Report - sbbcffincswisspass.sviluppo.host/auth

Report Overview

Submitted URL
sbbcffincswisspass.sviluppo.host/auth
IP
185.201.65.177
ASN
#47242 Host SpA
Submitted
2024-05-07 22:44:24
Access
public
Website Title
Login | SwissPass
Final URL
sbbcffincswisspass.sviluppo.host/auth/Entry.php
Tags
swosspass phishing transport
urlquery detections
Phishing - SwissPass

Detections

urlquery
17
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
sbbcffincswisspass.sviluppo.host	unknown	unknown	No data	No data	6.3 kB	278 kB	185.201.65.177
ocsp.swisssign.ch	unknown	unknown	2023-01-12	2024-05-06	1.1 kB	22 kB	95.101.10.105
login.swisspass.ch	unknown	unknown	2022-05-04	2024-03-25	1.4 kB	151 kB	193.203.121.166
resources.swisspass.ch	unknown	unknown	2017-02-16	2024-04-03	490 B	202 kB	193.203.121.145

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (2)

	URL	Size	First Seen	Last Seen
	sbbcffincswisspass.sviluppo.host/auth/userapp_files/otSDKStub.js	21 kB	2024-03-26	2024-05-14
Pretty URL sbbcffincswisspass.sviluppo.host/auth/userapp_files/otSDKStub.js IP 185.201.65.177 ASN #47242 Host SpA Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-26 08:51:06 Last Seen2024-05-14 18:04:33 Times Seen1841 Hash 371fe1fde25dc853add509f5d9fe57ac b6219c34246fa4a3f1f35c64bbd708dc04c463ca 92e4588c227a58321a728574129e52ec244df30b90fc9a64a30ee65410104c41 Loading...

	sbbcffincswisspass.sviluppo.host/auth/userapp_files/otBannerSdk.js	453 kB	2024-03-18	2024-05-19
Pretty URL sbbcffincswisspass.sviluppo.host/auth/userapp_files/otBannerSdk.js IP 185.201.65.177 ASN #47242 Host SpA Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-18 22:57:18 Last Seen2024-05-19 16:11:41 Times Seen800 Hash 3ab7906a4d12b7d35c62bac882d39d74 5d034541d6a9a05b0719c3605880fcfc9229e4b4 15de250a16ce58a10f84bebab59b9005ce36df4ec8e87c3bb1acc92726cfa971 Loading...

HTTP Transactions (19)

URL IP Response Size

sbbcffincswisspass.sviluppo.host/auth

185.201.65.177

301 Moved Permanently

795 B

URL User Request GET HTTP/2
sbbcffincswisspass.sviluppo.host/auth
IP
185.201.65.177:443
ASN
#47242 Host SpA

Certificate
IssuerLet's Encrypt
Subjectsbbcffincswisspass.sviluppo.host
Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48
ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT

File type
HTML document, ASCII text, with CRLF, LF line terminators
Size
795 B (795 bytes)
Hash
5d8d79c3cb9af023240b1be6f5057aaa
df22980677b134e83d878893f7c7984e0d78a240
e8b101a7c7f64aad528cc734513cbeb02243c0af37930dc0f3239749cff184b6

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /auth HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 07 May 2024 22:43:05 GMT
content-type: text/html
content-length: 795
location: https://sbbcffincswisspass.sviluppo.host/auth/
vary: User-Agent
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

sbbcffincswisspass.sviluppo.host/auth/

185.201.65.177

302 Found

5 B

URL User Request GET HTTP/2
sbbcffincswisspass.sviluppo.host/auth/
IP
185.201.65.177:443
ASN
#47242 Host SpA

Certificate
IssuerLet's Encrypt
Subjectsbbcffincswisspass.sviluppo.host
Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48
ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT

File type
very short file (no magic)
Size
5 B (5 bytes)
Hash
7215ee9c7d9dc229d2921a40e899ec5f
b858cb282617fb0956d960215c8e84d1ccf909c6
36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /auth/ HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
server: nginx
date: Tue, 07 May 2024 22:43:05 GMT
content-type: text/html; charset=UTF-8
content-length: 5
x-powered-by: PHP/7.4.33
location: ./Entry.php
content-encoding: br
vary: Accept-Encoding,User-Agent
cache-control: no-cache, no-store, must-revalidate, max-age=0
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

sbbcffincswisspass.sviluppo.host/auth/userapp_files/otSDKStub.js

185.201.65.177

200 OK

6.6 kB

URL GET HTTP/3
sbbcffincswisspass.sviluppo.host/auth/userapp_files/otSDKStub.js
IP
185.201.65.177:443
ASN
#47242 Host SpA

