Scan report for "tryhackme.com"

Membership level: Free member
Summary

Found

11

Duration

1min 1sec

Date

2024-10-09

IP

104.22.54.228

Report
Nikto scan (max 60 sec) (nikto -host tryhackme.com -maxtime 60)
- Nikto v2.5.0
---------------------------------------------------------------------------
+ Multiple IPs found: 104.22.54.228, 104.22.55.228, 172.67.27.10, 2606:4700:10::6816:37e4, 2606:4700:10::ac43:1b0a, 2606:4700:10::6816:36e4
+ Target IP:          104.22.54.228
+ Target Hostname:    tryhackme.com
+ Target Port:        80
+ Start Time:         2024-10-09 04:45:13 (GMT-4)
---------------------------------------------------------------------------
+ Server: cloudflare
+ Root page / redirects to: https://tryhackme.com/
+ No CGI Directories found (use '-C all' to force check all possible dirs)
+ /tryhackme_com.tar: Uncommon header 'critical-ch' found, with contents: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA.
+ /tryhackme_com.tar: Uncommon header 'accept-ch' found, with contents: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA.
+ /tryhackme_com.tar: Uncommon header 'origin-agent-cluster' found, with contents: ?1.
+ /tryhackme_com.tar: Uncommon header 'x-content-options' found, with contents: nosniff.
+ /tryhackme_com.tar: Uncommon header 'cf-mitigated' found, with contents: challenge.
+ /tryhackme_com.tar: Uncommon header 'cf-chl-out' found, with contents: WH5BSXJl+BXBgVRB0JhR9fbyS2IQHL6UqOeO50wRAJtct2z6WM99YE4hHJY4ZTXwVu6DobJQGnTO4k5VzuEamohwSz5nqjoy6TW4JDFaiGegVhCNpB5hiiHxvvalBi9k78qEClbw2b8LOfbERdhVyw==$U+l04Z3PaVmygN/mzg9S+g==.
+ /phpimageview.php?pic=javascript:alert(8754): PHP Image View 1.0 is vulnerable to Cross Site Scripting (XSS). See: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1724
+ /modules.php?op=modload&name=FAQ&file=index&myfaq=yes&id_cat=1&categories=%3Cimg%20src=javascript:alert(9456);%3E&parent_id=0: Post Nuke 0.7.2.3-Phoenix is vulnerable to Cross Site Scripting (XSS).
+ /modules.php?letter=%22%3E%3Cimg%20src=javascript:alert(document.cookie);%3E&op=modload&name=Members_List&file=index: Post Nuke 0.7.2.3-Phoenix is vulnerable to Cross Site Scripting (XSS).
+ /members.asp?SF=%22;}alert(223344);function%20x()\{v%20=%22: Web Wiz Forums ver. 7.01 and below is vulnerable to Cross Site Scripting (XSS). See: OSVDB-4598
+ /forum_members.asp?find=%22;}alert(9823);function%20x()\{v%20=%22: Web Wiz Forums ver. 7.01 and below is vulnerable to Cross Site Scripting (XSS). See: OSVDB-2946
+ Scan terminated: 0 error(s) and 11 item(s) reported on remote host
+ End Time:           2024-10-09 04:46:14 (GMT-4) (61 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested
Online Nikto scanner - Online Nikto web server scanner | Product Hunt
Detailed report
Target
tryhackme.com
Target IP
104.22.54.228
Scan method
Nikto scan (max 60 sec)
Run command
nikto -host tryhackme.com -maxtime 60
Duration
61s
Quick report
Order full scan ($79/one time)
Scan date
09 Oct 2024 04:46
API - Scan ID
f7e7e2665f44fd6abf8140eac1da02260b019b60
Copy scan report
Download report
Remove scan result
$
Total scans
About 9 times
Check ports
Use Portscanner Tool