| ace-shaken.com/wp/asdf/YWNjb3VudHNwYXlhYmxlQGhhbnNlbm1hcmtldGluZy5jb20= | 162.43.121.182 | | 0 B |
URL ace-shaken.com/wp/asdf/YWNjb3VudHNwYXlhYmxlQGhhbnNlbm1hcmtldGluZy5jb20= IP162.43.121.182:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp/asdf/YWNjb3VudHNwYXlhYmxlQGhhbnNlbm1hcmtldGluZy5jb20= HTTP/1.1
Host: ace-shaken.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 20:21:44 GMT
content-type: text/html; charset=UTF-8
content-length: 0
refresh: 0;url=https://ow-cache-subscription-clear-space-7282992292902022022929209.fra1.digitaloceanspaces.com/rx.html#accountspayable@hansenmarketing.com
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ow-cache-subscription-clear-space-7282992292902022022929209.fra1.digitaloceanspaces.com/rx.html | 5.101.109.44 | | 1.8 kB |
URL ow-cache-subscription-clear-space-7282992292902022022929209.fra1.digitaloceanspaces.com/rx.html IP5.101.109.44:0 ASN#14061 DIGITALOCEAN-ASN
File typeHTML document, ASCII text, with very long lines (505), with CRLF line terminators Hashfdd2b9415c0c3813c56e8f28a73cfad7 41bbd69055dd7a85dd19895ef6db8ac8e29007fd c0b0f7923f8c1799e226678f2050a8b8f442714270470b300ef1909c34001e01
GET /rx.html HTTP/1.1
Host: ow-cache-subscription-clear-space-7282992292902022022929209.fra1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 1780
accept-ranges: bytes
last-modified: Thu, 18 Apr 2024 18:30:03 GMT
x-rgw-object-type: Normal
etag: "fdd2b9415c0c3813c56e8f28a73cfad7"
x-amz-request-id: tx00000ed88e15a34e5f7cc-00662180d9-f33a66cf-fra1b
content-type: text/html
date: Thu, 18 Apr 2024 20:21:45 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-envoy-upstream-healthchecked-cluster:
X-Firefox-Spdy: h2
|
|
| docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com/secure.html | 45.79.157.59 | | 58 kB |
URL docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com/secure.html IP45.79.157.59:0 ASN#63949 Akamai Connected Cloud
File typeHTML document, ASCII text, with very long lines (10412), with CRLF line terminators Hashe3cdf8198d6474e7d4622f70fe4ef031 7cb17443d708f1b3347513953f80ea3e51afd496 11a3a5d20d8f2f91de5a2d020d97ae0fb32d692331ad098c8a822ee589bf2cbb
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /secure.html HTTP/1.1
Host: docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ow-cache-subscription-clear-space-7282992292902022022929209.fra1.digitaloceanspaces.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 20:21:45 GMT
Content-Type: text/html
Content-Length: 57782
Connection: keep-alive
Accept-Ranges: bytes
Last-Modified: Thu, 11 Apr 2024 19:42:42 GMT
x-rgw-object-type: Normal
ETag: "e3cdf8198d6474e7d4622f70fe4ef031"
x-amz-request-id: tx000000d87ea47f62ce057-00662180d9-60e88805-default
|
|
| docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com/owa/auth/15.2.922/themes/resources/segoeui-regular.ttf | 45.79.157.59 | 403 Forbidden | 274 B |
URL GET HTTP/1.1docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com/owa/auth/15.2.922/themes/resources/segoeui-regular.ttf IP45.79.157.59:443 ASN#63949 Akamai Connected Cloud
Requested byhttps://docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com/secure.html#accountspayable@hansenmarketing.com CertificateIssuerLet's Encrypt Subjectus-east-1.linodeobjects.com FingerprintE2:AC:27:0D:94:47:AA:B0:72:A7:B7:52:D5:FC:D9:82:2B:B2:0C:2F ValidityMon, 18 Mar 2024 14:33:49 GMT - Sun, 16 Jun 2024 14:33:48 GMT
File typeXML 1.0 document, ASCII text, with no line terminators Hashcee10e4d70d26a73792e5a606d735fc0 9b4d4d4bb2e68b0ea5ded332fe616e3a9cf876c0 ed27130ce64da27c386c6523eef84d815ea0ade425e7c300cf543bdcbe48d044
