- Nikto v2.5.0 --------------------------------------------------------------------------- + Multiple IPs found: 3.225.92.8, 54.160.93.182, 3.211.157.115, 2600:1f18:631e:2f82:c8cd:27b2:ac:8dbf, 2600:1f18:631e:2f80:77e5:13a7:6533:7584, 2600:1f18:631e:2f84:ceae:e049:1e:6a96 + Target IP: 3.225.92.8 + Target Hostname: netflix.com + Target Port: 80 + Start Time: 2024-08-20 15:23:06 (GMT-4) --------------------------------------------------------------------------- + Server: No banner retrieved + /: Cookie nfvdid created without the httponly flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies + /: Retrieved via header: 1.1 i-0055747017d068f2c (us-east-1). + /: Uncommon header 'x-netflix.proxy.execution-time' found, with contents: 2. + /: Uncommon header 'x-netflix.nfstatus' found, with contents: 1_21. + /: Uncommon header 'x-originating-url' found, with contents: http://netflix.com/. + Root page / redirects to: https://netflix.com/ + No CGI Directories found (use '-C all' to force check all possible dirs) + /clientaccesspolicy.xml contains 16 lines which should be manually viewed for improper domains or wildcards. See: https://www.acunetix.com/vulnerabilities/web/insecure-clientaccesspolicy-xml-file/ + /crossdomain.xml contains 1 line which include the following domains: *.netflix.com . See: http://jeremiahgrossman.blogspot.com/2008/05/crossdomainxml-invites-cross-site.html + /netflixcom.tgz: Uncommon header 'x-netflix.request.toplevel.uuid' found, with contents: 230feba1-5463-4af3-b052-5876ebfe8626-493041345. + /netflixcom.tgz: Uncommon header 'x-netflix.execution-time' found, with contents: 0. + OPTIONS: Allowed HTTP Methods: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, SCRIPT . + HTTP method ('Allow' Header): 'PUT' method could allow clients to save files on the web server. + HTTP method ('Allow' Header): 'DELETE' may allow clients to remove files on the web server. + Scan terminated: 20 error(s) and 12 item(s) reported on remote host + End Time: 2024-08-20 15:23:33 (GMT-4) (27 seconds) --------------------------------------------------------------------------- + 1 host(s) tested