Requested by
https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Certificate
IssuerLet's Encrypt
Subjectsbbcffincswisspass.sviluppo.host
Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48
ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT

File type
JavaScript source, ASCII text, with very long lines (21099)
Size
6.6 kB (6575 bytes)
Hash
371fe1fde25dc853add509f5d9fe57ac
b6219c34246fa4a3f1f35c64bbd708dc04c463ca
92e4588c227a58321a728574129e52ec244df30b90fc9a64a30ee65410104c41

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /auth/userapp_files/otSDKStub.js HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 14 May 2024 22:43:05 GMT
content-type: application/javascript
last-modified: Wed, 27 Mar 2024 23:15:53 GMT
etag: "526c-6604a8a9-c06a5603f09af5ae;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6575
date: Tue, 07 May 2024 22:43:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"

sbbcffincswisspass.sviluppo.host/auth/userapp_files/styles.8501c3a64c32c7c4.css

185.201.65.177

200 OK

22 kB

URL GET HTTP/3
sbbcffincswisspass.sviluppo.host/auth/userapp_files/styles.8501c3a64c32c7c4.css
IP
185.201.65.177:443
ASN
#47242 Host SpA

Requested by
https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Certificate
IssuerLet's Encrypt
Subjectsbbcffincswisspass.sviluppo.host
Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48
ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT

File type
ASCII text, with very long lines (1498)
Size
22 kB (21555 bytes)
Hash
65c98cef416f2ba873e498e7a0fde260
024071924f2aab17572f093c030ecd1ee83d770a
8e12bf257a56e15f5cb4fcc36e706ae4615dc43b497e24933a52886fc15587a1

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /auth/userapp_files/styles.8501c3a64c32c7c4.css HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 14 May 2024 22:43:05 GMT
content-type: text/css
last-modified: Wed, 27 Mar 2024 23:21:03 GMT
etag: "2c588-6604a9df-db452496d00d7130;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 21555
date: Tue, 07 May 2024 22:43:05 GMT
server: LiteSpeed

sbbcffincswisspass.sviluppo.host/auth/userapp_files/logo.png

185.201.65.177

200 OK

548 B

URL GET HTTP/3
sbbcffincswisspass.sviluppo.host/auth/userapp_files/logo.png
IP
185.201.65.177:443
ASN
#47242 Host SpA

Requested by
https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Certificate
IssuerLet's Encrypt
Subjectsbbcffincswisspass.sviluppo.host
Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48
ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT

File type
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
Size
548 B (548 bytes)
Hash
5f559b575040d279567256397166b03c
d07e380405beba8532a3705496aa4b57fa939c2c
f2f0d94a5141a75ef227f2699b6a43588741ede3edd2fe2d075a65b3d413b2f8

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /auth/userapp_files/logo.png HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 14 May 2024 22:43:05 GMT
content-type: image/png
last-modified: Wed, 27 Mar 2024 23:15:53 GMT
etag: "224-6604a8a9-1def6a4cd64110f1;;;"
accept-ranges: bytes
content-length: 548
date: Tue, 07 May 2024 22:43:05 GMT
server: LiteSpeed
vary: User-Agent

sbbcffincswisspass.sviluppo.host/auth/userapp_files/OneTrust_SwissPass_logo_mobile.png

185.201.65.177

200 OK

2.0 kB

URL GET HTTP/3
sbbcffincswisspass.sviluppo.host/auth/userapp_files/OneTrust_SwissPass_logo_mobile.png
IP
185.201.65.177:443
ASN
#47242 Host SpA

Requested by
https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Certificate
IssuerLet's Encrypt
Subjectsbbcffincswisspass.sviluppo.host
Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48
ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT

File type
PNG image data, 100 x 50, 8-bit colormap, non-interlaced
Size
2.0 kB (1962 bytes)
Hash
cd5e1b7e01b85b2716c593d706f3e6f2
d9e647da2b1c1f440f2513fd699159f74b5bf6d5
e42fe383c86ab1185425bf334a44f9a311dd06d8ccf9e409d05b45dbe0bc48c6

