www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
23.185.0.2301 Moved Permanently 162 B URL HTTP/1.1 www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
IP 23.185.0.2:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library HTTP/1.1
Host: www.banyansecurity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: keep-alive
Content-Length: 162
Content-Type: text/html
Server: nginx
X-Pantheon-Styx-Hostname: styx-fe2-a-86d8b58f4d-896g4
X-Styx-Req-Id: f7fcbda9-71f3-11ed-af68-2aedfd9bf012
Cache-Control: public, max-age=86400
Date: Fri, 02 Dec 2022 03:46:57 GMT
X-Served-By: cache-chi-kigq8000162-CHI, cache-bma1649-BMA
X-Cache: MISS, MISS
X-Cache-Hits: 0, 0
X-Timer: S1669952817.927474,VS0,VE127
Vary: Cookie, Cookie
X-Pre-Strip-Debug: utm_source=cyfluencer&utm_medium=influencer_library
Location: https://www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
Age: 0
Accept-Ranges: bytes
Via: 1.1 varnish, 1.1 varnish
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16738
Expires: Fri, 02 Dec 2022 08:25:55 GMT
Date: Fri, 02 Dec 2022 03:46:57 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5699
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:57 GMT
Last-Modified: Fri, 02 Dec 2022 02:11:58 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 03:18:10 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1727
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11208
Expires: Fri, 02 Dec 2022 06:53:45 GMT
Date: Fri, 02 Dec 2022 03:46:57 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 9SMqK6DB4xTkq4UEa2FdhPhHmUKGTbHIho58DhKgnOn0eQLg93EBoKG3KJomUieMl5yccedbgkA=
x-amz-request-id: BASM3M0K21NCVT7Z
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 03:45:57 GMT
age: 60
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 03:46:57 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
23.185.0.2200 OK 23 kB URL HTTP/2 www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
IP 23.185.0.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (30688)
Hash d363e947df1225f895d29e5b3c748bc7
ffab0303b05e8a39d51b5758cc32ceea6ed99052
442ceb89c1a98c4926e1db77ba24577d1d09ab4cb590ff0c8ed8dfe27ec577c3
GET /blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library HTTP/1.1
Host: www.banyansecurity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
cache-control: public, max-age=600
content-encoding: gzip
content-type: text/html; charset=UTF-8
link: <https://www.banyansecurity.io/wp-json/>; rel="https://api.w.org/", <https://www.banyansecurity.io/wp-json/wp/v2/posts/9947>; rel="alternate"; type="application/json", <https://www.banyansecurity.io/?p=9947>; rel=shortlink
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe2-a-86d8b58f4d-x2x9k
x-styx-req-id: ecfcce04-71f3-11ed-acb7-122badd39cc0
date: Fri, 02 Dec 2022 03:46:57 GMT
x-served-by: cache-chi-kigq8000143-CHI, cache-bma1666-BMA
x-cache: HIT, MISS
x-cache-hits: 3, 0
x-timer: S1669952817.178181,VS0,VE110
vary: Accept-Encoding, Cookie, Cookie
age: 18
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 23185
X-Firefox-Spdy: h2
www.banyansecurity.io/wp-content/uploads/autoptimize/js/autoptimize_single_fbe29549dd4dd61e57e2a68b3d80176d.js
23.185.0.2200 OK 14 kB URL HTTP/2 www.banyansecurity.io/wp-content/uploads/autoptimize/js/autoptimize_single_fbe29549dd4dd61e57e2a68b3d80176d.js
IP 23.185.0.2:0
File type ASCII text, with very long lines (30166), with no line terminators
Hash fc686429d05bb308a5ece77d243da0b9
6590dc4ba4eea857fd00ba2ffb964539eff7dec9
45585af42eb09779aad820d4837c991c7ac78cb353052d0e57e90ab10b9e17f6
GET /wp-content/uploads/autoptimize/js/autoptimize_single_fbe29549dd4dd61e57e2a68b3d80176d.js HTTP/1.1
Host: www.banyansecurity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31622400
content-encoding: gzip
content-type: application/x-javascript
etag: W/"63824f9a-75d6"
expires: Mon, 27 Nov 2023 17:40:50 GMT
last-modified: Sat, 26 Nov 2022 17:40:42 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe2-a-67565c44b7-dh7j7
x-styx-req-id: 77c727fb-6db1-11ed-9a7f-82382015b17e
date: Fri, 02 Dec 2022 03:46:57 GMT
x-served-by: cache-chi-kigq8000066-CHI, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1669952817.427078,VS0,VE1
vary: Accept-Encoding
age: 468366
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 13741
X-Firefox-Spdy: h2
www.banyansecurity.io/wp-includes/js/jquery/jquery-migrate.min.js
23.185.0.2200 OK 4.6 kB URL HTTP/2 www.banyansecurity.io/wp-includes/js/jquery/jquery-migrate.min.js
IP 23.185.0.2:0
File type ASCII text, with very long lines (11126)
Hash 413654fdfa9b24fbd3d747482e3971c9
c23c501d5f668cd83443a4847197717536d55ab8
48470f972b6a6afef4cdb0177dae59d5c891353d995e76c47c9cb142fe45766e
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: www.banyansecurity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31622400
content-encoding: gzip
content-type: application/x-javascript
etag: W/"637f19a4-2bd8"
expires: Mon, 27 Nov 2023 17:40:50 GMT
last-modified: Thu, 24 Nov 2022 07:13:40 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe2-a-67565c44b7-lf4v7
x-styx-req-id: 77cf1949-6db1-11ed-ad5f-0e8325e4215e
date: Fri, 02 Dec 2022 03:46:57 GMT
x-served-by: cache-chi-klot8100043-CHI, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 1
x-timer: S1669952817.430948,VS0,VE2
vary: Accept-Encoding
age: 468366
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 4565
X-Firefox-Spdy: h2
www.banyansecurity.io/wp-content/uploads/autoptimize/js/autoptimize_single_d517bd68d4820a8e2d420d7b18119082.js
23.185.0.2200 OK 306 B URL HTTP/2 www.banyansecurity.io/wp-content/uploads/autoptimize/js/autoptimize_single_d517bd68d4820a8e2d420d7b18119082.js
IP 23.185.0.2:0
File type ASCII text, with very long lines (488)
Hash 9f248112b5c02587a49e04bca2c54f5a
b089513c5f011a2e9175e05f5a26bd446b33b06f
3318b36efe6abda1eed13e6b48a405c4fdfc177c7acbed7bbd7af9df499d8506
GET /wp-content/uploads/autoptimize/js/autoptimize_single_d517bd68d4820a8e2d420d7b18119082.js HTTP/1.1
Host: www.banyansecurity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31622400
content-encoding: gzip
content-type: application/x-javascript
etag: W/"63824f9b-239"
expires: Mon, 27 Nov 2023 17:40:50 GMT
last-modified: Sat, 26 Nov 2022 17:40:43 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe2-b-5ff4cc9d9f-hbvhc
x-styx-req-id: 77bce255-6db1-11ed-8464-6226d698fe9f
date: Fri, 02 Dec 2022 03:46:57 GMT
x-served-by: cache-chi-klot8100075-CHI, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 1
x-timer: S1669952817.432040,VS0,VE1
vary: Accept-Encoding
age: 468366
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 306
X-Firefox-Spdy: h2
www.banyansecurity.io/wp-content/plugins/autoptimize/classes/external/js/lazysizes.min.js
23.185.0.2200 OK 4.4 kB URL HTTP/2 www.banyansecurity.io/wp-content/plugins/autoptimize/classes/external/js/lazysizes.min.js
IP 23.185.0.2:0
File type ASCII text, with very long lines (7862)
