta charset=\"UTF-8\">\n <meta http-equiv=\"X-UA-Compatible\" content=\"IE=8; IE=EDGE\">\n <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">\n <style type=\"text/css\">\n body {\n height: 100%;\n font-family: Helvetica, Arial, sans-serif;\n color: #6a6a6a;\n margin: 0;\n display: flex;\n align-items: center;\n justify-content: center;\n input[type=date], input[type=email], input[type=number], input[type=password]" } ] } ] }, "service_fingerprints": { "80_tcp": [ { "port": "80", "protocol": "tcp", "service": "http", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssh_analysis", "timestamp": "2025-12-07T08:10:29.460167" }, { "port": "80", "protocol": "tcp", "service": "http", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssl_analysis", "timestamp": "2025-12-07T08:10:42.479574" }, { "port": "80", "protocol": "tcp", "service": "http", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_web_comprehensive", "timestamp": "2025-12-07T08:11:09.953674" } ], "443_tcp": [ { "port": "443", "protocol": "tcp", "service": "https", "product": "nginx", "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssh_analysis", "timestamp": "2025-12-07T08:10:29.460167" }, { "port": "443", "protocol": "tcp", "service": "https", "product": "nginx", "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssl_analysis", "timestamp": "2025-12-07T08:10:42.479574" }, { "port": "443", "protocol": "tcp", "service": "https", "product": "nginx", "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_web_comprehensive", "timestamp": "2025-12-07T08:11:09.953674" } ], "8008_tcp": [ { "port": "8008", "protocol": "tcp", "service": "http", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssh_analysis", "timestamp": "2025-12-07T08:10:29.460167" }, { "port": "8008", "protocol": "tcp", "service": "http", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssl_analysis", "timestamp": "2025-12-07T08:10:42.479574" }, { "port": "8008", "protocol": "tcp", "service": "http", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_web_comprehensive", "timestamp": "2025-12-07T08:11:09.953674" } ], "8015_tcp": [ { "port": "8015", "protocol": "tcp", "service": "cfg-cloud", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssh_analysis", "timestamp": "2025-12-07T08:10:29.460167" }, { "port": "8015", "protocol": "tcp", "service": "cfg-cloud", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssl_analysis", "timestamp": "2025-12-07T08:10:42.479574" }, { "port": "8015", "protocol": "tcp", "service": "cfg-cloud", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_web_comprehensive", "timestamp": "2025-12-07T08:11:09.953674" } ] } }, "vulnerability_analysis": { "vulnerabilities": [ { "id": "http-slowloris-check", "output": "\n VULNERABLE:\n Slowloris DOS attack\n State: LIKELY VULNERABLE\n IDs: CVE:CVE-2007-6750\n Slowloris tries to keep many connections to the target web server open and hold\n them open as long as possible. It accomplishes this by opening connections to\n the target web server and sending a partial request. By doing so, it starves\n the http server's resources causing Denial Of Service.\n \n Disclosure date: 2009-09-17\n References:\n http://ha.ckers.org/slowloris/\n https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6750\n", "port": "80", "protocol": "tcp", "service": "http", "version": null, "cve_ids": [ "CVE-2007-6750" ] }, { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)", "port": "80", "protocol": "tcp", "service": "http", "version": null, "cve_ids": [] }, { "id": "http-slowloris-check", "output": "\n VULNERABLE:\n Slowloris DOS attack\n State: LIKELY VULNERABLE\n IDs: CVE:CVE-2007-6750\n Slowloris tries to keep many connections to the target web server open and hold\n them open as long as possible. It accomplishes this by opening connections to\n the target web server and sending a partial request. By doing so, it starves\n the http server's resources causing Denial Of Service.\n \n Disclosure date: 2009-09-17\n References:\n http://ha.ckers.org/slowloris/\n https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6750\n", "port": "443", "protocol": "tcp", "service": "https", "version": null, "cve_ids": [ "CVE-2007-6750" ] }, { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)", "port": "8008", "protocol": "tcp", "service": "http", "version": null, "cve_ids": [] } ], "vulnerability_database": {} }, "os_detection": { "detected_os": [ { "name": "FreeBSD 8.2-RELEASE", "accuracy": "90" }, { "name": "FreeBSD 7.0-STABLE", "accuracy": "87" }, { "name": "FreeBSD 7.0-RELEASE", "accuracy": "87" }, { "name": "FreeBSD 7.1-PRERELEASE 7.2-STABLE", "accuracy": "87" }, { "name": "FreeBSD 9.0-RELEASE - 10.3-RELEASE", "accuracy": "87" }, { "name": "IronPort AsyncOS 7.5.1", "accuracy": "86" }, { "name": "FreeBSD 8.1-RELEASE", "accuracy": "86" }, { "name": "FreeBSD 8.0-RELEASE", "accuracy": "86" }, { "name": "BlackBerry 10.3", "accuracy": "86" }, { "name": "Microsoft Windows 2000 SP4", "accuracy": "85" }, { "name": "FreeBSD 8.2-RELEASE", "accuracy": "87" }, { "name": "Microsoft Windows 2000 SP4", "accuracy": "86" } ] }, "host_scripts": [ { "id": "resolveall", "output": "\n Host 'www.nobroker.in' also resolves to:\n Use the 'newtargets' script-arg to add the results as targets\n Use the --resolve-all option to scan all resolved addresses without using this script.\n" }, { "id": "dns-brute", "output": "\n DNS Brute-force hostnames: \n stats.nobroker.in - 34.107.130.221\n id.nobroker.in - 34.93.222.73\n test.nobroker.in - 34.98.91.68\n images.nobroker.in - 34.107.130.221\n alpha.nobroker.in - 34.93.52.103\n internal.nobroker.in - 34.93.222.73\n beta.nobroker.in - 34.93.52.103\n blog.nobroker.in - 34.93.52.103\n mail.nobroker.in - 142.250.71.115\n mail.nobroker.in - 2404:6800:4009:82a::2013\n cdn.nobroker.in - 108.159.91.114\n cdn.nobroker.in - 108.159.91.28\n cdn.nobroker.in - 108.159.91.7\n cdn.nobroker.in - 108.159.91.8\n www.nobroker.in - 34.8.106.105\n chat.nobroker.in - 34.120.56.241\n forum.nobroker.in - 34.47.217.11\n cms.nobroker.in - 35.200.248.215\n monitor.nobroker.in - 35.200.171.81" }, { "id": "ip-geolocation-geoplugin", "output": "coordinates: nil, nil" }, { "id": "fcrdns", "output": "\n 105.106.8.34.bc.googleusercontent.com: \n status: pass\n addresses: \n 34.8.106.105" }, { "id": "path-mtu", "output": "PMTU == 1500" }, { "id": "qscan", "output": "\nPORT FAMILY MEAN (us) STDDEV LOSS (%)\n80 0 3632.40 1007.64 0.0%\n443 0 3512.10 788.95 0.0%\n8008 1 207.80 30.15 0.0%\n8015 1 226.50 44.77 0.0%\n" }, { "id": "ipidseq", "output": "All zeros" }, { "id": "port-states", "output": "\n tcp: \n open: 80,443,8008,8015" }, { "id": "dns-blacklist", "output": "\n SPAM\n all.spamrats.com - FAIL\n list.quorum.to - SPAM\n l2.apews.org - FAIL\n" }, { "id": "unusual-port", "output": "\n WARNING: this script depends on Nmap's service/version detection (-sV)\n" }, { "id": "whois-domain", "output": "\n\nDomain name record found at whois.nixiregistry.in\nDomain Name: nobroker.in\r\nRegistry Domain ID: D2563187-IN\r\nRegistrar WHOIS Server: whois.rrpproxy.net\r\nRegistrar URL: http://www.key-systems.net\r\nUpdated Date: 2025-11-23T16:08:49.398Z\r\nCreation Date: 2007-07-23T04:32:09.164Z\r\nRegistry Expiry Date: 2026-07-23T04:32:09.164Z\r\nRegistrar: Key-Systems GmbH\r\nRegistrar IANA ID: 269\r\nRegistrar Abuse Contact Email: abuse@key-systems.net\r\nRegistrar Abuse Contact Phone: \r\nDomain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited\r\nDomain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited\r\nRegistry Registrant ID: REDACTED FOR PRIVACY\r\nRegistrant Name: REDACTED FOR PRIVACY\r\nRegistrant Organization: NoBroker Technologies Solutions Pvt Ltd\r\nRegistrant Street: REDACTED FOR PRIVACY\r\nRegistrant City: REDACTED FOR PRIVACY\r\nRegistrant State/Province: Karnataka\r\nRegistrant Postal Code: REDACTED FOR PRIVACY\r\nRegistrant Country: IN\r\nRegistrant Phone: REDACTED FOR PRIVACY\r\nRegistrant Fax: REDACTED FOR PRIVACY\r\nRegistrant Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.