Apache 2.4.41
tcp/8765
nginx
tcp/443 tcp/80
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
Severity: low
Fingerprint: 5f32cf5d6962f09c81c345f781c345f7f860bff9df08159ad3cd527a0e094084
Found 32 files trough .DS_Store spidering: /assets /Dockerfile /footer.php /header.php /inc /index.php /install.php /LICENSE /pkxss /README.md /test /test/phpinfo.txt /test/ser.php /test/test.php /test/yijuhua.txt /vul /vul/burteforce /vul/csrf /vul/dir /vul/fileinclude /vul/infoleak /vul/overpermission /vul/rce /vul/sqli /vul/ssrf /vul/unsafedownload /vul/unsafeupload /vul/unserilization /vul/urlredirect /vul/xss /vul/xxe /wiki
Severity: medium
Fingerprint: 5f32cf5d6962f09c2acf29aa2acf29aa3eaf00a630863e6b0e3c85a9638b60a6
Found 33 files trough .DS_Store spidering: /assets /Dockerfile /footer.php /header.php /inc /index.php /install.php /LICENSE /pkxss /README.md /test /test/phpinfo.txt /test/ser.php /test/test.php /test/yijuhua.txt /vul /vul/burteforce /vul/csrf /vul/dir /vul/fileinclude /vul/infoleak /vul/overpermission /vul/rce /vul/sqli /vul/ssrf /vul/unsafedownload /vul/unsafeupload /vul/unserilization /vul/urlredirect /vul/xss /vul/xxe /wiki /wiki/image
The following URL (usually /.git/config
) is publicly accessible and is leaking source code and repository configuration.
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65225c03ae9d
[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true ignorecase = true [remote "origin"] url = git@github.com:8023/pikachu.git fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master
Open service 43.155.118.104:8765
2024-05-27 23:31
HTTP/1.1 200 OK Date: Mon, 27 May 2024 23:31:45 GMT Server: Apache/2.4.41 (Ubuntu) Set-Cookie: PHPSESSID=99pb9thhqqnlgrc0reabq4blt1; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html;charset=utf-8
Open service 43.155.118.104:8765
2024-05-27 23:06
HTTP/1.1 200 OK Date: Mon, 27 May 2024 23:06:49 GMT Server: Apache/2.4.41 (Ubuntu) Set-Cookie: PHPSESSID=5c1gd5utpiq59luqcf7r21leim; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html;charset=utf-8
Open service 43.155.118.104:8765
2024-05-26 23:57
HTTP/1.1 200 OK Date: Sun, 26 May 2024 23:57:54 GMT Server: Apache/2.4.41 (Ubuntu) Set-Cookie: PHPSESSID=b17jhgdadtdk6a08i0st6hj32b; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html;charset=utf-8
Open service 43.155.118.104:8765
2024-05-26 23:37
HTTP/1.1 200 OK Date: Sun, 26 May 2024 23:37:56 GMT Server: Apache/2.4.41 (Ubuntu) Set-Cookie: PHPSESSID=7affjnfct4pionackpi6jiehml; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html;charset=utf-8
Open service 43.155.118.104:8765
2024-05-25 23:28
HTTP/1.1 200 OK Date: Sat, 25 May 2024 23:28:04 GMT Server: Apache/2.4.41 (Ubuntu) Set-Cookie: PHPSESSID=ja65bf0i80l06j6oe1k38739cb; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html;charset=utf-8
Open service 43.155.118.104:8765
2024-05-25 23:07
HTTP/1.1 200 OK Date: Sat, 25 May 2024 23:07:30 GMT Server: Apache/2.4.41 (Ubuntu) Set-Cookie: PHPSESSID=a4q1304m9i1u7toeo5hsitirun; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html;charset=utf-8
Open service 43.155.118.104:443 · a4.laizhenfeng.site
2024-05-25 13:16