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /owa/auth/15.2.922/themes/resources/segoeui-regular.ttf HTTP/1.1
Host: docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com/secure.html
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Thu, 18 Apr 2024 20:21:45 GMT
Content-Type: application/xml
Content-Length: 274
Connection: keep-alive
x-amz-request-id: tx00000caa25ec7a972dc81-00662180d9-60e7dc00-default
Accept-Ranges: bytes
|
|
| docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com/owa/auth/15.2.922/themes/resources/segoeui-semilight.ttf | 45.79.157.59 | 403 Forbidden | 274 B |
URL GET HTTP/1.1docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com/owa/auth/15.2.922/themes/resources/segoeui-semilight.ttf IP45.79.157.59:443 ASN#63949 Akamai Connected Cloud
Requested byhttps://docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com/secure.html#accountspayable@hansenmarketing.com CertificateIssuerLet's Encrypt Subjectus-east-1.linodeobjects.com FingerprintE2:AC:27:0D:94:47:AA:B0:72:A7:B7:52:D5:FC:D9:82:2B:B2:0C:2F ValidityMon, 18 Mar 2024 14:33:49 GMT - Sun, 16 Jun 2024 14:33:48 GMT
File typeXML 1.0 document, ASCII text, with no line terminators Hash84c57e3cdd8408acbb6f7b61adb2909c 30b50e118bf5161fcb0d13c801f6ee2a0b8bb436 6267f996b27906ef02c00d9ee9f3886d5d01f619b851fded5b8f6bb99f17742a
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /owa/auth/15.2.922/themes/resources/segoeui-semilight.ttf HTTP/1.1
Host: docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com/secure.html
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Thu, 18 Apr 2024 20:21:46 GMT
Content-Type: application/xml
Content-Length: 274
Connection: keep-alive
x-amz-request-id: tx00000b0b882ca0045eed9-00662180da-60e86a18-default
Accept-Ranges: bytes
|
|
| stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js | 104.18.11.207 | 200 OK | 22 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js IP104.18.11.207:443
Requested byhttps://docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com/secure.html#accountspayable@hansenmarketing.com CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeJavaScript source, ASCII text, with very long lines (50758) Hash67176c242e1bdc20603c878dee836df3 27a71b00383d61ef3c489326b3564d698fc1227c 56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4
GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 20:21:45 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 11/15/2021 23:30:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: a35b0179a28ed953258d0fb41376a09c
cdn-cache: HIT
cf-cache-status: HIT
age: 1386306
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87675cf2180f56aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js | 142.250.74.74 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP142.250.74.74:443
Requested byhttps://docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com/secure.html#accountspayable@hansenmarketing.com CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeJavaScript source, ASCII text, with very long lines (32065) Hash2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 Apr 2024 13:58:13 GMT
expires: Sun, 13 Apr 2025 13:58:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 455013
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| webmail.bayltd.com/owa/auth/15.2.922/themes/resources/favicon.ico | 0.0.0.0 | | 0 B |
URL GET webmail.bayltd.com/owa/auth/15.2.922/themes/resources/favicon.ico IP0.0.0.0:0
Requested byhttps://docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com/secure.html#accountspayable@hansenmarketing.com