\r\nRegistry Admin ID: REDACTED FOR PRIVACY\r\nAdmin Name: REDACTED FOR PRIVACY\r\nAdmin Organization: REDACTED FOR PRIVACY\r\nAdmin Street: REDACTED FOR PRIVACY\r\nAdmin City: REDACTED FOR PRIVACY\r\nAdmin State/Province: REDACTED FOR PRIVACY\r\nAdmin Postal Code: REDACTED FOR PRIVACY\r\nAdmin Country: REDACTED FOR PRIVACY\r\nAdmin Phone: REDACTED FOR PRIVACY\r\nAdmin Fax: REDACTED FOR PRIVACY\r\nAdmin Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.\r\nRegistry Tech ID: REDACTED FOR PRIVACY\r\nTech Name: REDACTED FOR PRIVACY\r\nTech Organization: REDACTED FOR PRIVACY\r\nTech Street: REDACTED FOR PRIVACY\r\nTech City: REDACTED FOR PRIVACY\r\nTech State/Province: REDACTED FOR PRIVACY\r\nTech Postal Code: REDACTED FOR PRIVACY\r\nTech Country: REDACTED FOR PRIVACY\r\nTech Phone: REDACTED FOR PRIVACY\r\nTech Fax: REDACTED FOR PRIVACY\r\nTech Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.\r\nRegistry Billing ID: REDACTED FOR PRIVACY\r\nBilling Name: REDACTED FOR PRIVACY\r\nBilling Organization: REDACTED FOR PRIVACY\r\nBilling Street: REDACTED FOR PRIVACY\r\nBilling City: REDACTED FOR PRIVACY\r\nBilling State/Province: REDACTED FOR PRIVACY\r\nBilling Postal Code: REDACTED FOR PRIVACY\r\nBilling Country: REDACTED FOR PRIVACY\r\nBilling Phone: REDACTED FOR PRIVACY\r\nBilling Fax: REDACTED FOR PRIVACY\r\nBilling Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.\r\nName Server: ns-cloud-a3.googledomains.com\r\nName Server: ns-cloud-a1.googledomains.com\r\nName Server: ns-cloud-a4.googledomains.com\r\nName Server: ns-cloud-a2.googledomains.com\r\nDNSSEC: unsigned\r\nURL of the ICANN RDDS Inaccuracy Complaint Form: https://icann.org/wicf\r\n\r\n>>> Last update of WHOIS database: 2025-12-07T09:32:20.964Z <<<\r\n\r\nFor more information on domain status codes, please visit https://icann.org/epp\r\n\r\nThe WHOIS information provided in this page has been redacted\r\nin compliance with ICANN's Temporary Specification for gTLD\r\nRegistration Data.\r\n\r\nThe data in this record is provided by Tucows Registry for informational\r\npurposes only, and it does not guarantee its accuracy. Tucows Registry is\r\nauthoritative for whois information in top-level domains it operates\r\nunder contract with the Internet Corporation for Assigned Names and\r\nNumbers. Whois information from other top-level domains is provided by\r\na third-party under license to Tucows Registry.\r\n\r\nThis service is intended only for query-based access. By using this\r\nservice, you agree that you will use any data presented only for lawful\r\npurposes and that, under no circumstances will you use (a) data\r\nacquired for the purpose of allowing, enabling, or otherwise supporting\r\nthe transmission by e-mail, telephone, facsimile or other\r\ncommunications mechanism of mass unsolicited, commercial advertising\r\nor solicitations to entities other than your existing customers; or\r\n(b) this service to enable high volume, automated, electronic processes\r\nthat send queries or data to the systems of any Registrar or any\r\nRegistry except as reasonably necessary to register domain names or\r\nmodify existing domain name registrations.\r\n\r\nTucows Registry reserves the right to modify these terms at any time. By\r\nsubmitting this query, you agree to abide by this policy. All rights\r\nreserved.\r\n" }, { "id": "asn-query", "output": "\nBGP: 34.8.0.0/13 \| Country: US\n Origin AS: 396982 - GOOGLE-CLOUD-PLATFORM, US\n Peer AS: 15169" }, { "id": "whois-ip", "output": "Record found at whois.arin.net\nnetrange: 34.4.5.0 - 34.63.255.255\nnetname: GOOGL-2\norgname: Google LLC\norgid: GOOGL-2\ncountry: US stateprov: CA\norgtechname: Google LLC\norgtechemail: arin-contact@google.com" } ], "recommendations": [ { "priority": "CRITICAL", "category": "Critical Vulnerabilities", "finding": "2 critical vulnerabilities detected", "recommendation": "Apply emergency security patches immediately - system is at high risk" }, { "priority": "HIGH", "category": "Vulnerabilities", "finding": "4 total vulnerabilities detected", "recommendation": "Review and patch all identified vulnerabilities according to severity" }, { "priority": "MEDIUM", "category": "Best Practices", "finding": "Regular security assessments needed", "recommendation": "Schedule quarterly security scans" }, { "priority": "MEDIUM", "category": "Monitoring", "finding": "Continuous monitoring recommended", "recommendation": "Implement IDS/IPS for real-time threat detection" } ] }	Error: An error occurred (ValidationException) wh…
6935d5749eddd582d101275c	Sun Dec 07 2025 19:28:52 GMT+0000 (Coordinated Universal Time)	https://freesearchigrservice.maharashtra.gov.in/	nmap_scan	{ "report_metadata": { "target": "freesearchigrservice.maharashtra.gov.in", "original_target": "https://freesearchigrservice.maharashtra.gov.in/", "scan_timestamp": "20251207_164135", "scan_date": "2025-12-07T18:45:38.975419", "scanner_version": "Enhanced Blue Team Scanner v3.0 - Consolidated Edition", "total_scans_executed": 623 }, "executive_summary": { "total_open_ports": 4, "total_services_detected": 3, "total_vulnerabilities": 4, "critical_vulnerabilities": 0, "high_vulnerabilities": 0, "medium_vulnerabilities": 0, "low_vulnerabilities": 0, "risk_score": 48, "risk_level": "LOW" }, "port_analysis": { "open_ports": [ { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": "10.0", "product": "Microsoft IIS httpd", "extrainfo": null, "cpe": [ "cpe:/a:microsoft:internet_information_services:10.0", "cpe:/o:microsoft:windows" ], "scripts": [ { "id": "ssl-cert", "output": "Subject: commonName=freesearchigrservice.maharashtra.gov.in\nSubject Alternative Name: DNS:freesearchigrservice.maharashtra.gov.in\nNot valid before: 2025-09-19T16:43:59\nNot valid after: 2026-10-21T16:43:58" }, { "id": "http-methods", "output": "\n Potentially risky methods: TRACE" }, { "id": "http-aspnet-debug", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-fileupload-exploiter", "output": "\n \n Couldn't find a file-type field.\n \n Couldn't find a file-type field.\n \n Couldn't find a file-type field.\n \n Couldn't find a file-type field.\n \n Couldn't find a file-type field.