learn.cisecurity.org/e/799323/mitigations-M1050-/4tltx7/2128837011/h/1g1t36qnTqdBfucklniIIJDF9Y_EcJG6bm73UVg2mDA
3.92.120.28301 Moved Permanently 118 B URL User Request GET HTTP/1.1 learn.cisecurity.org/e/799323/mitigations-M1050-/4tltx7/2128837011/h/1g1t36qnTqdBfucklniIIJDF9Y_EcJG6bm73UVg2mDA
IP 3.92.120.28:443
Certificate IssuerLet's Encrypt
Subjectlearn.cisecurity.org
Fingerprint21:CC:88:42:49:1D:05:98:D7:42:3D:99:9C:BE:D9:A1:A5:22:77:22
ValidityTue, 09 Apr 2024 00:13:37 GMT - Mon, 08 Jul 2024 00:13:36 GMT
File type HTML document, ASCII text, with no line terminators
Hash 9b5a5df351adf4bbc6c67f98ab232efd
a56df8500b240c5ddebfbd4ad45c724cdf57f35d
bd96e8ce05a27fb0aeba60817068803442f8b5f13743b4ba53d5687a057b09ac
GET /e/799323/mitigations-M1050-/4tltx7/2128837011/h/1g1t36qnTqdBfucklniIIJDF9Y_EcJG6bm73UVg2mDA HTTP/1.1
Host: learn.cisecurity.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Fri, 19 Apr 2024 10:32:33 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 118
Connection: keep-alive
set-cookie: pardot=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
location: https://attack.mitre.org/mitigations/M1050/
p3p: CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT", policyref="/w3c/p3p.xml"
cache-control: max-age=63072000
expires: Sun, 19 Apr 2026 10:32:33 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
X-Pardot-Route: e8229a0ff18ebffc83a98010d2521dd5
attack.mitre.org/mitigations/M1050/
185.199.108.153200 OK 6.9 kB URL User Request GET HTTP/2 attack.mitre.org/mitigations/M1050/
IP 185.199.108.153:443
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (3469)
Hash 8006d678a773f9e316441738a374473a
6b3174911c4d7a14bb63b7b2b1f174c0b1c524a7
9fb3eb549edda45c66b458abb64130d70e5ae35cf365d8e0cabcba7b357d8002
GET /mitigations/M1050/ HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: GitHub.com
content-type: text/html; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-a626"
expires: Fri, 19 Apr 2024 10:42:33 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: F98C:1B5FBD:496A092:4B0FB25:66224841
accept-ranges: bytes
age: 0
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713522754.514062,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: 764687f0353dada48b0f11ec8143edb38b5366ce
content-length: 6884
X-Firefox-Spdy: h2
attack.mitre.org/theme/style/bootstrap.min.css
185.199.108.153200 OK 24 kB URL GET HTTP/2 attack.mitre.org/theme/style/bootstrap.min.css
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type ASCII text, with very long lines (65324)
Hash a15c2ac3234aa8f6064ef9c1f7383c37
6e10354828454898fda80f55f3decb347fd9ed21
60b19e5da6a9234ff9220668a5ec1125c157a268513256188ee80f2d2c8d8d36
GET /theme/style/bootstrap.min.css HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-2606e"
expires: Fri, 19 Apr 2024 10:10:14 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: HIT
x-github-request-id: 7FFA:2C0AE3:64E498B:6729998:662240BC
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 152
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.836775,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 2e913759f6e9c5eaa3d6923390e40415a55a2ed4
content-length: 23620
X-Firefox-Spdy: h2
attack.mitre.org/theme/style/bootstrap-tourist.css
185.199.108.153200 OK 671 B URL GET HTTP/2 attack.mitre.org/theme/style/bootstrap-tourist.css
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Hash 6721d13d3961015102896e679284bcac
71eba6f04f5d8b1ccdd34982d65887b9ba1bdcca
50d579034cf5e54e53ad48172173f27b9eae3cd1c493c554526510386ac0200c
GET /theme/style/bootstrap-tourist.css HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-978"
expires: Fri, 19 Apr 2024 10:42:30 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: E652:2285C3:7A0C8C0:7CC18EA:6622483E
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.837936,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 3481c43a074589cba13f180d98de8e5568309726
content-length: 671
X-Firefox-Spdy: h2
attack.mitre.org/theme/style/bootstrap-select.min.css
185.199.108.153200 OK 2.3 kB URL GET HTTP/2 attack.mitre.org/theme/style/bootstrap-select.min.css
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type ASCII text, with very long lines (10943), with CRLF line terminators
Hash 486d7426635cb3698ca5bd4c50e5a7f7
aefc4756004cdae1903f6aaceb5ef20f76b277e4
c22308edbb8e579501cdd58de2ce245ea13f2d9efde21c79a0938e21094305a3
GET /theme/style/bootstrap-select.min.css HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-2bb0"
expires: Fri, 19 Apr 2024 10:31:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 4252:2AF6FA:4D18C47:4EC4ABB:66224591
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 2
x-timer: S1713522754.839196,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: eecd3185ba253ae47f3bf4ca0305772ea66ddace
content-length: 2262
X-Firefox-Spdy: h2
attack.mitre.org/theme/style/fontawesome-6.5.1/css/fontawesome.min.css
185.199.108.153200 OK 18 kB URL GET HTTP/2 attack.mitre.org/theme/style/fontawesome-6.5.1/css/fontawesome.min.css
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type ASCII text, with very long lines (52276)
Hash 050a20fcaed9e77ff3c43b7aae625283
397e1e16117c1a4166e52f424e2ae4a2b5fcbe09
8eb5b44ce5971a501e5a17954c464b80aba0c4604675b5603a7f456459af88a1
GET /theme/style/fontawesome-6.5.1/css/fontawesome.min.css HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-13b9b"
expires: Fri, 19 Apr 2024 10:42:30 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: F6AE:28A741:3999D4B:3ADA713:6622483E
