Found
Duration
Date
IP
- Nikto v2.6.0 --------------------------------------------------------------------------- + Target IP: 104.21.70.87 + Target Hostname: v2hollyconnect.com + Target Port: 80 + Platform: Windows + Start Time: 2026-07-04 07:44:45 (GMT-4) --------------------------------------------------------------------------- + Server: cloudflare + Multiple IPs found: 104.21.70.87, 172.67.222.41, 2606:4700:3037::6815:4657, 2606:4700:3032::ac43:de29 + [999986] /: Retrieved x-powered-by header: Next.js. + [000427] /: Link header(s) found with value(s): </_next/static/media/797e433ab948586e-s.p.29207c2f.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", </_next/static/media/caa3a2e1cccd8315-s.p.3b6cae6d.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2". See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Link + [011799] /: An alt-svc header was found which is advertising HTTP/2 over TLS. The endpoint is: ':443'. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/alt-svc + [999106] /: Cloudflare detected via cf-ray header. Recommend proxying via Burp or mitmproxy to avoid TLS fingerprint blocks. See: https://github.com/sullo/nikto/wiki/Using-a-Proxy + [999100] /cgi.cgi/: Uncommon header(s) 'refresh' found, with contents: 0;url=/cgi.cgi. + No CGI Directories found (use '-C all' to force check all possible dirs). CGI tests skipped. + [999100] /robots.txt: Uncommon header(s) 'x-nextjs-cache' found, with contents: HIT. + [999997] /robots.txt: Entry '/landing/' is returned a non-forbidden or redirect HTTP code (308). See: https://portswigger.net/kb/issues/00600600_robots-txt-file + [999997] /robots.txt: Entry '/privacy-policy/' is returned a non-forbidden or redirect HTTP code (308). See: https://portswigger.net/kb/issues/00600600_robots-txt-file + [999996] /robots.txt: contains 3 entries which should be manually viewed. See: https://developer.mozilla.org/en-US/docs/Glossary/Robots.txt + [013587] /: Suggested security header missing: content-security-policy. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP + Scan terminated: 0 errors and 10 items reported on the remote host + End Time: 2026-07-04 07:45:46 (GMT-4) (61 seconds) --------------------------------------------------------------------------- + 1 host(s) tested