\n \n Couldn't find a file-type field." }, { "id": "http-dombased-xss", "output": "\nSpidering limited to: maxdepth=3; maxpagecount=20; withinhost=freesearchigrservice.maharashtra.gov.in\n Found the following indications of potential DOM based XSS: \n \n Source: window.open('HtmlReport.aspx?IndexClick=' + val + '', '_blank', 'width=700,height=500,toolbar=no,location=yes,directories=yes,status=yes,menubar=no,scrollbars=yes,copyhistory=yes,modal=yes,resizable = yes')\n Pages: https://freesearchigrservice.maharashtra.gov.in:443/\n \n Source: window.open('wfReport.aspx?IndexClick='+val+'', '_blank', 'width=700,height=500,toolbar=no,location=yes,directories=yes,status=yes,menubar=no,scrollbars=yes,copyhistory=yes,modal=yes,resizable = yes')\n Pages: https://freesearchigrservice.maharashtra.gov.in:443/\n" }, { "id": "http-csrf", "output": "\nSpidering limited to: maxdepth=3; maxpagecount=20; withinhost=freesearchigrservice.maharashtra.gov.in\n Found the following possible CSRF vulnerabilities: \n \n Path: https://freesearchigrservice.maharashtra.gov.in:443/\n Form id: form1\n Form action: ./\n" }, { "id": "http-slowloris-check", "output": "\n VULNERABLE:\n Slowloris DOS attack\n State: LIKELY VULNERABLE\n IDs: CVE:CVE-2007-6750\n Slowloris tries to keep many connections to the target web server open and hold\n them open as long as possible. It accomplishes this by opening connections to\n the target web server and sending a partial request. By doing so, it starves\n the http server's resources causing Denial Of Service.\n \n Disclosure date: 2009-09-17\n References:\n https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6750\n http://ha.ckers.org/slowloris/\n" }, { "id": "ssl-poodle", "output": "\n VULNERABLE:\n SSL POODLE information leak\n State: LIKELY VULNERABLE\n IDs: CVE:CVE-2014-3566 BID:70574\n The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other\n products, uses nondeterministic CBC padding, which makes it easier\n for man-in-the-middle attackers to obtain cleartext data via a\n padding-oracle attack, aka the \"POODLE\" issue.\n Disclosure date: 2014-10-14\n Check results:\n TLS_DHE_RSA_WITH_AES_256_CBC_SHA\n TLS_FALLBACK_SCSV properly implemented\n References:\n https://www.imperialviolet.org/2014/10/14/poodle.html\n https://www.openssl.org/~bodo/ssl-poodle.pdf\n https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566\n https://www.securityfocus.com/bid/70574\n" }, { "id": "ssl-date", "output": "TLS randomness does not represent time" }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "http-title", "output": "Online Document Search.......Department of Registration and St..." } ] }, { "port": "8008", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." }, { "id": "http-aspnet-debug", "output": "ERROR: Script execution failed (use -d to debug)" } ] }, { "port": "8015", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "cfg-cloud", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "ssl-cert", "output": "Subject: commonName=freesearchigrservice.maharashtra.gov.in\nSubject Alternative Name: DNS:freesearchigrservice.maharashtra.gov.in\nNot valid before: 2025-11-07T16:45:39\nNot valid after: 2026-12-07T16:45:39" }, { "id": "ssl-date", "output": "TLS randomness does not represent time" }, { "id": "fingerprint-strings", "output": "\n GenericLines, GetRequest: \n HTTP/1.1 200 OK\n Content-Length: 4492\n Connection: close\n Cache-Control: no-cache\n Content-Type: text/html; charset=utf-8\n X-Frame-Options: SAMEORIGIN\n X-XSS-Protection: 1; mode=block\n X-Content-Type-Options: nosniff\n Content-Security-Policy: frame-ancestors 'self'\n <!DOCTYPE html>\n <html lang=\"en\">\n <head>\n <meta charset=\"UTF-8\">\n <meta http-equiv=\"X-UA-Compatible\" content=\"IE=8; IE=EDGE\">\n <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">\n <style type=\"text/css\">\n body {\n height: 100%;\n font-family: Helvetica, Arial, sans-serif;\n color: #6a6a6a;\n margin: 0;\n display: flex;\n align-items: center;\n justify-content: center;\n input[type=date], input[type=email], input[type=number], input[type=password]" } ] }, { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "https", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [] } ], "high_risk_ports": [] }, "service_analysis": { "services_detected": { "http": [ { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": "10.0", "product": "Microsoft IIS httpd", "extrainfo": null, "cpe": [ "cpe:/a:microsoft:internet_information_services:10.0", "cpe:/o:microsoft:windows" ], "scripts": [ { "id": "ssl-cert", "output": "Subject: commonName=freesearchigrservice.maharashtra.gov.in\nSubject Alternative Name: DNS:freesearchigrservice.maharashtra.gov.in\nNot valid before: 2025-09-19T16:43:59\nNot valid after: 2026-10-21T16:43:58" }, { "id": "http-methods", "output": "\n Potentially risky methods: TRACE" }, { "id": "http-aspnet-debug", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-fileupload-exploiter", "output": "\n \n Couldn't find a file-type field.\n \n Couldn't find a file-type field.\n \n Couldn't find a file-type field.\n \n Couldn't find a file-type field.\n \n Couldn't find a file-type field.\n \n Couldn't find a file-type field." }, { "id": "http-dombased-xss", "output": "\nSpidering limited to: maxdepth=3; maxpagecount=20; withinhost=freesearchigrservice.maharashtra.gov.in\n Found the following indications of potential DOM based XSS: \n \n Source: window.open('HtmlReport.aspx?IndexClick=' + val + '', '_blank', 'width=700,height=500,toolbar=no,location=yes,directories=yes,status=yes,menubar=no,scrollbars=yes,copyhistory=yes,modal=yes,resizable = yes')\n Pages: https://freesearchigrservice.maharashtra.gov.in:443/\n \n Source: window.open('wfReport.aspx?IndexClick='+val+'', '_blank', 'width=700,height=500,toolbar=no,location=yes,directories=yes,status=yes,menubar=no,scrollbars=yes,copyhistory=yes,modal=yes,resizable = yes')\n Pages: https://freesearchigrservice.maharashtra.gov.in:443/\n" }, { "id": "http-csrf", "output": "\nSpidering limited to: maxdepth=3; maxpagecount=20; withinhost=freesearchigrservice.maharashtra.gov.in\n Found the following possible CSRF vulnerabilities: \n \n Path: https://freesearchigrservice.maharashtra.gov.in:443/\n Form id: form1\n Form action: ./\n" }, { "id": "http-slowloris-check", "output": "\n VULNERABLE:\n Slowloris DOS attack\n State: LIKELY VULNERABLE\n IDs: CVE:CVE-2007-6750\n Slowloris tries to keep many connections to the target web server open and hold\n them open as long as possible. It accomplishes this by opening connections to\n the target web server and sending a partial request. By doing so, it starves\n the http server's resources causing Denial Of Service.\n \n Disclosure date: 2009-09-17\n References:\n https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6750\n http://ha.ckers.org/slowloris/\n" }, { "id": "ssl-poodle", "output": "\n VULNERABLE:\n SSL POODLE information leak\n State: LIKELY VULNERABLE\n IDs: CVE:CVE-2014-3566 BID:70574\n The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other\n products, uses nondeterministic CBC padding, which makes it easier\n for man-in-the-middle attackers to obtain cleartext data via a\n padding-oracle attack, aka the \"POODLE\" issue.