Hash d6b2cf819b5cab78b1d5769bbcb878c7
0ffe02e07d53a5767056cb3fb0feade549d8107a
b7fcb55286b90f6db8956b4a27c311a9e0a19bbf331996e3f9143b527f0e80c2
GET /wp-content/plugins/autoptimize/classes/external/js/lazysizes.min.js HTTP/1.1
Host: www.banyansecurity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31622400
content-encoding: gzip
content-type: application/x-javascript
etag: W/"637f19a2-2655"
expires: Mon, 27 Nov 2023 17:40:50 GMT
last-modified: Thu, 24 Nov 2022 07:13:38 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe2-b-5ff4cc9d9f-hbvhc
x-styx-req-id: 7805b35e-6db1-11ed-8464-6226d698fe9f
date: Fri, 02 Dec 2022 03:46:57 GMT
x-served-by: cache-chi-kigq8000133-CHI, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 1
x-timer: S1669952817.434823,VS0,VE1
vary: Accept-Encoding
age: 468366
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 4428
X-Firefox-Spdy: h2
www.banyansecurity.io/wp-content/uploads/autoptimize/js/autoptimize_single_c47923bc6ec80f68d6bea3aaa036ad3f.js
23.185.0.2200 OK 194 B URL HTTP/2 www.banyansecurity.io/wp-content/uploads/autoptimize/js/autoptimize_single_c47923bc6ec80f68d6bea3aaa036ad3f.js
IP 23.185.0.2:0
File type ASCII text, with very long lines (381)
Hash e4ad7ae0833f0dfa7ef017a234556090
ff6898a402e3a3af103372b1467c1e7b906f1415
b797e877d8a09706bde92bec777278ae27aa636430757d5f25d9c9b3546fad99
GET /wp-content/uploads/autoptimize/js/autoptimize_single_c47923bc6ec80f68d6bea3aaa036ad3f.js HTTP/1.1
Host: www.banyansecurity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31622400
content-encoding: gzip
content-type: application/x-javascript
etag: W/"63824f9b-1f5"
expires: Mon, 27 Nov 2023 17:40:50 GMT
last-modified: Sat, 26 Nov 2022 17:40:43 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe2-a-67565c44b7-dh7j7
x-styx-req-id: 77c382e1-6db1-11ed-9a7f-82382015b17e
date: Fri, 02 Dec 2022 03:46:57 GMT
x-served-by: cache-chi-kigq8000144-CHI, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 1
x-timer: S1669952817.437870,VS0,VE1
vary: Accept-Encoding
age: 468366
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 194
X-Firefox-Spdy: h2
www.banyansecurity.io/wp-content/themes/Divi/js/scripts.min.js
23.185.0.2200 OK 86 kB URL HTTP/2 www.banyansecurity.io/wp-content/themes/Divi/js/scripts.min.js
IP 23.185.0.2:0
File type ASCII text, with very long lines (65467)
Hash 8b97b8afe742c2c8d961175bd47540c2
6cc75e027065a1a516f607a5d6927061b1b2b249
254fd19335f049a9d986083687289900fee0e049d6088ee941dd11dcdcb991ff
GET /wp-content/themes/Divi/js/scripts.min.js HTTP/1.1
Host: www.banyansecurity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31622400
content-encoding: gzip
content-type: application/x-javascript
etag: W/"637f19a3-42f69"
expires: Mon, 27 Nov 2023 17:40:50 GMT
last-modified: Thu, 24 Nov 2022 07:13:39 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe2-b-5ff4cc9d9f-f5fm2
x-styx-req-id: 77d00946-6db1-11ed-9173-fa9d748004f8
date: Fri, 02 Dec 2022 03:46:57 GMT
x-served-by: cache-chi-klot8100086-CHI, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 1
x-timer: S1669952817.437967,VS0,VE2
vary: Accept-Encoding
age: 468366
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 85574
X-Firefox-Spdy: h2
www.banyansecurity.io/wp-content/uploads/autoptimize/js/autoptimize_single_567f74e03294e030eaca16037136844b.js
23.185.0.2200 OK 200 B URL HTTP/2 www.banyansecurity.io/wp-content/uploads/autoptimize/js/autoptimize_single_567f74e03294e030eaca16037136844b.js
IP 23.185.0.2:0
File type ASCII text, with very long lines (451), with no line terminators
Hash db5d96df807c383cc7e2442b50256950
94e3a4305cf64941a30b8238e378f45b1e49f6b7
cfe830f4d84d43c2b08fafaba25fa3c062ffc7f182875b29c7050a26b42fca3d
GET /wp-content/uploads/autoptimize/js/autoptimize_single_567f74e03294e030eaca16037136844b.js HTTP/1.1
Host: www.banyansecurity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31622400
content-encoding: gzip
content-type: application/x-javascript
etag: W/"63824f9b-1c3"
expires: Mon, 27 Nov 2023 17:40:50 GMT
last-modified: Sat, 26 Nov 2022 17:40:43 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe2-b-5ff4cc9d9f-pb5rk
x-styx-req-id: 77bc2c26-6db1-11ed-9dd3-5e77fa55bdbb
date: Fri, 02 Dec 2022 03:46:57 GMT
x-served-by: cache-chi-kigq8000023-CHI, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 1
x-timer: S1669952817.438896,VS0,VE1
vary: Accept-Encoding
age: 468367
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 200
X-Firefox-Spdy: h2
www.banyansecurity.io/wp-content/uploads/autoptimize/js/autoptimize_single_b6a40b8c22e5dd0e51404ac7aa45710a.js
23.185.0.2200 OK 2.7 kB URL HTTP/2 www.banyansecurity.io/wp-content/uploads/autoptimize/js/autoptimize_single_b6a40b8c22e5dd0e51404ac7aa45710a.js
IP 23.185.0.2:0
File type ASCII text, with very long lines (5644)
Hash 0198ec3e40a9ea232aeda3759670e47b
c5300b47c9e7ce4a9816ec9ca05d03de104f1236
78c33d06cbbd3cd96b936b94efca7757ca608e62ed5eda10e8cb9e2a259848a7
GET /wp-content/uploads/autoptimize/js/autoptimize_single_b6a40b8c22e5dd0e51404ac7aa45710a.js HTTP/1.1
Host: www.banyansecurity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31622400
content-encoding: gzip
content-type: application/x-javascript
etag: W/"63824f9b-1652"
expires: Mon, 27 Nov 2023 17:40:50 GMT
last-modified: Sat, 26 Nov 2022 17:40:43 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe2-b-5ff4cc9d9f-f5fm2
x-styx-req-id: 77d3f283-6db1-11ed-9173-fa9d748004f8
date: Fri, 02 Dec 2022 03:46:57 GMT
x-served-by: cache-chi-klot8100098-CHI, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 1
x-timer: S1669952817.451149,VS0,VE1
vary: Accept-Encoding
age: 468366
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 2675
X-Firefox-Spdy: h2
www.banyansecurity.io/wp-content/uploads/autoptimize/js/autoptimize_single_fa07f10043b891dacdb82f26fd2b42bc.js
23.185.0.2200 OK 1.1 kB URL HTTP/2 www.banyansecurity.io/wp-content/uploads/autoptimize/js/autoptimize_single_fa07f10043b891dacdb82f26fd2b42bc.js
IP 23.185.0.2:0
File type HTML document, ASCII text, with very long lines (593)
Hash 97c5040713e0c4f1a64b97c5994eb0d1
3a054dc8f70482fb5fe5af2eac0b38301ce8db1b
3ac3f98ea739c41286de62bd22a74557566bc3192b85d17912f486140c059868
GET /wp-content/uploads/autoptimize/js/autoptimize_single_fa07f10043b891dacdb82f26fd2b42bc.js HTTP/1.1
Host: www.banyansecurity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31622400
content-encoding: gzip
content-type: application/x-javascript
etag: W/"63824fbe-9a2"
expires: Mon, 27 Nov 2023 18:21:55 GMT
last-modified: Sat, 26 Nov 2022 17:41:18 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe2-a-67565c44b7-lf4v7
x-styx-req-id: 34f9122b-6db7-11ed-ad5f-0e8325e4215e
date: Fri, 02 Dec 2022 03:46:57 GMT
x-served-by: cache-chi-klot8100088-CHI, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 1
x-timer: S1669952817.451263,VS0,VE1
vary: Accept-Encoding
age: 465902
