nginx
tcp/443 tcp/80
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
Severity: low
Fingerprint: 5f32cf5d6962f09c4239b3d84239b3d8c25e8cd67222b790f43657286000c0b5
Found 8 files trough .DS_Store spidering: /bundles /bundles/sonataadmin /bundles/sonatacore /css /files /img /index_files /js
The application has Symfony profiling enabled.
It enables an attacker to access the following sensitive content :
Fingerprint: 407cf4363b0e62fafca67e07598eda18598eda18598eda18598eda18598eda18
Symfony profiler enabled: https://admon.iberbnc.pro/_profiler/empty/search/results
Open service 13.49.211.141:443 · admon.iberbnc.pro
2024-05-23 19:24
HTTP/1.1 302 Found Server: nginx Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: max-age=0, must-revalidate, private Date: Thu, 23 May 2024 19:24:09 GMT Location: /admin/dashboard X-Debug-Token: 54f770 X-Debug-Token-Link: https://admon.iberbnc.pro/_profiler/54f770 X-Robots-Tag: noindex Expires: Thu, 23 May 2024 19:24:09 GMT Set-Cookie: sf_redirect=%7B%22token%22%3A%2254f770%22%2C%22route%22%3A%22index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CIndexController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fback%5C%2Fsrc%5C%2FController%5C%2FIndexController.php%22%2C%22line%22%3A14%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax Page title: Redirecting to /admin/dashboard <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='/admin/dashboard'" /> <title>Redirecting to /admin/dashboard</title> </head> <body> Redirecting to <a href="/admin/dashboard">/admin/dashboard</a>. </body> </html>
Open service 13.49.211.141:80 · admon.iberbnc.pro
2024-05-20 10:10
HTTP/1.1 301 Moved Permanently Server: nginx Date: Mon, 20 May 2024 10:10:19 GMT Content-Type: text/html Content-Length: 162 Connection: close Location: https://admon.iberbnc.pro/ Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> </body> </html>
Open service 13.49.211.141:443 · admon.iberbnc.pro
2024-05-20 10:10
HTTP/1.1 302 Found Server: nginx Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: max-age=0, must-revalidate, private Date: Mon, 20 May 2024 10:10:20 GMT Location: /admin/dashboard X-Debug-Token: c70990 X-Debug-Token-Link: https://admon.iberbnc.pro/_profiler/c70990 X-Robots-Tag: noindex Expires: Mon, 20 May 2024 10:10:20 GMT Set-Cookie: sf_redirect=%7B%22token%22%3A%22c70990%22%2C%22route%22%3A%22index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CIndexController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fback%5C%2Fsrc%5C%2FController%5C%2FIndexController.php%22%2C%22line%22%3A14%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax Page title: Redirecting to /admin/dashboard <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='/admin/dashboard'" /> <title>Redirecting to /admin/dashboard</title> </head> <body> Redirecting to <a href="/admin/dashboard">/admin/dashboard</a>. </body> </html>
Open service 13.49.211.141:443 · admon.iberbnc.pro
2024-05-13 10:08
HTTP/1.1 302 Found Server: nginx Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: max-age=0, must-revalidate, private Date: Mon, 13 May 2024 10:08:45 GMT Location: /admin/dashboard X-Debug-Token: a2132c X-Debug-Token-Link: https://admon.iberbnc.pro/_profiler/a2132c X-Robots-Tag: noindex Expires: Mon, 13 May 2024 10:08:45 GMT Set-Cookie: sf_redirect=%7B%22token%22%3A%22a2132c%22%2C%22route%22%3A%22index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CIndexController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fback%5C%2Fsrc%5C%2FController%5C%2FIndexController.php%22%2C%22line%22%3A14%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax Page title: Redirecting to /admin/dashboard <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='/admin/dashboard'" /> <title>Redirecting to /admin/dashboard</title> </head> <body> Redirecting to <a href="/admin/dashboard">/admin/dashboard</a>. </body> </html>
Open service 13.49.211.141:80 · admon.iberbnc.pro
2024-05-13 10:08
HTTP/1.1 301 Moved Permanently Server: nginx Date: Mon, 13 May 2024 10:08:44 GMT Content-Type: text/html Content-Length: 162 Connection: close Location: https://admon.iberbnc.pro/ Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> </body> </html>
Open service 13.49.211.141:443 · admon.iberbnc.pro
2024-05-12 21:11
HTTP/1.1 302 Found Server: nginx Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: max-age=0, must-revalidate, private Date: Sun, 12 May 2024 21:12:00 GMT Location: /admin/dashboard X-Debug-Token: c75de8 X-Debug-Token-Link: https://admon.iberbnc.pro/_profiler/c75de8 X-Robots-Tag: noindex Expires: Sun, 12 May 2024 21:12:00 GMT Set-Cookie: sf_redirect=%7B%22token%22%3A%22c75de8%22%2C%22route%22%3A%22index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CIndexController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fback%5C%2Fsrc%5C%2FController%5C%2FIndexController.php%22%2C%22line%22%3A14%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax Page title: Redirecting to /admin/dashboard <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='/admin/dashboard'" /> <title>Redirecting to /admin/dashboard</title> </head> <body> Redirecting to <a href="/admin/dashboard">/admin/dashboard</a>. </body> </html>
