Summary
A Concise Overview of the scan result of url https://otx.alienvault.com/indicator/file/e590f6ad5d0a831e297ed14c29af8467085d33bb26216501b621fbe8e8eca23b
- Document
- HTML
- 4
- StyleSheets
- 1
- Scripts
- 16
- Font
- 0
- Images
- 7
- Links
- 3
- JavaScript Variables
- 235
- Console log messages
- 0
- Network
- Requests
- 45
- Bytes Transferred
- 2.34MB
- Bytes Total
- 9.71MB
- DNS Record
- A Record
- 4
- Technology
- Programming languages
- 1
- PaaS
- 1
- Web servers
- 1
- Analytics
- 4
- Security
- 1
- Tag managers
- 1
- Marketing automation
- 1
- CDN
- 2
- SSL/TLS certificate authorities
- 1
Document
Links
The outgoing links identified from the page.
Link | Text |
---|---|
https://www.virustotal.com/gui/file/e590f6ad5d0a831e297ed14c29af8467085d33bb26216501b621fbe8e8eca23b/detection/ | VirusTotal |
https://www.us-cert.gov/tlp | TLP |
https://cybersecurity.att.com/terms/otx-eula | Legal |
JavaScript Variables
Global JavaScript variables are variables that are defined outside of any function or block scope in JavaScript.
Technology
The technologies identified are present on the scanned URL.
Name | Description | Detected patterns |
---|---|---|
Analytics | ||
Linkedin Insight Tag | LinkedIn Insight Tag is a lightweight JavaScript tag that powers conversion tracking, website audiences, and website demographics. | Type: scriptSrc Regex: snap\.licdn\.com\/li\.lms-analytics\/insight\.min\.js |
Google Analytics | Google Analytics is a free web analytics service that tracks and reports website traffic. | Type: scriptSrc Regex: google-analytics\.com\/(?:ga|urchin|analytics)\.js |
Dreamdata | Dreamdata is a B2B revenue attribution platform. | Type: scriptSrc Regex: \.bizible\.com\/ |
Amplitude | Amplitude is a web and mobile analytics solution with cross-platform user journey tracking, user behavior analysis and segmentation capabilities. | Type: scriptSrc Regex: cdn\.(?:segment.{1,250})?amplitude(?:\.com|-plugins) |
Security | ||
HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS. | Type: headers Name: strict-transport-security Regex: (?:) | |
Web servers | ||
gunicorn | Type: headers Name: server Regex: gunicorn(?:\/([\d.]{1,250}))? | |
Programming languages | ||
Python | Python is an interpreted and general-purpose programming language. | Dependent on gunicorn |
CDN | ||
Amazon S3 | Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface. | Type: headers Name: server Regex: ^AmazonS3$ |
Amazon CloudFront | Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds. | Type: headers Name: x-amz-cf-id Regex: \(CloudFront\)$ |
Marketing automation | ||
Dreamdata | Dreamdata is a B2B revenue attribution platform. | Type: scriptSrc Regex: \.bizible\.com\/ |
Tag managers | ||
Google Tag Manager | Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app. | Type: html Regex: googletagmanager\.com\/ns\.html[^>]{1,250}><\/iframe> |
PaaS | ||
Amazon Web Services | Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality. | Dependent on AWS Certificate Manager,Amazon CloudFront,Amazon S3 |
SSL/TLS certificate authorities | ||
AWS Certificate Manager | AWS Certificate Manager is a service that lets you easily provision, manage, and deploy public and private Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificates for use with AWS services and your internal connected resources. | Type: certIssuer Regex: Amazon |
Performance
The speed and efficiency of the scanned URL loads and displays its content.
- dns
- 1 msGood
- tcp
- 92 msGood
- requestTime
- 3 msGood
- dom
- 3252 msPoor
DNS Record
A DNS record maps a domain name to an IP address or other resource information.
Type | Name | Content | DNSSEC |
---|---|---|---|
A | otx.alienvault.com | 108.138.106.13 | no |
A | otx.alienvault.com | 108.138.106.126 | no |
A | otx.alienvault.com | 108.138.106.113 | no |
A | otx.alienvault.com | 108.138.106.105 | no |
SSL Certificate
An SSL certificate is a digital certificate that verifies the authenticity and encrypts the communication between a website and its visitors.