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.840190,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 33a763bb99b0f78bbcf1029d67f91fbb2d168774
content-length: 17654
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-62667723-1
142.250.74.40200 OK 55 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-62667723-1
IP 142.250.74.40:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D
ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File type JavaScript source, ASCII text, with very long lines (1900)
Hash 43aac2dfba48677e910570da22b0366e
b0225caf6cb6e22cef9cde85eca8fbf038ac14d8
66740cde44cb1a978c2b2725225bbe3d9c67a2f631eec87ebf7e294a32c791cf
GET /gtag/js?id=UA-62667723-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 19 Apr 2024 10:32:33 GMT
expires: Fri, 19 Apr 2024 10:32:33 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 55376
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
attack.mitre.org/theme/style/fontawesome-6.5.1/css/brands.min.css
185.199.108.153200 OK 5.0 kB URL GET HTTP/2 attack.mitre.org/theme/style/fontawesome-6.5.1/css/brands.min.css
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type ASCII text, with very long lines (19088)
Hash c34572fbb8256bceaa2d72c6bbf4a54b
61821918deb7a14d789b08b008c6bedce7819cea
321e5ebea077d3b3be03f5b0218ceab2259cf6e93035aa8644e7970a054fd687
GET /theme/style/fontawesome-6.5.1/css/brands.min.css HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-4b6b"
expires: Fri, 19 Apr 2024 10:02:02 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: HIT
x-github-request-id: A9B8:303CF7:E281B0:E7A2E1:66223EFF
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 152
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.841092,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: e71697877b2093b4717795a1234c3703a6d52c96
content-length: 4959
X-Firefox-Spdy: h2
attack.mitre.org/theme/style/fontawesome-6.5.1/css/solid.min.css
185.199.108.153200 OK 326 B URL GET HTTP/2 attack.mitre.org/theme/style/fontawesome-6.5.1/css/solid.min.css
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type ASCII text, with very long lines (353)
Hash 4d63c1a82931dd3b2d8ba3135987b9c3
b79ead6a4a6548ec021c030e9b0e95c9ba0648e7
b8afa4243dd1bf735f512708da5335b0ed314d9e58a0a1cf1b781250cf5fb004
GET /theme/style/fontawesome-6.5.1/css/solid.min.css HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-23c"
expires: Fri, 19 Apr 2024 10:42:30 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: DB3C:260522:CE91F9:D3555B:6622483E
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.842186,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: d22a0f5fe6d532216584e77762581b9ca920a82f
content-length: 326
X-Firefox-Spdy: h2
attack.mitre.org/theme/style.min.css?fbd3eefa
185.199.108.153200 OK 10 kB URL GET HTTP/2 attack.mitre.org/theme/style.min.css?fbd3eefa
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type ASCII text, with very long lines (857)
Hash fbd3eefaf70c9d3fd0e4717a0c08fee4
f9f99644605ef48f528364c96e74278874fa1726
476285b1ab4637e090f6268caef4b5996cf63b5c3a91075a4d077d2eb17c56cb
GET /theme/style.min.css?fbd3eefa HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-dd02"
expires: Fri, 19 Apr 2024 09:34:30 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 7A00:1F2E28:29512F6:2A36CF4:6622384D
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 2
x-timer: S1713522754.846139,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: 5200b24b2a6748f54483732d46b43f2efc66edcd
content-length: 10096
X-Firefox-Spdy: h2
attack.mitre.org/theme/images/external-site.svg
185.199.108.153200 OK 1.0 kB URL GET HTTP/2 attack.mitre.org/theme/images/external-site.svg
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type SVG Scalable Vector Graphics image
Hash ca1d4086ac72385da77bfddef57baca7
1f5893a8aaa43348d9ae0b1699f48f6964568d50
92232d88078e2a618a3a4a02443fa1df4649718289bb9cec2a3bbd5910b337a4
GET /theme/images/external-site.svg HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-7c6"
expires: Fri, 19 Apr 2024 10:20:54 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 7FCE:263237:5248F6F:53FD0CE:6622432D
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 151
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 2
x-timer: S1713522754.846699,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: 9d9fce5abb44c856f7dd757820b14fc07f6899f6
content-length: 1022
X-Firefox-Spdy: h2
attack.mitre.org/theme/images/mitre_attack_logo.png
185.199.108.153200 OK 8.5 kB URL GET HTTP/2 attack.mitre.org/theme/images/mitre_attack_logo.png
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type PNG image data, 1191 x 126, 8-bit colormap, non-interlaced
Hash c11bfbd5df76c3768bcb8562303647f2
83dedfa61f10b1de0ec98ec1bc1e5cf6f1264d8d
3ae6a7bfab7524a73fda8afb924ee4ebcaede820e4aacbbadfa7a958a45bef93
GET /theme/images/mitre_attack_logo.png HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: "660b797f-210d"
expires: Fri, 19 Apr 2024 08:56:39 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: E664:1C8AC3:162CAD6:16A80AB:66222F6E
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 152
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.846307,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: c71a615db3437d0df86c5cea1a28cdf04ecda506
content-length: 8461
X-Firefox-Spdy: h2
attack.mitre.org/theme/images/external-site-dark.jpeg
185.199.108.153200 OK 15 kB URL GET HTTP/2 attack.mitre.org/theme/images/external-site-dark.jpeg
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 90x90, segment length 16, progressive, precision 8, 512x512, components 3
Hash 4be87aa32da619e2deb03f384dcd0113
463448bc680ec7c41b0dae13b49b06f179fab6bc
42a7279fdff15eebdfcda93b2ceeedb3e4d379c68cbb711b84d41ed9b71252cf
GET /theme/images/external-site-dark.jpeg HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/jpeg
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: "660b797f-3a2b"
expires: Fri, 19 Apr 2024 09:53:58 GMT
cache-control: max-age=600
x-proxy-cache: HIT
x-github-request-id: C442:28A741:38F3694:3A30B1B:66223CF6
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 12
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 2
x-timer: S1713522754.847156,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: 977839551ad366fadb4f52b6a7a7412c171fc99d
content-length: 14891
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/site.js?381
185.199.108.153200 OK 445 B URL GET HTTP/2 attack.mitre.org/theme/scripts/site.js?381
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type JavaScript source, ASCII text
Hash 16d9492a7c971bb213abafdc335fb671
e809da48d7fca0d39b6947dc233b84eee5c67826
caab156d665d81279e379525e46e84463f37467dad0b67d416f5136617e9cfbc
GET /theme/scripts/site.js?381 HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-3ca"
expires: Fri, 19 Apr 2024 10:05:37 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 18C4:263237:520FF34:53C2FBE:66223F99
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 151
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 2
x-timer: S1713522754.863247,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: 49538013f34b8657af048205200d63d2505896c4
content-length: 445
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/settings.js?781
185.199.108.153200 OK 224 B URL GET HTTP/2 attack.mitre.org/theme/scripts/settings.js?781
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Hash 1b57359133e8f499b517337a288004e4
cdbdfba747eb68d939596e2caf06b056d4d9a0d0
b8a23f5cdad819c9354e7edd5b276ec17635823b134c62fd516845ff9918b0ad
GET /theme/scripts/settings.js?781 HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-12b"
expires: Fri, 19 Apr 2024 10:40:02 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: C770:263237:528E7B6:5443E07:662247AA
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 3
x-timer: S1713522754.863230,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: 2cc85fb57d4bfe14987270586d499b75f4bf724f
content-length: 224
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/bootstrap.bundle.min.js
185.199.108.153200 OK 23 kB URL GET HTTP/2 attack.mitre.org/theme/scripts/bootstrap.bundle.min.js
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type JavaScript source, ASCII text, with very long lines (65297)
Hash 964f6fdf7b2080375cdd6c6392aa62ef
ef7d2ef43eb11fa0b6ca3f917afa3cfb1e164c85
124bbd8d249b86351701081fde6f3584811ecaeaa6a179154ea170d6ad48eff8
GET /theme/scripts/bootstrap.bundle.min.js HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-13b3c"
expires: Fri, 19 Apr 2024 10:40:02 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: F278:29EF9F:5789820:5976E36:662247A9
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 2
x-timer: S1713522754.863283,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: b547d83b72f01037eb85a25f38676dbda2fb6487
content-length: 22985
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/settings.js
185.199.108.153200 OK 224 B URL GET HTTP/2 attack.mitre.org/theme/scripts/settings.js
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Hash 1b57359133e8f499b517337a288004e4
cdbdfba747eb68d939596e2caf06b056d4d9a0d0
b8a23f5cdad819c9354e7edd5b276ec17635823b134c62fd516845ff9918b0ad
GET /theme/scripts/settings.js HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-12b"
expires: Fri, 19 Apr 2024 10:40:02 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: C770:263237:528E7B6:5443E07:662247AA
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 4
x-timer: S1713522754.863430,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: c5109f31ce74a36005509ad9b0ff45910fde1bef
content-length: 224
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/popper.min.js
185.199.108.153200 OK 6.1 kB URL GET HTTP/2 attack.mitre.org/theme/scripts/popper.min.js
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type JavaScript source, ASCII text, with very long lines (3324)
Hash 33150817803ad0bc16b719be221c8701
fa042c1587180e47a71fd6bd3b819d17b7c1d017
976705f4556d7fb372a1696b61112f0091182e1761a27a7ff261cafb4da551da
GET /theme/scripts/popper.min.js HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-5050"
expires: Fri, 19 Apr 2024 10:42:30 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 408A:2AF6FA:4D410EF:4EEDBFF:6622483E
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.863311,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 874bb67b151a1f46a70277b3b48b413d1a62a89c
content-length: 6148
X-Firefox-Spdy: h2
attack.mitre.org/theme/images/mitrelogowhiteontrans.gif
185.199.108.153200 OK 661 B URL GET HTTP/2 attack.mitre.org/theme/images/mitrelogowhiteontrans.gif
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type GIF image data, version 89a, 189 x 86
Hash d1fafd1b628d38206e63aa5d9ab0efbe
bea2645a2ff9e13c8b2506a51e6d88dead4c771c
55f61ce63b8f846de286d53083e0380f2b8898fa15245437a3f960fa9dc27503
GET /theme/images/mitrelogowhiteontrans.gif HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/gif
