HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Mon, 17 Mar 2025 10:32:28 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin, Content-Type, Cookie, Accept, x-csrf-token,token,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
Access-Control-Allow-Methods: GET, POST, PATCH, PUT, OPTIONS
Set-Cookie: XSRF-TOKEN=eyJpdiI6IklEQUp6SWNGSlhMcUNNK1lZaVNKVWc9PSIsInZhbHVlIjoiS2VjWkx3c21rT0g4emVTbG9oSkJsZ3crdkdDSjFxd2dFa2dzQUpqTjY1UlJPZ0VrUkdwNCt4UktzRjdTSHVwciIsIm1hYyI6IjY1ZjI5NzEyMWM3YzU3YTg1ZmRkZDM4YWRjNThiZWY4M2I0OGZhMThkYzM2ZjA5NjRjYWRjZTBlNWM2ZWZiZGEifQ%3D%3D; expires=Mon, 17-Mar-2025 12:32:28 GMT; Max-Age=7200; path=/
Set-Cookie: haloliveandroid_session=eyJpdiI6ImdiQUhSUmZXbXVOMjAwQzVhTCtUMVE9PSIsInZhbHVlIjoidXJKNVRraVRuZkMrOVhzVGpJVis3UVRHRXNjMmVYU3dQaStUSDhoMlZhWHRpRCtaRTdTbTk3ejNcL3lPV3BnbkIiLCJtYWMiOiI2ZDFmYmQzOTNmMmYxODEyMzM4NjA4Y2E0YzZhZmI1N2U5MTVmZTI5MWZhNzAxMmIyNTdmNzhmYWEyMmFiZWI1In0%3D; expires=Mon, 17-Mar-2025 12:32:28 GMT; Max-Age=7200; path=/; httponly
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: token,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
Vulnerabilities
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Date: Tue, 08 Apr 2025 06:27:56 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin, Content-Type, Cookie, Accept, x-csrf-token,token,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
Access-Control-Allow-Methods: GET, POST, PATCH, PUT, OPTIONS
Set-Cookie: XSRF-TOKEN=eyJpdiI6IjZzRnFndlVcL1k1cExqWjRhZlNIYWtBPT0iLCJ2YWx1ZSI6IjFQcVY5TWJOZzE4RWZLdmx5M01kdElNYVFGVGJhMFhzYUhocXQ1VENxTWg4WDhBdEN4TzNOTVpsd0hWQlBZN2oiLCJtYWMiOiIzNTVhYWUwMjkxMmY3ZDZhZmY1ODBlZjgzNWIwYmVhZDQ5ZWU1MmVhMjIwNDI1YWI0ZTYyMGJlMjllMDJlYjRkIn0%3D; expires=Tue, 08-Apr-2025 08:27:56 GMT; Max-Age=7200; path=/
Set-Cookie: haloliveandroid_session=eyJpdiI6Img1VWJad2t5akZSVmc5ZUlPbmllMHc9PSIsInZhbHVlIjoiQjV5b0R5UE92XC84VDBPaTl6TzZjWkxaT0lkaXpTY0J2UXdcL2VnNGdOUXhvU2JhRXVIU2JESk5mSlpRV2t0eFJNIiwibWFjIjoiNzg0YzQyODIzMzg1MGZlOTYyMGVhNzYwODQyZDlkZGIxMzU4MzUxZWYzMTgzMDhiNTg3OTE2ZTJmNjIyYWZhOCJ9; expires=Tue, 08-Apr-2025 08:27:56 GMT; Max-Age=7200; path=/; httponly
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: token,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:75:3a:78:c8:9d:6d:a1:57:d6:31:34:3d:54:b2:22:4f:04
Signature Algorithm: ecdsa-with-SHA384
Issuer: C=US, O=Let's Encrypt, CN=E6
Validity
Not Before: Oct 26 08:22:57 2024 GMT
Not After : Jan 24 08:22:56 2025 GMT
Subject: CN=mkt2.sttclub.online
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (256 bit)
pub:
04:67:69:a2:2f:e7:7e:b9:8b:51:70:e7:52:46:d3:
46:40:cf:8f:1b:88:4b:5f:fc:98:3f:74:97:74:69:
9e:f4:9c:ec:55:8d:8e:df:ed:45:31:d0:de:61:65:
11:42:6b:b8:57:3f:57:5f:ec:79:16:71:d5:06:22:
bb:ee:59:f0:a4
ASN1 OID: prime256v1
NIST CURVE: P-256
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
ED:7B:67:16:D3:D0:57:B6:0C:1C:5F:D8:EE:97:BE:70:9E:72:1C:61
X509v3 Authority Key Identifier:
93:27:46:98:03:A9:51:68:8E:98:D6:C4:42:48:DB:23:BF:58:94:D2
Authority Information Access:
OCSP - URI:http://e6.o.lencr.org
CA Issuers - URI:http://e6.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:mkt2.sttclub.online
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
Timestamp : Oct 26 09:21:27.462 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:54:E1:35:4E:A7:71:18:EF:5B:79:B5:4F:
21:36:D2:B8:1C:E4:C6:FA:E4:F9:39:3A:0D:D9:B3:48:
B3:78:39:59:02:20:0D:25:56:73:A7:03:65:44:0C:FD:
C6:B6:59:4B:D2:28:B8:AA:69:B4:EF:20:B9:F2:87:DC:
E4:0F:99:8A:DA:BC
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
Timestamp : Oct 26 09:21:27.537 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:66:B6:5A:76:44:C2:46:40:C0:9B:55:8D:
F3:E0:15:3F:16:77:08:ED:82:5F:15:E3:49:7A:1A:94:
1B:81:E3:3E:02:21:00:EB:6E:30:26:6B:84:D4:BB:63:
9D:17:BB:7B:7D:3B:C8:CE:9B:73:5B:2E:B6:E3:B8:BA:
78:3C:24:06:FD:B9:1F
Signature Algorithm: ecdsa-with-SHA384
Signature Value:
30:65:02:30:6c:a8:6e:a0:28:ab:c0:2f:c2:f1:69:7f:02:9b:
6e:f4:55:a2:64:48:05:a2:92:f8:9e:1e:55:ef:99:db:1f:63:
dd:9e:b2:35:1e:1b:45:bb:b6:fe:a4:e1:25:e6:e9:5f:02:31:
00:d5:7a:3b:d2:7b:15:f1:95:e5:93:92:ea:63:92:b8:89:9d:
e1:4d:91:c0:cd:1e:84:15:48:a4:fa:10:5c:c4:66:c9:06:90:
7d:f2:19:d6:8a:01:6a:83:e8:ec:a3:48:fd
Vulnerabilities
