-1587241416 | 2024-10-03T13:17:15.434740
80 /
tcp
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/10.0
Set-Cookie: ASP.NET_SessionId=abudlul5sr4ghjwwcvppkn1u; path=/; HttpOnly; SameSite=Lax
Set-Cookie: 9nmasdu7632kfgy7=AdvancedWebPage.aspx; path=/
Set-Cookie: 9ndf834hl9fasd3d=AdvancedWebPage.aspx; path=/
Set-Cookie: ClientGroup=0; path=/
X-Frame-Options: SAMEORIGIN
p3p: CP="Potato"
Date: Thu, 03 Oct 2024 13:17:15 GMT
Content-Length: 38417
318451961 | 2024-09-26T09:38:55.634312
443 /
tcp
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/10.0
Set-Cookie: ASP.NET_SessionId=xuxmfl0vy2j2jfvu35w1ise2; path=/; HttpOnly; SameSite=Lax
Set-Cookie: 9nmasdu7632kfgy7=AdvancedWebPage.aspx; path=/
Set-Cookie: 9ndf834hl9fasd3d=AdvancedWebPage.aspx; path=/
Set-Cookie: ClientGroup=0; path=/
X-Frame-Options: SAMEORIGIN
p3p: CP="Potato"
Date: Thu, 26 Sep 2024 09:38:55 GMT
Content-Length: 38327
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:c4:88:1d:53:08:5a:db:55:85:ec:20:35:63:fa:a2:f1:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R10
Validity
Not Before: Sep 24 09:16:24 2024 GMT
Not After : Dec 23 09:16:23 2024 GMT
Subject: CN=northerndistributors.centralus.cloudapp.azure.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:90:08:bb:ab:09:f0:75:24:48:98:42:c1:96:6b:
8b:df:f0:c0:1b:db:c7:56:f7:ba:30:23:b5:07:46:
fe:24:3e:1b:9d:8b:92:c6:88:5e:fb:73:7e:1e:46:
a8:bc:65:76:76:b1:c0:58:36:ab:d4:67:ea:94:b2:
15:b5:ae:f1:a8:c0:57:f6:3d:b4:55:1d:23:03:76:
e5:83:98:b4:69:1d:ff:01:d5:16:da:a1:92:e4:a1:
80:1f:1f:f2:1e:36:12:68:84:d6:c3:55:16:c6:3f:
49:6a:f7:cb:b3:ca:68:2a:4e:6b:d2:28:43:37:23:
26:5a:39:ff:b4:a2:3a:3d:eb:3f:13:12:3a:5f:53:
42:8c:1c:a8:42:e5:65:69:b4:f6:6f:98:1f:a9:39:
d1:7c:65:d0:ab:0c:24:a5:d1:2a:52:e6:9f:12:ed:
a3:ad:82:23:37:15:60:2e:33:fd:ac:e6:21:52:9c:
f1:b9:97:ff:b1:ee:44:d6:98:89:95:e7:a1:c3:f9:
9b:f6:ae:f2:2f:cc:08:6e:db:6f:49:57:09:a1:ce:
a8:1e:03:26:c6:f4:dc:0c:81:cf:39:b5:09:82:94:
55:5d:09:21:f8:2e:ea:99:2c:d8:a2:be:08:f4:46:
ae:65:2d:ad:88:b3:b4:f0:a9:bb:23:e3:85:d2:e6:
a3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
AF:5D:97:B3:22:A9:84:B0:0E:6A:76:45:BB:6F:D4:77:31:D2:32:95
X509v3 Authority Key Identifier:
BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
Authority Information Access:
OCSP - URI:http://r10.o.lencr.org
CA Issuers - URI:http://r10.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:northerndistributors.centralus.cloudapp.azure.com
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
Timestamp : Sep 24 10:14:54.760 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:73:93:C2:22:4B:68:B6:E1:BD:D2:AA:E7:
70:D2:62:2C:4B:EA:37:FB:06:AB:18:07:20:D9:07:62:
76:72:32:25:02:20:52:B9:81:8B:52:9D:12:86:38:3C:
BF:8A:86:FC:EC:27:1B:94:14:F1:B0:14:76:14:85:8E:
B0:52:DD:21:EE:36
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Sep 24 10:14:54.871 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:A6:EA:62:3F:4B:5C:94:CF:4E:BB:AD:
19:1C:E5:BF:9B:5A:0D:48:64:8A:B5:EC:14:23:33:10:
55:CA:B8:10:18:02:20:47:A1:EC:82:2D:34:50:AF:E6:
30:70:D5:88:94:8A:F5:A1:6A:3B:24:E7:4F:54:41:71:
C6:B6:B2:D6:58:C1:0C
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
72:09:17:b9:a7:79:1a:b9:64:ec:1b:1b:dd:77:b7:e4:47:72:
17:e0:4c:24:6f:34:e9:8f:6c:f8:e0:e0:be:bd:ed:77:c0:7c:
fd:74:3c:36:3c:51:e8:a7:0e:f0:bb:b1:fb:80:ae:b6:eb:05:
19:86:55:25:79:cf:8a:7a:26:04:bd:64:0d:89:3f:d0:99:9b:
94:7c:db:85:ad:1e:c9:94:e7:12:de:3a:d2:96:06:ca:a5:54:
c2:6b:99:ea:03:2c:59:5f:46:71:a9:f2:26:c3:8e:19:28:0f:
d2:8c:65:82:13:63:42:7a:d0:32:a5:7f:67:f7:22:18:6a:2c:
f4:8e:7e:dd:1c:c7:a4:86:78:3b:99:de:7e:f6:5b:0f:22:55:
84:9e:6e:29:e2:2c:18:31:94:fe:35:78:6b:2b:cf:52:87:e5:
07:c4:bb:f7:3b:58:19:56:5a:69:25:23:e1:27:cf:19:d4:70:
64:5a:6f:e0:07:d9:c6:1a:d0:a8:14:71:5e:cf:c7:44:24:6e:
90:e3:52:bf:e7:20:e3:33:f2:2e:3f:f9:37:11:4a:10:b1:c7:
38:70:8b:a3:df:90:30:e6:d5:bf:7f:e1:58:e4:f0:6f:1e:06:
d7:77:1a:34:44:25:f1:1a:5d:94:45:38:db:26:5d:ad:08:db:
58:63:a1:c5
1802476057 | 2024-09-24T18:36:02.593747
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows 10 (version 1607)/Windows Server 2016 (version 1607)
OS Build: 10.0.14393
Target Name: Demo
NetBIOS Domain Name: Demo
NetBIOS Computer Name: Demo
DNS Domain Name: Demo
FQDN: Demo
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:b6:d2:99:e0:9b:7c:a5:44:88:2d:a8:0d:7a:a6:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=Demo
Validity
Not Before: Jun 2 14:59:47 2024 GMT
Not After : Dec 2 14:59:47 2024 GMT
Subject: CN=Demo
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:ab:ec:84:29:10:d3:2c:1e:61:24:57:e0:70:57:
df:73:9e:38:e5:1b:c2:67:d4:d3:96:58:e3:c4:4f:
10:3a:9c:fb:cd:8c:e2:ad:01:9e:88:d0:01:d4:8e:
4c:ad:28:ec:36:45:3e:28:64:45:98:bc:76:bf:91:
35:0c:4d:ee:c5:81:b9:7a:15:ce:70:d2:c8:ab:82:
27:c4:83:c7:be:45:3e:96:3c:8a:1b:86:6b:7f:ea:
c4:39:34:c9:77:10:b5:31:e2:07:e5:c6:9b:5b:ba:
ef:65:fa:fd:96:27:7b:89:ec:21:9d:12:48:7c:73:
e4:dd:55:0e:67:0e:70:dc:a3:16:37:83:f7:1e:b8:
31:8f:94:91:cd:1f:96:2b:c4:86:c6:80:fb:53:84:
c9:50:cc:df:d0:43:4c:ec:be:e7:80:a1:5d:55:f4:
79:b7:da:a2:bc:de:fe:71:79:58:33:39:ff:00:57:
f9:86:28:f2:d5:7f:9f:b9:76:61:98:8f:5a:e2:fa:
d4:7b:78:6b:bf:3e:f8:31:e0:01:5d:45:5e:dd:59:
29:5a:99:c9:3e:75:52:3b:4a:24:4b:3e:c1:c9:3d:
f2:e7:b0:a8:d0:b9:1e:90:14:6f:a3:55:c8:8a:00:
79:3a:80:f8:6f:8f:bc:00:3f:a8:95:21:44:d0:1a:
68:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
8d:56:bb:91:11:c2:2b:e2:6e:3c:ac:6f:5f:cd:64:08:54:f6:
c1:14:8f:4f:62:98:16:d5:54:09:5a:db:97:fc:3a:48:28:66:
c1:a3:98:2e:c3:78:ab:3a:6b:f6:a9:89:7c:34:d2:53:2e:a4:
83:a9:17:da:a2:6b:b5:0a:e3:89:c3:05:01:11:ab:26:51:7c:
c7:f3:83:57:1b:7e:e1:22:bc:89:4c:8a:3e:74:54:11:ba:55:
5d:20:5c:d1:2e:8e:22:fd:e8:79:59:30:57:ed:8c:fb:4d:45:
76:95:72:e7:f4:6b:1e:bc:d9:b4:76:c9:ab:f4:7d:e6:87:e7:
b4:6d:89:fb:a4:18:31:a3:f9:5a:cb:fd:62:7c:8a:cf:8c:c8:
d0:c7:f1:fb:ba:d8:a5:5a:90:36:26:c9:a9:80:9c:15:a4:a0:
c0:de:86:e6:d7:ea:0b:ff:9c:81:ce:5d:80:eb:93:09:a6:d5:
8e:d1:73:04:58:41:1b:38:4a:fd:78:db:a5:1c:bb:40:34:d2:
2f:fa:02:94:04:df:6a:31:b3:b0:22:68:b1:a8:46:12:47:b9:
cb:fe:15:b5:73:b8:50:69:08:1c:fe:fa:e7:40:69:df:b8:20:
0c:d7:aa:a0:2d:29:07:94:ba:f2:16:bc:7a:23:d9:05:ba:a4:
bb:c4:5b:85