HTTP/1.1 200 OK Server: nginx Date: Sat, 25 May 2024 13:16:35 GMT Content-Type: text/html; charset=UTF-8 Content-Length: 1696 Connection: close Vary: Accept-Encoding X-Powered-By: Express Accept-Ranges: bytes Cache-Control: public, max-age=0 Last-Modified: Mon, 11 Mar 2024 05:03:59 GMT ETag: W/"6a0-18e2be56a18" Cache-Control: no-cache Page title: ChatGPT Web <!DOCTYPE html> <html> <head> <meta charset="UTF-8"> <link rel="icon" type="image/svg+xml" href="/favicon.svg"> <meta content="yes" name="apple-mobile-web-app-capable"/> <link rel="apple-touch-icon" href="/favicon.ico"> <meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0, minimum-scale=1.0, viewport-fit=cover" /> <title>ChatGPT Web</title> <script type="module" crossorigin src="/assets/index-fb7b5c06.js"></script> <link rel="stylesheet" href="/assets/index-b1aa5098.css"> </head> <body class="dark:bg-black"> <div id="app"> <style> .loading-wrap { display: flex; justify-content: center; align-items: center; height: 100vh; } .balls { width: 4em; display: flex; flex-flow: row nowrap; align-items: center; justify-content: space-between; } .balls div { width: 0.8em; height: 0.8em; border-radius: 50%; background-color: #4b9e5f; } .balls div:nth-of-type(1) { transform: translateX(-100%); animation: left-swing 0.5s ease-in alternate infinite; } .balls div:nth-of-type(3) { transform: translateX(-95%); animation: right-swing 0.5s ease-out alternate infinite; } @keyframes left-swing { 50%, 100% { transform: translateX(95%); } } @keyframes right-swing { 50% { transform: translateX(-95%); } 100% { transform: translateX(100%); } } @media (prefers-color-scheme: dark) { body { background: #121212; } } </style> <div class="loading-wrap"> <div class="balls"> <div></div> <div></div> <div></div> </div> </div> </div> </body> </html>
Open service 43.155.118.104:80 · a4.laizhenfeng.site
2024-05-25 13:16
HTTP/1.1 200 OK Server: nginx Date: Sat, 25 May 2024 13:16:29 GMT Content-Type: text/html; charset=utf-8 Content-Length: 11274 Connection: close Vary: Accept-Encoding vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding x-nextjs-cache: HIT x-powered-by: Next.js cache-control: s-maxage=31536000, stale-while-revalidate etag: "er21b1174i8p6" Cache-Control: no-cache Page title: NextChat <!DOCTYPE html><html lang="en"><head><meta charSet="utf-8"/><link rel="stylesheet" href="/_next/static/css/cbfc412cab8c824e.css" data-precedence="next"/><link rel="stylesheet" href="/_next/static/css/6320fcde60ec292e.css" data-precedence="next"/><link rel="preload" href="/_next/static/chunks/webpack-f184907f3f49b539.js" as="script"/><link rel="preload" href="/_next/static/chunks/bce60fc1-e55b90606913faf1.js" as="script"/><link rel="preload" href="/_next/static/chunks/7698-bb5d18468650f39a.js" as="script"/><link rel="preload" href="/_next/static/chunks/main-app-bf1f72eb5224e6ea.js" as="script"/><title>NextChat</title><meta name="description" content="Your personal ChatGPT Chat Bot."/><meta name="theme-color" media="(prefers-color-scheme: light)" content="#fafafa"/><meta name="theme-color" media="(prefers-color-scheme: dark)" content="#151515"/><meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1"/><meta name="apple-mobile-web-app-capable" content="yes"/><meta name="apple-mobile-web-app-title" content="NextChat"/><meta name="apple-mobile-web-app-status-bar-style" content="default"/><meta name="config" content="{"version":"v2.11.3","commitDate":"1710354658000","commitHash":"7c04a90d77b38546d8773c8edf73f03d1f11b01a","buildMode":"standalone","isApp":false}"/><link rel="manifest" href="/site.webmanifest"/><script src="/serviceWorkerRegister.js" defer=""></script><script src="/_next/static/chunks/polyfills-78c92fac7aa8fdd8.js" noModule=""></script></head><body><div class="home_loading-content__7_JjP no-dark"><svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" width="30" height="30" fill="none"><defs><path id="bot_svg__a" d="M0 0h30v30H0z"></path><path id="bot_svg__c" d="M0 0h20.455v20.455H0z"></path></defs><g><rect width="30" height="30" fill="#E7F8FF" rx="10"></rect><mask