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 1105
X-Firefox-Spdy: h2
www.banyansecurity.io/wp-content/plugins/divi-plus/scripts/frontend-bundle.min.js
23.185.0.2200 OK 5.5 kB URL HTTP/2 www.banyansecurity.io/wp-content/plugins/divi-plus/scripts/frontend-bundle.min.js
IP 23.185.0.2:0
File type ASCII text, with very long lines (18263), with no line terminators
Hash 401f1501f91fe40099e449954227f998
ec8c5825cf352794a619ecaf889a166f5b5d69a4
d95609a289abc9a59787baf0ecbf239295c887e2ade0fa3a61effa3bb2dbcbcf
GET /wp-content/plugins/divi-plus/scripts/frontend-bundle.min.js HTTP/1.1
Host: www.banyansecurity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31622400
content-encoding: gzip
content-type: application/x-javascript
etag: W/"637f19a2-4757"
expires: Mon, 27 Nov 2023 17:40:50 GMT
last-modified: Thu, 24 Nov 2022 07:13:38 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe2-a-67565c44b7-q2zhg
x-styx-req-id: 77c5506c-6db1-11ed-8a5f-069be65bdbbe
date: Fri, 02 Dec 2022 03:46:57 GMT
x-served-by: cache-chi-kigq8000145-CHI, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1669952817.452048,VS0,VE1
vary: Accept-Encoding
age: 468366
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 5489
X-Firefox-Spdy: h2
www.banyansecurity.io/wp-content/uploads/autoptimize/js/autoptimize_single_d71b75b2327258b1d01d50590c1f67ca.js
23.185.0.2200 OK 446 B URL HTTP/2 www.banyansecurity.io/wp-content/uploads/autoptimize/js/autoptimize_single_d71b75b2327258b1d01d50590c1f67ca.js
IP 23.185.0.2:0
File type ASCII text, with very long lines (415)
Hash db2f7f411d7f635d7162763580f70d7b
5a54e305a49fde785a1ae312c545112d579e83de
6ee9a8ab38b12eec5987690534203d5537ddf8c03f6a8ed9e0be258dd6a453d5
GET /wp-content/uploads/autoptimize/js/autoptimize_single_d71b75b2327258b1d01d50590c1f67ca.js HTTP/1.1
Host: www.banyansecurity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31622400
content-encoding: gzip
content-type: application/x-javascript
etag: W/"63824f9b-380"
expires: Mon, 27 Nov 2023 17:40:50 GMT
last-modified: Sat, 26 Nov 2022 17:40:43 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe2-a-67565c44b7-q2zhg
x-styx-req-id: 77c536c2-6db1-11ed-8a5f-069be65bdbbe
date: Fri, 02 Dec 2022 03:46:57 GMT
x-served-by: cache-chi-klot8100094-CHI, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 1
x-timer: S1669952817.458163,VS0,VE1
vary: Accept-Encoding
age: 468366
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 446
X-Firefox-Spdy: h2
www.banyansecurity.io/wp-content/uploads/autoptimize/css/autoptimize_ebb4271801032c83eb3e7b0502644172.css
23.185.0.2200 OK 158 kB URL HTTP/2 www.banyansecurity.io/wp-content/uploads/autoptimize/css/autoptimize_ebb4271801032c83eb3e7b0502644172.css
IP 23.185.0.2:0
File type ASCII text, with very long lines (35286)
Size 158 kB (157783 bytes)
Hash 74d12b7f88f77d97dc294e645666c5da
6200840708dc4432e89b9b7659ed86af172aa1d5
5d8d41789b0fc2ebcb65ca1b12f38e41f669c1fa8e4602a85c46dbde03432b13
GET /wp-content/uploads/autoptimize/css/autoptimize_ebb4271801032c83eb3e7b0502644172.css HTTP/1.1
Host: www.banyansecurity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31622400
content-encoding: gzip
content-type: text/css
etag: W/"63825008-feca5"
expires: Mon, 27 Nov 2023 18:19:06 GMT
last-modified: Sat, 26 Nov 2022 17:42:32 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe2-b-5ff4cc9d9f-f5fm2
x-styx-req-id: d012491e-6db6-11ed-9173-fa9d748004f8
date: Fri, 02 Dec 2022 03:46:57 GMT
x-served-by: cache-chi-kigq8000048-CHI, cache-bma1666-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1669952817.426839,VS0,VE110
vary: Accept-Encoding
age: 466071
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 157783
X-Firefox-Spdy: h2
www.banyansecurity.io/wp-includes/js/jquery/jquery.min.js
23.185.0.2200 OK 36 kB URL HTTP/2 www.banyansecurity.io/wp-includes/js/jquery/jquery.min.js
IP 23.185.0.2:0
File type ASCII text, with very long lines (65447)
Hash 3799a6be94d7facfc78f066e18773e22
5d97b0e2565712331b1d73be1581159bf282cd4f
e208eb0b972a9d1bdd741669ae120b4555f33ea138d69d012f99de9aaec1c9be
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: www.banyansecurity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31622400
content-encoding: gzip
content-type: application/x-javascript
etag: W/"637f19a4-15e54"
expires: Mon, 27 Nov 2023 17:40:50 GMT
last-modified: Thu, 24 Nov 2022 07:13:40 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe2-b-5ff4cc9d9f-f5fm2
x-styx-req-id: 77bc585d-6db1-11ed-9173-fa9d748004f8
date: Fri, 02 Dec 2022 03:46:57 GMT
x-served-by: cache-chi-kigq8000052-CHI, cache-bma1666-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1669952817.429882,VS0,VE108
vary: Accept-Encoding
age: 468367
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 36096
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 03:08:57 GMT
cache-control: public,max-age=3600
age: 2280
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.banyansecurity.io/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf
23.185.0.2200 OK 42 kB URL HTTP/2 www.banyansecurity.io/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf
IP 23.185.0.2:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, modules \012- data
Hash e29175a98d362266ec705a4dd05082ee
f0c68b6d6e8973ec6fd4543dafb708a5c3c4b7d2
76f7c8a95cd3950416970b1e710dbfcd882efc0b6c496b8c84058b0e604682c0
GET /wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf HTTP/1.1
Host: www.banyansecurity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/wp-content/uploads/autoptimize/css/autoptimize_ebb4271801032c83eb3e7b0502644172.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: max-age=31622400
content-encoding: gzip
content-type: application/x-font-ttf
etag: W/"637f19a3-168f0"
expires: Mon, 27 Nov 2023 17:40:51 GMT
last-modified: Thu, 24 Nov 2022 07:13:39 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe2-b-5ff4cc9d9f-f5fm2
x-styx-req-id: 78876d2e-6db1-11ed-9173-fa9d748004f8
date: Fri, 02 Dec 2022 03:46:57 GMT
x-served-by: cache-chi-kigq8000153-CHI, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 1
x-timer: S1669952818.796289,VS0,VE1
vary: Accept-Encoding
age: 468365
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 41750
X-Firefox-Spdy: h2
secure.hero6bell.com/js/211985.js
51.11.20.152200 OK 16 B URL HTTP/1.1 secure.hero6bell.com/js/211985.js
IP 51.11.20.152:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with no line terminators
Hash 8fa1417d409d8f6c8c3deece4d8147c5
1482fea2dbf225e88e26b82e0ef42f6ff92bd784
ac699b8190555f754354ca81c6de7a85f0fe32ceaeb223315fd1b32bdd1ab51c
Analyzer Verdict Alert fortinet Malware
GET /js/211985.js HTTP/1.1
Host: secure.hero6bell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:46:57 GMT
Content-Type: text/javascript
Content-Length: 16
Connection: keep-alive
Server: Kestrel
Cache-Control: no-store, must-revalidate
Pragma: no-cache
Expires: 0
Request-Context: appId=cid-v1:abe8a76f-f1a2-4b2e-9017-0ea36ffb5c20
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 3a2efcbd513eb2331c468fb903145747
b613fded7ae1160dd6f972d2501d14495beabdfd
49edc489cfcfeab355b3098f0e92b903856e214461487f2c670eb6db7a87b917
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2553
Cache-Control: max-age=111763
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:57 GMT
Etag: "63887ccb-118"
Expires: Sat, 03 Dec 2022 10:49:40 GMT
Last-Modified: Thu, 01 Dec 2022 10:07:07 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWV4ewA.woff2
216.58.207.227200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWV4ewA.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23704, version 1.0\012- data
Hash 3d4a6df8d47f0085c3bf7bd90563e9eb
f0d96d332787d0a8604f2b99dde7f3b947942cf5
d00bea31ec0d15e0e6013225b870d1f39fa2e26663d192c8520494c6156c0569
GET /s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWV4ewA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.banyansecurity.io
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 18:56:08 GMT
expires: Wed, 29 Nov 2023 18:56:08 GMT
cache-control: public, max-age=31536000
age: 204649
last-modified: Mon, 15 Aug 2022 18:28:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 476e4c55df292b142bbde6b7367c3491
f3f64fce3f2d537428faaf942dba539975a59dbb
eae4adc54bc82d16a403e9e03ea769ab54bd6504ce35346a45f88b26a42e791f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4054
Cache-Control: max-age=86617
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:57 GMT
Etag: "638814b4-116"
Expires: Sat, 03 Dec 2022 03:50:34 GMT
Last-Modified: Thu, 01 Dec 2022 02:43:00 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 278
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4uaVI.woff2
216.58.207.227200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4uaVI.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 22212, version 1.0\012- data
Hash e62adebf67147c481b9c00011e2c5d48
3af42ef356fa413fd162c56a7b11b8d34a61cefb
17ec0c20d179cf39cbbb164c18165e8a35e9678d5602c8c4f6826ff457b0685e
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4uaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.banyansecurity.io
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22212
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 01:08:02 GMT
expires: Wed, 29 Nov 2023 01:08:02 GMT
cache-control: public, max-age=31536000
age: 268735
last-modified: Mon, 15 Aug 2022 18:15:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2
216.58.207.227200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 21516, version 1.0\012- data
Hash 90135ea44811b2d9610c33e07068fdb0
84ef1a8343877a598f1c7cbae56f35ded54a1787
bd067b886f4a67dd25c08fe73777bce7f506beb4c09d17d9f036f8a90901efd2
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.banyansecurity.io
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21516
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 01:09:02 GMT
expires: Wed, 29 Nov 2023 01:09:02 GMT
cache-control: public, max-age=31536000
age: 268675
last-modified: Mon, 15 Aug 2022 18:12:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2
216.58.207.227200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 22084, version 1.0\012- data
Hash bab4daa6bec06781aa7262eca0be0ed4
b896fcea50433114a0433c9c8117677a875f1116
ee901a5f44fcc6ea6ab97fb2751ce51af915d16dd99995a29a5905d2ce4b0831
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.banyansecurity.io
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22084
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 01:07:13 GMT
expires: Wed, 29 Nov 2023 01:07:13 GMT
cache-control: public, max-age=31536000
age: 268784
last-modified: Mon, 15 Aug 2022 18:14:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVQ.woff
216.58.207.227200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVQ.woff
IP 216.58.207.227:0
File type Web Open Font Format, TrueType, length 27520, version 1.1\012- data
Hash cd247306809a5a4ddcfee4e2681aa03b
1aaa3efe7fc2cf5ccd75d4c67e1bf05e5041af3b
925be42fa3c0ca5ea75cd203804c3f6c717407e44010e1b63ed2c951bacc1849
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVQ.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.banyansecurity.io
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27520
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 22:48:20 GMT
expires: Tue, 28 Nov 2023 22:48:20 GMT
cache-control: public, max-age=31536000
age: 277117
last-modified: Mon, 15 Aug 2022 18:14:58 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-5PVJXZ5
142.250.74.168200 OK 88 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-5PVJXZ5
IP 142.250.74.168:0
File type ASCII text, with very long lines (10904)
Hash 62c00e211849b10764fce90eceb8715a
b6f04930cb0a3927e652de515bcd462ea519c6d2
74e7b6cd0b78c5d92321b3c7247351585c67aef897a93e26084d4cf5c3e409dc
GET /gtm.js?id=GTM-5PVJXZ5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 03:46:57 GMT
expires: Fri, 02 Dec 2022 03:46:57 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Dec 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 88003
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 6d15b7a8e1fe3c0bb4c2a72ecce789fe
70e388800fb7c45b39aa4d35fdb2b2b471e869e9
cf1f71974f520a7eb182437dbcc55af4261b0e34464fe23a4aa00bf14a92a640
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4764
Cache-Control: max-age=101390
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:57 GMT
Etag: "63884ba3-118"
Expires: Sat, 03 Dec 2022 07:56:47 GMT
Last-Modified: Thu, 01 Dec 2022 06:37:23 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 76699a6fbb7ad6c2adab16ad52cc8de4
e95d00bbecadacd33a360f831356ed7e3ac51f57
d0a429deb49825bd8f5e15f8d98c56491adafd28fdefab4a7d5a625291a1fabb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3800
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:58 GMT
Last-Modified: Fri, 02 Dec 2022 02:43:39 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.banyansecurity.io/wp-content/uploads/BanyanSecurity-Horiz-BlueWhite.svg
23.185.0.2200 OK 1.8 kB URL HTTP/2 www.banyansecurity.io/wp-content/uploads/BanyanSecurity-Horiz-BlueWhite.svg
IP 23.185.0.2:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3816), with no line terminators
Hash 9c696884a13f8c8815bbec8b61ef1d1e
d0dbb60847bff560dfb49ecb935f1a9986d2a207
2316465e6075e19eb79f6e61736a1ce2b0193e8e77e774fd5d98f1f42e039b66
GET /wp-content/uploads/BanyanSecurity-Horiz-BlueWhite.svg HTTP/1.1
Host: www.banyansecurity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: max-age=31622400
content-encoding: gzip
content-type: image/svg+xml
etag: W/"636da955-ee8"
expires: Sun, 12 Nov 2023 01:49:28 GMT
last-modified: Fri, 11 Nov 2022 01:45:57 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe2-a-58c69d767c-tf9xc
x-styx-req-id: 13d4a5c6-6163-11ed-a95a-9659a4d302d6
date: Fri, 02 Dec 2022 03:46:58 GMT
x-served-by: cache-chi-klot8100093-CHI, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 14, 1
x-timer: S1669952818.030476,VS0,VE1
vary: Accept-Encoding
age: 465899
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 1811
X-Firefox-Spdy: h2
www.banyansecurity.io/wp-content/uploads/Banyan-DeployAd-300x600-1.png
23.185.0.2200 OK 22 kB URL HTTP/2 www.banyansecurity.io/wp-content/uploads/Banyan-DeployAd-300x600-1.png
IP 23.185.0.2:0
File type PNG image data, 301 x 601, 8-bit/color RGBA, non-interlaced\012- data
Hash 6061b7a4b83ae9e205b76114eea3bdbc
2f88d15e53e4abdb94c4a90b4c6d6bcced564bf2
364e134c8962bf591aa81271d5dcd24f6de90d2ba165eecb70cf527533dd278b
GET /wp-content/uploads/Banyan-DeployAd-300x600-1.png HTTP/1.1
Host: www.banyansecurity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31622400
content-type: image/png
etag: "636da955-553b"
expires: Sun, 12 Nov 2023 02:04:45 GMT
last-modified: Fri, 11 Nov 2022 01:45:57 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe2-b-fffb9c8f-jjjqg
x-styx-req-id: 3684f257-6165-11ed-bd49-ba37a2e9e043
date: Fri, 02 Dec 2022 03:46:58 GMT
x-served-by: cache-chi-klot8100142-CHI, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1669952818.032346,VS0,VE1
age: 465899
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 21819
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 476e4c55df292b142bbde6b7367c3491
f3f64fce3f2d537428faaf942dba539975a59dbb
eae4adc54bc82d16a403e9e03ea769ab54bd6504ce35346a45f88b26a42e791f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4055
Cache-Control: max-age=86617
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:58 GMT
Etag: "638814b4-116"
Expires: Sat, 03 Dec 2022 03:50:35 GMT
Last-Modified: Thu, 01 Dec 2022 02:43:00 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 278
extend.vimeocdn.com/ga/56470043.js
151.101.86.109200 OK 5.6 kB URL HTTP/2 extend.vimeocdn.com/ga/56470043.js
IP 151.101.86.109:0
File type Unicode text, UTF-8 text, with very long lines (16858)
Hash 83eba8b0e75ce00d93d7044d0c3a9851
37daa8e5ded997f29c16bfe8fee8bf22ce7ab563
9216d6f8c1b56658ddb12c7e3ea1003b81aead850e2a8c99c014a2bcf5112d34
GET /ga/56470043.js HTTP/1.1
Host: extend.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
last-modified: Thu, 01 Sep 2022 18:23:26 GMT
etag: "421e-5e7a1b598e380-gzip"
expires: Sun, 29 Aug 2032 19:32:03 GMT
content-encoding: gzip
x-bapp-server: assets-67ff759c65-v5tqh
x-vimeo-dc: ge
timing-allow-origin: *
content-type: text/javascript; charset=utf-8
accept-ranges: bytes
date: Fri, 02 Dec 2022 03:46:58 GMT
via: 1.1 varnish
age: 7892095
x-served-by: cache-bma1622-BMA
x-cache: HIT
x-cache-hits: 7350
x-timer: S1669952818.269666,VS0,VE0
vary: Accept-Encoding
cache-control: max-age=86400
content-length: 5579
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.215.94.42101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.215.94.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kyAU6SP1CX0Mo3t10c0hKQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: oZRmgqFAa+FMrEeozLDqntO6tSM=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.banyansecurity.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:52:55 GMT
expires: Tue, 28 Nov 2023 18:52:55 GMT
cache-control: public, max-age=31536000
age: 291243
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 462bd1920adf582c53b62bf5bd15cbfd
e8524bd822d024906c927f22f9f6ff64e53c3c73
f0fc888f0c5048a613cb857ef8c052ac93e6505ee10010e436acee86a12e5a6c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4821
Cache-Control: max-age=141766
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:58 GMT
Etag: "6388e923-117"
Expires: Sat, 03 Dec 2022 19:09:44 GMT
Last-Modified: Thu, 01 Dec 2022 17:49:23 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash ea81b16fa2d3f35fe0a8c020a07a785a
0a6d723b3d96c5ce6dcb261547c9c35744433ec0
3b4b29da64b9b59c777d32574a9c0d887a052fa5b984e3f3a0b1d0112d54b3d8
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=116747
Date: Fri, 02 Dec 2022 03:46:58 GMT
Etag: "63889a3d-1d7"
Expires: Sat, 03 Dec 2022 12:12:45 GMT
Last-Modified: Thu, 01 Dec 2022 12:12:45 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ss-OWlJu-6U-gFYcFqC1LxzySlYD5iASN8R7D5Nz4JqHXz0NhYF9JA==
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash ea81b16fa2d3f35fe0a8c020a07a785a
0a6d723b3d96c5ce6dcb261547c9c35744433ec0
3b4b29da64b9b59c777d32574a9c0d887a052fa5b984e3f3a0b1d0112d54b3d8
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=116747
Date: Fri, 02 Dec 2022 03:46:58 GMT
Etag: "63889a3d-1d7"
Expires: Sat, 03 Dec 2022 12:12:45 GMT
Last-Modified: Thu, 01 Dec 2022 12:12:45 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8-aDQ7NBAZV39DQWT5J0PNh15h72XrOUqaYY2flz37by_7f7tgRQwg==
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 7ddd5b339c17335fcc77b8e2b5a51538
b00cf5425274d30765aa7bd245b0e43c0cc326a0
1b44e08e02d38c6f9f1cc30370beb3f46a2711fe57c3b435d611363d70fbabae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2724
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:58 GMT
Last-Modified: Fri, 02 Dec 2022 03:01:34 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
forms.hubspot.com/collected-forms/v1/config/json?portalId=4897008&utk=
104.19.155.83200 OK 381 B URL HTTP/2 forms.hubspot.com/collected-forms/v1/config/json?portalId=4897008&utk=
IP 104.19.155.83:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 314f461ef15a3340ee6f6ac51e5d4410
1cc65bcebfa9b37e392576124484e70a98646e7e
726a74e467df8819fc934e2103c6eb485ff888ee8fa0c660cddb758bc3fc5edf
GET /collected-forms/v1/config/json?portalId=4897008&utk= HTTP/1.1
Host: forms.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.banyansecurity.io
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:58 GMT
content-type: application/json;charset=utf-8
vary: origin
x-hubspot-correlation-id: 33b464a0-4536-404e-800a-0beea11f69f0
access-control-allow-credentials: false
access-control-allow-origin: https://www.banyansecurity.io
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: *
access-control-max-age: 180
x-robots-tag: none
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=mJc1v9p.RHeF.i7LBxw8PWri_PuL7DKXea1zaidAYu8-1669952818-0-AfkabR5JtFCM0OqWSEAOJ3yF0Mpa/9+feI+9L2kl6dPNQtz/6A52bs9siJFhejBWBZJI9p15KVWQYqdPRO2cGp4=; path=/; expires=Fri, 02-Dec-22 04:16:58 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LxisfyqrnnSbri6iiK%2FiI0ziRNvu0FJLUwprRRIyS8smZIsujbld3D63biaVzNp2M1SwppCmrOySQSnweEOVBWhKegFh2E3XwjmB6mzjQ%2Bng2dIBGzUNHoRRNEcTnaYlYu5Z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7731141bcfe20af6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash ddee669b7dd64a6edc228dd6e82465a6
ce755c704357db3e88bad3ab3f254041c7e3a9c7
3222dfc5bc518f43a77dd7c6dcc50721d051d34eebeceb4aacd474aac468de39
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=134794
Date: Fri, 02 Dec 2022 03:46:58 GMT
Etag: "6388ccfc-1d7"
Expires: Sat, 03 Dec 2022 17:13:32 GMT
Last-Modified: Thu, 01 Dec 2022 15:49:16 GMT
Server: ECS (nyb/1D24)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8aMU0Ub4Ic2Deb0NCtbTjItLBnlVgO-BDa1zHiGuoaGmyytmM09nHg==
Age: 5056
aimlogic.matomo.cloud/matomo.php?action_name=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&idsite=34&rec=1&r=335795&h=3&m=46&s=56&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&_id=bf1879fd19c19372&_idn=1&send_image=0&_rcn=cyfluencer&_refts=1669952817&cookie=1&res=1280x1024&pv_id=sac0DB&fa_pv=1&fa_fp[0][fa_vid]=BclrGR&fa_fp[0][fa_fv]=1&pf_net=42&pf_srv=123&pf_tfr=2&pf_dm1=599&uadata=%7B%7D
18.195.235.189204 No Content 0 B URL HTTP/2 aimlogic.matomo.cloud/matomo.php?action_name=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&idsite=34&rec=1&r=335795&h=3&m=46&s=56&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&_id=bf1879fd19c19372&_idn=1&send_image=0&_rcn=cyfluencer&_refts=1669952817&cookie=1&res=1280x1024&pv_id=sac0DB&fa_pv=1&fa_fp[0][fa_vid]=BclrGR&fa_fp[0][fa_fv]=1&pf_net=42&pf_srv=123&pf_tfr=2&pf_dm1=599&uadata=%7B%7D
IP 18.195.235.189:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /matomo.php?action_name=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&idsite=34&rec=1&r=335795&h=3&m=46&s=56&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&_id=bf1879fd19c19372&_idn=1&send_image=0&_rcn=cyfluencer&_refts=1669952817&cookie=1&res=1280x1024&pv_id=sac0DB&fa_pv=1&fa_fp[0][fa_vid]=BclrGR&fa_fp[0][fa_fv]=1&pf_net=42&pf_srv=123&pf_tfr=2&pf_dm1=599&uadata=%7B%7D HTTP/1.1
Host: aimlogic.matomo.cloud
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 0
Origin: https://www.banyansecurity.io
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 02 Dec 2022 03:46:58 GMT
server: Apache
access-control-allow-origin: https://www.banyansecurity.io
access-control-allow-credentials: true
vary: X-Forwarded-Port-Override,X-Forwarded-Proto-Override,User-Agent
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 7ddd5b339c17335fcc77b8e2b5a51538
b00cf5425274d30765aa7bd245b0e43c0cc326a0
1b44e08e02d38c6f9f1cc30370beb3f46a2711fe57c3b435d611363d70fbabae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2724
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:58 GMT
Last-Modified: Fri, 02 Dec 2022 03:01:34 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
js.hsforms.net/forms/v2.js
104.17.184.73200 OK 150 kB URL HTTP/2 js.hsforms.net/forms/v2.js
IP 104.17.184.73:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 150 kB (149912 bytes)
Hash 7be9bebbe715518492e5aff507b94343
0536567ce3e0bb408acdeec522ba31c43e8f82de
c82c95d148e24193056a122036af4c9ab782e2633e951dc93a7c9422b047e440
GET /forms/v2.js HTTP/1.1
Host: js.hsforms.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:57 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Thu, 01 Dec 2022 01:44:00 UTC
etag: W/"731d7ef246ec13594d9555333e3b285a"
x-amz-server-side-encryption: AES256
x-amz-version-id: UKwE9Lf._gWuwb83TNFiXYYTDkzjrQq7
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3c43e000c50d5633eb558057710f3c54.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: qYJMcJwLH-TprM0UTcw-2jODGcnHCJqRZSD0ZjlSETwSmzk1pNDc2Q==
cache-control: s-maxage=600, max-age=300
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=forms-embed/static-1.2422/bundles/project-v2.js&cfRay=772c47fd5830abe7-IAD
x-hs-target-asset: forms-embed/static-1.2422/bundles/project-v2.js
access-control-allow-origin: *
x-hs-cache-status: HIT
cache-tag: staticjsapp-forms-embed-v2-web-prod,staticjsapp-prod
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=glLv0k0gnIbJLF0pis2ElwBkIZ2eNlmLg0q11bJvh7aKXErd7hTluqzHu2RSkwlQUuUgbMcoOAMM704v%2FBuN7ThhMiKrlm%2FRCS%2F%2B8OzZI40H%2Bj7eJ%2BETnxVCrIwFwxIh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7731141599aeb509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.hubapi.com/hs-script-loader-public/v1/config/pixel/json?portalId=4897008
104.17.200.204200 OK 97 B URL HTTP/2 api.hubapi.com/hs-script-loader-public/v1/config/pixel/json?portalId=4897008
IP 104.17.200.204:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0343c57b4532c011947927481cb9f134
639c5315f9266177c3c06fa9c0bb6582b0c83051
9bf14a1fc057672c727af1c9542df552ac5c2adca2983a5921817d8109b0fa42
GET /hs-script-loader-public/v1/config/pixel/json?portalId=4897008 HTTP/1.1
Host: api.hubapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.banyansecurity.io
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:58 GMT
content-type: application/json;charset=utf-8
cf-ray: 7731141cbdd1b4fd-OSL
access-control-allow-origin: https://www.banyansecurity.io
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-max-age: 180
x-hubspot-correlation-id: 3979b890-f274-4583-9ce4-f8a63c3cbb24
x-trace: 2B72939FB8CDF0083226D25CE3519EC23E529379E0000000000000000000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gn%2FUFPnH%2FCEIRdRaZtFaCMkeK3bM8LXqu0AxRA4%2BIIX7ONccyuxltfWRl5r9b6JxtihGc7e4y%2FU3efP0j08bVShHx4w3Ted%2BeEXXNeuQWLxBSH%2FmhwvtBkwVc425YRQg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
wec-assets.terminus.services/e6a7b463-4779-44df-8ac3-1742a17b32c5/t.gif?d=7f8d1591-5962-4d8a-8f37-f3d0ee5c0b1e&s=9a76e55b-f07e-405c-8d0d-f2b4a8ee09e8&p=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&cb=1669952817106&t=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&r=&e=page_viewed&u=edb16d84-d61b-492b-8259-3bd4605e6ef8-1669952817106
143.204.55.61200 OK 43 B URL HTTP/2 wec-assets.terminus.services/e6a7b463-4779-44df-8ac3-1742a17b32c5/t.gif?d=7f8d1591-5962-4d8a-8f37-f3d0ee5c0b1e&s=9a76e55b-f07e-405c-8d0d-f2b4a8ee09e8&p=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&cb=1669952817106&t=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&r=&e=page_viewed&u=edb16d84-d61b-492b-8259-3bd4605e6ef8-1669952817106
IP 143.204.55.61:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /e6a7b463-4779-44df-8ac3-1742a17b32c5/t.gif?d=7f8d1591-5962-4d8a-8f37-f3d0ee5c0b1e&s=9a76e55b-f07e-405c-8d0d-f2b4a8ee09e8&p=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&cb=1669952817106&t=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&r=&e=page_viewed&u=edb16d84-d61b-492b-8259-3bd4605e6ef8-1669952817106 HTTP/1.1
Host: wec-assets.terminus.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
date: Fri, 02 Dec 2022 03:46:59 GMT
strict-transport-security: max-age=31536000
x-cache: Miss from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FiVHhoFeTonfPWKm1X4JM2ZqwRpq4DAD9sGgxL-_iMzKfCYlx9tm0w==
X-Firefox-Spdy: h2
www.banyansecurity.io/wp-content/uploads/cropped-favicon-1-32x32.png
23.185.0.2200 OK 1.3 kB URL HTTP/2 www.banyansecurity.io/wp-content/uploads/cropped-favicon-1-32x32.png
IP 23.185.0.2:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash f06a8e562093d7f3ef01cf2015c574ce
099794eb8c7bf342ceb4c9eb4f642dca61733197
598a3012f146ac83856d98271d47d20311ddc374e6e93c4b6886976dfd952acc
GET /wp-content/uploads/cropped-favicon-1-32x32.png HTTP/1.1