\n Disclosure date: 2014-10-14\n Check results:\n TLS_DHE_RSA_WITH_AES_256_CBC_SHA\n TLS_FALLBACK_SCSV properly implemented\n References:\n https://www.imperialviolet.org/2014/10/14/poodle.html\n https://www.openssl.org/~bodo/ssl-poodle.pdf\n https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566\n https://www.securityfocus.com/bid/70574\n" }, { "id": "ssl-date", "output": "TLS randomness does not represent time" }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "http-title", "output": "Online Document Search.......Department of Registration and St..." } ] }, { "port": "8008", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." }, { "id": "http-aspnet-debug", "output": "ERROR: Script execution failed (use -d to debug)" } ] } ], "cfg-cloud": [ { "port": "8015", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "cfg-cloud", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "ssl-cert", "output": "Subject: commonName=freesearchigrservice.maharashtra.gov.in\nSubject Alternative Name: DNS:freesearchigrservice.maharashtra.gov.in\nNot valid before: 2025-11-07T16:45:39\nNot valid after: 2026-12-07T16:45:39" }, { "id": "ssl-date", "output": "TLS randomness does not represent time" }, { "id": "fingerprint-strings", "output": "\n GenericLines, GetRequest: \n HTTP/1.1 200 OK\n Content-Length: 4492\n Connection: close\n Cache-Control: no-cache\n Content-Type: text/html; charset=utf-8\n X-Frame-Options: SAMEORIGIN\n X-XSS-Protection: 1; mode=block\n X-Content-Type-Options: nosniff\n Content-Security-Policy: frame-ancestors 'self'\n <!DOCTYPE html>\n <html lang=\"en\">\n <head>\n <meta charset=\"UTF-8\">\n <meta http-equiv=\"X-UA-Compatible\" content=\"IE=8; IE=EDGE\">\n <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">\n <style type=\"text/css\">\n body {\n height: 100%;\n font-family: Helvetica, Arial, sans-serif;\n color: #6a6a6a;\n margin: 0;\n display: flex;\n align-items: center;\n justify-content: center;\n input[type=date], input[type=email], input[type=number], input[type=password]" } ] } ], "https": [ { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "https", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [] } ] }, "service_fingerprints": { "443_tcp": [ { "port": "443", "protocol": "tcp", "service": "http", "product": "Microsoft IIS httpd", "version": "10.0", "cpe": [ "cpe:/a:microsoft:internet_information_services:10.0", "cpe:/o:microsoft:windows" ], "method": null, "confidence": null, "scan": "service_ssh_analysis", "timestamp": "2025-12-07T16:58:55.589362" }, { "port": "443", "protocol": "tcp", "service": "http", "product": "Microsoft IIS httpd", "version": "10.0", "cpe": [ "cpe:/a:microsoft:internet_information_services:10.0", "cpe:/o:microsoft:windows" ], "method": null, "confidence": null, "scan": "service_ssl_analysis", "timestamp": "2025-12-07T16:59:02.442374" }, { "port": "443", "protocol": "tcp", "service": "http", "product": "Microsoft IIS httpd", "version": "10.0", "cpe": [ "cpe:/a:microsoft:internet_information_services:10.0", "cpe:/o:microsoft:windows" ], "method": null, "confidence": null, "scan": "service_web_comprehensive", "timestamp": "2025-12-07T16:59:04.779636" } ], "8008_tcp": [ { "port": "8008", "protocol": "tcp", "service": "http", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssh_analysis", "timestamp": "2025-12-07T16:58:55.589362" }, { "port": "8008", "protocol": "tcp", "service": "http", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssl_analysis", "timestamp": "2025-12-07T16:59:02.442374" }, { "port": "8008", "protocol": "tcp", "service": "http", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_web_comprehensive", "timestamp": "2025-12-07T16:59:04.779636" } ], "8015_tcp": [ { "port": "8015", "protocol": "tcp", "service": "cfg-cloud", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssh_analysis", "timestamp": "2025-12-07T16:58:55.589362" }, { "port": "8015", "protocol": "tcp", "service": "cfg-cloud", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssl_analysis", "timestamp": "2025-12-07T16:59:02.442374" }, { "port": "8015", "protocol": "tcp", "service": "cfg-cloud", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_web_comprehensive", "timestamp": "2025-12-07T16:59:04.779636" } ] } }, "vulnerability_analysis": { "vulnerabilities": [ { "id": "http-slowloris-check", "output": "\n VULNERABLE:\n Slowloris DOS attack\n State: LIKELY VULNERABLE\n IDs: CVE:CVE-2007-6750\n Slowloris tries to keep many connections to the target web server open and hold\n them open as long as possible. It accomplishes this by opening connections to\n the target web server and sending a partial request. By doing so, it starves\n the http server's resources causing Denial Of Service.\n \n Disclosure date: 2009-09-17\n References:\n https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6750\n http://ha.ckers.org/slowloris/\n", "port": "443", "protocol": "tcp", "service": "http", "version": "10.0", "cve_ids": [ "CVE-2007-6750" ] }, { "id": "ssl-poodle", "output": "\n VULNERABLE:\n SSL POODLE information leak\n State: LIKELY VULNERABLE\n IDs: CVE:CVE-2014-3566 BID:70574\n The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other\n products, uses nondeterministic CBC padding, which makes it easier\n for man-in-the-middle attackers to obtain cleartext data via a\n padding-oracle attack, aka the \"POODLE\" issue.\n Disclosure date: 2014-10-14\n Check results:\n TLS_DHE_RSA_WITH_AES_256_CBC_SHA\n TLS_FALLBACK_SCSV properly implemented\n References:\n https://www.imperialviolet.org/2014/10/14/poodle.html\n https://www.openssl.org/~bodo/ssl-poodle.pdf\n https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566\n https://www.securityfocus.com/bid/70574\n", "port": "443", "protocol": "tcp", "service": "http", "version": "10.0", "cve_ids": [ "CVE-2014-3566" ] }, { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)", "port": "8008", "protocol": "tcp", "service": "http", "version": null, "cve_ids": [] }, { "id": "ssl-enum-ciphers", "output": "\n SSLv3: \n ciphers: \n TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (secp256r1) - A\n TLS_DHE_RSA_WITH_AES_256_CBC_SHA (dh 2048) - A\n TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA (dh 2048) - A\n TLS_RSA_WITH_AES_256_CBC_SHA (rsa 2048) - A\n TLS_RSA_WITH_CAMELLIA_256_CBC_SHA (rsa 2048) - A\n TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (secp256r1) - A\n TLS_DHE_RSA_WITH_AES_128_CBC_SHA (dh 2048) - A\n TLS_DHE_RSA_WITH_SEED_CBC_SHA (dh 2048) - A\n TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA (dh 2048) - A\n TLS_RSA_WITH_AES_128_CBC_SHA (rsa 2048) - A\n TLS_RSA_WITH_SEED_CBC_SHA (rsa 2048) - A\n TLS_RSA_WITH_CAMELLIA_128_CBC_SHA (rsa 2048) - A\n TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA (secp256r1) - C\n TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA (dh 2048) - C\n TLS_RSA_WITH_3DES_EDE_CBC_SHA (rsa 2048) - C\n TLS_RSA_WITH_IDEA_CBC_SHA (rsa 2048) - A\n TLS_ECDHE_RSA_WITH_RC4_128_SHA (secp256r1) - C\n TLS_RSA_WITH_RC4_128_SHA (rsa 2048) - C\n TLS_RSA_WITH_RC4_128_MD5 (rsa 2048) - C\n compressors: \n NULL\n cipher preference: server\n warnings: \n 64-bit block cipher 3DES vulnerable to SWEET32 attack\n 64-bit block cipher IDEA vulnerable to SWEET32 attack\n Broken cipher RC4 is deprecated by RFC 7465\n CBC-mode cipher in SSLv3 (CVE-2014-3566)\n Ciphersuite uses MD5 for message integrity\n TLSv1.0: \n ciphers: \n TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (secp256r1) - A\n TLS_DHE_RSA_WITH_AES_256_CBC_SHA (dh 2048) - A\n TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA (dh 2048) - A\n TLS_RSA_WITH_AES_256_CBC_SHA (rsa 2048) - A\n TLS_RSA_WITH_CAMELLIA_256_CBC_SHA (rsa 2048) - A\n TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (secp256r1) - A\n TLS_DHE_RSA_WITH_AES_128_CBC_SHA (dh 2048) - A\n TLS_DHE_RSA_WITH_SEED_CBC_SHA (dh 2048) - A\n TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA (dh 2048) - A\n TLS_RSA_WITH_AES_128_CBC_SHA (rsa 2048) - A\n TLS_RSA_WITH_SEED_CBC_SHA (rsa 2048) - A\n TLS_RSA_WITH_CAMELLIA_128_CBC_SHA (rsa 2048) - A\n TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA (secp256r1) - C\n TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA (dh 2048) - C\n TLS_RSA_WITH_3DES_EDE_CBC_SHA (rsa 2048) - C\n TLS_RSA_WITH_IDEA_CBC_SHA (rsa 2048) - A\n TLS_ECDHE_RSA_WITH_RC4_128_SHA (secp256r1) - C\n TLS_RSA_WITH_RC4_128_SHA (rsa 2048) - C\n TLS_RSA_WITH_RC4_128_MD5 (rsa 2048) - C\n