Open service 13.49.211.141:80 · admon.iberbnc.pro
2024-05-06 10:02
HTTP/1.1 301 Moved Permanently Server: nginx Date: Mon, 06 May 2024 10:02:45 GMT Content-Type: text/html Content-Length: 162 Connection: close Location: https://admon.iberbnc.pro/ Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> </body> </html>
Open service 13.49.211.141:443 · admon.iberbnc.pro
2024-05-06 10:02
HTTP/1.1 302 Found Server: nginx Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: max-age=0, must-revalidate, private Date: Mon, 06 May 2024 10:02:40 GMT Location: /admin/dashboard X-Debug-Token: a6c19f X-Debug-Token-Link: https://admon.iberbnc.pro/_profiler/a6c19f X-Robots-Tag: noindex Expires: Mon, 06 May 2024 10:02:40 GMT Set-Cookie: sf_redirect=%7B%22token%22%3A%22a6c19f%22%2C%22route%22%3A%22index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CIndexController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fback%5C%2Fsrc%5C%2FController%5C%2FIndexController.php%22%2C%22line%22%3A14%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax Page title: Redirecting to /admin/dashboard <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='/admin/dashboard'" /> <title>Redirecting to /admin/dashboard</title> </head> <body> Redirecting to <a href="/admin/dashboard">/admin/dashboard</a>. </body> </html>
Open service 13.49.211.141:443 · admon.iberbnc.pro
2024-05-01 02:13
HTTP/1.1 302 Found Server: nginx Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: max-age=0, must-revalidate, private Date: Wed, 01 May 2024 02:13:49 GMT Location: /admin/dashboard X-Debug-Token: d7d0ab X-Debug-Token-Link: https://admon.iberbnc.pro/_profiler/d7d0ab X-Robots-Tag: noindex Expires: Wed, 01 May 2024 02:13:49 GMT Set-Cookie: sf_redirect=%7B%22token%22%3A%22d7d0ab%22%2C%22route%22%3A%22index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CIndexController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fback%5C%2Fsrc%5C%2FController%5C%2FIndexController.php%22%2C%22line%22%3A14%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax Page title: Redirecting to /admin/dashboard <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='/admin/dashboard'" /> <title>Redirecting to /admin/dashboard</title> </head> <body> Redirecting to <a href="/admin/dashboard">/admin/dashboard</a>. </body> </html>
Open service 13.49.211.141:80 · admon.iberbnc.pro
2024-04-29 10:07
HTTP/1.1 301 Moved Permanently Server: nginx Date: Mon, 29 Apr 2024 10:07:21 GMT Content-Type: text/html Content-Length: 162 Connection: close Location: https://admon.iberbnc.pro/ Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> </body> </html>
Open service 13.49.211.141:443 · admon.iberbnc.pro
2024-04-29 10:07
HTTP/1.1 302 Found Server: nginx Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: max-age=0, must-revalidate, private Date: Mon, 29 Apr 2024 10:07:22 GMT Location: /admin/dashboard X-Debug-Token: a5ef49 X-Debug-Token-Link: https://admon.iberbnc.pro/_profiler/a5ef49 X-Robots-Tag: noindex Expires: Mon, 29 Apr 2024 10:07:22 GMT Set-Cookie: sf_redirect=%7B%22token%22%3A%22a5ef49%22%2C%22route%22%3A%22index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CIndexController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fback%5C%2Fsrc%5C%2FController%5C%2FIndexController.php%22%2C%22line%22%3A14%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax Page title: Redirecting to /admin/dashboard <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='/admin/dashboard'" /> <title>Redirecting to /admin/dashboard</title> </head> <body> Redirecting to <a href="/admin/dashboard">/admin/dashboard</a>. </body> </html>
Open service 13.49.211.141:443 · admon.iberbnc.pro
2024-04-29 00:05
HTTP/1.1 302 Found Server: nginx Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: max-age=0, must-revalidate, private Date: Mon, 29 Apr 2024 00:05:25 GMT Location: /admin/dashboard X-Debug-Token: 603090 X-Debug-Token-Link: https://admon.iberbnc.pro/_profiler/603090 X-Robots-Tag: noindex Expires: Mon, 29 Apr 2024 00:05:25 GMT Set-Cookie: sf_redirect=%7B%22token%22%3A%22603090%22%2C%22route%22%3A%22index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CIndexController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fback%5C%2Fsrc%5C%2FController%5C%2FIndexController.php%22%2C%22line%22%3A14%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax Page title: Redirecting to /admin/dashboard <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='/admin/dashboard'" /> <title>Redirecting to /admin/dashboard</title> </head> <body> Redirecting to <a href="/admin/dashboard">/admin/dashboard</a>. </body> </html>