The server is accepting NTLM anonymous credentials.
This allows for authentication bypass to access the underlying application.
https://blog.leakix.net/2022/03/bypassing-ntlm-auth-over-http/
Fingerprint: 40fea8e6a9bd2c3671ce48dbe86f199cedf3d4e1ad8368d047d38954a238d658
Server didn't refuse ANONYMOUS NTLM connection Found NTLM information: Running Windows 10.0 build 17763 MsvAvNbComputerName: REPOSITORY MsvAvNbDomainName: REPOSITORY MsvAvDNSComputerName: repository MsvAvDNSDomainName: repository 200 OK Cache-Control: no-cache,no-store,must-revalidate Content-Length: 6559 Content-Type: text/html Date: Mon, 17 Jul 2023 20:31:15 GMT Etag: "1d50bd102c7959f" Expires: 0 Last-Modified: Thu, 16 May 2019 18:20:40 GMT Pragma: no-cache Server: Microsoft-HTTPAPI/2.0 Set-Cookie: XSRF-TOKEN=9485f603-b864-4338-b416-9721164ba88f; path=/; secure X-Frame-Options: sameorigin <!DOCTYPE html> <html lang="en"> <head> <base href="/"> <meta http-equiv="content-type" content="text/html; charset=UTF-8"> <meta http-equiv="cache-control" content="no-cache" /> <meta http-equiv="pragma" content="no-cache" /> <meta http-equiv="expires" content="0" /> <meta charset="utf-8"> <link rel="icon" type="image/x-icon" href="favicon.ico?v=1.0.0"> <title>Windows Admin Center</title> <style> #sme-splash { position: absolute; top: 0; bottom: 0; left: 0; right: 0; /* Highest possible z-index */ z-index: 2147483647; background: white; color: #000; display: -webkit-box; display: -ms-flexbox; display: flex; -ms-flex-wrap: nowrap; flex-wrap: nowrap; -webkit-box-orient: vertical; -webkit-box-direction: normal; -ms-flex-direction: column; flex-direction: column; -ms-flex-line-pack: stretch; align-content: stretch; -webkit-box-align: center; -ms-flex-align: center; align-items: center; -webkit-box-pack: center; -ms-flex-pack: center; justify-content: center; } #sme-splash * { margin: 0 0 0 0; padding: 0 0 0 0; font-size: 15px; line-height: 20px; vertical-align: baseline !important; text-align: center !important; font-family: "Helvetica Neue", Helvetica, Arial, sans-serif !important; font-style: normal !important; letter-spacing: 0 !important; font-variant: normal !important; font-weight: normal !important; text-rendering: auto !important; -webkit-font-smoothing: antialiased !important; } #sme-splash svg { margin-bottom: 16px; width: 25vw; min-width: 225px; max-width: 350px; transform: rotate(180deg); fill: #0067B8; } #sme-splash h1 { margin-bottom: 16px; text-align: center; font-size: 32px; line-height: 40px; } #sme-splash-progress[value] { -webkit-appearance: none; appearance: none; color: #0067B8; margin-bottom: 16px; border: 0; width: 50vw; min-width: 296px; height: 8px; background-color: transparent; } #sme-splash-progress::-webkit-progress-bar { background-color: transparent; } #sme-splash-progress::-webkit-progress-value { background: #0067B8; } #sme-splash-progress::-moz-progress-bar { background: #0067B8; } #sme-splash.sme-splash-theme-dark { background: #262626; color: #fff; } #sme-splash.sme-splash-theme-dark svg { fill: #004881; } </style> <link rel="stylesheet" href="styles.5113c9a968791c3b622e.css"></head> <body> <div id="sme-splash"> <svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" viewBox="0 0 2048 2048" enable-background="new 0 0 2048 2048" xml:space="preserve" role="img" aria-labelledby="sme-splash-header"> <g> <path d="M896 1024H826Q783 1024 744 1021T670 1004T603 966T546 896H256V768H512V640H256V512H512V256H0V1920Q0 1947 10 1970T37 2010T78 2038T128 2048H896Q923 2048 946 2038T986 2011T1014 1970T1024 1920V1246Q964 1211 930 1152T896 1024ZM256 1664H768V1792H256V1664ZM2048 768V0H640V768Q640 795 650 818T677 858T718 886T768 896H1024V1024Q1024 1051 1034 1074T1061 1114T1102 1142T1152 1152H1536Q1563 1152 1586 1142T1626 1115T1654 1074T1664 1024V896H1920Q1947 896 1970 886T2010 859T2038 818T2048 768ZM1152 1024V896H1536V1024H1152ZM1920 512V640H1792V768H1664V640H1024V768H896V640H768V512H896V384H1024V512H1664V384H1792V512H1920Z"> </path> </g> </svg> <h1 id="sme-splash-header">Windows Admin Center</h1> <progress id="sme-splash-progress" role="progressbar" max="100" value="0" aria-valuenow="0" aria-valuemin="0" aria-valuemax="100" tabindex="0" aria-labelledby="sme-splash-message"></progress> <p id="sme-splash-message"></p> </div> <sme-root style="display: none"></sme-root> <script> /** BEGIN LOCALIZED STRING INJECTION **/ var localeStrings = {"cs-CZ":{"initializing":"Starting Windows Admin Center..."},"de-DE":{"initializing":"Starting Windows Admin Center..."},"en-US":{"initializing":"Starting Windows Admin Center..."},"es-ES":{"initializing":"Starting Windows Admin Center..."},"fr-FR":{"initializing":"Starting Windows Admin Center..."},"hu-HU":{"initializing":"Starting Windows Admin Center..."},"it-IT":{"initializing":"Starting Windows Admin Center..."},"ja-JP":{"initializing":"Starting Windows Admin Center..."},"ko-KR":{"initializing":"Starting Windows Admin Center..."},"nl-NL":{"initializing":"Starting Windows Admin Center..."},"pl-PL":{"initializing":"Starting Windows Admin Center..."},"pt-BR":{"initializing":"Starting Windows Admin Center..."},"pt-PT":{"initializing":"Starting Windows Admin Center..."},"ru-RU":{"initializing":"Starting Windows Admin Center..."},"sv-SE":{"initializing":"Starting Windows Admin Center..."},"tr-TR":{"initializing":"Starting Windows Admin Center..."},"zh-CN":{"initializing":"Starting Windows Admin Center..."},"zh-TW":{"initializing":"Starting Windows Admin Center..."}}; /** END LOCALIZED STRING INJECTION **/ // localize initial message var messageElement = document.getElementById('sme-splash-message'); var defaultLocale = 'en-US'; var storageLocaleSet = localStorage.getItem('localeSet:@msft-sme/shell'); var localeId = storageLocaleSet ? storageLocaleSet.id || defaultLocale : defaultLocale; let strings = localeStrings[localeId]; messageElement.innerText = strings ? strings.initializing : 'Initializing Application'; // apply current theme var splash = document.getElementById('sme-splash'); var progress = document.getElementById('sme-splash-progress'); let theme = localStorage.getItem('msft.sme.shell-assetManager-theme'); if (theme) { splash.classList.add(`sme-splash-theme-${theme}`); progress.classList.add(`sme-splash-theme-${theme}`); } </script> <script type="text/javascript" src="runtime.a8be246288247905060f.js"></script><script type="text/javascript" src="polyfills.1520726e66aebabb5940.js"></script><script type="text/javascript" src="scripts.3504d83063b72ee8ddc9.js"></script><script type="text/javascript" src="main.e2b3dcee202d21df3115.js"></script></body> </html>