- Nikto 
---------------------------------------------------------------------------
+ Multiple IPs found: 104.18.36.64, 172.64.151.192, 2606:4700:440a::6812:2440, 2a06:98c1:310b::ac40:97c0
+ Target IP:          104.18.36.64
+ Target Hostname:    www.lowbrowcustoms.com
+ Target Port:        80
+ Start Time:         2025-10-26 21:12:23 (GMT-7)
---------------------------------------------------------------------------
+ Server: cloudflare
+ /: IP address found in the 'set-cookie' header. The IP is "1.0.1.1". See: https://portswigger.net/kb/issues/00600300_private-ip-addresses-disclosed
+ /: IP address found in the '__cf_bm' cookie. The IP is "1.0.1.1".
+ Root page / redirects to: http://www.lowbrowcustoms.com/em-cgi/btag/
+ No CGI Directories found (use '-C all' to force check all possible dirs)
+ /: Uncommon header 'proxy-status' found, with contents: Cloudflare-Proxy;error=http_request_error.
+ /nikto-test-OgxhwG04.html: Retrieved powered-by header: Edgemesh.
+ /nikto-test-OgxhwG04.html: Uncommon header 'x-request-id' found, with contents: e9c2287d-d405-46e7-ab68-c13118471820-1761538331.
+ /nikto-test-OgxhwG04.html: Uncommon header 'powered-by' found, with contents: Edgemesh.
+ /nikto-test-OgxhwG04.html: Uncommon header 'x-sorting-hat-podid' found, with contents: 46.
+ /nikto-test-OgxhwG04.html: Uncommon header 'server-timing' found, with multiple values: (processing;dur=153, spanner_session;desc="count=1";dur=5.47, verdict_flag_enabled;desc="count=243";dur=17.399, _y;desc="45b1f606-ad7e-4427-9133-725741f5cdf6", _s;desc="b17ece80-bbbc-4b42-8a76-feefbcd1f54b", _cmp;desc="3.AMPS_US___3KJ54LtJR1mMIqgmisei4Q",cfRequestDuration;dur=275.000095,ems-cache-miss;desc="[EM] Cache Miss",).
+ /nikto-test-OgxhwG04.html: Uncommon header 'x-shardid' found, with contents: 46.
+ /nikto-test-OgxhwG04.html: Uncommon header 'x-edgemesh-server' found, with contents: miss, forward.
+ /nikto-test-OgxhwG04.html: Uncommon header 'x-dc' found, with contents: gcp-us-west1,gcp-us-east1,gcp-us-east1.
+ /nikto-test-OgxhwG04.html: Uncommon header 'x-shopid' found, with contents: 9705062447.
+ /nikto-test-OgxhwG04.html: Uncommon header 'x-sorting-hat-shopid' found, with contents: 9705062447.
+ /nikto-test-OgxhwG04.html: Uncommon header 'x-edgemesh-upstream' found, with contents: www.lowbrowcustoms.com.
+ /nikto-test-OgxhwG04.html: Uncommon header 'reporting-endpoints' found, with contents: shopify-csp="/csp-report?source%5Baction%5D=not_found&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=storefront_section%2Fshop&source%5Bsection%5D=storefront&source%5Buuid%5D=e9c2287d-d405-46e7-ab68-c13118471820-1761538331".
+ /nikto-test-OgxhwG04.html: Uncommon header 'x-edgemesh-server-version' found, with contents: stable@2.4.0.
+ /nikto-test-OgxhwG04.html: Cookie _shopify_y created without the httponly flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /nikto-test-OgxhwG04.html: Cookie _shopify_s created without the httponly flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /nikto-test-OgxhwG04.html: Cookie localization created without the httponly flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /index:X-Frame-Options header is deprecated and has been replaced with the Content-Security-Policy HTTP header with the frame-ancestors directive instead. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
+ /index: Link header found with value: <https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Link
+ /index: Uncommon header 'x-storefront-renderer-rendered' found, with contents: 1.
+ /index: Uncommon header 'speculation-rules' found, with contents: "/cdn/shopifycloud/storefront/assets/storefront/storefronts.specrules-dd5621a1.json".
+ /index: Uncommon header 'shopify-complexity-score' found, with contents: 4360.
+ /index: Cookie cart_currency created without the httponly flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /Mem/dynaform/Login.htm?WINDWEB_URL=%2FMem%2Fdynaform%2FLogin.htm&ListIndexUser=0&sWebParam1=admin000: Uncommon header 'x-shopify-cmp-purposes' found, with contents: AMPS;.
+ /cart/: This might be interesting.
+ /services/: Uncommon header 'x-liquid-rendered-at' found, with contents: 2025-10-27T04:12:44.711860924Z.
+ Scan terminated: 0 error(s) and 28 item(s) reported on remote host
+ End Time:           2025-10-26 21:13:24 (GMT-7) (61 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested