Scan report for "micmaronline.com"

  1. Nikto Online
  2. Scan report for "micmaronline.com"
Membership level: Free member
Summary

Found

-

Duration

1min 1sec

Date

2024-08-17

IP

-

Report
Nikto SSL scan (max 60 sec) (nikto -host micmaronline.com -ssl -maxtime 60)
- Nikto 
---------------------------------------------------------------------------
+ Target IP:          23.227.38.65
+ Target Hostname:    micmaronline.com
+ Target Port:        443
---------------------------------------------------------------------------
+ SSL Info:        Subject:  /CN=micmaronline.com
                   Altnames: micmaronline.com
                   Ciphers:  TLS_AES_256_GCM_SHA384
                   Issuer:   /C=US/O=Let's Encrypt/CN=R10
+ Start Time:         2024-08-17 14:12:31 (GMT-4)
---------------------------------------------------------------------------
+ Server: cloudflare
+ /: Cookie localization created without the secure flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /: Cookie localization created without the httponly flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /: Cookie _tracking_consent created without the secure flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /: Cookie _tracking_consent created without the httponly flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /: Cookie _cmp_a created without the secure flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /: Cookie _cmp_a created without the httponly flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /: Cookie _shopify_y created without the secure flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /: Cookie _shopify_y created without the httponly flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /: Cookie _shopify_s created without the secure flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /: Cookie _shopify_s created without the httponly flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /: Cookie ; Expires created without the secure flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /: Cookie _landing_page created without the secure flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /: Retrieved powered-by header: Shopify.
+ /:X-Frame-Options header is deprecated and has been replaced with the Content-Security-Policy HTTP header with the frame-ancestors directive instead. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
+ /: Link header found with value: <https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin, <//micmaronline.com/cdn/shop/t/9/assets/component-localization-form.css?v=120620094879297847921721898032>; as="style"; rel="preload", <//micmaronline.com/cdn/shop/files/micmar_mid.png?v=1721127515&width=600>; as="image"; rel="preload"; imagesrcset="//micmaronline.com/cdn/shop/files/micmar_mid.png?v=1721127515&width=200 200w, //micmaronline.com/cdn/shop/files/micmar_mid.png?v=1721127515&width=300 300w, //micmaronline.com/cdn/shop/files/micmar_mid.png?v=1721127515&width=400 400w"; imagesizes="(max-width: 400px) 50vw, 200px". See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Link
+ /: Uncommon header 'x-shopify-nginx-no-cookies' found, with contents: 0.
+ /: Uncommon header 'x-request-id' found, with contents: 4a1c7f9e-f995-49ce-9cf3-00319a7bf21d-1723918351.
+ /: Uncommon header 'x-sorting-hat-shopid' found, with contents: 68536664383.
+ /: Uncommon header 'powered-by' found, with contents: Shopify.
+ /: Uncommon header 'x-storefront-renderer-rendered' found, with contents: 1.
+ /: Uncommon header 'x-dc' found, with contents: gcp-us-east4,gcp-us-east1,gcp-us-east1.
+ /: Uncommon header 'x-shardid' found, with contents: 318.
+ /: Uncommon header 'x-shopid' found, with contents: 68536664383.
+ /: Uncommon header 'server-timing' found, with multiple values: (processing;dur=16;desc="gc:2", db;dur=3, asn;desc="63018", edge;desc="EWR", country;desc="US", theme;desc="170808181055", pageType;desc="index", servedBy;desc="wqs5", requestID;desc="4a1c7f9e-f995-49ce-9cf3-00319a7bf21d-1723918351",cfRequestDuration;dur=67.999840,).
+ /: Uncommon header 'x-sorting-hat-podid' found, with contents: 318.
+ /: An alt-svc header was found which is advertising HTTP/3. The endpoint is: ':443'. Nikto cannot test HTTP/3 over QUIC. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/alt-svc
+ No CGI Directories found (use '-C all' to force check all possible dirs)
+ /68536664383/orders/: Uncommon header 'x-liquid-rendered-at' found, with contents: 2024-08-17T18:13:11.459252936Z.
+ /cdn/wpm/*.js: Retrieved access-control-allow-origin header: *.
+ /checkout/: Cookie cart created without the secure flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /checkout/: Cookie cart created without the httponly flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /checkout/: Cookie cart_ts created without the secure flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /checkout/: Cookie cart_sig created without the secure flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /checkout/: Cookie cart_currency created without the secure flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /checkout/: Cookie cart_currency created without the httponly flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /apple-app-site-association/: Uncommon header 'content-transfer-encoding' found, with contents: binary.
+ /apple-app-site-association/: Uncommon header 'content-disposition' found, with contents: attachment; filename=apple-app-site-association.
+ /robots.txt: Entry '/apple-app-site-association/' is returned a non-forbidden or redirect HTTP code (200). See: https://portswigger.net/kb/issues/00600600_robots-txt-file
+ /robots.txt: contains 128 entries which should be manually viewed. See: https://developer.mozilla.org/en-US/docs/Glossary/Robots.txt
+ /: The Content-Encoding header is set to "deflate" which may mean that the server is vulnerable to the BREACH attack. See: http://breachattack.com/
+ Multiple index files found: /index.xml, /index.php, /index.aspx, /index.pl, /index.cfm, /index.php7, /index.php3, /index.php5, /index.html, /index.asp, /index.cgi, /index.jhtml, /index.do, /index.htm, /index.jsp, /index.shtml, /index.php4.
+ Scan terminated: 0 error(s) and 40 item(s) reported on remote host
+ End Time:           2024-08-17 14:13:32 (GMT-4) (61 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested
Trustpilot
Online Nikto scanner - Online Nikto web server scanner | Product Hunt
Detailed report
Target
micmaronline.com
Scan method
Nikto SSL scan (max 60 sec)
Run command
nikto -host micmaronline.com -ssl -maxtime 60
Duration
Quick report
Scan date
17 Aug 2024 14:13
Copy scan report
Download report
Remove scan result
$
Total scans
Check ports
API - Scan ID