id="bot_svg__b" fill="#fff"><use xlink:href="#bot_svg__a"></use></mask><g mask="url(#bot_svg__b)"><g transform="translate(4.773 4.773)"><mask id="bot_svg__d" fill="#fff"><use xlink:href="#bot_svg__c"></use></mask><g mask="url(#bot_svg__d)"><path fill-rule="evenodd" style="fill:#1f948c" d="M19.11 8.37c.17-.52.26-1.06.26-1.61 0-.9-.24-1.79-.71-2.57a5.24 5.24 0 0 0-4.53-2.59c-.37 0-.73.04-1.09.11A5.201 5.201 0 0 0 9.17 0h-.04C6.86 0 4.86 1.44 4.16 3.57A5.11 5.11 0 0 0 .71 6.04C.24 6.83 0 7.72 0 8.63c0 1.27.48 2.51 1.35 3.45-.18.52-.27 1.07-.27 1.61 0 .91.25 1.8.71 2.58 1.13 1.94 3.41 2.94 5.63 2.47a5.18 5.18 0 0 0 3.86 1.71h.05c2.26 0 4.27-1.44 4.97-3.57a5.132 5.132 0 0 0 3.45-2.47c.46-.78.7-1.67.7-2.58 0-1.28-.48-2.51-1.34-3.46ZM8.947 18.158c-.04.03-.08.05-.12.07.7.58 1.57.89 2.48.89h.01c2.14 0 3.88-1.72 3.88-3.83v-4.76c0-.02-.02-.04-.04-.05l-1.74-.99v5.75c0 .23-.13.45-.34.57l-4.13 2.35Zm-.67-1.153 4.17-2.38c.02-.01.03-.03.03-.05v-1.99l-5.04 2.87c-.21.12-.47.12-.68 0l-4.13-2.35c-.04-.02-.09-.06-.12-.07-.04.21-.06.43-.06.65 0 .67.18 1.33.52 1.92v-.01c.7 1.19 1.98 1.92 3.37 1.92.68 0 1.35-.18 1.94-.51ZM3.903 5.168v-.14c-.85.31-1.57.9-2.02 1.68a3.78 3.78 0 0 0-.52 1.91c0 1.37.74 2.64 1.94 3.33l4.17 2.37c.02.01.04.01.06 0l1.75-1-5.04-2.87a.64.64 0 0 1-.34-.57v-4.71Zm13.253 3.337-4.18-2.38c-.02 0-.04 0-.06.01l-1.74.99 5.04 2.87c.21.12.34.34.34.58v4.85c1.52-.56 2.54-1.99 2.54-3.6 0-1.37-.74-2.63-1.94-3.32ZM8.014 5.83c-.02.01-.03.03-.03.05v1.99L13.024 5a.692.692 0 0 1 .68 0l4.13 2.35c.04.02.08.05.12.07.03-.21.05-.43.05-.65 0-2.11-1.74-3.83-3.88-3.83-.68 0-1.35.18-1.94.51l-4.17 2.38Zm1.133-4.492c-2.15 0-3.89 1.72-3.89 3.83v4.76c0 .02.02.03.03.04l1.75 1v-5.75c0-.23.13-.45.34-.57l4.13-2.35c.04-.03.09-.06.12-.07-.7-.58-1.58-.89-2.48-.89ZM7.983 11.51l2.24 1.27 2.25-1.27V8.95l-2.25-1.28-2.24 1.28v2.56Z"></path></g></g></g></g></svg><svg xmlns="http://www.w3.org/2000/svg" width="30" height="14" fill="#fff" viewBox="0 0 120 30"><circle cx="15" cy="15" r="15" fill="var(--primary, red)"><animate attributeName="r" begin="0s" calcMode="linear" dur="0.8s" from="15" repeatCount="indefinite" to="15" values="15;9;15"></animate><animat
Open service 43.155.118.104:443 · a3.laizhenfeng.site
2024-05-25 13:13
HTTP/1.1 200 OK Server: nginx Date: Sat, 25 May 2024 13:14:02 GMT Content-Type: text/html; charset=UTF-8 Content-Length: 1696 Connection: close Vary: Accept-Encoding X-Powered-By: Express Accept-Ranges: bytes Cache-Control: public, max-age=0 Last-Modified: Mon, 11 Mar 2024 05:03:59 GMT ETag: W/"6a0-18e2be56a18" Cache-Control: no-cache Page title: ChatGPT Web <!DOCTYPE html> <html> <head> <meta charset="UTF-8"> <link rel="icon" type="image/svg+xml" href="/favicon.svg"> <meta content="yes" name="apple-mobile-web-app-capable"/> <link rel="apple-touch-icon" href="/favicon.ico"> <meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0, minimum-scale=1.0, viewport-fit=cover" /> <title>ChatGPT Web</title> <script type="module" crossorigin src="/assets/index-fb7b5c06.js"></script> <link rel="stylesheet" href="/assets/index-b1aa5098.css"> </head> <body class="dark:bg-black"> <div id="app"> <style> .loading-wrap { display: flex; justify-content: center; align-items: center; height: 100vh; } .balls { width: 4em; display: flex; flex-flow: row nowrap; align-items: center; justify-content: space-between; } .balls div { width: 0.8em; height: 0.8em; border-radius: 50%; background-color: #4b9e5f; } .balls div:nth-of-type(1) { transform: translateX(-100%); animation: left-swing 0.5s ease-in alternate infinite; } .balls div:nth-of-type(3) { transform: translateX(-95%); animation: right-swing 0.5s ease-out alternate infinite; } @keyframes left-swing { 50%, 100% { transform: translateX(95%); } } @keyframes right-swing { 50% { transform: translateX(-95%); } 100% { transform: translateX(100%); } } @media (prefers-color-scheme: dark) { body { background: #121212; } } </style> <div class="loading-wrap"> <div class="balls"> <div></div> <div></div> <div></div> </div> </div> </div> </body> </html>