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /auth/userapp_files/OneTrust_SwissPass_logo_mobile.png HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 14 May 2024 22:43:05 GMT
content-type: image/png
last-modified: Wed, 27 Mar 2024 23:15:53 GMT
etag: "7aa-6604a8a9-b2209d9858935e61;;;"
accept-ranges: bytes
content-length: 1962
date: Tue, 07 May 2024 22:43:05 GMT
server: LiteSpeed
vary: User-Agent

sbbcffincswisspass.sviluppo.host/auth/userapp_files/otSDKStub.js/consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test.json

185.201.65.177

404 Not Found

1.3 kB

URL GET HTTP/3
sbbcffincswisspass.sviluppo.host/auth/userapp_files/otSDKStub.js/consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test.json
IP
185.201.65.177:443
ASN
#47242 Host SpA

Requested by
https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Certificate
IssuerLet's Encrypt
Subjectsbbcffincswisspass.sviluppo.host
Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48
ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT

File type
HTML document, ASCII text, with CRLF, LF line terminators
Size
1.3 kB (1251 bytes)
Hash
8150f458ed6fb9b1db4e5cfa57a1a281
6e5726854d28687b560d7fdcb5c782c425c7dfb9
4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /auth/userapp_files/otSDKStub.js/consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test.json HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Tue, 07 May 2024 22:43:06 GMT
server: LiteSpeed
vary: User-Agent

sbbcffincswisspass.sviluppo.host/auth/userapp_files/otBannerSdk.js

185.201.65.177

200 OK

104 kB

URL GET HTTP/3
sbbcffincswisspass.sviluppo.host/auth/userapp_files/otBannerSdk.js
IP
185.201.65.177:443
ASN
#47242 Host SpA

Requested by
https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Certificate
IssuerLet's Encrypt
Subjectsbbcffincswisspass.sviluppo.host
Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48
ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
104 kB (103628 bytes)
Hash
3ab7906a4d12b7d35c62bac882d39d74
5d034541d6a9a05b0719c3605880fcfc9229e4b4
15de250a16ce58a10f84bebab59b9005ce36df4ec8e87c3bb1acc92726cfa971

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /auth/userapp_files/otBannerSdk.js HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 14 May 2024 22:43:05 GMT
content-type: application/javascript
last-modified: Wed, 27 Mar 2024 23:15:53 GMT
etag: "6e895-6604a8a9-372f2c8750359ccb;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 103628
date: Tue, 07 May 2024 22:43:05 GMT
server: LiteSpeed

sbbcffincswisspass.sviluppo.host/auth/userapp_files/powered_by_logo.svg

185.201.65.177

200 OK

2.0 kB

URL GET HTTP/3
sbbcffincswisspass.sviluppo.host/auth/userapp_files/powered_by_logo.svg
IP
185.201.65.177:443
ASN
#47242 Host SpA

Requested by
https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Certificate
IssuerLet's Encrypt
Subjectsbbcffincswisspass.sviluppo.host
Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48
ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT

File type
SVG Scalable Vector Graphics image
Size
2.0 kB (1988 bytes)
Hash
63e737d3544164d2b7f4fbca416ac807
030370aa38715e4c41589633f69d0bfe8255d46c
5fa00d047acd959697b9d7772c31dcd37bec33c70c6fbf80ab8316205d1d286d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /auth/userapp_files/powered_by_logo.svg HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Tue, 14 May 2024 22:43:05 GMT
content-type: image/svg+xml
last-modified: Wed, 27 Mar 2024 23:15:53 GMT
etag: "144a-6604a8a9-6451ade91553dbac;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1988
date: Tue, 07 May 2024 22:43:05 GMT
server: LiteSpeed

sbbcffincswisspass.sviluppo.host/auth/userapp_files/saved_resource.html

185.201.65.177

200 OK

198 B

URL GET HTTP/3
sbbcffincswisspass.sviluppo.host/auth/userapp_files/saved_resource.html
IP
185.201.65.177:443
ASN
#47242 Host SpA

Requested by
https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Certificate
IssuerLet's Encrypt
Subjectsbbcffincswisspass.sviluppo.host
Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48
ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT

File type
HTML document, ASCII text
Size
198 B (198 bytes)
Hash
a98c5387d17dc735f561520ddc0a713d
655c71544db4aa86aa519400e7eaf24a82e0cca1
7a036d721a3bbb21568fa68822dfb58ab04cc78a274c6608590440becb307ec9

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /auth/userapp_files/saved_resource.html HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html
last-modified: Wed, 27 Mar 2024 23:15:53 GMT
etag: "c6-6604a8a9-3e7330a90af7708;;;"
accept-ranges: bytes
content-length: 198
date: Tue, 07 May 2024 22:43:05 GMT
server: LiteSpeed
vary: User-Agent

sbbcffincswisspass.sviluppo.host/auth/userapp_files/SBBWeb-Light.3f0cdd23274e17f7.woff2

185.201.65.177

404 Not Found

1.3 kB

URL GET HTTP/3
sbbcffincswisspass.sviluppo.host/auth/userapp_files/SBBWeb-Light.3f0cdd23274e17f7.woff2
IP
185.201.65.177:443
ASN
#47242 Host SpA

Requested by
https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Certificate
IssuerLet's Encrypt
Subjectsbbcffincswisspass.sviluppo.host
Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48
ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT

File type
HTML document, ASCII text, with CRLF, LF line terminators
Size
1.3 kB (1251 bytes)
Hash
8150f458ed6fb9b1db4e5cfa57a1a281
6e5726854d28687b560d7fdcb5c782c425c7dfb9
4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /auth/userapp_files/SBBWeb-Light.3f0cdd23274e17f7.woff2 HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/auth/userapp_files/styles.8501c3a64c32c7c4.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Tue, 07 May 2024 22:43:06 GMT
server: LiteSpeed
vary: User-Agent

ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec

95.101.10.105

6.9 kB

URL
ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec
IP
95.101.10.105:0
ASN
#20940 Akamai International B.V.

File type
data
Size
6.9 kB (6897 bytes)
Hash
f71ffa6f2442abb7ab100cde7b538c5d
3ff220eb1f79425b6e7b9e568e57e7d95e43fe7e
bec8390bf56147e840c42fc5e4677ba8707d6cdd5243306c77318237fa055fb1

HTTP Headers

POST /sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec HTTP/1.1
Host: ocsp.swisssign.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 6897
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: max-age=3600
Expires: Tue, 07 May 2024 23:43:06 GMT
Date: Tue, 07 May 2024 22:43:06 GMT
Connection: keep-alive

ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec

95.101.10.105

6.9 kB

URL
ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec
IP
95.101.10.105:0
ASN
#20940 Akamai International B.V.

File type
data
Size
6.9 kB (6897 bytes)
Hash
f71ffa6f2442abb7ab100cde7b538c5d
3ff220eb1f79425b6e7b9e568e57e7d95e43fe7e
bec8390bf56147e840c42fc5e4677ba8707d6cdd5243306c77318237fa055fb1

HTTP Headers

POST /sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec HTTP/1.1
Host: ocsp.swisssign.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 6897
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: max-age=3600
Expires: Tue, 07 May 2024 23:43:06 GMT
Date: Tue, 07 May 2024 22:43:06 GMT
Connection: keep-alive

ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec

95.101.10.105

6.9 kB

URL
ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec
IP
95.101.10.105:0
ASN
#20940 Akamai International B.V.

File type
data
Size
6.9 kB (6897 bytes)
Hash
f71ffa6f2442abb7ab100cde7b538c5d
3ff220eb1f79425b6e7b9e568e57e7d95e43fe7e
bec8390bf56147e840c42fc5e4677ba8707d6cdd5243306c77318237fa055fb1

HTTP Headers

POST /sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec HTTP/1.1
Host: ocsp.swisssign.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 6897
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: max-age=3600
Expires: Tue, 07 May 2024 23:43:06 GMT
Date: Tue, 07 May 2024 22:43:06 GMT
Connection: keep-alive

193.203.121.166

200 OK

1.2 kB

URL GET HTTP/1.1
login.swisspass.ch/v3/oevlogin/ui/assets/custom/img/favicon.ico
IP
193.203.121.166:443
ASN
#31004 Schweizerische Bundesbahnen SBB