Host: www.banyansecurity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
Cookie: _gcl_au=1.1.1495808538.1669952817; _ga_0LC6YPM91Q=GS1.1.1669952816.1.0.1669952816.0.0.0; _ga=GA1.1.1011568842.1669952817; _pk_ref.34.5f5f=%5B%22cyfluencer%22%2C%22%22%2C1669952817%2C%22%22%5D; _pk_id.34.5f5f=bf1879fd19c19372.1669952817.; _pk_ses.34.5f5f=1; d-a8e6=7f8d1591-5962-4d8a-8f37-f3d0ee5c0b1e; s-9da4=9a76e55b-f07e-405c-8d0d-f2b4a8ee09e8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31622400
content-type: image/png
etag: "636da955-50c"
expires: Sun, 12 Nov 2023 02:00:22 GMT
last-modified: Fri, 11 Nov 2022 01:45:57 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe2-b-fffb9c8f-hvvmv
x-styx-req-id: 99cc1ef9-6164-11ed-a9e7-ca61507118b8
date: Fri, 02 Dec 2022 03:46:59 GMT
x-served-by: cache-chi-klot8100082-CHI, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 1
x-timer: S1669952819.270687,VS0,VE1
age: 465795
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 1292
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 1.4 kB IP 93.184.220.29:0
File type gzip compressed data, max compression\012- data
Hash c133c1e859bf46d77f45f5d5d1e46c83
34d923823c98380be468531e4d9188afbee836cc
6025bce837f0c05f8307fa21f533488adbf6ac181d19a5cc2f64c402da5756f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4587
Cache-Control: max-age=159521
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:59 GMT
Etag: "63892f69-118"
Expires: Sun, 04 Dec 2022 00:05:40 GMT
Last-Modified: Thu, 01 Dec 2022 22:49:13 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 280
api.applause-button.com/get-claps?url=https://www.banyansecurity.io/blog/retiring-your-covid-era-vpn/
143.204.55.64200 OK 1 B URL HTTP/2 api.applause-button.com/get-claps?url=https://www.banyansecurity.io/blog/retiring-your-covid-era-vpn/
IP 143.204.55.64:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
GET /get-claps?url=https://www.banyansecurity.io/blog/retiring-your-covid-era-vpn/ HTTP/1.1
Host: api.applause-button.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.banyansecurity.io/
Content-Type: text/plain
Origin: https://www.banyansecurity.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 1
date: Fri, 02 Dec 2022 03:46:59 GMT
x-amzn-requestid: 2265b2e9-102f-43b7-b9d5-682618fc926e
access-control-allow-origin: *
x-amz-apigw-id: cf9ACE6UIAMFaHg=
x-amzn-trace-id: Root=1-63897533-40f2a1f22065586d68b15797;Sampled=0
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: G_I8bmJn-QrN9-Qf7Acupzz5KG_XQr5anXoVwUil9SIxJLy968tLmQ==
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.min.js
95.101.11.48200 OK 4.6 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 95.101.11.48:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (12961)
Hash c1a25b303b61b25e995516f5559bcdea
3c16a6fa3a2a6dc59d57a9ea1588c4f259884688
2063d2d1415ce9437e9331cb9a798714a5b2e106a65d6dc0ef0d426a5a4c30f2
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 18:52:45 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=25141
date: Fri, 02 Dec 2022 03:46:59 GMT
content-length: 4581
x-cdn: AKAM
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 02 Dec 2022 02:41:08 GMT
expires: Fri, 02 Dec 2022 04:41:08 GMT
cache-control: public, max-age=7200
age: 3951
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open%20Sans&display=swap
142.250.74.106200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Open%20Sans&display=swap
IP 142.250.74.106:0
Hash 9d5ba2562b45c1929376cc3ee08448f7
65b448be26c9a59dd93566ea089fdd509817c893
caf4151ad6358a16912265ccc24c138b3dff75e3dd8daaebdf5128973208da2a
GET /css?family=Open%20Sans&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 03:46:58 GMT
date: Fri, 02 Dec 2022 03:46:58 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.ads-twitter.com/uwt.js
151.101.244.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Fri, 02 Dec 2022 03:46:59 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-hel1410031-HEL
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
www.banyansecurity.io/wp-content/uploads/cropped-favicon-1-192x192.png
23.185.0.2200 OK 11 kB URL HTTP/2 www.banyansecurity.io/wp-content/uploads/cropped-favicon-1-192x192.png
IP 23.185.0.2:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 2d2a8e5fed48d47b02a6c0b3973d5238
2008ceced97f8397920c2f853f4f63700f666147
376635dc9696e845716f8c02164ca75004d9f6c60aabf33145cb2d4155c7d8e0
GET /wp-content/uploads/cropped-favicon-1-192x192.png HTTP/1.1
Host: www.banyansecurity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/blog/retiring-your-covid-era-vpn/?utm_source=cyfluencer&utm_medium=influencer_library
Cookie: _gcl_au=1.1.1495808538.1669952817; _ga_0LC6YPM91Q=GS1.1.1669952816.1.0.1669952816.0.0.0; _ga=GA1.1.1011568842.1669952817; _pk_ref.34.5f5f=%5B%22cyfluencer%22%2C%22%22%2C1669952817%2C%22%22%5D; _pk_id.34.5f5f=bf1879fd19c19372.1669952817.; _pk_ses.34.5f5f=1; d-a8e6=7f8d1591-5962-4d8a-8f37-f3d0ee5c0b1e; s-9da4=9a76e55b-f07e-405c-8d0d-f2b4a8ee09e8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31622400
content-type: image/png
etag: "636da955-2aa0"
expires: Sun, 12 Nov 2023 02:00:22 GMT
last-modified: Fri, 11 Nov 2022 01:45:57 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe2-a-58c69d767c-v624g
x-styx-req-id: 99cd8503-6164-11ed-aa7e-0ac975a2a020
date: Fri, 02 Dec 2022 03:46:59 GMT
x-served-by: cache-chi-klot8100171-CHI, cache-bma1666-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1669952819.262402,VS0,VE111
age: 465891
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 10912
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/697029496/?random=1669952817413&cv=11&fst=1669952817413&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tiba=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&did=dZTQ1Zm&gdid=dZTQ1Zm&auid=1495808538.1669952817&data=event%3Dgtag.config&rfmt=3&fmt=4
216.58.207.194200 OK 991 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/697029496/?random=1669952817413&cv=11&fst=1669952817413&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tiba=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&did=dZTQ1Zm&gdid=dZTQ1Zm&auid=1495808538.1669952817&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 216.58.207.194:0
File type ASCII text, with very long lines (2223), with no line terminators
Hash 81ac2a159da48d55a325a75e268fa12f
2a78c106f64eee710b62118f8987f9e7308c2020
2427ef4d60419e7d19f80465630d34c871f099ff60ced5b10434c8c3bc88f104
GET /pagead/viewthroughconversion/697029496/?random=1669952817413&cv=11&fst=1669952817413&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tiba=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&did=dZTQ1Zm&gdid=dZTQ1Zm&auid=1495808538.1669952817&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 03:46:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 991
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 02-Dec-2022 04:01:59 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash 53ebd0d4b9ede359adb0d6b8d6ae3c39
