Summary
A Concise Overview of the scan result of url https://www.corp-internal.com/load_training?guid=cae3cda43dac19e5&correlation_id=ba9c556e-91ff-4dae-9d48-ee1f957062b3
- Document
- HTML
- 78
- StyleSheets
- 3
- Scripts
- 16
- Font
- 1
- Images
- 7
- Links
- 0
- JavaScript Variables
- 58
- Console log messages
- 0
- Network
- Requests
- 108
- Bytes Transferred
- 396.04KB
- Bytes Total
- 614.84KB
- DNS Record
- CNAME Record
- 2
- A Record
- 2
- Technology
- PaaS
- 1
- Web servers
- 1
- JavaScript libraries
- 1
- CDN
- 2
- SSL/TLS certificate authorities
- 1
Document
Links
The outgoing links identified from the page.
Link | Text |
---|
JavaScript Variables
Global JavaScript variables are variables that are defined outside of any function or block scope in JavaScript.
Technology
The technologies identified are present on the scanned URL.
Name | Description | Detected patterns |
---|---|---|
Web servers | ||
Apache Traffic Server | Apache Traffic Server is an open-source caching and proxying server that serves as an HTTP/1.1 and HTTP/2 reverse proxy with caching capabilities, load balancing, request routing, SSL termination, and support for advanced HTTP features. | Type: headers Name: server Regex: ATS\/?([\d.]{1,250})? |
CDN | ||
Google Hosted Libraries | Google Hosted Libraries is a stable, reliable, high-speed, globally available content distribution network for the most popular, open-source JavaScript libraries. | Type: scriptSrc Regex: ajax\.googleapis\.com\/ajax\/libs\/ |
Amazon S3 | Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface. | Type: scriptSrc Regex: s3[^ ]{0,250}\.amazonaws\.com\/ |
JavaScript libraries | ||
jQuery | jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax. | Type: scriptSrc Regex: jquery |
PaaS | ||
Amazon Web Services | Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality. | Dependent on AWS Certificate Manager,Amazon S3 |
SSL/TLS certificate authorities | ||
AWS Certificate Manager | AWS Certificate Manager is a service that lets you easily provision, manage, and deploy public and private Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificates for use with AWS services and your internal connected resources. | Type: certIssuer Regex: Amazon |
Performance
The speed and efficiency of the scanned URL loads and displays its content.
- dns
- 1 msGood
- tcp
- 1 msGood
- requestTime
- 5 msGood
- dom
- -500 msGood
DNS Record
A DNS record maps a domain name to an IP address or other resource information.
Type | Name | Content | DNSSEC |
---|---|---|---|
CNAME | www.corp-internal.com | prod-lp-alb-1655798893.us-east-1.elb.amazonaws.com. | no |
A | prod-lp-alb-1655798893.us-east-1.elb.amazonaws.com | 52.202.196.44 | no |
A | prod-lp-alb-1655798893.us-east-1.elb.amazonaws.com | 3.233.249.244 | no |
CNAME | www.corp-internal.com | prod-lp-alb-1655798893.us-east-1.elb.amazonaws.com. | no |
SSL Certificate
An SSL certificate is a digital certificate that verifies the authenticity and encrypts the communication between a website and its visitors.
Subject | Issue date | Expiry date | Valid |
---|---|---|---|
breaking-news-now.com Amazon RSA 2048 M02 | 3/19/2024 | 4/18/2025 | 1 year 1 month |
*.s3.amazonaws.com Amazon RSA 2048 M01 | 4/22/2024 | 4/7/2025 | 11 months 20 days |
upload.video.google.com WR2 | 6/24/2024 | 9/16/2024 | 2 months 23 days |
*.cloudfront.net Amazon RSA 2048 M01 | 10/10/2023 | 9/19/2024 | 11 months 15 days |
*.gstatic.com WR2 | 6/13/2024 | 9/5/2024 | 2 months 23 days |
HTTP Headers
HTTP Header
An HTTP header is a component of an HTTP request or response that contains additional information about the message being sent or received.
Name | Value |
---|---|
access-control-allow-origin | * |
cache-control | max-age=0, private, must-revalidate |
content-encoding | gzip |
content-type | text/html; charset=utf-8 |
date | Thu, 11 Jul 2024 14:44:51 GMT |
etag | W/"8d9aa205f7c30ef8627cf51e46909dba" |
referrer-policy | strict-origin-when-cross-origin |
server | ThreatSim-Web-Server |
vary | Accept-Encoding |
x-content-type-options | nosniff |
x-download-options | noopen |
x-frame-options | SAMEORIGIN |
x-host-info | lw-prod-us-i-00699882bdd2baea0 ; f2b5de6fff38e7dd7ac15e124f070d93bb1446d3 |
x-permitted-cross-domain-policies | none |
x-request-id | 3d9a6a71-cab6-4d78-a50b-7119a940409f |
x-runtime | 0.012350 |
x-xss-protection | 1; mode=block |
Content Security Policy
Content Security Policy (CSP) is a security mechanism that helps prevent cross-site scripting (XSS) and other code injection attacks by specifying which content sources are allowed to be loaded on a web page.
Name | Value |
---|
Cookies
Cookies are small pieces of data stored on a user's web browser to track and remember information about their browsing activity on a website.
Name | Value | Domain/Path | Expires | Secure | HTTP Only |
---|---|---|---|---|---|
EXFILGUID | e3cdadac19 | www.corp-internal.com/ | 12/31/1969, 11:59:59 PM | no | no |
link_clicked_e3cdadac19 | 1 | www.corp-internal.com/ | 12/31/1969, 11:59:59 PM | no | no |
akaalb_OCE_Failover | 1720709149~op=JCOM_OCE:oceProdappJcomProdOrigin|~rv=69~m=oceProdappJcomProdOrigin:0|~os=2708f36cb43ca861e42dc0215e4669c5~id=2e02eaec9115ec0ac965a675ede2a1f9 | java.com/ | 7/11/2024, 2:45:49 PM | yes | no |
akaalb_OCE_Failover | 1720709150~op=JCOM_OCE:oceProdappJcomProdOrigin|~rv=21~m=oceProdappJcomProdOrigin:0|~os=2708f36cb43ca861e42dc0215e4669c5~id=8b4c9227345fe1ce39df1a5b7a002a03 | www.java.com/ | 7/11/2024, 2:45:50 PM | yes | no |