Requested by
https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Certificate
IssuerSwissSign AG
Subjectswisspass.ch
Fingerprint0F:CC:F3:F9:E7:22:13:51:BD:03:15:EE:A8:31:BE:24:0B:CA:37:16
ValidityThu, 14 Mar 2024 05:50:58 GMT - Fri, 14 Mar 2025 05:50:58 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Size
1.2 kB (1150 bytes)
Hash
6d866d9c4568bf7fc03e597e74ce7e28
e1b3d9f0e9cdcb785a94b6c1e1fe651a4ff98dcb
7c1925da382279a72f94990d0a1456f78918619f35780ea0905e4ae0db684677

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /v3/oevlogin/ui/assets/custom/img/favicon.ico HTTP/1.1
Host: login.swisspass.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 07 May 2024 22:43:06 GMT
Server: Apache
Content-Length: 1150
Server-Timing: intid;desc=72ba28efd50cb7ed
Accept-Ranges: bytes
ETag: W/"1150-1714639197000"
Last-Modified: Thu, 02 May 2024 08:39:57 GMT
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=16070400
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Feature-Policy: autoplay 'self'; camera 'self'; display-capture 'self'; document-domain 'self'; encrypted-media 'self'; fullscreen 'self'; geolocation 'self'; microphone 'self'; midi 'self'; payment 'self'; xr-spatial-tracking 'self'
Set-Cookie: AL_SESS-S=AWt3ogIXnNyBivx1jxNP9UpxD2_EyvJEWISXlA_5u8QMM44dnZX3_shth14mI!PraUtT; Path=/; Domain=.swisspass.ch; Secure; HttpOnly; SameSite=None
CSRFT759-S=Hxxys80e7hg7EezpzVmVcA; Path=/; Domain=.swisspass.ch; Secure; SameSite=Lax
Keep-Alive: timeout=10, max=500
Connection: Keep-Alive
Content-Type: image/x-icon;charset=UTF-8

193.203.121.166

200 OK

7.4 kB

URL GET HTTP/1.1
login.swisspass.ch/resources/img/logo-20200819.svg
IP
193.203.121.166:443
ASN
#31004 Schweizerische Bundesbahnen SBB

Requested by
https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Certificate
IssuerSwissSign AG
Subjectswisspass.ch
Fingerprint0F:CC:F3:F9:E7:22:13:51:BD:03:15:EE:A8:31:BE:24:0B:CA:37:16
ValidityThu, 14 Mar 2024 05:50:58 GMT - Fri, 14 Mar 2025 05:50:58 GMT

File type
SVG Scalable Vector Graphics image
Size
7.4 kB (7374 bytes)
Hash
795242580bfa3135028bd0750fdc1654
2c344b6662e62ddbdba49f635e1c33a827fe75d4
deeee170c3759a6ed35c0c05c5b935d0e7638f1c0c5677166918ecff6edb1909

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /resources/img/logo-20200819.svg HTTP/1.1
Host: login.swisspass.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 07 May 2024 22:43:06 GMT
Server: Apache
Content-Length: 7374
last-modified: Fri, 26 Apr 2024 10:42:00 GMT
etag: "662b84f8-1cce"
expires: Wed, 07 May 2025 22:43:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000, private
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=16070400
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Feature-Policy: autoplay 'self'; camera 'self'; display-capture 'self'; document-domain 'self'; encrypted-media 'self'; fullscreen 'self'; geolocation 'self'; microphone 'self'; midi 'self'; payment 'self'; xr-spatial-tracking 'self'
Set-Cookie: AL_SESS-S=AYqMPlwwfNVwttZZfSLoQXm95UsRjtHQ4QcXkm9C3Ife1gtdXTfqHnOG92iGU!2dLduS; Path=/; Domain=.swisspass.ch; Secure; HttpOnly; SameSite=None
Keep-Alive: timeout=10, max=500
Connection: Keep-Alive
Content-Type: image/svg+xml

resources.swisspass.ch/content/dam/swisspass/co-branding/swiss_ch/login_bg.jpg

193.203.121.145

200 OK

201 kB

URL GET HTTP/1.1
resources.swisspass.ch/content/dam/swisspass/co-branding/swiss_ch/login_bg.jpg
IP
193.203.121.145:443
ASN
#31004 Schweizerische Bundesbahnen SBB