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /owa/auth/15.2.922/themes/resources/favicon.ico HTTP/1.1
Host: webmail.bayltd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com/secure.html | 45.79.157.59 | 200 OK | 58 kB |
URL User Request GET HTTP/1.1docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com/secure.html IP45.79.157.59:443 ASN#63949 Akamai Connected Cloud
CertificateIssuerLet's Encrypt Subjectus-east-1.linodeobjects.com FingerprintE2:AC:27:0D:94:47:AA:B0:72:A7:B7:52:D5:FC:D9:82:2B:B2:0C:2F ValidityMon, 18 Mar 2024 14:33:49 GMT - Sun, 16 Jun 2024 14:33:48 GMT
File typeHTML document, ASCII text, with very long lines (10412), with CRLF line terminators Hashe3cdf8198d6474e7d4622f70fe4ef031 7cb17443d708f1b3347513953f80ea3e51afd496 11a3a5d20d8f2f91de5a2d020d97ae0fb32d692331ad098c8a822ee589bf2cbb
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /secure.html HTTP/1.1
Host: docsmautomated-messages-capresourcesubscriptions76282933.us-east-1.linodeobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ow-cache-subscription-clear-space-7282992292902022022929209.fra1.digitaloceanspaces.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 20:21:45 GMT
Content-Type: text/html
Content-Length: 57782
Connection: keep-alive
Accept-Ranges: bytes
Last-Modified: Thu, 11 Apr 2024 19:42:42 GMT
x-rgw-object-type: Normal
ETag: "e3cdf8198d6474e7d4622f70fe4ef031"
x-amz-request-id: tx000000d87ea47f62ce057-00662180d9-60e88805-default
|
|
| ow-cache-subscription-clear-space-7282992292902022022929209.fra1.digitaloceanspaces.com/favicon.ico | 0.0.0.0 | | 0 B |
URL GET ow-cache-subscription-clear-space-7282992292902022022929209.fra1.digitaloceanspaces.com/favicon.ico IP0.0.0.0:0
Requested byhttps://ow-cache-subscription-clear-space-7282992292902022022929209.fra1.digitaloceanspaces.com/rx.html#accountspayable@hansenmarketing.com CertificateIssuerDigiCert Inc Subject*.fra1.digitaloceanspaces.com Fingerprint3B:96:40:D5:27:23:13:D0:01:19:6F:20:E8:9A:88:B8:93:61:8F:08 ValiditySat, 13 Apr 2024 00:00:00 GMT - Tue, 29 Apr 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: ow-cache-subscription-clear-space-7282992292902022022929209.fra1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ow-cache-subscription-clear-space-7282992292902022022929209.fra1.digitaloceanspaces.com/rx.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| ow-cache-subscription-clear-space-7282992292902022022929209.fra1.digitaloceanspaces.com/rx.html | 5.101.109.44 | 200 OK | 1.8 kB |
URL User Request GET HTTP/2ow-cache-subscription-clear-space-7282992292902022022929209.fra1.digitaloceanspaces.com/rx.html IP5.101.109.44:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerDigiCert Inc Subject*.fra1.digitaloceanspaces.com Fingerprint3B:96:40:D5:27:23:13:D0:01:19:6F:20:E8:9A:88:B8:93:61:8F:08 ValiditySat, 13 Apr 2024 00:00:00 GMT - Tue, 29 Apr 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (1900), with no line terminators Hashda4a82f9d0e82d17cddd75172c0bdb14 d810c2df7efa29688be173adb64b0dc2899f945f d1bf48d7dffee0341bf0fa8acb5ce427010b036178bbad14d20bb8468973059f
GET /rx.html HTTP/1.1
Host: ow-cache-subscription-clear-space-7282992292902022022929209.fra1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 1780
accept-ranges: bytes
last-modified: Thu, 18 Apr 2024 18:30:03 GMT
x-rgw-object-type: Normal
etag: "fdd2b9415c0c3813c56e8f28a73cfad7"
x-amz-request-id: tx00000ed88e15a34e5f7cc-00662180d9-f33a66cf-fra1b
content-type: text/html
date: Thu, 18 Apr 2024 20:21:45 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-envoy-upstream-healthchecked-cluster:
X-Firefox-Spdy: h2
|
|