- Nikto --------------------------------------------------------------------------- + Multiple IPs found: 104.21.33.218, 172.67.150.195, 2606:4700:3032::ac43:96c3, 2606:4700:3032::6815:21da + Target IP: 104.21.33.218 + Target Hostname: osintframework.com + Target Port: 80 + Start Time: 2024-05-23 12:11:10 (GMT-4) --------------------------------------------------------------------------- + Server: cloudflare + /: An alt-svc header was found which is advertising HTTP/3. The endpoint is: ':443'. Nikto cannot test HTTP/3 over QUIC. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/alt-svc + Root page / redirects to: https://osintframework.com/ + No CGI Directories found (use '-C all' to force check all possible dirs) + /webmail/horde/test.php: The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type. See: https://www.netsparker.com/web-vulnerability-scanner/vulnerabilities/missing-content-type-header/ + /webmail/blank.html: IlohaMail 0.8.10 contains an XSS vulnerability. Previous versions contain other non-descript vulnerabilities. + /securecontrolpanel/: Web Server Control Panel. + /webmail/: Web based mail package installed. + Scan terminated: 2 error(s) and 5 item(s) reported on remote host + End Time: 2024-05-23 12:12:30 (GMT-4) (80 seconds) --------------------------------------------------------------------------- + 1 host(s) tested