compressors: \n NULL\n cipher preference: server\n warnings: \n 64-bit block cipher 3DES vulnerable to SWEET32 attack\n 64-bit block cipher IDEA vulnerable to SWEET32 attack\n Broken cipher RC4 is deprecated by RFC 7465\n Ciphersuite uses MD5 for message integrity\n TLSv1.1: \n ciphers: \n TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (secp256r1) - A\n TLS_DHE_RSA_WITH_AES_256_CBC_SHA (dh 2048) - A\n TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA (dh 2048) - A\n TLS_RSA_WITH_AES_256_CBC_SHA (rsa 2048) - A\n TLS_RSA_WITH_CAMELLIA_256_CBC_SHA (rsa 2048) - A\n TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (secp256r1) - A\n TLS_DHE_RSA_WITH_AES_128_CBC_SHA (dh 2048) - A\n TLS_DHE_RSA_WITH_SEED_CBC_SHA (dh 2048) - A\n TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA (dh 2048) - A\n TLS_RSA_WITH_AES_128_CBC_SHA (rsa 2048) - A\n TLS_RSA_WITH_SEED_CBC_SHA (rsa 2048) - A\n TLS_RSA_WITH_CAMELLIA_128_CBC_SHA (rsa 2048) - A\n TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA (secp256r1) - C\n TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA (dh 2048) - C\n TLS_RSA_WITH_3DES_EDE_CBC_SHA (rsa 2048) - C\n TLS_RSA_WITH_IDEA_CBC_SHA (rsa 2048) - A\n TLS_ECDHE_RSA_WITH_RC4_128_SHA (secp256r1) - C\n TLS_RSA_WITH_RC4_128_SHA (rsa 2048) - C\n TLS_RSA_WITH_RC4_128_MD5 (rsa 2048) - C\n compressors: \n NULL\n cipher preference: server\n warnings: \n 64-bit block cipher 3DES vulnerable to SWEET32 attack\n 64-bit block cipher IDEA vulnerable to SWEET32 attack\n Broken cipher RC4 is deprecated by RFC 7465\n Ciphersuite uses MD5 for message integrity\n TLSv1.2: \n ciphers: \n TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (secp256r1) - A\n TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (secp256r1) - A\n TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (secp256r1) - A\n TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 (dh 2048) - A\n TLS_DHE_RSA_WITH_AES_256_CBC_SHA256 (dh 2048) - A\n TLS_DHE_RSA_WITH_AES_256_CBC_SHA (dh 2048) - A\n TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA (dh 2048) - A\n TLS_RSA_WITH_AES_256_GCM_SHA384 (rsa 2048) - A\n TLS_RSA_WITH_AES_256_CBC_SHA256 (rsa 2048) - A\n TLS_RSA_WITH_AES_256_CBC_SHA (rsa 2048) - A\n TLS_RSA_WITH_CAMELLIA_256_CBC_SHA (rsa 2048) - A\n TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (secp256r1) - A\n TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 (secp256r1) - A\n TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (secp256r1) - A\n TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 (dh 2048) - A\n TLS_DHE_RSA_WITH_AES_128_CBC_SHA256 (dh 2048) - A\n TLS_DHE_RSA_WITH_AES_128_CBC_SHA (dh 2048) - A\n TLS_DHE_RSA_WITH_SEED_CBC_SHA (dh 2048) - A\n TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA (dh 2048) - A\n TLS_RSA_WITH_AES_128_GCM_SHA256 (rsa 2048) - A\n TLS_RSA_WITH_AES_128_CBC_SHA256 (rsa 2048) - A\n TLS_RSA_WITH_AES_128_CBC_SHA (rsa 2048) - A\n TLS_RSA_WITH_SEED_CBC_SHA (rsa 2048) - A\n TLS_RSA_WITH_CAMELLIA_128_CBC_SHA (rsa 2048) - A\n TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA (secp256r1) - C\n TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA (dh 2048) - C\n TLS_RSA_WITH_3DES_EDE_CBC_SHA (rsa 2048) - C\n TLS_RSA_WITH_IDEA_CBC_SHA (rsa 2048) - A\n TLS_ECDHE_RSA_WITH_RC4_128_SHA (secp256r1) - C\n TLS_RSA_WITH_RC4_128_SHA (rsa 2048) - C\n TLS_RSA_WITH_RC4_128_MD5 (rsa 2048) - C\n compressors: \n NULL\n cipher preference: server\n warnings: \n 64-bit block cipher 3DES vulnerable to SWEET32 attack\n 64-bit block cipher IDEA vulnerable to SWEET32 attack\n Broken cipher RC4 is deprecated by RFC 7465\n Ciphersuite uses MD5 for message integrity\n least strength: C", "port": "443", "protocol": "tcp", "service": "http", "version": "10.0", "cve_ids": [ "CVE-2014-3566" ] } ], "vulnerability_database": {} }, "os_detection": { "detected_os": [ { "name": "Linux 4.0", "accuracy": "96" }, { "name": "Linux 4.4", "accuracy": "93" }, { "name": "Linux 3.10 - 3.16", "accuracy": "89" }, { "name": "Linux 3.11 - 4.1", "accuracy": "88" }, { "name": "Linux 2.6.32", "accuracy": "88" }, { "name": "Linux 3.10", "accuracy": "87" }, { "name": "Linux 2.6.32 or 3.10", "accuracy": "86" }, { "name": "Linux 4.0", "accuracy": "92" }, { "name": "Linux 4.4", "accuracy": "88" }, { "name": "Linux 3.10 - 3.16", "accuracy": "87" }, { "name": "Linux 3.10", "accuracy": "85" } ] }, "host_scripts": [ { "id": "resolveall", "output": "\n Host 'freesearchigrservice.maharashtra.gov.in' also resolves to:\n Use the 'newtargets' script-arg to add the results as targets\n Use the --resolve-all option to scan all resolved addresses without using this script.\n" }, { "id": "dns-brute", "output": "\n DNS Brute-force hostnames: \n www.maharashtra.gov.in - 103.8.188.109\n home.maharashtra.gov.in - 164.100.52.98" }, { "id": "ip-geolocation-geoplugin", "output": "coordinates: nil, nil" }, { "id": "path-mtu", "output": "PMTU == 1500" }, { "id": "fcrdns", "output": "FAIL (No PTR record)" }, { "id": "qscan", "output": "\nPORT FAMILY MEAN (us) STDDEV LOSS (%)\n443 0 4262.00 444.35 0.0%\n8008 1 275.30 50.62 0.0%\n8015 1 264.50 47.79 0.0%\n" }, { "id": "ipidseq", "output": "All zeros" }, { "id": "port-states", "output": "\n tcp: \n open: 443,8008,8015" }, { "id": "dns-blacklist", "output": "\n SPAM\n list.quorum.to - SPAM\n l2.apews.org - FAIL\n all.spamrats.com - FAIL\n" }, { "id": "whois-domain", "output": "\n\nDomain name record found at whois.nixiregistry.in\nDomain Name: maharashtra.gov.in\r\nRegistry Domain ID: D9070-IN\r\nRegistrar URL: http://registry.gov.in\r\nUpdated Date: 2025-10-24T19:07:21.713Z\r\nCreation Date: 2002-10-24T19:06:10.603Z\r\nRegistry Expiry Date: 2026-10-24T19:06:10.470Z\r\nRegistrar: National Informatics Centre\r\nRegistrar IANA ID: 800111\r\nRegistrar Abuse Contact Email: sunita.singh@nic.in\r\nRegistrar Abuse Contact Phone: +91.1124305395\r\nDomain Status: autoRenewPeriod https://icann.org/epp#autoRenewPeriod\r\nRegistry Registrant ID: REDACTED FOR PRIVACY\r\nRegistrant Name: REDACTED FOR PRIVACY\r\nRegistrant Organization: Directorate of Information Technology\r\nRegistrant Street: REDACTED FOR PRIVACY\r\nRegistrant City: REDACTED FOR PRIVACY\r\nRegistrant State/Province: Maharashtra\r\nRegistrant Postal Code: REDACTED FOR PRIVACY\r\nRegistrant Country: IN\r\nRegistrant Phone: REDACTED FOR PRIVACY\r\nRegistrant Fax: REDACTED FOR PRIVACY\r\nRegistrant Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.\r\nRegistry Admin ID: REDACTED FOR PRIVACY\r\nAdmin Name: REDACTED FOR PRIVACY\r\nAdmin Organization: REDACTED FOR PRIVACY\r\nAdmin Street: REDACTED FOR PRIVACY\r\nAdmin City: REDACTED FOR PRIVACY\r\nAdmin State/Province: REDACTED FOR PRIVACY\r\nAdmin Postal Code: REDACTED FOR PRIVACY\r\nAdmin Country: REDACTED FOR PRIVACY\r\nAdmin Phone: REDACTED FOR PRIVACY\r\nAdmin Fax: REDACTED FOR PRIVACY\r\nAdmin Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.\r\nRegistry Tech ID: REDACTED FOR PRIVACY\r\nTech Name: REDACTED FOR PRIVACY\r\nTech Organization: REDACTED FOR PRIVACY\r\nTech Street: REDACTED FOR PRIVACY\r\nTech City: REDACTED FOR PRIVACY\r\nTech State/Province: REDACTED FOR PRIVACY\r\nTech Postal Code: REDACTED FOR PRIVACY\r\nTech Country: REDACTED FOR PRIVACY\r\nTech Phone: REDACTED FOR PRIVACY\r\nTech Fax: REDACTED FOR PRIVACY\r\nTech Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.\r\nRegistry Billing ID: REDACTED FOR PRIVACY\r\nBilling Name: REDACTED FOR PRIVACY\r\nBilling Organization: REDACTED FOR PRIVACY\r\nBilling Street: REDACTED FOR PRIVACY\r\nBilling City: REDACTED FOR PRIVACY\r\nBilling State/Province: REDACTED FOR PRIVACY\r\nBilling Postal Code: REDACTED FOR PRIVACY\r\nBilling Country: REDACTED FOR PRIVACY\r\nBilling Phone: REDACTED FOR PRIVACY\r\nBilling Fax: REDACTED FOR PRIVACY\r\nBilling Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.\r\nRegistry Billing ID: REDACTED FOR PRIVACY\r\nBilling Name: REDACTED FOR PRIVACY\r\nBilling Organization: REDACTED FOR PRIVACY\r\nBilling Street: REDACTED FOR PRIVACY\r\nBilling City: REDACTED FOR PRIVACY\r\nBilling State/Province: REDACTED FOR PRIVACY\r\nBilling Postal Code: REDACTED FOR PRIVACY\r\nBilling Country: REDACTED FOR PRIVACY\r\nBilling Phone: REDACTED FOR PRIVACY\r\nBilling Fax: REDACTED FOR PRIVACY\r\nBilling Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.\r\nName Server: ns9.maharashtra.gov.in\r\nName Server: ns20.maharashtra.gov.in\r\nName Server: ns18.maharashtra.gov.in\r\nName Server: ns8.maharashtra.gov.in\r\nName Server: ns10.maharashtra.gov.in\r\nDNSSEC: unsigned\r\nURL of the ICANN RDDS Inaccuracy Complaint Form: https://icann.org/wicf\r\n\r\n>>> Last update of WHOIS database: 2025-12-07T18:28:47.118Z <<<\r\n\r\nFor more information on domain status codes, please visit https://icann.org/epp\r\n\r\nThe WHOIS information provided in this page has been redacted\r\nin compliance with ICANN's Temporary Specification for gTLD\r\nRegistration Data.\r\n\r\nThe data in this record is provided by Tucows Registry for informational\r\npurposes only, and it does not guarantee its accuracy. Tucows Registry is\r\nauthoritative for whois information in top-level domains it operates\r\nunder contract with the Internet Corporation for Assigned Names and\r\nNumbers. Whois information from other top-level domains is provided by\r\na third-party under license to Tucows Registry.\r\n\r\nThis service is intended only for query-based access. By using this\r\nservice, you agree that you will use any data presented only for lawful\r\npurposes and that, under no circumstances will you use (a) data\r\nacquired for the purpose of allowing, enabling, or otherwise supporting\r\nthe transmission by e-mail, telephone, facsimile or other\r\ncommunications mechanism of mass unsolicited, commercial advertising\r\nor solicitations to entities other than your existing customers; or\r\n(b) this service to enable high volume, automated, electronic processes\r\nthat send queries or data to the systems of any Registrar or any\r\nRegistry except as reasonably necessary to register domain names or\r\nmodify existing domain name registrations.\r\n\r\nTucows Registry reserves the right to modify these terms at any time. By\r\nsubmitting this query, you agree to abide by this policy. All rights\r\nreserved.\r\n" }, { "id": "asn-query", "output": "\nBGP: 115.124.105.0/24 \| Country: IN\n Origin AS: 45815 - HOSTCOIN-AS-IN-AP ESDS Software Solution Limited., IN\n Peer AS: 9498" }, { "id": "whois-ip", "output": "Record found at whois.apnic.net\ninetnum: 115.124.105.0 - 115.124.105.255\nnetname: HOSTCOIN-IN\ndescr: ESDS Software Solution Private limited\ncountry: IN\nrole: ESDS SOFTWARE SOLUTION PVT LTD - network administr\nemail: abuse@esds.co.in" } ], "recommendations": [ { "priority": "CRITICAL", "category": "Critical Vulnerabilities", "finding": "1 critical vulnerabilities detected", "recommendation": "Apply emergency security patches immediately - system is at high risk" }, { "priority": "HIGH", "category": "Vulnerabilities", "finding": "4 total vulnerabilities detected", "recommendation": "Review and patch all identified vulnerabilities according to severity" }, { "priority": "MEDIUM", "category": "Best Practices", "finding": "Regular security assessments needed", "recommendation": "Schedule quarterly security scans" }, { "priority": "MEDIUM", "category": "Monitoring", "finding": "Continuous monitoring recommended", "recommendation": "Implement IDS/IPS for real-time threat detection" } ] }	Error: An error occurred (ValidationException) wh…
6936120ffbb5a30309ab5992	Sun Dec 07 2025 23:47:27 GMT+0000 (Coordinated Universal Time)	https://www.iitjammu.ac.in/	nmap_scan	{ "report_metadata": { "target": "www.iitjammu.ac.in", "original_target": "https://www.iitjammu.ac.in/", "scan_timestamp": "20251207_205557", "scan_date": "2025-12-07T22:48:25.545151", "scanner_version": "Enhanced Blue Team Scanner v3.0 - Consolidated Edition", "total_scans_executed": 623 }, "executive_summary": { "total_open_ports": 5, "total_services_detected": 4, "total_vulnerabilities": 4, "critical_vulnerabilities": 0, "high_vulnerabilities": 0, "medium_vulnerabilities": 0, "low_vulnerabilities": 0, "risk_score": 50, "risk_level": "MEDIUM" }, "port_analysis": { "open_ports": [ { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": null, "product": "Node.js Express framework", "extrainfo": null, "cpe": [ "cpe:/a:nodejs:node.js" ], "scripts": [ { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." }, { "id": "http-cors", "output": "HEAD GET POST PUT DELETE PATCH" }, { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "tls-alpn", "output": "\n http/1.1" }, { "id": "http-title", "output": "Indian Institute of Technology Jammu \| Leading Engineering Ins..." }, { "id": "http-robots.txt", "output": "1 disallowed entry \n/cgi-bin/" }, { "id": "http-vuln-cve2011-3192", "output": "\n VULNERABLE:\n Apache byterange filter DoS\n State: VULNERABLE\n IDs: CVE:CVE-2011-3192 BID:49303\n The Apache web server is vulnerable to a denial of service attack when numerous\n overlapping byte ranges are requested.\n Disclosure date: 2011-08-19\n References:\n https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3192\n https://www.tenable.com/plugins/nessus/55976\n https://seclists.org/fulldisclosure/2011/Aug/175\n https://www.securityfocus.com/bid/49303\n" }, { "id": "ssl-date", "output": "TLS randomness does not represent time" }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "ssl-cert", "output": "Subject: commonName=.iitjammu.ac.in\nSubject Alternative Name: DNS:.iitjammu.ac.in, DNS:iitjammu.ac.in\nNot valid before: 2025-07-15T07:52:31\nNot valid after: 2026-08-16T07:52:30" } ] }, { "port": "8008", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "http-aspnet-debug", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)" } ] }, { "port": "8015", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "cfg-cloud", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "ssl-date", "output": "TLS randomness does not represent time" }, { "id": "ssl-cert", "output": "Subject: commonName=www.iitjammu.ac.in\nSubject Alternative Name: DNS:www.iitjammu.ac.in\nNot valid before: 2025-11-07T21:00:14\nNot valid after: 2026-12-07T21:00:14" }, { "id": "fingerprint-strings", "output": "\n GenericLines, GetRequest: \n HTTP/1.1 200 OK\n Content-Length: 4492\n Connection: close\n Cache-Control: no-cache\n Content-Type: text/html; charset=utf-8\n X-Frame-Options: SAMEORIGIN\n X-XSS-Protection: 1; mode=block\n X-Content-Type-Options: nosniff\n Content-Security-Policy: frame-ancestors 'self'\n <!DOCTYPE html>\n <html lang=\"en\">\n <head>\n <meta charset=\"UTF-8\">\n <meta http-equiv=\"X-UA-Compatible\" content=\"IE=8; IE=EDGE\">\n <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">\n <style type=\"text/css\">\n body {\n height: 100%;\n font-family: Helvetica, Arial, sans-serif;\n color: #6a6a6a;\n margin: 0;\n display: flex;\n align-items: center;\n