Open service 43.155.118.104:80 · a3.laizhenfeng.site
2024-05-25 13:13
HTTP/1.1 301 Moved Permanently Server: nginx Date: Sat, 25 May 2024 13:13:57 GMT Content-Type: text/html Content-Length: 162 Connection: close Location: https://a3.laizhenfeng.site/ Strict-Transport-Security: max-age=31536000 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> </body> </html>
Open service 43.155.118.104:8765
2024-05-25 11:39
HTTP/1.1 200 OK Date: Sat, 25 May 2024 11:39:31 GMT Server: Apache/2.4.41 (Ubuntu) Set-Cookie: PHPSESSID=av587gm1dpcif64jvaugladnnp; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html;charset=utf-8
Open service 43.155.118.104:22
2024-05-25 02:35
Open service 43.155.118.104:8765
2024-05-24 23:18
HTTP/1.1 200 OK Date: Fri, 24 May 2024 23:18:08 GMT Server: Apache/2.4.41 (Ubuntu) Set-Cookie: PHPSESSID=sskr3f2rl08var9grdhvatnoi1; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html;charset=utf-8
Open service 43.155.118.104:8765
2024-05-24 23:05
HTTP/1.1 200 OK Date: Fri, 24 May 2024 23:05:03 GMT Server: Apache/2.4.41 (Ubuntu) Set-Cookie: PHPSESSID=jidtamam03k9srvp2cer4fv140; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html;charset=utf-8
Open service 43.155.118.104:8765
2024-05-23 22:48
HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:48:24 GMT Server: Apache/2.4.41 (Ubuntu) Set-Cookie: PHPSESSID=pjv7ecjle2u0f0b08s5dffbl75; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html;charset=utf-8
Open service 43.155.118.104:8765
2024-05-23 22:18
HTTP/1.1 200 OK Date: Thu, 23 May 2024 22:18:18 GMT Server: Apache/2.4.41 (Ubuntu) Set-Cookie: PHPSESSID=bsmui1ubpnj8sliukqju0neo5r; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html;charset=utf-8
Open service 43.155.118.104:8765
2024-05-22 22:10
HTTP/1.1 200 OK Date: Wed, 22 May 2024 22:10:18 GMT Server: Apache/2.4.41 (Ubuntu) Set-Cookie: PHPSESSID=ljchur0nssc46vkto7f6213d1f; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html;charset=utf-8
Open service 43.155.118.104:8765
2024-05-22 21:39
HTTP/1.1 200 OK Date: Wed, 22 May 2024 21:39:19 GMT Server: Apache/2.4.41 (Ubuntu) Set-Cookie: PHPSESSID=3kjjvmtkssu2he6jmfmreuc5v3; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html;charset=utf-8
Open service 43.155.118.104:8765
2024-05-12 19:09
HTTP/1.1 200 OK Date: Sun, 12 May 2024 19:09:26 GMT Server: Apache/2.4.41 (Ubuntu) Set-Cookie: PHPSESSID=ia9spejdi8f024nmdb3l6lk9di; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html;charset=utf-8
Open service 43.155.118.104:8765
2024-05-12 19:01
HTTP/1.1 200 OK Date: Sun, 12 May 2024 19:01:34 GMT Server: Apache/2.4.41 (Ubuntu) Set-Cookie: PHPSESSID=fndcit2fi7hk1279p0db4vcv5l; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html;charset=utf-8
Open service 43.155.118.104:8765
2024-05-08 13:48
HTTP/1.1 200 OK Date: Wed, 08 May 2024 13:48:51 GMT Server: Apache/2.4.41 (Ubuntu) Set-Cookie: PHPSESSID=18gnb6llevbujf5qi9ue86q01d; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html;charset=utf-8
Open service 43.155.118.104:8765
2024-05-08 13:37
HTTP/1.1 200 OK Date: Wed, 08 May 2024 13:37:59 GMT Server: Apache/2.4.41 (Ubuntu) Set-Cookie: PHPSESSID=7g921m4q8p2isqg9cp1kjhcbt2; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html;charset=utf-8