Subject | Issue date | Expiry date | Valid |
---|---|---|---|
otx.alienvault.io Amazon RSA 2048 M03 | 2/18/2024 | 3/18/2025 | 1 year 29 days |
*.google-analytics.com WR2 | 8/26/2024 | 11/18/2024 | 2 months 23 days |
snap.licdn.com DigiCert SHA2 Secure Server CA | 12/13/2023 | 12/12/2024 | 1 year |
*.marketo.com DigiCert TLS RSA SHA256 2020 CA1 | 12/8/2023 | 12/11/2024 | 1 year 4 days |
walkme.com DigiCert TLS RSA SHA256 2020 CA1 | 12/4/2023 | 12/3/2024 | 1 year |
io.bizible.com DigiCert Global G2 TLS RSA SHA256 2020 CA1 | 6/7/2024 | 7/8/2025 | 1 year 1 month 1 day |
cdn.amplitude.com Amazon RSA 2048 M02 | 12/14/2023 | 1/12/2025 | 1 year 1 month |
*.amplitude.com COMODO RSA Domain Validation Secure Server CA | 1/31/2024 | 3/2/2025 | 1 year 1 month 1 day |
www.linkedin.com DigiCert SHA2 Secure Server CA | 9/11/2024 | 3/11/2025 | 6 months 1 day |
HTTP Headers
HTTP Header
An HTTP header is a component of an HTTP request or response that contains additional information about the message being sent or received.
Name | Value |
---|---|
Connection | keep-alive |
Content-Encoding | gzip |
Content-Type | text/html |
Date | Wed, 02 Oct 2024 03:52:52 GMT |
ETag | W/"788f521c3bf294cca29e1463944e73f1" |
Last-Modified | Sun, 05 May 2024 16:16:14 GMT |
Referrer-Policy | same-origin |
Server | CloudFront |
Strict-Transport-Security | max-age=63072000; includeSubdomains; preload |
Transfer-Encoding | chunked |
Vary | Accept-Encoding |
Via | 1.1 2cff359ff8f96b22081454ca4ccb527e.cloudfront.net (CloudFront) |
X-Amz-Cf-Id | oxIJf3kuKz45GeBCcrhbk1Lo9z-4IplDsDK_ILuXuWYIBYLxfXkD4A== |
X-Amz-Cf-Pop | MAD56-P2 |
X-Cache | Error from cloudfront |
X-Content-Type-Options | nosniff |
X-Frame-Options | SAMEORIGIN |
X-XSS-Protection | 1; mode=block |
Content Security Policy
Content Security Policy (CSP) is a security mechanism that helps prevent cross-site scripting (XSS) and other code injection attacks by specifying which content sources are allowed to be loaded on a web page.
Name | Value |
---|
Cookies
Cookies are small pieces of data stored on a user's web browser to track and remember information about their browsing activity on a website.
Name | Value | Domain/Path | Expires | Secure | HTTP Only |
---|---|---|---|---|---|
_biz_uid | d9f0bad5540946be91c4c74cf84ea192 | .alienvault.com/ | 10/2/2025, 3:54:08 AM | no | no |
_biz_nA | 1 | .alienvault.com/ | 10/2/2025, 3:54:08 AM | no | no |
_BUID | d9f0bad5540946be91c4c74cf84ea192 | .bizible.com/ | 10/2/2025, 3:54:08 AM | yes | no |
_biz_pendingA | %5B%5D | .alienvault.com/ | 10/2/2025, 3:54:08 AM | no | no |
_BUID | 9c2ff06ac42973ad7161a3f1250b9853 | .bizibly.com/ | 10/2/2025, 3:54:08 AM | yes | no |
bcookie | "v=2&484b2ec5-bde1-4b2a-875f-465aac5f80c7" | .linkedin.com/ | 10/2/2025, 3:54:08 AM | yes | no |
li_gc | MTswOzE3Mjc4NDEyNDg7MjswMjEmBH0P4B3vKEt81hrM+TsikXxFfglHgb7QmjRrNQSiIw== | .linkedin.com/ | 3/31/2025, 3:54:08 AM | yes | no |
lidc | "b=OGST02:s=O:r=O:a=O:p=O:g=3360:u=1:x=1:i=1727841248:t=1727927648:v=2:sig=AQE1sgYzuF4cEAB14Vcl07-4f482YLy0" | .linkedin.com/ | 10/3/2024, 3:54:08 AM | yes | no |
_biz_flagsA | %7B%22Version%22%3A1%2C%22ViewThrough%22%3A%221%22%2C%22XDomain%22%3A%221%22%7D | .alienvault.com/ | 10/2/2025, 3:54:09 AM | no | no |
amp_d684c2 | YAOXDE5WlLLIQVjWhkw_DQ.dW5kZWZpbmVk..1i95lq9ih.1i95lqb0a.2.0.2 | .alienvault.com/ | 10/2/2025, 3:54:10 AM | no | no |
_ga | GA1.2.1089455197.1727841250 | .alienvault.com/ | 11/6/2025, 3:54:10 AM | no | no |
_gid | GA1.2.2094323119.1727841250 | .alienvault.com/ | 10/3/2024, 3:54:10 AM | no | no |
_gat_UA-61532914-2 | 1 | .alienvault.com/ | 10/2/2024, 3:55:10 AM | no | no |
_gat_UA-30202444-1 | 1 | .alienvault.com/ | 10/2/2024, 3:55:10 AM | no | no |
_ga_CFEZL5YNVB | GS1.2.1727841251.1.0.1727841251.0.0.0 | .alienvault.com/ | 11/6/2025, 3:54:11 AM | no | no |