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: "660b797f-295"
expires: Fri, 19 Apr 2024 10:29:11 GMT
cache-control: max-age=600
x-proxy-cache: HIT
x-github-request-id: 32E0:156FBE:417A534:42F8ED6:66224591
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.863353,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 87a35b6f8efbd9cf2e0a47830c6a8d0c6bdbc200
content-length: 661
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/sidebar-load-all.js
185.199.108.153200 OK 817 B URL GET HTTP/2 attack.mitre.org/theme/scripts/sidebar-load-all.js
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type JavaScript source, ASCII text
Hash b570ad692461d0bd17b4f2881710b676
fc6476286b6944d55a6e123e50738216004c06e7
b479d046a4d9a248ba5b7b980b8afb8e2434033c6c00b6726c86abe111781581
GET /theme/scripts/sidebar-load-all.js HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-8f9"
expires: Fri, 19 Apr 2024 10:40:02 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: CF9C:1B5FBD:496120B:4B069DA:662247AA
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 2
x-timer: S1713522754.866281,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: e3cd1dc188689a904eaac5644ffd71ffd51d3701
content-length: 817
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/resizer.js
185.199.108.153200 OK 401 B URL GET HTTP/2 attack.mitre.org/theme/scripts/resizer.js
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Hash f10494c1b6cf88c889c6184a91797016
3f0377d2a8867b1cf138b68136cd313b04b6d828
a5581c8fd475cbef05bd3ea452986457c4b61de2fd0f6b6d8c3073305b7e4c4e
GET /theme/scripts/resizer.js HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-455"
expires: Fri, 19 Apr 2024 10:42:12 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 6DEE:263237:5296D6C:544C622:6622482B
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 2
x-timer: S1713522754.866097,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: fd37d25be7fe043ea41848aa0ed79aead1a12474
content-length: 401
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/bootstrap-select.min.js
185.199.108.153200 OK 16 kB URL GET HTTP/2 attack.mitre.org/theme/scripts/bootstrap-select.min.js
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type JavaScript source, ASCII text, with very long lines (53354)
Hash 3a7fa5da04cf747fa04aa1ec8d2c2794
f6ffcd620919065a9614ab16d7d7d255c508106e
aa8d026a6e17274410d3a5e70a20856018771835d4e398f7969529f9e9b6c815
GET /theme/scripts/bootstrap-select.min.js HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-d18c"
expires: Fri, 19 Apr 2024 10:42:30 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: B918:1C8AC3:17A71A6:1829BF6:6622483E
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.863279,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: f0f7d99272460c6b88c323498629e34030377296
content-length: 16053
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/jquery-3.5.1.min.js
185.199.108.153200 OK 31 kB URL GET HTTP/2 attack.mitre.org/theme/scripts/jquery-3.5.1.min.js
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type JavaScript source, ASCII text, with very long lines (65451)
Hash dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
GET /theme/scripts/jquery-3.5.1.min.js HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-15d84"
expires: Fri, 19 Apr 2024 10:42:30 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: A028:2AF6FA:4D410EF:4EEDBFE:6622483D
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.863332,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 8c9b9168877940658d2d7af5a56ced6de8eff0f9
content-length: 31147
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/search_bundle.js
185.199.108.153200 OK 108 kB URL GET HTTP/2 attack.mitre.org/theme/scripts/search_bundle.js
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65502), with no line terminators
Size 108 kB (107850 bytes)
Hash ec8aa8edf0cc379b236bed71b9842ef8
99b3a06647ef450964a209aff90568cea7c68b67
6a19f14ed56f9c80fb48fdb384e11a93aa8776d4392e0aab9a719f90f8263b72
GET /theme/scripts/search_bundle.js HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-63f9b"
expires: Fri, 19 Apr 2024 10:42:12 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: E398:263237:5296D6C:544C623:6622482C
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 2
x-timer: S1713522754.864840,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: ccb0a63b3f5eec3c1d69f3c8c01821dbbfa9a20b
content-length: 107850
X-Firefox-Spdy: h2
attack.mitre.org/theme/fonts/Roboto/Roboto-Light.ttf
185.199.108.153200 OK 91 kB URL GET HTTP/2 attack.mitre.org/theme/fonts/Roboto/Roboto-Light.ttf
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type TrueType Font data, 18 tables, 1st "GDEF", 28 names, Macintosh, Copyright 2011 Google Inc. All Rights Reserved.Roboto LightRegularVersion 2.137; 2017Roboto-Ligh
Hash fc84e998bc29b297ea20321e4c90b6ed
73a2bb2d6e591a90ffb4ed118a3989fb17b54c7b
a6d343d425bc38db90152fa06058b1c7391eca9264f334ef65c1ce175085c6f6
GET /theme/fonts/Roboto/Roboto-Light.ttf HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/theme/style.min.css?fbd3eefa
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: font/ttf
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-299b4"
expires: Fri, 19 Apr 2024 10:42:13 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 9AE8:1B5FBD:4968CBE:4B0E6F7:6622482C
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:34 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 2
