| sbbcffincswisspass.sviluppo.host/auth | 185.201.65.177 | 301 Moved Permanently | 795 B |
URL User Request GET HTTP/2sbbcffincswisspass.sviluppo.host/auth IP185.201.65.177:443
CertificateIssuerLet's Encrypt Subjectsbbcffincswisspass.sviluppo.host Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48 ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash5d8d79c3cb9af023240b1be6f5057aaa df22980677b134e83d878893f7c7984e0d78a240 e8b101a7c7f64aad528cc734513cbeb02243c0af37930dc0f3239749cff184b6
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /auth HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 07 May 2024 22:43:05 GMT
content-type: text/html
content-length: 795
location: https://sbbcffincswisspass.sviluppo.host/auth/
vary: User-Agent
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| sbbcffincswisspass.sviluppo.host/auth/ | 185.201.65.177 | 302 Found | 5 B |
URL User Request GET HTTP/2sbbcffincswisspass.sviluppo.host/auth/ IP185.201.65.177:443
CertificateIssuerLet's Encrypt Subjectsbbcffincswisspass.sviluppo.host Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48 ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT
File typevery short file (no magic) Hash7215ee9c7d9dc229d2921a40e899ec5f b858cb282617fb0956d960215c8e84d1ccf909c6 36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /auth/ HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Tue, 07 May 2024 22:43:05 GMT
content-type: text/html; charset=UTF-8
content-length: 5
x-powered-by: PHP/7.4.33
location: ./Entry.php
content-encoding: br
vary: Accept-Encoding,User-Agent
cache-control: no-cache, no-store, must-revalidate, max-age=0
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| sbbcffincswisspass.sviluppo.host/auth/userapp_files/otSDKStub.js | 185.201.65.177 | 200 OK | 6.6 kB |
URL GET HTTP/3sbbcffincswisspass.sviluppo.host/auth/userapp_files/otSDKStub.js IP185.201.65.177:443
Requested byhttps://sbbcffincswisspass.sviluppo.host/auth/Entry.php CertificateIssuerLet's Encrypt Subjectsbbcffincswisspass.sviluppo.host Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48 ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT
File typeJavaScript source, ASCII text, with very long lines (21099) Hash371fe1fde25dc853add509f5d9fe57ac b6219c34246fa4a3f1f35c64bbd708dc04c463ca 92e4588c227a58321a728574129e52ec244df30b90fc9a64a30ee65410104c41
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /auth/userapp_files/otSDKStub.js HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 14 May 2024 22:43:05 GMT
content-type: application/javascript
last-modified: Wed, 27 Mar 2024 23:15:53 GMT
etag: "526c-6604a8a9-c06a5603f09af5ae;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6575
date: Tue, 07 May 2024 22:43:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| sbbcffincswisspass.sviluppo.host/auth/userapp_files/styles.8501c3a64c32c7c4.css | 185.201.65.177 | 200 OK | 22 kB |
URL GET HTTP/3sbbcffincswisspass.sviluppo.host/auth/userapp_files/styles.8501c3a64c32c7c4.css IP185.201.65.177:443
Requested byhttps://sbbcffincswisspass.sviluppo.host/auth/Entry.php CertificateIssuerLet's Encrypt Subjectsbbcffincswisspass.sviluppo.host Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48 ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT
File typeASCII text, with very long lines (1498) Hash65c98cef416f2ba873e498e7a0fde260 024071924f2aab17572f093c030ecd1ee83d770a 8e12bf257a56e15f5cb4fcc36e706ae4615dc43b497e24933a52886fc15587a1
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /auth/userapp_files/styles.8501c3a64c32c7c4.css HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 14 May 2024 22:43:05 GMT
content-type: text/css
last-modified: Wed, 27 Mar 2024 23:21:03 GMT
etag: "2c588-6604a9df-db452496d00d7130;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 21555
date: Tue, 07 May 2024 22:43:05 GMT
server: LiteSpeed
|
|
| sbbcffincswisspass.sviluppo.host/auth/userapp_files/logo.png | 185.201.65.177 | 200 OK | 548 B |
URL GET HTTP/3sbbcffincswisspass.sviluppo.host/auth/userapp_files/logo.png IP185.201.65.177:443
