- Nikto --------------------------------------------------------------------------- + Target IP: 76.76.21.21 + Target Hostname: pentest-tools.com + Target Port: 80 + Start Time: 2024-09-15 13:32:15 (GMT-4) --------------------------------------------------------------------------- + Server: Vercel + /: Uncommon header 'refresh' found, with contents: 0;url=https://pentest-tools.com/. + Root page / redirects to: https://pentest-tools.com/ + No CGI Directories found (use '-C all' to force check all possible dirs) + /site.pem: IP address found in the 'x-vercel-id' header. The IP is "ad1::5". See: https://portswigger.net/kb/issues/00600300_private-ip-addresses-disclosed + /site.pem: Uncommon header 'x-vercel-id' found, with contents: iad1::5s6pw-1726421541101-7668aef45d3e. + /file/../../../../../../../../etc/: Uncommon header 'x-vercel-error' found, with contents: BAD_REQUEST. + /level/16: Cookie firstpage created without the httponly flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies + /level/16: Uncommon header 'x-vercel-execution-region' found, with contents: lhr1. + /level/16: Uncommon header 'origin-agent-cluster' found, with contents: ?1. + /level/16: Uncommon header 'x-vercel-cache' found, with contents: MISS. + /support/messages: IP address found in the '__cf_bm' cookie. The IP is "1.0.1.1". + /support/messages: Link header found with value: ; rel="canonical". See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Link + /support/messages: Uncommon header 'x-hubspot-notfound' found, with contents: true. + /support/messages: Uncommon header 'x-evy-trace-route-configuration' found, with contents: listener_https/all. + /support/messages: Uncommon header 'x-request-id' found, with contents: dea8748d-077d-4bf2-b17f-e4fd532356b8. + /support/messages: Uncommon header 'x-evy-trace-listener' found, with contents: listener_https. + /support/messages: Uncommon header 'x-hs-knowledge-base-not-found' found, with contents: true. + /support/messages: Uncommon header 'x-hubspot-correlation-id' found, with contents: dea8748d-077d-4bf2-b17f-e4fd532356b8. + /support/messages: Uncommon header 'x-envoy-upstream-service-time' found, with contents: 126. + /support/messages: Uncommon header 'x-hs-reason' found, with contents: Knowledge Base View not found. + /support/messages: Uncommon header 'x-evy-trace-route-service-name' found, with contents: envoyset-translator. + /support/messages: Uncommon header 'x-evy-trace-served-by-pod' found, with contents: iad02/cms-10-19-td/envoy-proxy-cc6445dd6-h4b2f. + /support/messages: Uncommon header 'x-evy-trace-virtual-host' found, with contents: all. + /?=PHPB8B5F2A0-3C92-11d3-A3A9-4C7B08C10000:X-Frame-Options header is deprecated and has been replaced with the Content-Security-Policy HTTP header with the frame-ancestors directive instead. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options + Scan terminated: 4 error(s) and 22 item(s) reported on remote host + End Time: 2024-09-15 13:33:16 (GMT-4) (61 seconds) --------------------------------------------------------------------------- + 1 host(s) tested