x-timer: S1713522754.049270,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: 727e31fc20e7adaf0fe519b23b962d8a39554b00
content-length: 90875
X-Firefox-Spdy: h2
attack.mitre.org/theme/fonts/Roboto/Roboto-Regular.ttf
185.199.108.153200 OK 91 kB URL GET HTTP/2 attack.mitre.org/theme/fonts/Roboto/Roboto-Regular.ttf
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type TrueType Font data, 18 tables, 1st "GDEF", 26 names, Macintosh, Copyright 2011 Google Inc. All Rights Reserved.RobotoRegularVersion 2.137; 2017Roboto-RegularRob
Hash 3e1af3ef546b9e6ecef9f3ba197bf7d2
dd1b1db13ff1f72138c134c62f38fef83749f36a
79e851404657dac2106b3d22ad256d47824a9a5765458edb72c9102a45816d95
GET /theme/fonts/Roboto/Roboto-Regular.ttf HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/theme/style.min.css?fbd3eefa
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: font/ttf
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-29e9c"
expires: Fri, 19 Apr 2024 10:13:11 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: HIT
x-github-request-id: CA78:263237:5234991:53E84A0:662241D7
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:34 GMT
via: 1.1 varnish
age: 21
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 7
x-timer: S1713522754.083892,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: ffe3ce3a8ccdfcac1c3d5c4a51027b6f81d11496
content-length: 91002
X-Firefox-Spdy: h2
attack.mitre.org/theme/fonts/Roboto/Roboto-Thin.ttf
185.199.108.153200 OK 89 kB URL GET HTTP/2 attack.mitre.org/theme/fonts/Roboto/Roboto-Thin.ttf
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type TrueType Font data, 18 tables, 1st "GDEF", 28 names, Macintosh, Copyright 2011 Google Inc. All Rights Reserved.Roboto ThinRegularVersion 2.137; 2017Roboto-ThinR
Hash 89e2666c24d37055bcb60e9d2d9f7e35
9514ad7aee341594f43a33893f0b3d8a6d81f32e
3d91f7aa69cb7f7064035895c566ac5cb9b2084582d351af7267bb4e0fba60f5
GET /theme/fonts/Roboto/Roboto-Thin.ttf HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/theme/style.min.css?fbd3eefa
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: font/ttf
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-29f80"
expires: Fri, 19 Apr 2024 10:42:31 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 1934:1C8AC3:17A720B:1829C60:6622483E
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:34 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.246636,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: e486154badd49ba4c18673c240f7630f44f3cee2
content-length: 89365
X-Firefox-Spdy: h2
attack.mitre.org/theme/style/fontawesome-6.5.1/webfonts/fa-brands-400.woff2
185.199.108.153200 OK 117 kB URL GET HTTP/2 attack.mitre.org/theme/style/fontawesome-6.5.1/webfonts/fa-brands-400.woff2
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 117372, version 773.768
Size 117 kB (117372 bytes)
Hash b6356c957274676e6571c1ff5e11c9a8
4022f95e001d734ca8f082b8e7627abd205609ec
3a8924cd5203a28628716aedb5cef0943da4c3b44e3ffcee90ab06387b41c490
GET /theme/style/fontawesome-6.5.1/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/theme/style/fontawesome-6.5.1/css/brands.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: font/woff2
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: "660b797f-1ca7c"
expires: Fri, 19 Apr 2024 10:42:31 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: A022:1B1E45:312CF67:3240DBE:6622483E
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:34 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.249367,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 9eca0d6fd6bef272a322309dde6cca0e7bad0bd7
content-length: 117372
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-C8EHW4DS2X&l=dataLayer&cx=c
142.250.74.40200 OK 93 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-C8EHW4DS2X&l=dataLayer&cx=c
IP 142.250.74.40:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D
ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File type JavaScript source, ASCII text, with very long lines (3034)
Hash df481e04f4a1aa0afd80438fb8ee7019
aa023f3f068c8aae89cccf6ba4aa3ae2882e9905
ea2b37d4b3f870d493bb3c0293cb547523bc7efd8a88fcd7b1b9d18c3f7243c5
GET /gtag/js?id=G-C8EHW4DS2X&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 19 Apr 2024 10:32:34 GMT
expires: Fri, 19 Apr 2024 10:32:34 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93365
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
attack.mitre.org/search/campaigns.json
185.199.108.153200 OK 42 kB URL GET HTTP/2 attack.mitre.org/search/campaigns.json
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Hash d44848f4d08ceb80f1534d834ac23cee
1de06e08da75529a22df2bf5b7bd800c26261515
da3e0b019f6a644692f940227e1b9bffdf95bb4683f71d7acf033187b575e53a
Analyzer Verdict Alert Public Nextron YARA rules malware Detects strings found in Runspace Post Exploitation Toolkit
Public Nextron YARA rules malware Detects a set of reconnaissance commands on Windows systems
GET /search/campaigns.json HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-27ce9"
expires: Fri, 19 Apr 2024 10:42:31 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: A034:2285C3:7A0C947:7CC196E:6622483E
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:34 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.265552,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 8ef4476cac7c276cc900647250ae7cc09dfef160
content-length: 41616
X-Firefox-Spdy: h2
attack.mitre.org/search/assets.json
185.199.108.153200 OK 8.3 kB URL GET HTTP/2 attack.mitre.org/search/assets.json
