Report - kshitij1809.github.io/ott

Report Overview

Submitted URL
kshitij1809.github.io/ott
IP
185.199.108.153
ASN
#54113 FASTLY
Submitted
2024-04-27 16:02:59
Access
public
Website Title
Netflix
Final URL
kshitij1809.github.io/ott/
Tags
netflix phishing
urlquery detections
Phishing - Netflix

Detections

urlquery
11
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
kshitij1809.github.io	unknown	unknown	No data	No data	4.7 kB	733 kB	185.199.108.153
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-27	1.0 kB	171 kB	104.17.24.14
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-27	1.1 kB	17 kB	216.58.207.227
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-27	906 B	159 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-27	medium	kshitij1809.github.io/ott	Netflix Inc.

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (16)

URL IP Response Size

kshitij1809.github.io/ott

185.199.108.153

301 Moved Permanently

162 B

URL User Request GET HTTP/2
kshitij1809.github.io/ott
IP
185.199.108.153:443
ASN
#54113 FASTLY

Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix
OpenPhish	phishing	Netflix Inc.

HTTP Headers

GET /ott HTTP/1.1
Host: kshitij1809.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
server: GitHub.com
content-type: text/html
permissions-policy: interest-cohort=()
location: https://kshitij1809.github.io/ott/
x-github-request-id: C58C:0E9A:1AA6440:1B62D8B:662D140D
accept-ranges: bytes
age: 3468
date: Sat, 27 Apr 2024 16:02:33 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1714233754.547649,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 84a13aba732df4f5f73d8c1aaaee7350168f7a76
content-length: 162
X-Firefox-Spdy: h2

kshitij1809.github.io/ott/

185.199.108.153

200 OK

1.4 kB

URL User Request GET HTTP/2
kshitij1809.github.io/ott/
IP
185.199.108.153:443
ASN
#54113 FASTLY

Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
1.4 kB (1374 bytes)
Hash
1649a8ac2f2ba1e0cd78a80bca0b3083
501cebecc4039105872e1ee219c548807080c35c
e451eaed3f5aad6d67ad467e1cc5a3d143b819e2364a4601f45684a0c6abac86

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /ott/ HTTP/1.1
Host: kshitij1809.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: text/html; charset=utf-8
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 11 Dec 2023 11:48:41 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: W/"6576f719-19b7"
expires: Sat, 27 Apr 2024 12:11:37 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 67A0:0E7D:12BD319:13484D0:662CE921
accept-ranges: bytes
age: 90
date: Sat, 27 Apr 2024 16:02:33 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1714233754.601508,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 46a3107e42cfdcfe367e714c7b2518393df6f67f
content-length: 1374
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css

104.17.24.14

200 OK

19 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kshitij1809.github.io/ott/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (52276)
Size
19 kB (18778 bytes)
Hash
5222e06b77a1692fa2520a219840e6be
8b4236206a8b86af3761a244277663046d7ff7ee
0934b1fc0d3a766d41d3adf5e7a115875e66e98ebba408d965a41cf3d2cb4ab5

HTTP Headers

GET /ajax/libs/font-awesome/6.4.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kshitij1809.github.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 27 Apr 2024 16:02:33 GMT
content-type: text/css; charset=utf-8
content-length: 18778
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64cac444-495a"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 135048
expires: Thu, 17 Apr 2025 16:02:33 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4%2Bh9T6hFSqp28rrkOKVp8Ib7JPXxAGsUJT4Yj398vzx98LdGIazFvDrc6KRDN7b0ahnOXSvnSHBBrx2oCSUudVpQGONorMG4NyAM3Hh8dgifVERd1AFAl%2FdC0FtnzrOb3vgllkrz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87b009a229bc712e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

kshitij1809.github.io/ott/style/style.css

185.199.108.153

200 OK

1.4 kB

URL GET HTTP/2
kshitij1809.github.io/ott/style/style.css
IP
185.199.108.153:443
ASN
#54113 FASTLY

Requested by
https://kshitij1809.github.io/ott/
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
1.4 kB (1371 bytes)
Hash
db351c69bfcd659e5097c8fb4233cd25
0c3f61b9dfccfbe0404fb7c19932b799165e59e6
91b83bd7d7746b50249872a009b53dcd68a20fe9e4f58c2ccfc890023b6ae053

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /ott/style/style.css HTTP/1.1
Host: kshitij1809.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kshitij1809.github.io/ott/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 11 Dec 2023 11:48:41 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: W/"6576f719-17f2"
expires: Sat, 27 Apr 2024 14:12:51 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 27F6:17D890:1FD53E8:20AA0FB:662D058B
accept-ranges: bytes
age: 0
date: Sat, 27 Apr 2024 16:02:34 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1714233754.932526,VS0,VE122
vary: Accept-Encoding
x-fastly-request-id: 75e73954de91f17d9aaa3825325c99d5d5ebe171
content-length: 1371
X-Firefox-Spdy: h2

kshitij1809.github.io/ott/style/media-query.css

185.199.108.153

200 OK

1.4 kB

URL GET HTTP/2
kshitij1809.github.io/ott/style/media-query.css
IP
185.199.108.153:443
ASN
#54113 FASTLY

Requested by
https://kshitij1809.github.io/ott/
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
1.4 kB (1413 bytes)
Hash
9dced92a7116b4c6a9964cec72ea82f5
f99b5a7849f58531782a18f7d9c22ad54b21d523
069c79a86527f1d6ed3483b0e8e3697268a0f09896eea90ce519117e9c9e57f1

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /ott/style/media-query.css HTTP/1.1
Host: kshitij1809.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kshitij1809.github.io/ott/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
permissions-policy: interest-cohort=()
last-modified: Mon, 11 Dec 2023 11:48:41 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: W/"6576f719-2722"
expires: Sat, 27 Apr 2024 14:12:51 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: AB9E:12EF62:395340:3ABE96:662D058B
accept-ranges: bytes
age: 0
date: Sat, 27 Apr 2024 16:02:34 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1714233754.933043,VS0,VE132
vary: Accept-Encoding
x-fastly-request-id: e600bd8a8a4123cacc75bc42350c58c21dcc9986
content-length: 1413
X-Firefox-Spdy: h2

kshitij1809.github.io/favicon.ico

185.199.108.153

404 Not Found

5.1 kB

URL GET HTTP/2
kshitij1809.github.io/favicon.ico
IP
185.199.108.153:443
ASN
#54113 FASTLY

Requested by
https://kshitij1809.github.io/ott/
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (3909)
Size
5.1 kB (5142 bytes)
Hash
1eb970ce5a18bec7165f016df8238566
9efd1514af80fe14db4ed28e9bc53975b9ee089c
70d613e3acfba24fd2876fcbacaf639e1e111ef4d54baf70761c47673f37d6a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: kshitij1809.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kshitij1809.github.io/ott/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
permissions-policy: interest-cohort=()
etag: W/"662c2f27-239b"
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:; connect-src 'self'
content-encoding: gzip
x-github-request-id: 477A:12EF62:474889:4915D5:662D1A40
accept-ranges: bytes
age: 1882
date: Sat, 27 Apr 2024 16:02:34 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1714233754.287158,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: a7f79614b3160ed2b494150ecb9512ed89fa06a2
content-length: 5142
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2

104.17.24.14

200 OK

150 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kshitij1809.github.io/ott/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 150020, version 772.1280
Size
150 kB (150020 bytes)
Hash
d5e647388e2415268b700d3df2e30a0d
97f0942c6627ddd89fb62170e5cac9a2cbd6c98c
886c86112a804ef1ddd1cb206af4c8c40e34b73c26652ca231404aa35a6b30d9

HTTP Headers

GET /ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kshitij1809.github.io
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 27 Apr 2024 16:02:34 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 150020
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "64cac444-24a04"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 942409
expires: Thu, 17 Apr 2025 16:02:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ShJOgqsXOBaWtpwDL0axEDSynLdu3GphNSPtet5au5Tym2kRavYImoFf3e5Hw57l54TOGgVi7lg1JTbzJZ08v0lpJ%2BzXQVoJQSnOmd2xPcHNtld7GjxS9WkYuabmd1npWNDSjtt1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87b009a4b95d712b-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2

216.58.207.227

200 OK

7.9 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://kshitij1809.github.io/ott/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kshitij1809.github.io
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:53:15 GMT
expires: Sat, 26 Apr 2025 05:53:15 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:38 GMT
content-type: font/woff2
age: 122959
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto&display=swap

142.250.74.106

200 OK

108 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Roboto&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://kshitij1809.github.io/ott/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
gzip compressed data, max compression
Size
108 kB (107925 bytes)
Hash
cf2f5ed4a68c1c87ed2361336423df73
fc281eb6815b5d02630c22dc59dd9b16bf055eaa
4801f23fa37435d84ea76c3699f60219b5914bc4678fe5c4e1a69d4ebf9734e2

HTTP Headers

GET /css2?family=Roboto&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kshitij1809.github.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 27 Apr 2024 16:02:34 GMT
date: Sat, 27 Apr 2024 16:02:34 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

kshitij1809.github.io/ott/images/Netflix_Logo_PMS.png

185.199.108.153

200 OK

16 kB

URL GET HTTP/2
kshitij1809.github.io/ott/images/Netflix_Logo_PMS.png
IP
185.199.108.153:443
ASN
#54113 FASTLY

Requested by
https://kshitij1809.github.io/ott/
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
PNG image data, 1801 x 756, 8-bit/color RGBA, non-interlaced
Size
16 kB (16386 bytes)
Hash
dcc4094709a2dc14af288844556ff9b7
0dd0347c55ca4f5332e11d5b742babf8aebf8d6f
675dd7b68acf580f893bec532f5b260b8f984b67734a9a6831334b2ff4aad384

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /ott/images/Netflix_Logo_PMS.png HTTP/1.1
Host: kshitij1809.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kshitij1809.github.io/ott/style/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
permissions-policy: interest-cohort=()
last-modified: Mon, 11 Dec 2023 11:48:41 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: "6576f719-4002"
expires: Sat, 27 Apr 2024 14:12:51 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: ABAE:12EF62:39535D:3ABEB3:662D058B
accept-ranges: bytes
age: 0
date: Sat, 27 Apr 2024 16:02:34 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1714233754.309960,VS0,VE128
vary: Accept-Encoding
x-fastly-request-id: cc1ca52b4348514c32fc8a2822ca8ea08fd7dfa8
content-length: 16386
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Poppins:wght@400;700&display=swap

142.250.74.106

200 OK

50 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Poppins:wght@400;700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://kshitij1809.github.io/ott/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
gzip compressed data, max compression
Size
50 kB (50011 bytes)
Hash
18608d6d04340e627bc684a51ddd1cfd
10577299b606d0d1c2cf8a616de85cfb05de1924
f3cce2be6ddc0b5786703744b6a02e22e972c523b2bc359e05da580257df076d

HTTP Headers

GET /css2?family=Poppins:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kshitij1809.github.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 27 Apr 2024 16:02:34 GMT
date: Sat, 27 Apr 2024 16:02:34 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

kshitij1809.github.io/ott/images/asset%200.png

185.199.108.153

200 OK

255 kB

URL GET HTTP/2
kshitij1809.github.io/ott/images/asset%200.png
IP
185.199.108.153:443
ASN
#54113 FASTLY

Requested by
https://kshitij1809.github.io/ott/
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
PNG image data, 640 x 480, 8-bit/color RGBA, non-interlaced
Size
255 kB (254586 bytes)
Hash
2995e70023477ef72300f24e45aba1d5
92c13cd17c41cb9580f59197a3008fd9cca432c7
1e5a6122c8e39862aa1c92eae0e83e92458232d930620e9ca0c68e9be425aa67

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /ott/images/asset%200.png HTTP/1.1
Host: kshitij1809.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kshitij1809.github.io/ott/style/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 11 Dec 2023 11:48:41 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: "6576f719-3e27a"
expires: Sat, 27 Apr 2024 16:12:34 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: DBF4:1C4371:2C1E2A:2D3C04:662D219A
accept-ranges: bytes
age: 0
date: Sat, 27 Apr 2024 16:02:34 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714233754.325466,VS0,VE140
vary: Accept-Encoding
x-fastly-request-id: 1eb78055731934ab7b5e9e763b7ee658549f2de9
content-length: 254586
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2

