Domain gitlab.blacksheepgroup.org
United States
Software information
nginx
tcp/443
-
Gitlab instance looks outdated
The following Gitlab instance is publicly accessible and looks out-dated :
It is critical to update to a safe version as soon as possible to avoid account takeover.
Severity is mitigated by the need of a valid email address.
Reference:
IP: 97.107.129.130
Domain: gitlab.blacksheepgroup.org
Port: 443
URL: https://gitlab.blacksheepgroup.orgFirst seen 2024-02-21 00:15
Last seen 2024-12-22 04:09
Open for 305 days-
Severity: high
Fingerprint: db64c48d331961cce5776b3a892edddd892edddd892edddd892edddd892eddddFound vulnerable Gitlab instance Affected by CVE-2023-7028
Found on 2024-12-22 04:09
-
-
Open service 97.107.129.130:443 · gitlab.blacksheepgroup.org
2024-12-22 04:09
HTTP/1.1 302 Found Server: nginx Date: Sun, 22 Dec 2024 04:09:24 GMT Content-Type: text/html; charset=utf-8 Content-Length: 114 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://gitlab.blacksheepgroup.org/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JFP8WEEGJ1G8R8R8W40JH2P6","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JFP8WEEGJ1G8R8R8W40JH2P6 X-Runtime: 0.055111 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://gitlab.blacksheepgroup.org/users/sign_in">redirected</a>.</body></html>Found 7 hours ago by HttpPluginCreate report
-
Open service 97.107.129.130:443 · gitlab.blacksheepgroup.org
2024-12-20 05:48
HTTP/1.1 302 Found Server: nginx Date: Fri, 20 Dec 2024 05:48:18 GMT Content-Type: text/html; charset=utf-8 Content-Length: 114 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://gitlab.blacksheepgroup.org/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JFH9R3JZPMB045FF2ZHY5M51","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JFH9R3JZPMB045FF2ZHY5M51 X-Runtime: 0.041966 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://gitlab.blacksheepgroup.org/users/sign_in">redirected</a>.</body></html>Found 2 days ago by HttpPluginCreate report
-
Open service 97.107.129.130:443 · gitlab.blacksheepgroup.org
2024-12-19 01:13
HTTP/1.1 302 Found Server: nginx Date: Thu, 19 Dec 2024 01:13:26 GMT Content-Type: text/html; charset=utf-8 Content-Length: 114 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://gitlab.blacksheepgroup.org/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JFE7M2T2MPFXJ0PNBBYJH5BB","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JFE7M2T2MPFXJ0PNBBYJH5BB X-Runtime: 0.050683 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://gitlab.blacksheepgroup.org/users/sign_in">redirected</a>.</body></html>Found 2024-12-19 by HttpPluginCreate report
-
Open service 97.107.129.130:443 · gitlab.blacksheepgroup.org
2024-12-12 08:00
HTTP/1.1 302 Found Server: nginx Date: Thu, 12 Dec 2024 08:00:55 GMT Content-Type: text/html; charset=utf-8 Content-Length: 114 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://gitlab.blacksheepgroup.org/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JEWY565XH44NM079VN0YRMA5","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JEWY565XH44NM079VN0YRMA5 X-Runtime: 0.051189 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://gitlab.blacksheepgroup.org/users/sign_in">redirected</a>.</body></html>Found 2024-12-12 by HttpPluginCreate report
-
Open service 97.107.129.130:443 · gitlab.blacksheepgroup.org
2024-12-02 17:01
HTTP/1.1 302 Found Server: nginx Date: Mon, 02 Dec 2024 17:01:31 GMT Content-Type: text/html; charset=utf-8 Content-Length: 114 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://gitlab.blacksheepgroup.org/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JE453VGPCVM949VVEQ5CBAAY","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JE453VGPCVM949VVEQ5CBAAY X-Runtime: 0.048595 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://gitlab.blacksheepgroup.org/users/sign_in">redirected</a>.</body></html>Found 2024-12-02 by HttpPluginCreate report
-
Open service 97.107.129.130:443 · gitlab.blacksheepgroup.org
2024-11-30 11:33
HTTP/1.1 302 Found Server: nginx Date: Sat, 30 Nov 2024 11:33:27 GMT Content-Type: text/html; charset=utf-8 Content-Length: 114 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://gitlab.blacksheepgroup.org/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JDYDHPZCPSWH0YS974YTETCM","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JDYDHPZCPSWH0YS974YTETCM X-Runtime: 0.051329 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://gitlab.blacksheepgroup.org/users/sign_in">redirected</a>.</body></html>Found 2024-11-30 by HttpPluginCreate report
-
Open service 97.107.129.130:443 · gitlab.blacksheepgroup.org
2024-11-28 04:30
HTTP/1.1 302 Found Server: nginx Date: Thu, 28 Nov 2024 04:30:47 GMT Content-Type: text/html; charset=utf-8 Content-Length: 114 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://gitlab.blacksheepgroup.org/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JDRGJBCT826STKQAG99M0SA7","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JDRGJBCT826STKQAG99M0SA7 X-Runtime: 0.016497 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://gitlab.blacksheepgroup.org/users/sign_in">redirected</a>.</body></html>Found 2024-11-28 by HttpPluginCreate report
-
Open service 97.107.129.130:443 · gitlab.blacksheepgroup.org
2024-11-20 09:38
HTTP/1.1 400 Bad Request Server: nginx Date: Wed, 20 Nov 2024 09:38:29 GMT Content-Type: text/html Content-Length: 650 Connection: close Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>nginx</center> </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page -->
Found 2024-11-20 by HttpPluginCreate report