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Hash 272dc155d0e68f42fddf898d0d2465f5
6b77687f66eec38799d87b4a9872b70c48455488
6f4bd0f5e001722feb002e311916d1e2deb6eb77f8130f260957b3a4770720c6
GET /search/assets.json HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-b18b"
expires: Fri, 19 Apr 2024 10:42:31 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: B90A:21BD59:7DB0D10:8077317:6622483E
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:34 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.268957,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 340c4625aa62ba968db77c87f0de7331915c1336
content-length: 8251
X-Firefox-Spdy: h2
attack.mitre.org/search/datasources.json
185.199.108.153200 OK 199 kB URL GET HTTP/2 attack.mitre.org/search/datasources.json
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Size 199 kB (198833 bytes)
Hash 1f4a4d46042d93477ef2c29678150357
247480048ab3ecaea1d46833c8ea85341c1ccda5
6a474367ee37fd5c0e4d7c907f07d2229b2418cd24ed99973981eb1c95b3552d
Analyzer Verdict Alert Public Nextron YARA rules malware Detects strings found in Runspace Post Exploitation Toolkit
GET /search/datasources.json HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-e028f"
expires: Fri, 19 Apr 2024 10:29:27 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: CB6A:19F0E8:452FC46:46B0AB5:66224527
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:34 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 2
x-timer: S1713522754.269476,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: 44749a0de7913c556aef5e24c2db3f134952469e
content-length: 198833
X-Firefox-Spdy: h2
attack.mitre.org/search/matrices.json
185.199.108.153200 OK 16 kB URL GET HTTP/2 attack.mitre.org/search/matrices.json
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Hash 582625217ca49ddb3d8e91edfc76b64f
b35fb23b9b884da1e26209074c7c2d34e53a86b9
0ddeaa85ae97b21f04d4b666229b0fccb2768ea2709cdc018536454e6c4bee1b
GET /search/matrices.json HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-2b103"
expires: Fri, 19 Apr 2024 10:29:26 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: E7F8:156FBE:4174896:42F3055:6622452E
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:34 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 2
x-timer: S1713522754.276360,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: dea0eb9c31d2ed063524486a75a9970cd121ed2f
content-length: 16219
X-Firefox-Spdy: h2
attack.mitre.org/search/misc.json
185.199.108.153200 OK 168 kB URL GET HTTP/2 attack.mitre.org/search/misc.json
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Size 168 kB (167502 bytes)
Hash f75b4d5a30ffcd7df227b2d97dfbde00
7d0ce735f4d386c2c913c3e2d0a72ea94ff30598
c84597b2cc0060132561b7e6cf7719e85d534ccddc8e16f97616333cd9d18012
GET /search/misc.json HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-959da"
expires: Fri, 19 Apr 2024 10:15:11 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: F5C8:2285C3:79ACDC1:7C5FFD2:662241D6
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:34 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.277810,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: cd89303e7481d31cf2679b4f1b586af692f1120f
content-length: 167502
X-Firefox-Spdy: h2
attack.mitre.org/search/mitigations.json
185.199.108.153200 OK 113 kB URL GET HTTP/2 attack.mitre.org/search/mitigations.json
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Size 113 kB (113076 bytes)
Hash 662c299d929faff511cbecf233d7bc62
a9d866364b07edb64bd6a1fa0674b39fd3325d29
511b59c4f7a45b5fb086545e99a3a0de8d359be9a53a1b227e3baf8f09b6710d
GET /search/mitigations.json HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-833bd"
expires: Fri, 19 Apr 2024 10:27:37 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: HIT
x-github-request-id: C1C0:260522:CBC083:D0757F:6622452E
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:34 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.279084,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: be2beed068fcf4a8f08d338659eee21d342c12a3
content-length: 113076
X-Firefox-Spdy: h2
attack.mitre.org/search/tactics.json
185.199.108.153200 OK 133 kB URL GET HTTP/2 attack.mitre.org/search/tactics.json
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Size 133 kB (133230 bytes)
Hash ea17db12d724f51616547bd51b18e97d
af5fe71e411ea23b157a9db6d0158d0ca34180f4
3b4fa587814c1e13c5139e16c2dae9f741e1fef3cc0d5663d177d57b9fe7548e
GET /search/tactics.json HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-7716f"
expires: Fri, 19 Apr 2024 10:29:26 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: A3D6:21BD59:7D8058F:8045D42:6622452E
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:34 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.283560,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: c10e3777bd5d8a1d3167f4649952fad1243174cc
content-length: 133230
X-Firefox-Spdy: h2
attack.mitre.org/search/groups.json
185.199.108.153200 OK 298 kB URL GET HTTP/2 attack.mitre.org/search/groups.json
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Size 298 kB (298296 bytes)
Hash f4eeac5bc4fbaa7baaaf421de2dd9a29
ac76585b74e9416d7d277a52a9ad9dac45584d26
cbcebf083c6906c4c1a1bdb64bc92c7906d2ea61cee6c25b21e9beeda622bab6
Analyzer Verdict Alert Public Nextron YARA rules malware Detects strings found in Runspace Post Exploitation Toolkit
Public InfoSec YARA rules malware Identifies KPortScan, port scanner.