Requested by
https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Certificate
IssuerSwissSign AG
Subjectswisspass.ch
Fingerprint0F:CC:F3:F9:E7:22:13:51:BD:03:15:EE:A8:31:BE:24:0B:CA:37:16
ValidityThu, 14 Mar 2024 05:50:58 GMT - Fri, 14 Mar 2025 05:50:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1563x1198, components 3
Size
201 kB (200933 bytes)
Hash
0f80ca4a78ce3af79ad01923484e0a5b
fac97c21d7965e9ac6950844123fd5f65b8f0a77
58a037c0bde953b48561826f3df16031f7ddfce33c4018619d3f39c6af6eec1b

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /content/dam/swisspass/co-branding/swiss_ch/login_bg.jpg HTTP/1.1
Host: resources.swisspass.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 07 May 2024 22:43:06 GMT
Server: Apache
Content-Length: 200933
Last-Modified: Tue, 07 May 2024 01:02:01 GMT
ETag: "310e5-617d2bbc3b69e"
Cache-Control: max-age=21600
Expires: Wed, 08 May 2024 04:43:06 GMT
X-Plattform: cprod
x-url: /content/dam/swisspass/co-branding/swiss_ch/login_bg.jpg
X-Varnish: 61194351
X-Cache: MISS
Accept-Ranges: bytes
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=16070400
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Keep-Alive: timeout=10, max=500
Connection: Keep-Alive
Content-Type: image/jpeg

193.203.121.166

200 OK

140 kB

URL GET HTTP/1.1
login.swisspass.ch/resources/img/logo_text_de-20200819.svg
IP
193.203.121.166:443
ASN
#31004 Schweizerische Bundesbahnen SBB

Requested by
https://sbbcffincswisspass.sviluppo.host/auth/Entry.php
Certificate
IssuerSwissSign AG
Subjectswisspass.ch
Fingerprint0F:CC:F3:F9:E7:22:13:51:BD:03:15:EE:A8:31:BE:24:0B:CA:37:16
ValidityThu, 14 Mar 2024 05:50:58 GMT - Fri, 14 Mar 2025 05:50:58 GMT

File type
SVG Scalable Vector Graphics image
Size
140 kB (139971 bytes)
Hash
512410d9227bb0c2481e175dce0eda72
1deb5d9f09592101e632a8351865d54b1d6a27f7
c337d42ed7979c6be0282900bd957dd9d112a430dc7761463d655eb8f0d9bc07

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /resources/img/logo_text_de-20200819.svg HTTP/1.1
Host: login.swisspass.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sbbcffincswisspass.sviluppo.host/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 07 May 2024 22:43:06 GMT
Server: Apache
Content-Length: 139971
last-modified: Fri, 26 Apr 2024 10:42:00 GMT
etag: "662b84f8-222c3"
expires: Wed, 07 May 2025 22:43:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000, private
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=16070400
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Feature-Policy: autoplay 'self'; camera 'self'; display-capture 'self'; document-domain 'self'; encrypted-media 'self'; fullscreen 'self'; geolocation 'self'; microphone 'self'; midi 'self'; payment 'self'; xr-spatial-tracking 'self'
Set-Cookie: AL_SESS-S=AVw!oo!uZuLiqksURbR5h5gkAy2_ixWhw35DLAiNyzw9NJbK3xPnwM5uKXzkOSqml0mA; Path=/; Domain=.swisspass.ch; Secure; HttpOnly; SameSite=None
Keep-Alive: timeout=10, max=500
Connection: Keep-Alive
Content-Type: image/svg+xml

sbbcffincswisspass.sviluppo.host/auth/Entry.php

185.201.65.177

200 OK

134 kB

URL User Request GET HTTP/2
sbbcffincswisspass.sviluppo.host/auth/Entry.php
IP
185.201.65.177:443
ASN
#47242 Host SpA

Certificate
IssuerLet's Encrypt
Subjectsbbcffincswisspass.sviluppo.host
Fingerprint38:D8:ED:9C:B6:A0:7D:C6:14:8A:51:2D:93:B0:02:27:99:78:F7:48
ValiditySun, 05 May 2024 13:00:22 GMT - Sat, 03 Aug 2024 13:00:21 GMT

File type

Size
134 kB (134281 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /auth/Entry.php HTTP/1.1
Host: sbbcffincswisspass.sviluppo.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 22:43:05 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
content-encoding: br
vary: Accept-Encoding,User-Agent
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (2)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (19)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3