justify-content: center;\n input[type=date], input[type=email], input[type=number], input[type=password]" } ] }, { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "https", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [] }, { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "tcpwrapped", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [] } ], "high_risk_ports": [] }, "service_analysis": { "services_detected": { "http": [ { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": null, "product": "Node.js Express framework", "extrainfo": null, "cpe": [ "cpe:/a:nodejs:node.js" ], "scripts": [ { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." }, { "id": "http-cors", "output": "HEAD GET POST PUT DELETE PATCH" }, { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "tls-alpn", "output": "\n http/1.1" }, { "id": "http-title", "output": "Indian Institute of Technology Jammu \| Leading Engineering Ins..." }, { "id": "http-robots.txt", "output": "1 disallowed entry \n/cgi-bin/" }, { "id": "http-vuln-cve2011-3192", "output": "\n VULNERABLE:\n Apache byterange filter DoS\n State: VULNERABLE\n IDs: CVE:CVE-2011-3192 BID:49303\n The Apache web server is vulnerable to a denial of service attack when numerous\n overlapping byte ranges are requested.\n Disclosure date: 2011-08-19\n References:\n https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3192\n https://www.tenable.com/plugins/nessus/55976\n https://seclists.org/fulldisclosure/2011/Aug/175\n https://www.securityfocus.com/bid/49303\n" }, { "id": "ssl-date", "output": "TLS randomness does not represent time" }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "ssl-cert", "output": "Subject: commonName=.iitjammu.ac.in\nSubject Alternative Name: DNS:.iitjammu.ac.in, DNS:iitjammu.ac.in\nNot valid before: 2025-07-15T07:52:31\nNot valid after: 2026-08-16T07:52:30" } ] }, { "port": "8008", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "http", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "http-csrf", "output": "Couldn't find any CSRF vulnerabilities." }, { "id": "http-aspnet-debug", "output": "ERROR: Script execution failed (use -d to debug)" }, { "id": "http-dombased-xss", "output": "Couldn't find any DOM based XSS." }, { "id": "http-stored-xss", "output": "Couldn't find any stored XSS vulnerabilities." }, { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)" } ] } ], "cfg-cloud": [ { "port": "8015", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "cfg-cloud", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [ { "id": "ssl-date", "output": "TLS randomness does not represent time" }, { "id": "ssl-cert", "output": "Subject: commonName=www.iitjammu.ac.in\nSubject Alternative Name: DNS:www.iitjammu.ac.in\nNot valid before: 2025-11-07T21:00:14\nNot valid after: 2026-12-07T21:00:14" }, { "id": "fingerprint-strings", "output": "\n GenericLines, GetRequest: \n HTTP/1.1 200 OK\n Content-Length: 4492\n Connection: close\n Cache-Control: no-cache\n Content-Type: text/html; charset=utf-8\n X-Frame-Options: SAMEORIGIN\n X-XSS-Protection: 1; mode=block\n X-Content-Type-Options: nosniff\n Content-Security-Policy: frame-ancestors 'self'\n <!DOCTYPE html>\n <html lang=\"en\">\n <head>\n <meta charset=\"UTF-8\">\n <meta http-equiv=\"X-UA-Compatible\" content=\"IE=8; IE=EDGE\">\n <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\">\n <style type=\"text/css\">\n body {\n height: 100%;\n font-family: Helvetica, Arial, sans-serif;\n color: #6a6a6a;\n margin: 0;\n display: flex;\n align-items: center;\n justify-content: center;\n input[type=date], input[type=email], input[type=number], input[type=password]" } ] } ], "https": [ { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "https", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [] } ], "tcpwrapped": [ { "port": "443", "protocol": "tcp", "state": "open", "reason": "syn-ack", "service": "tcpwrapped", "version": null, "product": null, "extrainfo": null, "cpe": [], "scripts": [] } ] }, "service_fingerprints": { "443_tcp": [ { "port": "443", "protocol": "tcp", "service": "tcpwrapped", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssh_analysis", "timestamp": "2025-12-07T21:06:16.590300" }, { "port": "443", "protocol": "tcp", "service": "http", "product": "Node.js Express framework", "version": null, "cpe": [ "cpe:/a:nodejs:node.js" ], "method": null, "confidence": null, "scan": "service_ssl_analysis", "timestamp": "2025-12-07T21:06:28.396828" }, { "port": "443", "protocol": "tcp", "service": "http", "product": "Node.js Express framework", "version": null, "cpe": [ "cpe:/a:nodejs:node.js" ], "method": null, "confidence": null, "scan": "service_web_comprehensive", "timestamp": "2025-12-07T21:06:40.875154" } ], "8008_tcp": [ { "port": "8008", "protocol": "tcp", "service": "http", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssh_analysis", "timestamp": "2025-12-07T21:06:16.590300" }, { "port": "8008", "protocol": "tcp", "service": "http", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssl_analysis", "timestamp": "2025-12-07T21:06:28.396828" }, { "port": "8008", "protocol": "tcp", "service": "http", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_web_comprehensive", "timestamp": "2025-12-07T21:06:40.875154" } ], "8015_tcp": [ { "port": "8015", "protocol": "tcp", "service": "cfg-cloud", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssh_analysis", "timestamp": "2025-12-07T21:06:16.590300" }, { "port": "8015", "protocol": "tcp", "service": "cfg-cloud", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_ssl_analysis", "timestamp": "2025-12-07T21:06:28.396828" }, { "port": "8015", "protocol": "tcp", "service": "cfg-cloud", "product": null, "version": null, "cpe": [], "method": null, "confidence": null, "scan": "service_web_comprehensive", "timestamp": "2025-12-07T21:06:40.875154" } ] } }, "vulnerability_analysis": { "vulnerabilities": [ { "id": "http-vuln-cve2011-3192", "output": "\n VULNERABLE:\n Apache byterange filter DoS\n State: VULNERABLE\n IDs: CVE:CVE-2011-3192 BID:49303\n The Apache web server is vulnerable to a denial of service attack when numerous\n overlapping byte ranges are requested.\n Disclosure date: 2011-08-19\n References:\n https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3192\n https://www.tenable.com/plugins/nessus/55976\n https://seclists.org/fulldisclosure/2011/Aug/175\n https://www.securityfocus.com/bid/49303\n", "port": "443", "protocol": "tcp", "service": "http", "version": null, "cve_ids": [ "CVE-2011-3192" ] }, { "id": "http-vuln-cve2014-3704", "output": "ERROR: Script execution failed (use -d to debug)", "port": "8008", "protocol": "tcp", "service": "http", "version": null, "cve_ids": [] }, { "id": "http-slowloris-check", "output": "\n VULNERABLE:\n Slowloris DOS attack\n State: LIKELY VULNERABLE\n IDs: CVE:CVE-2007-6750\n Slowloris tries to keep many connections to the target web server open and hold\n them open as long as possible. It accomplishes this by opening connections to\n the target web server and sending a partial request. By doing so, it starves\n the http server's resources causing Denial Of Service.