Requested byhttps://sbbcffincswisspass.sviluppo.host/auth/Entry.php CertificateIssuerLet's Encrypt Subjectsbbcffincswisspass.sviluppo.host Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48 ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT
File typePNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced Hash5f559b575040d279567256397166b03c d07e380405beba8532a3705496aa4b57fa939c2c f2f0d94a5141a75ef227f2699b6a43588741ede3edd2fe2d075a65b3d413b2f8
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /auth/userapp_files/logo.png HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 14 May 2024 22:43:05 GMT
content-type: image/png
last-modified: Wed, 27 Mar 2024 23:15:53 GMT
etag: "224-6604a8a9-1def6a4cd64110f1;;;"
accept-ranges: bytes
content-length: 548
date: Tue, 07 May 2024 22:43:05 GMT
server: LiteSpeed
vary: User-Agent
|
|
| sbbcffincswisspass.sviluppo.host/auth/userapp_files/OneTrust_SwissPass_logo_mobile.png | 185.201.65.177 | 200 OK | 2.0 kB |
URL GET HTTP/3sbbcffincswisspass.sviluppo.host/auth/userapp_files/OneTrust_SwissPass_logo_mobile.png IP185.201.65.177:443
Requested byhttps://sbbcffincswisspass.sviluppo.host/auth/Entry.php CertificateIssuerLet's Encrypt Subjectsbbcffincswisspass.sviluppo.host Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48 ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT
File typePNG image data, 100 x 50, 8-bit colormap, non-interlaced Hashcd5e1b7e01b85b2716c593d706f3e6f2 d9e647da2b1c1f440f2513fd699159f74b5bf6d5 e42fe383c86ab1185425bf334a44f9a311dd06d8ccf9e409d05b45dbe0bc48c6
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /auth/userapp_files/OneTrust_SwissPass_logo_mobile.png HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 14 May 2024 22:43:05 GMT
content-type: image/png
last-modified: Wed, 27 Mar 2024 23:15:53 GMT
etag: "7aa-6604a8a9-b2209d9858935e61;;;"
accept-ranges: bytes
content-length: 1962
date: Tue, 07 May 2024 22:43:05 GMT
server: LiteSpeed
vary: User-Agent
|
|
| sbbcffincswisspass.sviluppo.host/auth/userapp_files/otSDKStub.js/consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test.json | 185.201.65.177 | 404 Not Found | 1.3 kB |
URL GET HTTP/3sbbcffincswisspass.sviluppo.host/auth/userapp_files/otSDKStub.js/consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test.json IP185.201.65.177:443
Requested byhttps://sbbcffincswisspass.sviluppo.host/auth/Entry.php CertificateIssuerLet's Encrypt Subjectsbbcffincswisspass.sviluppo.host Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48 ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /auth/userapp_files/otSDKStub.js/consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test.json HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Tue, 07 May 2024 22:43:06 GMT
server: LiteSpeed
vary: User-Agent
|
|
| sbbcffincswisspass.sviluppo.host/auth/userapp_files/otBannerSdk.js | 185.201.65.177 | 200 OK | 104 kB |
URL GET HTTP/3sbbcffincswisspass.sviluppo.host/auth/userapp_files/otBannerSdk.js IP185.201.65.177:443
Requested byhttps://sbbcffincswisspass.sviluppo.host/auth/Entry.php CertificateIssuerLet's Encrypt Subjectsbbcffincswisspass.sviluppo.host Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48 ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Size104 kB (103628 bytes) Hash3ab7906a4d12b7d35c62bac882d39d74 5d034541d6a9a05b0719c3605880fcfc9229e4b4 15de250a16ce58a10f84bebab59b9005ce36df4ec8e87c3bb1acc92726cfa971
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /auth/userapp_files/otBannerSdk.js HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 14 May 2024 22:43:05 GMT
content-type: application/javascript
last-modified: Wed, 27 Mar 2024 23:15:53 GMT
etag: "6e895-6604a8a9-372f2c8750359ccb;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 103628
date: Tue, 07 May 2024 22:43:05 GMT
server: LiteSpeed
|
|
| sbbcffincswisspass.sviluppo.host/auth/userapp_files/powered_by_logo.svg | 185.201.65.177 | 200 OK | 2.0 kB |
URL GET HTTP/3sbbcffincswisspass.sviluppo.host/auth/userapp_files/powered_by_logo.svg IP185.201.65.177:443
Requested byhttps://sbbcffincswisspass.sviluppo.host/auth/Entry.php CertificateIssuerLet's Encrypt Subjectsbbcffincswisspass.sviluppo.host Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48 ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT
File typeSVG Scalable Vector Graphics image Hash63e737d3544164d2b7f4fbca416ac807 030370aa38715e4c41589633f69d0bfe8255d46c 5fa00d047acd959697b9d7772c31dcd37bec33c70c6fbf80ab8316205d1d286d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /auth/userapp_files/powered_by_logo.svg HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 14 May 2024 22:43:05 GMT
content-type: image/svg+xml
last-modified: Wed, 27 Mar 2024 23:15:53 GMT
etag: "144a-6604a8a9-6451ade91553dbac;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1988
date: Tue, 07 May 2024 22:43:05 GMT
server: LiteSpeed
|
|
| sbbcffincswisspass.sviluppo.host/auth/userapp_files/saved_resource.html | 185.201.65.177 | 200 OK | 198 B |
URL GET HTTP/3sbbcffincswisspass.sviluppo.host/auth/userapp_files/saved_resource.html IP185.201.65.177:443
Requested byhttps://sbbcffincswisspass.sviluppo.host/auth/Entry.php CertificateIssuerLet's Encrypt Subjectsbbcffincswisspass.sviluppo.host Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48 ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT
File typeHTML document, ASCII text Hasha98c5387d17dc735f561520ddc0a713d 655c71544db4aa86aa519400e7eaf24a82e0cca1 7a036d721a3bbb21568fa68822dfb58ab04cc78a274c6608590440becb307ec9
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /auth/userapp_files/saved_resource.html HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html
last-modified: Wed, 27 Mar 2024 23:15:53 GMT
etag: "c6-6604a8a9-3e7330a90af7708;;;"
accept-ranges: bytes
content-length: 198
date: Tue, 07 May 2024 22:43:05 GMT
server: LiteSpeed
vary: User-Agent
|
|
| sbbcffincswisspass.sviluppo.host/auth/userapp_files/SBBWeb-Light.3f0cdd23274e17f7.woff2 | 185.201.65.177 | 404 Not Found | 1.3 kB |
URL GET HTTP/3sbbcffincswisspass.sviluppo.host/auth/userapp_files/SBBWeb-Light.3f0cdd23274e17f7.woff2 IP185.201.65.177:443
Requested byhttps://sbbcffincswisspass.sviluppo.host/auth/Entry.php CertificateIssuerLet's Encrypt Subjectsbbcffincswisspass.sviluppo.host Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48 ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /auth/userapp_files/SBBWeb-Light.3f0cdd23274e17f7.woff2 HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/auth/userapp_files/styles.8501c3a64c32c7c4.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Tue, 07 May 2024 22:43:06 GMT
server: LiteSpeed
vary: User-Agent
|
|
| ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec | 95.101.10.105 | | 6.9 kB |
URL ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec IP95.101.10.105:0 ASN#20940 Akamai International B.V.
Hashf71ffa6f2442abb7ab100cde7b538c5d 3ff220eb1f79425b6e7b9e568e57e7d95e43fe7e bec8390bf56147e840c42fc5e4677ba8707d6cdd5243306c77318237fa055fb1
POST /sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec HTTP/1.1
Host: ocsp.swisssign.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 6897
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: max-age=3600
Expires: Tue, 07 May 2024 23:43:06 GMT
Date: Tue, 07 May 2024 22:43:06 GMT
Connection: keep-alive
|
|
| ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec | 95.101.10.105 | | 6.9 kB |
URL ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec IP95.101.10.105:0 ASN#20940 Akamai International B.V.
Hashf71ffa6f2442abb7ab100cde7b538c5d 3ff220eb1f79425b6e7b9e568e57e7d95e43fe7e bec8390bf56147e840c42fc5e4677ba8707d6cdd5243306c77318237fa055fb1
POST /sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec HTTP/1.1
Host: ocsp.swisssign.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 6897
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: max-age=3600
Expires: Tue, 07 May 2024 23:43:06 GMT
Date: Tue, 07 May 2024 22:43:06 GMT
Connection: keep-alive
|
|
| ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec | 95.101.10.105 | | 6.9 kB |
URL ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec IP95.101.10.105:0 ASN#20940 Akamai International B.V.
Hashf71ffa6f2442abb7ab100cde7b538c5d 3ff220eb1f79425b6e7b9e568e57e7d95e43fe7e bec8390bf56147e840c42fc5e4677ba8707d6cdd5243306c77318237fa055fb1
POST /sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec HTTP/1.1
Host: ocsp.swisssign.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 6897
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: max-age=3600
Expires: Tue, 07 May 2024 23:43:06 GMT
Date: Tue, 07 May 2024 22:43:06 GMT
Connection: keep-alive
|
|
| login.swisspass.ch/v3/oevlogin/ui/assets/custom/img/favicon.ico | 193.203.121.166 | 200 OK | 1.2 kB |
URL GET HTTP/1.1login.swisspass.ch/v3/oevlogin/ui/assets/custom/img/favicon.ico IP193.203.121.166:443 ASN#31004 Schweizerische Bundesbahnen SBB
Requested byhttps://sbbcffincswisspass.sviluppo.host/auth/Entry.php CertificateIssuerSwissSign AG Subjectswisspass.ch Fingerprint0F:CC:F3:F9:E7:22:13:51:BD:03:15:EE:A8:31:BE:24:0B:CA:37:16 ValidityThu, 14 Mar 2024 05:50:58 GMT - Fri, 14 Mar 2025 05:50:58 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash6d866d9c4568bf7fc03e597e74ce7e28 e1b3d9f0e9cdcb785a94b6c1e1fe651a4ff98dcb 7c1925da382279a72f94990d0a1456f78918619f35780ea0905e4ae0db684677
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /v3/oevlogin/ui/assets/custom/img/favicon.ico HTTP/1.1
Host: login.swisspass.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 22:43:06 GMT
Server: Apache
Content-Length: 1150
Server-Timing: intid;desc=72ba28efd50cb7ed
Accept-Ranges: bytes
ETag: W/"1150-1714639197000"
Last-Modified: Thu, 02 May 2024 08:39:57 GMT
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=16070400
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Feature-Policy: autoplay 'self'; camera 'self'; display-capture 'self'; document-domain 'self'; encrypted-media 'self'; fullscreen 'self'; geolocation 'self'; microphone 'self'; midi 'self'; payment 'self'; xr-spatial-tracking 'self'
Set-Cookie: AL_SESS-S=AWt3ogIXnNyBivx1jxNP9UpxD2_EyvJEWISXlA_5u8QMM44dnZX3_shth14mI!PraUtT; Path=/; Domain=.swisspass.ch; Secure; HttpOnly; SameSite=None
CSRFT759-S=Hxxys80e7hg7EezpzVmVcA; Path=/; Domain=.swisspass.ch; Secure; SameSite=Lax
Keep-Alive: timeout=10, max=500
Connection: Keep-Alive
Content-Type: image/x-icon;charset=UTF-8
|
|
| login.swisspass.ch/resources/img/logo-20200819.svg | 193.203.121.166 | 200 OK | 7.4 kB |
URL GET HTTP/1.1login.swisspass.ch/resources/img/logo-20200819.svg IP193.203.121.166:443 ASN#31004 Schweizerische Bundesbahnen SBB
Requested byhttps://sbbcffincswisspass.sviluppo.host/auth/Entry.php CertificateIssuerSwissSign AG Subjectswisspass.ch Fingerprint0F:CC:F3:F9:E7:22:13:51:BD:03:15:EE:A8:31:BE:24:0B:CA:37:16 ValidityThu, 14 Mar 2024 05:50:58 GMT - Fri, 14 Mar 2025 05:50:58 GMT
File typeSVG Scalable Vector Graphics image Hash795242580bfa3135028bd0750fdc1654 2c344b6662e62ddbdba49f635e1c33a827fe75d4 deeee170c3759a6ed35c0c05c5b935d0e7638f1c0c5677166918ecff6edb1909
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /resources/img/logo-20200819.svg HTTP/1.1
Host: login.swisspass.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 22:43:06 GMT
Server: Apache
Content-Length: 7374
last-modified: Fri, 26 Apr 2024 10:42:00 GMT
etag: "662b84f8-1cce"
expires: Wed, 07 May 2025 22:43:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000, private
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=16070400
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Feature-Policy: autoplay 'self'; camera 'self'; display-capture 'self'; document-domain 'self'; encrypted-media 'self'; fullscreen 'self'; geolocation 'self'; microphone 'self'; midi 'self'; payment 'self'; xr-spatial-tracking 'self'
Set-Cookie: AL_SESS-S=AYqMPlwwfNVwttZZfSLoQXm95UsRjtHQ4QcXkm9C3Ife1gtdXTfqHnOG92iGU!2dLduS; Path=/; Domain=.swisspass.ch; Secure; HttpOnly; SameSite=None
Keep-Alive: timeout=10, max=500
Connection: Keep-Alive
Content-Type: image/svg+xml
|
|
| resources.swisspass.ch/content/dam/swisspass/co-branding/swiss_ch/login_bg.jpg | 193.203.121.145 | 200 OK | 201 kB |
URL GET HTTP/1.1resources.swisspass.ch/content/dam/swisspass/co-branding/swiss_ch/login_bg.jpg IP193.203.121.145:443 ASN#31004 Schweizerische Bundesbahnen SBB
Requested byhttps://sbbcffincswisspass.sviluppo.host/auth/Entry.php CertificateIssuerSwissSign AG Subjectswisspass.ch Fingerprint0F:CC:F3:F9:E7:22:13:51:BD:03:15:EE:A8:31:BE:24:0B:CA:37:16 ValidityThu, 14 Mar 2024 05:50:58 GMT - Fri, 14 Mar 2025 05:50:58 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1563x1198, components 3 Size201 kB (200933 bytes) Hash0f80ca4a78ce3af79ad01923484e0a5b fac97c21d7965e9ac6950844123fd5f65b8f0a77 58a037c0bde953b48561826f3df16031f7ddfce33c4018619d3f39c6af6eec1b
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /content/dam/swisspass/co-branding/swiss_ch/login_bg.jpg HTTP/1.1
Host: resources.swisspass.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 22:43:06 GMT
Server: Apache
Content-Length: 200933
Last-Modified: Tue, 07 May 2024 01:02:01 GMT
ETag: "310e5-617d2bbc3b69e"
Cache-Control: max-age=21600
Expires: Wed, 08 May 2024 04:43:06 GMT
X-Plattform: cprod
x-url: /content/dam/swisspass/co-branding/swiss_ch/login_bg.jpg
X-Varnish: 61194351
X-Cache: MISS
Accept-Ranges: bytes
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=16070400
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Keep-Alive: timeout=10, max=500
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| login.swisspass.ch/resources/img/logo_text_de-20200819.svg | 193.203.121.166 | 200 OK | 140 kB |
URL GET HTTP/1.1login.swisspass.ch/resources/img/logo_text_de-20200819.svg IP193.203.121.166:443 ASN#31004 Schweizerische Bundesbahnen SBB
Requested byhttps://sbbcffincswisspass.sviluppo.host/auth/Entry.php CertificateIssuerSwissSign AG Subjectswisspass.ch Fingerprint0F:CC:F3:F9:E7:22:13:51:BD:03:15:EE:A8:31:BE:24:0B:CA:37:16 ValidityThu, 14 Mar 2024 05:50:58 GMT - Fri, 14 Mar 2025 05:50:58 GMT
File typeSVG Scalable Vector Graphics image Size140 kB (139971 bytes) Hash512410d9227bb0c2481e175dce0eda72 1deb5d9f09592101e632a8351865d54b1d6a27f7 c337d42ed7979c6be0282900bd957dd9d112a430dc7761463d655eb8f0d9bc07
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /resources/img/logo_text_de-20200819.svg HTTP/1.1
Host: login.swisspass.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 22:43:06 GMT
Server: Apache
Content-Length: 139971
last-modified: Fri, 26 Apr 2024 10:42:00 GMT
etag: "662b84f8-222c3"
expires: Wed, 07 May 2025 22:43:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000, private
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=16070400
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Feature-Policy: autoplay 'self'; camera 'self'; display-capture 'self'; document-domain 'self'; encrypted-media 'self'; fullscreen 'self'; geolocation 'self'; microphone 'self'; midi 'self'; payment 'self'; xr-spatial-tracking 'self'
Set-Cookie: AL_SESS-S=AVw!oo!uZuLiqksURbR5h5gkAy2_ixWhw35DLAiNyzw9NJbK3xPnwM5uKXzkOSqml0mA; Path=/; Domain=.swisspass.ch; Secure; HttpOnly; SameSite=None
Keep-Alive: timeout=10, max=500
Connection: Keep-Alive
Content-Type: image/svg+xml
|
|
| sbbcffincswisspass.sviluppo.host/auth/Entry.php | 185.201.65.177 | 200 OK | 134 kB |
URL User Request GET HTTP/2sbbcffincswisspass.sviluppo.host/auth/Entry.php IP185.201.65.177:443
CertificateIssuerLet's Encrypt Subjectsbbcffincswisspass.sviluppo.host Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48 ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT
Size134 kB (134281 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /auth/Entry.php HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 22:43:05 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
content-encoding: br
vary: Accept-Encoding,User-Agent
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|