GET /search/groups.json HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-1482e5"
expires: Fri, 19 Apr 2024 10:29:26 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 855C:2AF6FA:4D12F30:4EBEBC7:6622452D
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:34 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.273734,VS0,VE15
vary: Accept-Encoding
x-fastly-request-id: 946759f36121c93c67519b1d7fc0187cfe47fd2f
content-length: 298296
X-Firefox-Spdy: h2
attack.mitre.org/search/software.json
185.199.108.153200 OK 628 kB URL GET HTTP/2 attack.mitre.org/search/software.json
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Size 628 kB (628542 bytes)
Hash 67984623cf33dad29e1106ba0465e1c3
ef90f9aa9934a8a2bdca1eb7ce51f6e9ebef47d4
0eb553ef0e5ceba79fa33a96f3d5bd042f7da64c5d2b83735a15dc9a5b6a2a2b
Analyzer Verdict Alert Public Nextron YARA rules malware Detects strings found in Runspace Post Exploitation Toolkit
GET /search/software.json HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-236dde"
expires: Fri, 19 Apr 2024 10:42:31 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: F51A:21BD59:7DB0D11:807731A:6622483E
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:34 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.281426,VS0,VE41
vary: Accept-Encoding
x-fastly-request-id: 61dac9859778766cc2963c6e7704d4596ac79d36
content-length: 628542
X-Firefox-Spdy: h2
attack.mitre.org/mitigations/sidebar-mitigations
185.199.108.153301 Moved Permanently 162 B URL GET HTTP/2 attack.mitre.org/mitigations/sidebar-mitigations
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /mitigations/sidebar-mitigations HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: GitHub.com
content-type: text/html
x-origin-cache: HIT
location: https://attack.mitre.org/mitigations/sidebar-mitigations/
access-control-allow-origin: *
expires: Fri, 19 Apr 2024 10:42:31 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: A038:1F2E28:2A407C6:2B2AC8D:6622483E
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:34 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.414768,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 4fecd0cfa7fc4a26600a35bf96926ce9efb218d4
content-length: 162
X-Firefox-Spdy: h2
attack.mitre.org/search/techniques.json
185.199.108.153200 OK 2.0 MB URL GET HTTP/2 attack.mitre.org/search/techniques.json
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Size 2.0 MB (2031592 bytes)
Hash bb5d31e735e6ee31b8cc6c1894ed5005
af152942f72d1632e1be365425eea884120fe19b
646da5f19fd6816e850992b6b6567b53c7b391a8f183304bdfc29f27f2e7c721
Analyzer Verdict Alert Public Nextron YARA rules malware Detects password dumper mimikatz in memory (False Positives: an service that could have copied a Mimikatz executable, AV signatures)
Public Nextron YARA rules malware Detects strings found in Runspace Post Exploitation Toolkit
Public InfoSec YARA rules malware Identifies KPortScan, port scanner.
Public InfoSec YARA rules malware Identifies RDP Wrapper, sometimes used by attackers to maintain persistence.
