Report - byod.queens.org

Report Overview

Submitted URL
byod.queens.org
IP
72.235.65.203
ASN
#36149 HAWAIIAN-TELCOM
Submitted
2024-05-08 22:19:32
Access
public
Website Title
GlobalProtect Portal
Final URL
byod.queens.org/global-protect/login.esp
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ocsp.netsolssl.com	8381	2005-01-31	2012-05-20	2024-05-08	330 B	963 B	104.18.38.233
byod.queens.org	unknown	unknown	No data	No data	5.7 kB	850 kB	72.235.65.203
www.queens.org	unknown	1995-12-15	2015-02-18	2021-11-13	1.8 kB	1.5 kB	3.33.223.144

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	byod.queens.org/global-protect/portal/js/ie10-viewport-bug-workaround.js	664 B	2023-03-08	2024-05-18
Pretty URL byod.queens.org/global-protect/portal/js/ie10-viewport-bug-workaround.js IP 72.235.65.203 ASN #36149 HAWAIIAN-TELCOM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:34:54 Last Seen2024-05-18 17:25:21 Times Seen64 Hash 186770c58c9bdb3faec9a4f32f582cd2 823c4aa387f90353fc6a8933206387499426601d 3a776234892e76fe2105236a8fa5f1ba40b18bb735fff77159f096f7a21aa350 Loading...

	byod.queens.org/global-protect/login.esp	6.5 kB	2024-05-09	2024-05-09
Pretty URL byod.queens.org/global-protect/login.esp IP 72.235.65.203 ASN #36149 HAWAIIAN-TELCOM Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-09 00:19:39 Last Seen2024-05-09 22:57:09 Times Seen2 Hash 32cf4e5bb3b0ca8993e62eeafde1a3e2 77ff1682e3c24be18448af015bcfa86d8fcf4f1e 55871fd6d0fb4201cadc2b9061a34dfee49d5f90b3eb45606df9b8d7954be23c Loading...

	unknown	63 B	2024-05-09	2024-05-09
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-05-09 00:19:39 Last Seen2024-05-09 22:57:09 Times Seen2 Hash 315198f3e3b75aba9465c259df90a967 747853b0086b1b15bc68b169a1e5f9bc188a70ff edcf026469176c7708de6d460ed2ef7ffa9e7a13d93ff782330125362a362ca6 Loading...

	byod.queens.org/global-protect/portal/js/jquery.min.js	90 kB	2023-03-07	2024-05-20
Pretty URL byod.queens.org/global-protect/portal/js/jquery.min.js IP 72.235.65.203 ASN #36149 HAWAIIAN-TELCOM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-20 01:34:17 Times Seen145671 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	byod.queens.org/global-protect/login.esp	74 B	2023-10-21	2024-05-09
Pretty URL byod.queens.org/global-protect/login.esp IP 72.235.65.203 ASN #36149 HAWAIIAN-TELCOM Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-21 21:27:01 Last Seen2024-05-09 22:57:09 Times Seen4 Hash fd47ae2bcdb1c3171266e037ddb1be46 101746e7e565e1b82baf21fca30704e27b04eee5 ee24e95fe9c9c44a33a6df767acbb8e10b7c86cf14107eb1b356b1084ffa2bab Loading...

	byod.queens.org/global-protect/login.esp	915 B	2023-10-21	2024-05-09
Pretty URL byod.queens.org/global-protect/login.esp IP 72.235.65.203 ASN #36149 HAWAIIAN-TELCOM Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-21 21:27:01 Last Seen2024-05-09 22:57:09 Times Seen4 Hash 1d1eaeec615ba52d7d14c72a04515a70 2a4e4046b37f4556b34b01b329944fcb66781002 5add1524ef4c7b6d15cf039eaea87b037adfa17ca1c692d07b4f2dde1a60ef59 Loading...

	byod.queens.org/global-protect/login.esp	723 B	2024-05-09	2024-05-09
Pretty URL byod.queens.org/global-protect/login.esp IP 72.235.65.203 ASN #36149 HAWAIIAN-TELCOM Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-09 00:19:39 Last Seen2024-05-09 22:57:09 Times Seen2 Hash 40b5e5d5ba4d42bfd25c65ce8c352d3c 3dd21021ba959c26ff696b31b58d42e425c7a1ce b953e85a133d6ad6011b677087202d18f75946c640c74386b048172c43a168d2 Loading...

HTTP Transactions (16)

	URL	IP	Response	Size
	ocsp.netsolssl.com/	104.18.38.233		471 B
URL ocsp.netsolssl.com/ IP 104.18.38.233:0 ASN #13335 CLOUDFLARENET File type data Size 471 B (471 bytes) Hash f5d6fc2edf6950f13c98590e888997ed 27766386a0cdd4c7f938812fd780a4cdf6040097 9394dc0065de7e6a527c541c965c29085e36cc137991e00da62d9ce9cd27f009 HTTP Headers `POST / HTTP/1.1 Host: ocsp.netsolssl.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 08 May 2024 22:19:07 GMT Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Last-Modified: Tue, 07 May 2024 04:16:14 GMT Expires: Tue, 14 May 2024 04:16:13 GMT Etag: "27766386a0cdd4c7f938812fd780a4cdf6040097" Cache-Control: max-age=452825,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb1 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 880cd45d4a2d56c9-OSL`

	byod.queens.org/	72.235.65.203		170 B
URL byod.queens.org/ IP 72.235.65.203:0 ASN #36149 HAWAIIAN-TELCOM File type HTML document, ASCII text Size 170 B (170 bytes) Hash f91a416be352a03c76b6ce8f948eda4d 28f1cf539f855fff3400f6199f8912908f51e1e1 7bc15a9ba71464596444ad648fa144937b848b302459c4103deae105cf42ce42 HTTP Headers `GET / HTTP/1.1 Host: byod.queens.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 08 May 2024 22:19:08 GMT Content-Type: text/html Content-Length: 170 Connection: keep-alive Pragma: private Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: 0 X-FRAME-OPTIONS: DENY Strict-Transport-Security: max-age=31536000; X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline'; img-src * data:; style-src 'self' 'unsafe-inline';`

	byod.queens.org/global-protect/login.esp	72.235.65.203	200 OK	12 kB
URL User Request GET HTTP/1.1 byod.queens.org/global-protect/login.esp IP 72.235.65.203:443 ASN #36149 HAWAIIAN-TELCOM Certificate IssuerNetwork Solutions L.L.C. Subjectbyod.queens.org FingerprintA3:21:98:13:06:B5:BC:41:39:F0:46:F5:75:7A:CA:30:52:FD:D4:57 ValidityThu, 13 Apr 2023 00:00:00 GMT - Mon, 13 May 2024 23:59:59 GMT File type HTML document, ASCII text Size 12 kB (11777 bytes) Hash 411e5db65324c1bc984e5546b1065714 dab3e170d10e0bccc3418276b92aa082a23baac3 7e6b26e23e42c58cf5de7c31c557496749be57897d946a8afc789ef7df44dc7e HTTP Headers GET /global-protect/login.esp HTTP/1.1 Host: byod.queens.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://byod.queens.org/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Date: Wed, 08 May 2024 22:19:08 GMT Content-Type: text/html; charset=UTF-8 Content-Length: 11777 Connection: keep-alive Pragma: no-cache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT X-FRAME-OPTIONS: DENY Set-Cookie: PHPSESSID=bb7bc0e44b8d643a4876f8fc229a7755; path=/; secure; HttpOnly PHPSESSID=bb7bc0e44b8d643a4876f8fc229a7755; path=/; secure; HttpOnly PHPSESSID=bb7bc0e44b8d643a4876f8fc229a7755; path=/; secure; HttpOnly PHPSESSID=bb7bc0e44b8d643a4876f8fc229a7755; path=/; secure; HttpOnly PHPSESSID=bb7bc0e44b8d643a4876f8fc229a7755; path=/; secure; HttpOnly PHPSESSID=bb7bc0e44b8d643a4876f8fc229a7755; path=/; secure; HttpOnly PHPSESSID=bb7bc0e44b8d643a4876f8fc229a7755; path=/; secure; HttpOnly Strict-Transport-Security: max-age=31536000; X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline'; img-src * data:; style-src 'self' 'unsafe-inline';

	byod.queens.org/global-protect/portal/css/bootstrap.min.css	72.235.65.203	200 OK	156 kB
URL GET HTTP/1.1 byod.queens.org/global-protect/portal/css/bootstrap.min.css IP 72.235.65.203:443 ASN #36149 HAWAIIAN-TELCOM Requested by https://byod.queens.org/global-protect/login.esp Certificate IssuerNetwork Solutions L.L.C. Subjectbyod.queens.org FingerprintA3:21:98:13:06:B5:BC:41:39:F0:46:F5:75:7A:CA:30:52:FD:D4:57 ValidityThu, 13 Apr 2023 00:00:00 GMT - Mon, 13 May 2024 23:59:59 GMT File type ASCII text, with very long lines (65324) Size 156 kB (155758 bytes) Hash a15c2ac3234aa8f6064ef9c1f7383c37 6e10354828454898fda80f55f3decb347fd9ed21 60b19e5da6a9234ff9220668a5ec1125c157a268513256188ee80f2d2c8d8d36 HTTP Headers GET /global-protect/portal/css/bootstrap.min.css HTTP/1.1 Host: byod.queens.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://byod.queens.org/global-protect/login.esp Cookie: PHPSESSID=bb7bc0e44b8d643a4876f8fc229a7755 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Wed, 08 May 2024 22:19:08 GMT Content-Type: text/css Content-Length: 155758 Connection: keep-alive Strict-Transport-Security: max-age=31536000; X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline'; img-src * data:; style-src 'self' 'unsafe-inline'; Accept-Ranges: bytes`

	byod.queens.org/global-protect/portal/css/latofonts.css	72.235.65.203	200 OK	10 kB
URL GET HTTP/1.1 byod.queens.org/global-protect/portal/css/latofonts.css IP 72.235.65.203:443 ASN #36149 HAWAIIAN-TELCOM Requested by https://byod.queens.org/global-protect/login.esp Certificate IssuerNetwork Solutions L.L.C. Subjectbyod.queens.org FingerprintA3:21:98:13:06:B5:BC:41:39:F0:46:F5:75:7A:CA:30:52:FD:D4:57 ValidityThu, 13 Apr 2023 00:00:00 GMT - Mon, 13 May 2024 23:59:59 GMT File type ASCII text Size 10 kB (10032 bytes) Hash 923a21f014c3f9a02649eb66d739a889 63256b65ac1384096cc5070e267d89835a5ea7ea ed85e761225b32bd7f244b4d1d8e5f26c42c9d2676c969681e949423c30c45b0 HTTP Headers GET /global-protect/portal/css/latofonts.css HTTP/1.1 Host: byod.queens.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://byod.queens.org/global-protect/login.esp Cookie: PHPSESSID=bb7bc0e44b8d643a4876f8fc229a7755 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Wed, 08 May 2024 22:19:09 GMT Content-Type: text/css Content-Length: 10032 Connection: keep-alive Strict-Transport-Security: max-age=31536000; X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline'; img-src * data:; style-src 'self' 'unsafe-inline'; Accept-Ranges: bytes`

	byod.queens.org/global-protect/portal/js/ie10-viewport-bug-workaround.js	72.235.65.203	200 OK	664 B
URL GET HTTP/1.1 byod.queens.org/global-protect/portal/js/ie10-viewport-bug-workaround.js IP 72.235.65.203:443 ASN #36149 HAWAIIAN-TELCOM Requested by https://byod.queens.org/global-protect/login.esp Certificate IssuerNetwork Solutions L.L.C. Subjectbyod.queens.org FingerprintA3:21:98:13:06:B5:BC:41:39:F0:46:F5:75:7A:CA:30:52:FD:D4:57 ValidityThu, 13 Apr 2023 00:00:00 GMT - Mon, 13 May 2024 23:59:59 GMT File type JavaScript source, ASCII text, with CRLF line terminators Size 664 B (664 bytes) Hash 186770c58c9bdb3faec9a4f32f582cd2 823c4aa387f90353fc6a8933206387499426601d 3a776234892e76fe2105236a8fa5f1ba40b18bb735fff77159f096f7a21aa350 HTTP Headers GET /global-protect/portal/js/ie10-viewport-bug-workaround.js HTTP/1.1 Host: byod.queens.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://byod.queens.org/global-protect/login.esp Cookie: PHPSESSID=bb7bc0e44b8d643a4876f8fc229a7755 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Wed, 08 May 2024 22:19:09 GMT Content-Type: application/x-javascript Content-Length: 664 Connection: keep-alive Strict-Transport-Security: max-age=31536000; X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline'; img-src * data:; style-src 'self' 'unsafe-inline'; Accept-Ranges: bytes`

	byod.queens.org/global-protect/portal/css/ie10-viewport-bug-workaround.css	72.235.65.203	200 OK	532 B
URL GET HTTP/1.1 byod.queens.org/global-protect/portal/css/ie10-viewport-bug-workaround.css IP 72.235.65.203:443 ASN #36149 HAWAIIAN-TELCOM Requested by https://byod.queens.org/global-protect/login.esp Certificate IssuerNetwork Solutions L.L.C. Subjectbyod.queens.org FingerprintA3:21:98:13:06:B5:BC:41:39:F0:46:F5:75:7A:CA:30:52:FD:D4:57 ValidityThu, 13 Apr 2023 00:00:00 GMT - Mon, 13 May 2024 23:59:59 GMT File type ASCII text, with CRLF line terminators Size 532 B (532 bytes) Hash bda718f817fa9168a6dfb08518c7bb69 9835324b9bcc1025ed7340b07e0187b5a4278e92 5ac941eaf51566c7c1ea17859ff5932facd399924cfdae3ca5758d441c964f96 HTTP Headers GET /global-protect/portal/css/ie10-viewport-bug-workaround.css HTTP/1.1 Host: byod.queens.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://byod.queens.org/global-protect/login.esp Cookie: PHPSESSID=bb7bc0e44b8d643a4876f8fc229a7755 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Wed, 08 May 2024 22:19:09 GMT Content-Type: text/css Content-Length: 532 Connection: keep-alive Strict-Transport-Security: max-age=31536000; X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline'; img-src * data:; style-src 'self' 'unsafe-inline'; Accept-Ranges: bytes`

	byod.queens.org/global-protect/portal/css/login.css	72.235.65.203	200 OK	22 kB
URL GET HTTP/1.1 byod.queens.org/global-protect/portal/css/login.css IP 72.235.65.203:443 ASN #36149 HAWAIIAN-TELCOM Requested by https://byod.queens.org/global-protect/login.esp Certificate IssuerNetwork Solutions L.L.C. Subjectbyod.queens.org FingerprintA3:21:98:13:06:B5:BC:41:39:F0:46:F5:75:7A:CA:30:52:FD:D4:57 ValidityThu, 13 Apr 2023 00:00:00 GMT - Mon, 13 May 2024 23:59:59 GMT File type ASCII text, with CRLF line terminators Size 22 kB (22243 bytes) Hash 5dcc2cc6a77675a64eb3869a344a1825 1a9a99207b34cc05cffdee0508bb77fe151182d8 3c125ff65167ac7e35a6b7c4f6e23d83e159a0c4c61fdab65952818e202c3722 HTTP Headers `GET /global-protect/portal/css/login.css HTTP/1.1 Host: byod.queens.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://byod.queens.org/global-protect/login.esp Cookie: PHPSESSID=bb7bc0e44b8d643a4876f8fc229a7755 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 08 May 2024 22:19:09 GMT Content-Type: text/css Content-Length: 22243 Connection: keep-alive Strict-Transport-Security: max-age=31536000; X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline'; img-src * data:; style-src 'self' 'unsafe-inline'; Accept-Ranges: bytes`

	www.queens.org/_img/qhs-main-logo.png	3.33.223.144	404 Not Found	162 B
URL GET HTTP/2 www.queens.org/_img/qhs-main-logo.png IP 3.33.223.144:443 ASN #16509 AMAZON-02 Requested by https://byod.queens.org/global-protect/login.esp Certificate IssuerAmazon Subjectqueens.org FingerprintF9:70:4E:05:00:C3:9D:8E:2B:A3:5A:81:16:95:02:AF:4B:8F:29:E5 ValidityThu, 14 Sep 2023 00:00:00 GMT - Sun, 13 Oct 2024 23:59:59 GMT File type HTML document, ASCII text, with CRLF line terminators Size 162 B (162 bytes) Hash 70461da8b94c6ca5d2fda3260c5a8c3b 994bc667720c21257500e29038c1a5f61e25da1e f33c27745f2bd87344be790465ef984a972fd539dc83bd4f61d4242c607ef1ee HTTP Headers `GET /_img/qhs-main-logo.png HTTP/1.1 Host: www.queens.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://byod.queens.org/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 404 Not Found date: Wed, 08 May 2024 22:19:10 GMT content-type: text/html; charset=utf-8 content-length: 162 server: nginx strict-transport-security: max-age=31536000; includeSubDomains X-Firefox-Spdy: h2`

	byod.queens.org/global-protect/portal/js/jquery.min.js	72.235.65.203	200 OK	90 kB
URL GET HTTP/1.1 byod.queens.org/global-protect/portal/js/jquery.min.js IP 72.235.65.203:443 ASN #36149 HAWAIIAN-TELCOM Requested by https://byod.queens.org/global-protect/login.esp Certificate IssuerNetwork Solutions L.L.C. Subjectbyod.queens.org FingerprintA3:21:98:13:06:B5:BC:41:39:F0:46:F5:75:7A:CA:30:52:FD:D4:57 ValidityThu, 13 Apr 2023 00:00:00 GMT - Mon, 13 May 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (65451) Size 90 kB (89476 bytes) Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d HTTP Headers `GET /global-protect/portal/js/jquery.min.js HTTP/1.1 Host: byod.queens.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://byod.queens.org/global-protect/login.esp Cookie: PHPSESSID=bb7bc0e44b8d643a4876f8fc229a7755 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 08 May 2024 22:19:09 GMT Content-Type: application/x-javascript Content-Length: 89476 Connection: keep-alive Strict-Transport-Security: max-age=31536000; X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline'; img-src * data:; style-src 'self' 'unsafe-inline'; Accept-Ranges: bytes`

	www.queens.org/_img/qhs-main-logo.png	3.33.223.144	404 Not Found	162 B
URL GET HTTP/2 www.queens.org/_img/qhs-main-logo.png IP 3.33.223.144:443 ASN #16509 AMAZON-02 Requested by https://byod.queens.org/global-protect/login.esp Certificate IssuerAmazon Subjectqueens.org FingerprintF9:70:4E:05:00:C3:9D:8E:2B:A3:5A:81:16:95:02:AF:4B:8F:29:E5 ValidityThu, 14 Sep 2023 00:00:00 GMT - Sun, 13 Oct 2024 23:59:59 GMT File type HTML document, ASCII text, with CRLF line terminators Size 162 B (162 bytes) Hash 70461da8b94c6ca5d2fda3260c5a8c3b 994bc667720c21257500e29038c1a5f61e25da1e f33c27745f2bd87344be790465ef984a972fd539dc83bd4f61d4242c607ef1ee HTTP Headers `GET /_img/qhs-main-logo.png HTTP/1.1 Host: www.queens.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://byod.queens.org/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 404 Not Found date: Wed, 08 May 2024 22:19:10 GMT content-type: text/html; charset=utf-8 content-length: 162 server: nginx strict-transport-security: max-age=31536000; includeSubDomains X-Firefox-Spdy: h2`

	byod.queens.org/global-protect/portal/js/ie10-viewport-bug-workaround.js	72.235.65.203	200 OK	664 B
URL GET HTTP/1.1 byod.queens.org/global-protect/portal/js/ie10-viewport-bug-workaround.js IP 72.235.65.203:443 ASN #36149 HAWAIIAN-TELCOM Requested by https://byod.queens.org/global-protect/login.esp Certificate IssuerNetwork Solutions L.L.C. Subjectbyod.queens.org FingerprintA3:21:98:13:06:B5:BC:41:39:F0:46:F5:75:7A:CA:30:52:FD:D4:57 ValidityThu, 13 Apr 2023 00:00:00 GMT - Mon, 13 May 2024 23:59:59 GMT File type JavaScript source, ASCII text, with CRLF line terminators Size 664 B (664 bytes) Hash 186770c58c9bdb3faec9a4f32f582cd2 823c4aa387f90353fc6a8933206387499426601d 3a776234892e76fe2105236a8fa5f1ba40b18bb735fff77159f096f7a21aa350 HTTP Headers GET /global-protect/portal/js/ie10-viewport-bug-workaround.js HTTP/1.1 Host: byod.queens.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://byod.queens.org/global-protect/login.esp Cookie: PHPSESSID=bb7bc0e44b8d643a4876f8fc229a7755 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Wed, 08 May 2024 22:19:10 GMT Content-Type: application/x-javascript Content-Length: 664 Connection: keep-alive Strict-Transport-Security: max-age=31536000; X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline'; img-src * data:; style-src 'self' 'unsafe-inline'; Accept-Ranges: bytes`

	www.queens.org/_img/qhs-main-logo.png	3.33.223.144	404 Not Found	162 B
URL GET HTTP/2 www.queens.org/_img/qhs-main-logo.png IP 3.33.223.144:443 ASN #16509 AMAZON-02 Requested by https://byod.queens.org/global-protect/login.esp Certificate IssuerAmazon Subjectqueens.org FingerprintF9:70:4E:05:00:C3:9D:8E:2B:A3:5A:81:16:95:02:AF:4B:8F:29:E5 ValidityThu, 14 Sep 2023 00:00:00 GMT - Sun, 13 Oct 2024 23:59:59 GMT File type HTML document, ASCII text, with CRLF line terminators Size 162 B (162 bytes) Hash 70461da8b94c6ca5d2fda3260c5a8c3b 994bc667720c21257500e29038c1a5f61e25da1e f33c27745f2bd87344be790465ef984a972fd539dc83bd4f61d4242c607ef1ee HTTP Headers `GET /_img/qhs-main-logo.png HTTP/1.1 Host: www.queens.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://byod.queens.org/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 404 Not Found date: Wed, 08 May 2024 22:19:10 GMT content-type: text/html; charset=utf-8 content-length: 162 server: nginx strict-transport-security: max-age=31536000; includeSubDomains X-Firefox-Spdy: h2`

	byod.queens.org/global-protect/portal/images/bg.png	72.235.65.203	200 OK	553 kB
URL GET HTTP/1.1 byod.queens.org/global-protect/portal/images/bg.png IP 72.235.65.203:443 ASN #36149 HAWAIIAN-TELCOM Requested by https://byod.queens.org/global-protect/login.esp Certificate IssuerNetwork Solutions L.L.C. Subjectbyod.queens.org FingerprintA3:21:98:13:06:B5:BC:41:39:F0:46:F5:75:7A:CA:30:52:FD:D4:57 ValidityThu, 13 Apr 2023 00:00:00 GMT - Mon, 13 May 2024 23:59:59 GMT File type PNG image data, 4098 x 2208, 8-bit/color RGBA, non-interlaced Size 553 kB (553403 bytes) Hash 169f4ad77c827e3ccb726f9a61ae715c fee1b4efce3da597a21da71b545b5c9e9b4154c2 61ee174249c5ce47f2cdce137bed4ac2e6a4e7bc7eacb7761bd614d11d2bbab0 HTTP Headers GET /global-protect/portal/images/bg.png HTTP/1.1 Host: byod.queens.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://byod.queens.org/global-protect/portal/css/login.css Cookie: PHPSESSID=bb7bc0e44b8d643a4876f8fc229a7755 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Wed, 08 May 2024 22:19:10 GMT Content-Type: image/png Content-Length: 553403 Connection: keep-alive Expires: Sat, 18 May 2024 22:19:10 GMT Cache-Control: max-age=864000 Strict-Transport-Security: max-age=31536000; X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline'; img-src * data:; style-src 'self' 'unsafe-inline'; Accept-Ranges: bytes`

	www.queens.org/_controls/favicon.ico?ver=2	3.33.223.144	404 Not Found	162 B
URL GET HTTP/2 www.queens.org/_controls/favicon.ico?ver=2 IP 3.33.223.144:443 ASN #16509 AMAZON-02 Requested by https://byod.queens.org/global-protect/login.esp Certificate IssuerAmazon Subjectqueens.org FingerprintF9:70:4E:05:00:C3:9D:8E:2B:A3:5A:81:16:95:02:AF:4B:8F:29:E5 ValidityThu, 14 Sep 2023 00:00:00 GMT - Sun, 13 Oct 2024 23:59:59 GMT File type HTML document, ASCII text, with CRLF line terminators Size 162 B (162 bytes) Hash 70461da8b94c6ca5d2fda3260c5a8c3b 994bc667720c21257500e29038c1a5f61e25da1e f33c27745f2bd87344be790465ef984a972fd539dc83bd4f61d4242c607ef1ee HTTP Headers `GET /_controls/favicon.ico?ver=2 HTTP/1.1 Host: www.queens.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://byod.queens.org/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 404 Not Found date: Wed, 08 May 2024 22:19:11 GMT content-type: text/html; charset=utf-8 content-length: 162 server: nginx strict-transport-security: max-age=31536000; includeSubDomains X-Firefox-Spdy: h2`

	byod.queens.org/global-protect/portal/images/logo-pan-48525a.png	0.0.0.0		0 B
URL GET byod.queens.org/global-protect/portal/images/logo-pan-48525a.png IP 0.0.0.0:0 ASN #0 Requested by https://byod.queens.org/global-protect/login.esp Certificate IssuerNetwork Solutions L.L.C. Subjectbyod.queens.org FingerprintA3:21:98:13:06:B5:BC:41:39:F0:46:F5:75:7A:CA:30:52:FD:D4:57 ValidityThu, 13 Apr 2023 00:00:00 GMT - Mon, 13 May 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /global-protect/portal/images/logo-pan-48525a.png HTTP/1.1 Host: byod.queens.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://byod.queens.org/global-protect/login.esp Cookie: PHPSESSID=bb7bc0e44b8d643a4876f8fc229a7755 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (16)

URL

IP

ASN

File type

Size

Hash

HTTP Headers