\n \n Disclosure date: 2009-09-17\n References:\n https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6750\n http://ha.ckers.org/slowloris/\n", "port": "443", "protocol": "tcp", "service": "http", "version": null, "cve_ids": [ "CVE-2007-6750" ] }, { "id": "http-vuln-cve2017-1001000", "output": "ERROR: Script execution failed (use -d to debug)", "port": "443", "protocol": "tcp", "service": "http", "version": null, "cve_ids": [] } ], "vulnerability_database": {} }, "os_detection": { "detected_os": [ { "name": "Android 7.1.2 (Linux 3.10)", "accuracy": "87" }, { "name": "Fortinet FortiGate-50B or 310B firewall", "accuracy": "100" } ] }, "host_scripts": [ { "id": "resolveall", "output": "\n Host 'www.iitjammu.ac.in' also resolves to:\n Use the 'newtargets' script-arg to add the results as targets\n Use the --resolve-all option to scan all resolved addresses without using this script.\n" }, { "id": "dns-brute", "output": "\n DNS Brute-force hostnames: \n intranet.iitjammu.ac.in - 10.10.10.44\n app.iitjammu.ac.in - 14.139.53.135\n ns1.iitjammu.ac.in - 14.139.53.132\n ns2.iitjammu.ac.in - 14.139.53.133\n ns3.iitjammu.ac.in - 103.210.100.67\n vpn.iitjammu.ac.in - 14.139.53.137\n mail.iitjammu.ac.in - 142.250.76.211\n beta.iitjammu.ac.in - 10.10.120.180\n mail.iitjammu.ac.in - 2404:6800:4009:80f::2013\n firewall.iitjammu.ac.in - 10.10.194.50\n www.iitjammu.ac.in - 14.139.53.140" }, { "id": "ip-geolocation-geoplugin", "output": "coordinates: nil, nil" }, { "id": "fcrdns", "output": "FAIL (No PTR record)" }, { "id": "qscan", "output": "\nPORT FAMILY MEAN (us) STDDEV LOSS (%)\n443 0 43057.60 9124.70 0.0%\n8008 1 288.20 41.97 0.0%\n8015 1 274.20 60.17 0.0%\n" }, { "id": "ipidseq", "output": "All zeros" }, { "id": "port-states", "output": "\n tcp: \n open: 443,8008,8015" }, { "id": "dns-blacklist", "output": "\n SPAM\n l2.apews.org - FAIL\n list.quorum.to - SPAM\n all.spamrats.com - FAIL\n" }, { "id": "whois-domain", "output": "\n\nDomain name record found at whois.nixiregistry.in\nDomain Name: iitjammu.ac.in\r\nRegistry Domain ID: D414400000000900004-IN\r\nRegistrar URL: http://www.ernet.in\r\nUpdated Date: 2021-06-09T03:17:25.709Z\r\nCreation Date: 2016-05-11T04:21:01.897Z\r\nRegistry Expiry Date: 2030-05-11T04:21:01.897Z\r\nRegistrar: ERNET India\r\nRegistrar IANA ID: 800068\r\nRegistrar Abuse Contact Email: tejalt@eis.ernet.in\r\nRegistrar Abuse Contact Phone: +91.1123358248\r\nDomain Status: ok https://icann.org/epp#ok\r\nRegistry Registrant ID: REDACTED FOR PRIVACY\r\nRegistrant Name: REDACTED FOR PRIVACY\r\nRegistrant Organization: Indian Institute of Technology JAMMU\r\nRegistrant Street: REDACTED FOR PRIVACY\r\nRegistrant City: REDACTED FOR PRIVACY\r\nRegistrant State/Province: \r\nRegistrant Postal Code: REDACTED FOR PRIVACY\r\nRegistrant Country: IN\r\nRegistrant Phone: REDACTED FOR PRIVACY\r\nRegistrant Fax: REDACTED FOR PRIVACY\r\nRegistrant Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.\r\nRegistry Admin ID: REDACTED FOR PRIVACY\r\nAdmin Name: REDACTED FOR PRIVACY\r\nAdmin Organization: REDACTED FOR PRIVACY\r\nAdmin Street: REDACTED FOR PRIVACY\r\nAdmin City: REDACTED FOR PRIVACY\r\nAdmin State/Province: REDACTED FOR PRIVACY\r\nAdmin Postal Code: REDACTED FOR PRIVACY\r\nAdmin Country: REDACTED FOR PRIVACY\r\nAdmin Phone: REDACTED FOR PRIVACY\r\nAdmin Fax: REDACTED FOR PRIVACY\r\nAdmin Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.\r\nRegistry Tech ID: REDACTED FOR PRIVACY\r\nTech Name: REDACTED FOR PRIVACY\r\nTech Organization: REDACTED FOR PRIVACY\r\nTech Street: REDACTED FOR PRIVACY\r\nTech City: REDACTED FOR PRIVACY\r\nTech State/Province: REDACTED FOR PRIVACY\r\nTech Postal Code: REDACTED FOR PRIVACY\r\nTech Country: REDACTED FOR PRIVACY\r\nTech Phone: REDACTED FOR PRIVACY\r\nTech Fax: REDACTED FOR PRIVACY\r\nTech Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.\r\nRegistry Billing ID: REDACTED FOR PRIVACY\r\nBilling Name: REDACTED FOR PRIVACY\r\nBilling Organization: REDACTED FOR PRIVACY\r\nBilling Street: REDACTED FOR PRIVACY\r\nBilling City: REDACTED FOR PRIVACY\r\nBilling State/Province: REDACTED FOR PRIVACY\r\nBilling Postal Code: REDACTED FOR PRIVACY\r\nBilling Country: REDACTED FOR PRIVACY\r\nBilling Phone: REDACTED FOR PRIVACY\r\nBilling Fax: REDACTED FOR PRIVACY\r\nBilling Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.\r\nName Server: ns3.iitjammu.ac.in\r\nName Server: ns1.iitjammu.ac.in\r\nName Server: ns2.iitjammu.ac.in\r\nDNSSEC: unsigned\r\nURL of the ICANN RDDS Inaccuracy Complaint Form: https://icann.org/wicf\r\n\r\n>>> Last update of WHOIS database: 2025-12-07T22:31:44.705Z <<<\r\n\r\nFor more information on domain status codes, please visit https://icann.org/epp\r\n\r\nThe WHOIS information provided in this page has been redacted\r\nin compliance with ICANN's Temporary Specification for gTLD\r\nRegistration Data.\r\n\r\nThe data in this record is provided by Tucows Registry for informational\r\npurposes only, and it does not guarantee its accuracy. Tucows Registry is\r\nauthoritative for whois information in top-level domains it operates\r\nunder contract with the Internet Corporation for Assigned Names and\r\nNumbers. Whois information from other top-level domains is provided by\r\na third-party under license to Tucows Registry.\r\n\r\nThis service is intended only for query-based access. By using this\r\nservice, you agree that you will use any data presented only for lawful\r\npurposes and that, under no circumstances will you use (a) data\r\nacquired for the purpose of allowing, enabling, or otherwise supporting\r\nthe transmission by e-mail, telephone, facsimile or other\r\ncommunications mechanism of mass unsolicited, commercial advertising\r\nor solicitations to entities other than your existing customers; or\r\n(b) this service to enable high volume, automated, electronic processes\r\nthat send queries or data to the systems of any Registrar or any\r\nRegistry except as reasonably necessary to register domain names or\r\nmodify existing domain name registrations.\r\n\r\nTucows Registry reserves the right to modify these terms at any time. By\r\nsubmitting this query, you agree to abide by this policy. All rights\r\nreserved.\r\n" }, { "id": "asn-query", "output": "\nBGP: 14.139.32.0/19 \| Country: IN\n Origin AS: 55824 - NKN-CORE-NW NKN Core Network, IN\n Peer AS: 9885" }, { "id": "whois-ip", "output": "Record found at whois.apnic.net\ninetnum: 14.139.53.128 - 14.139.53.143\nnetname: NKN-IIT-JAMMU\ndescr: Institute of Technology Jammu, Jagti Campus\ncountry: IN\nrole: ABUSE NKNIITJAMMU\nemail: support.jk@nkn.in\nperson: Shri Sanat Kumar Tiwari\nemail: sanat.tiwari@iitjammu.ac.in" } ], "recommendations": [ { "priority": "CRITICAL", "category": "Critical Vulnerabilities", "finding": "1 critical vulnerabilities detected", "recommendation": "Apply emergency security patches immediately - system is at high risk" }, { "priority": "HIGH", "category": "Vulnerabilities", "finding": "4 total vulnerabilities detected", "recommendation": "Review and patch all identified vulnerabilities according to severity" }, { "priority": "MEDIUM", "category": "Best Practices", "finding": "Regular security assessments needed", "recommendation": "Schedule quarterly security scans" }, { "priority": "MEDIUM", "category": "Monitoring", "finding": "Continuous monitoring recommended", "recommendation": "Implement IDS/IPS for real-time threat detection" } ] }	Error: An error occurred (ValidationException) wh…

Rename Collection

Tools

Export Standard

Export --jsonArray

Import --mongoexport json

Collection Stats

Documents	60
Total doc size	3.19 MB
Average doc size	54.47 KB
Pre-allocated size	936 KB
Indexes	1
Total index size	36 KB
Padding factor
Extents

Indexes

Name	Columns	Size	Attributes	Actions
_id_	_id ASC	36 KB		DEL