GET /search/techniques.json HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-68683a"
expires: Fri, 19 Apr 2024 10:42:31 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 5772:21BD59:7DB0D12:807731E:6622483E
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:34 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.326993,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: 995a6863717110dd17af9c19bdb28ea52e29db3a
content-length: 2031592
X-Firefox-Spdy: h2
attack.mitre.org/theme/favicon.ico
185.199.108.153200 OK 1.1 kB URL GET HTTP/2 attack.mitre.org/theme/favicon.ico
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Hash 0f5637e9265409a2ec33297c558ad2df
8ffd0e662863a047a76e23d4d67b21aecde69bff
954182ac30724d6ba9b75332a189a4f8b851286320a11485190ecf10f092dc23
GET /theme/favicon.ico HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Cookie: _ga_C8EHW4DS2X=GS1.1.1713522754.1.0.1713522754.0.0.0; _ga=GA1.1.2092468275.1713522754
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/vnd.microsoft.icon
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-1976"
expires: Fri, 19 Apr 2024 09:08:26 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 17B6:2C8D98:741D4BE:76A0F94:66223231
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:35 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 2
x-timer: S1713522756.735176,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: 6d85fb7ea3b393af74d9fbc77a8ca3d6f11edb9d
content-length: 1070
X-Firefox-Spdy: h2
attack.mitre.org/mitigations/sidebar-mitigations/
185.199.108.153200 OK 2.4 kB URL GET HTTP/2 attack.mitre.org/mitigations/sidebar-mitigations/
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type HTML document, ASCII text
Hash 964333aef6e452b2c9a28961c57eb3b2
8e90fd2b26f97449e73d5a7014175ce08de8cfc6
a4e5dc260a39046635bfa7bd9884d483420c25104aaea07fc8f1f2f4026304b2
GET /mitigations/sidebar-mitigations/ HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Referer: https://attack.mitre.org/mitigations/M1050/
DNT: 1
Connection: keep-alive
Cookie: _ga_C8EHW4DS2X=GS1.1.1713522754.1.0.1713522754.0.0.0; _ga=GA1.1.2092468275.1713522754
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/html; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:32 GMT
access-control-allow-origin: *
etag: W/"660b7980-5ad4"
expires: Fri, 19 Apr 2024 10:42:32 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: F9B0:2AF6FA:4D41262:4EEDD74:6622483F
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:35 GMT
via: 1.1 varnish
age: 4
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522756.734923,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 25779363ae8dd8d5fa9dd69d7d557e5c1e1394b8
content-length: 2434
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/navigation.js
185.199.108.153200 OK 1.1 kB URL GET HTTP/2 attack.mitre.org/theme/scripts/navigation.js
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type JavaScript source, ASCII text
Hash 80b3941b97e9ad0528fce0606e543864
a740301d14cc0ae1c89c2dcd36bac3404676edf8
9fc29c072e63b7ec02697b5a76e523719b7922b30715415071ea0bfda13377f8
GET /theme/scripts/navigation.js HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1050/
Cookie: _ga_C8EHW4DS2X=GS1.1.1713522754.1.0.1713522754.0.0.0; _ga=GA1.1.2092468275.1713522754
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-d58"
expires: Fri, 19 Apr 2024 10:32:00 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: CD98:29EF9F:576EDE3:595BB18:662245C7
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:37 GMT
via: 1.1 varnish
age: 24
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 2
x-timer: S1713522757.115487,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: 79ad7f090120c18cbac536c844687ca8e96d5479
content-length: 1118
X-Firefox-Spdy: h2
attack.mitre.org/theme/style/fontawesome-6.5.1/webfonts/fa-solid-900.woff2
185.199.108.153200 OK 156 kB URL GET HTTP/2 attack.mitre.org/theme/style/fontawesome-6.5.1/webfonts/fa-solid-900.woff2
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 156496, version 773.768
Size 156 kB (156496 bytes)
Hash 6c4eee562650e53cee32496bdfbe534b
1aae708e3b94ee981b452a918d28ed037fbb5e18
9fc85f3a4544ab0d570c7f8f9bbb88db8d92c359b2707580ea8b07c75673eae2
GET /theme/style/fontawesome-6.5.1/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/theme/style/fontawesome-6.5.1/css/solid.min.css
Cookie: _ga_C8EHW4DS2X=GS1.1.1713522754.1.0.1713522754.0.0.0; _ga=GA1.1.2092468275.1713522754
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: font/woff2
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: "660b7982-26350"
expires: Fri, 19 Apr 2024 10:42:33 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: F51A:21BD59:7DB0FD0:80775E3:66224841
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:37 GMT
via: 1.1 varnish
age: 3
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522757.159236,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 94509d88b1636cb377791daada75f4f3bcad4bf5
content-length: 156496
X-Firefox-Spdy: h2
attack.mitre.org/theme/fonts/Roboto/Roboto-Bold.ttf
185.199.108.153200 OK 92 kB URL GET HTTP/2 attack.mitre.org/theme/fonts/Roboto/Roboto-Bold.ttf
IP 185.199.108.153:443
Requested by https://attack.mitre.org/mitigations/M1050/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type TrueType Font data, 18 tables, 1st "GDEF", 26 names, Macintosh, Copyright 2011 Google Inc. All Rights Reserved.RobotoBoldRoboto BoldVersion 2.137; 2017Roboto-Bo
Hash ee7b96fa85d8fdb8c126409326ac2d2b
0ce37ced9c5fcac9bdc452a432c1258870ba4677
7d0b991ee3e0be7af01ad7ea8cd2beea6c00a25e679a0226b6737f079aafff86
GET /theme/fonts/Roboto/Roboto-Bold.ttf HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/theme/style.min.css?fbd3eefa
Cookie: _ga_C8EHW4DS2X=GS1.1.1713522754.1.0.1713522754.0.0.0; _ga=GA1.1.2092468275.1713522754
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: font/ttf
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-29b08"
expires: Fri, 19 Apr 2024 10:27:33 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: HIT
x-github-request-id: F328:156FBE:417498A:42F3156:6622452F
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:53 GMT
via: 1.1 varnish
age: 39
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 2
x-timer: S1713522773.135908,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: fb3d1117c32bb9e73f8a4dc039194f97c4bf0645
content-length: 91581
X-Firefox-Spdy: h2