216.58.207.227

200 OK

7.8 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://kshitij1809.github.io/ott/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kshitij1809.github.io
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:54:37 GMT
expires: Sat, 26 Apr 2025 05:54:37 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:32 GMT
content-type: font/woff2
age: 122877
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

kshitij1809.github.io/ott/images/tv.png

185.199.108.153

200 OK

288 kB

URL GET HTTP/2
kshitij1809.github.io/ott/images/tv.png
IP
185.199.108.153:443
ASN
#54113 FASTLY

Requested by
https://kshitij1809.github.io/ott/
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
PNG image data, 755 x 452, 8-bit/color RGBA, non-interlaced
Size
288 kB (288333 bytes)
Hash
c8b69c965218e77faeaac6183951baab
7d605d5cd4bafbe2477cb517cd3056d315c53cb1
7ac6ff2a925a3bbaa51909fd65cced558a58f7b8632cefec086024137e125c63

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /ott/images/tv.png HTTP/1.1
Host: kshitij1809.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kshitij1809.github.io/ott/style/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: image/png
permissions-policy: interest-cohort=()
last-modified: Mon, 11 Dec 2023 11:48:41 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: "6576f719-4664d"
expires: Sat, 27 Apr 2024 16:12:34 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 42E0:66896:21B785B:2294211:662D2198
accept-ranges: bytes
age: 0
date: Sat, 27 Apr 2024 16:02:34 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714233754.318318,VS0,VE156
vary: Accept-Encoding
x-fastly-request-id: 33e7a7f85d35e3e7d610b43a05dd357c65f67600
content-length: 288333
X-Firefox-Spdy: h2

kshitij1809.github.io/ott/images/mobile-girl.jpg

185.199.108.153

200 OK

50 kB

URL GET HTTP/2
kshitij1809.github.io/ott/images/mobile-girl.jpg
IP
185.199.108.153:443
ASN
#54113 FASTLY

Requested by
https://kshitij1809.github.io/ott/
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x480, components 3
Size
50 kB (49614 bytes)
Hash
a48333d43c19612ed61987fa5dbff3c5
8a8781250b96fee7830eb63ee8dda19e5c871881
492fdebd363e40cbba153a244bcfe2a7f5f7cf20aff0805fe45d5c7e2180b875

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /ott/images/mobile-girl.jpg HTTP/1.1
Host: kshitij1809.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kshitij1809.github.io/ott/style/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: GitHub.com
content-type: image/jpeg
permissions-policy: interest-cohort=()
last-modified: Mon, 11 Dec 2023 11:48:41 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: "6576f719-c1ce"
expires: Sat, 27 Apr 2024 14:12:51 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 9EF2:7677C:213D717:2211FCD:662D058B
accept-ranges: bytes
date: Sat, 27 Apr 2024 16:02:34 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1714233754.317104,VS0,VE127
vary: Accept-Encoding
x-fastly-request-id: d8577eaf2b022ddcf58316dfba0357f7403a0cb2
content-length: 49614
X-Firefox-Spdy: h2

kshitij1809.github.io/ott/images/box-1.jpg

185.199.108.153

200 OK

107 kB

URL GET HTTP/2
kshitij1809.github.io/ott/images/box-1.jpg
IP
185.199.108.153:443
ASN
#54113 FASTLY

Requested by
https://kshitij1809.github.io/ott/
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2000x1125, components 3
Size
107 kB (107345 bytes)
Hash
635fab2db4f7d11021e627e40d51abdf
46edae15745c46b09d5a1f53f7ac244499e22571
a1dffa276fd7ea231acaebabda48d9b34741c313bf60c03ebbb9db92c12d59ab

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /ott/images/box-1.jpg HTTP/1.1
Host: kshitij1809.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kshitij1809.github.io/ott/style/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: GitHub.com
content-type: image/jpeg
permissions-policy: interest-cohort=()
last-modified: Mon, 11 Dec 2023 11:48:41 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: "6576f719-1a351"
expires: Sat, 27 Apr 2024 14:12:51 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 46F4:17E625:21F9977:22CE478:662D058A
accept-ranges: bytes
age: 0
date: Sat, 27 Apr 2024 16:02:34 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1714233754.301844,VS0,VE123
vary: Accept-Encoding
x-fastly-request-id: fc9c814a632b5495e3ac5d8a53c2ece940f596dc
content-length: 107345
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (0)

HTTP Transactions (16)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type