0200a4ebed557808bcccd3e5d0fe625513ad2ebe
e352b67003ad44e6f4fc3f23621fea03354e4a82b1f2d1820ce7bc554ecc7792
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:46:59 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Tue, 06 Dec 2022 01:14:45 GMT
ETag: "0200a4ebed557808bcccd3e5d0fe625513ad2ebe"
Last-Modified: Fri, 02 Dec 2022 01:14:46 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2172
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 773114211d3ab500-OSL
googleads.g.doubleclick.net/pagead/viewthroughconversion/697029496/?random=1669952816526&cv=11&fst=1669952816526&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tiba=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&auid=1495808538.1669952817&rfmt=3&fmt=4
216.58.207.194200 OK 975 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/697029496/?random=1669952816526&cv=11&fst=1669952816526&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tiba=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&auid=1495808538.1669952817&rfmt=3&fmt=4
IP 216.58.207.194:0
File type ASCII text, with very long lines (2161), with no line terminators
Hash 3dbf7c9861ab31949cc48255d9274be8
16117b6bd7a928f0d1e390cd87dbf971c7c2d313
01c248e0dc112464f518e9a393c1c36a2ec7b8decfe8f9c9832982d77481b21b
GET /pagead/viewthroughconversion/697029496/?random=1669952816526&cv=11&fst=1669952816526&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tiba=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&auid=1495808538.1669952817&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 03:46:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 975
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 02-Dec-2022 04:01:59 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j98&a=1560362781&t=pageview&_s=1&dl=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&ul=en-us&de=UTF-8&dt=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=842182938&gjid=1835505875&cid=1011568842.1669952817&tid=UA-62743513-1&_gid=48882849.1669952818&_r=1>m=2wgbu05PVJXZ5&z=1171173837
142.250.74.110200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=1560362781&t=pageview&_s=1&dl=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&ul=en-us&de=UTF-8&dt=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=842182938&gjid=1835505875&cid=1011568842.1669952817&tid=UA-62743513-1&_gid=48882849.1669952818&_r=1>m=2wgbu05PVJXZ5&z=1171173837
IP 142.250.74.110:0
File type ASCII text, with no line terminators
Hash cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af
POST /j/collect?v=1&_v=j98&a=1560362781&t=pageview&_s=1&dl=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&ul=en-us&de=UTF-8&dt=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=842182938&gjid=1835505875&cid=1011568842.1669952817&tid=UA-62743513-1&_gid=48882849.1669952818&_r=1>m=2wgbu05PVJXZ5&z=1171173837 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.banyansecurity.io
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.banyansecurity.io
date: Fri, 02 Dec 2022 03:46:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/1960201,2384081/domain/banyansecurity.io/token
54.230.111.8200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/1960201,2384081/domain/banyansecurity.io/token
IP 54.230.111.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /partner/1960201,2384081/domain/banyansecurity.io/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.banyansecurity.io/
Origin: https://www.banyansecurity.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Thu, 01 Dec 2022 12:45:46 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: su_poZ0aNSlqyKPiPh3GIgbVJOpHb9lbyox8XerVUIyOR03GM8iz2w==
age: 54072
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/1960201,2384081/domain/banyansecurity.io/token
54.230.111.8200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/1960201,2384081/domain/banyansecurity.io/token
IP 54.230.111.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /partner/1960201,2384081/domain/banyansecurity.io/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.banyansecurity.io/
Origin: https://www.banyansecurity.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Thu, 01 Dec 2022 12:45:46 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZZrIyM6G1gh_26UIig1we_MF1HBVm9KVYZsctGYxGA3XkABMftbscA==
age: 54072
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/1960201,2384081/domain/banyansecurity.io/token
54.230.111.8200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/1960201,2384081/domain/banyansecurity.io/token
IP 54.230.111.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /partner/1960201,2384081/domain/banyansecurity.io/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.banyansecurity.io/
Origin: https://www.banyansecurity.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Thu, 01 Dec 2022 12:45:46 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wN2JtpVaONwEhzC6EaUvvSSlTA3aKbUcORbpULExU9jxm6egGcWYzQ==
age: 54072
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash c0badc896cf87eaa76be5ebf7059b187
0fe6e28d1b9a34cfc34ac3f85f1f5a24beb65b15
44f5428bcfe263a18680253ec9739f265f47ef7761e5879b9ab2a26b3c6afeb5
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Dec 2022 03:46:59 GMT
Last-Modified: Fri, 02 Dec 2022 02:13:49 GMT
Server: ECS (nyb/1D0E)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vyAGZHrP9Y3QYHTQ6MIiyz5oO0HlhCGJ_R0VXr-4et3-kWuQOeFtwg==
Age: 5591
wec-assets.terminus.services/e6a7b463-4779-44df-8ac3-1742a17b32c5/t.js
143.204.55.61200 OK 12 kB URL HTTP/2 wec-assets.terminus.services/e6a7b463-4779-44df-8ac3-1742a17b32c5/t.js
IP 143.204.55.61:0
Hash 8fb9f85d107342aaf438f5ebc859982f
756a7f0a0ab1ea65382bb17aed7307b117d319d2
ad2f204cc9efad750ba21d49f7dab8c026d140759fdc0a4a1d7de36bf55b2c40
GET /e6a7b463-4779-44df-8ac3-1742a17b32c5/t.js HTTP/1.1
Host: wec-assets.terminus.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 02 Dec 2022 03:46:58 GMT
strict-transport-security: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KpJhdkfhnyYFdAGKURkNP3zXlgGtegvomN0Q2ltRZhbohrHExDDd2Q==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
l.sharethis.com/pview?event=pview&hostname=www.banyansecurity.io&location=%2Fblog%2Fretiring-your-covid-era-vpn%2F&product=unknown&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&source=sharethis-share-buttons-wordpress&fcmp=false&fcmpv2=false&has_segmentio=false&title=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&cms=unknown&publisher=62390030d4aa8b001922b085&sop=true&version=st_sop.js&lang=en&description=With%20all%20of%20their%20inherent%20limitations%2C%20don%E2%80%99t%20rely%20on%20a%20legacy%20VPN%20that%20barely%20meets%20minimum%20requirements.%20Banyan%E2%80%99s%20Team%20Edition%20provides%20a%20better%20solution%20for%20free%2C%20forever%2C%20for%20up%20to%2050%20users.
3.121.20.17204 No Content 0 B URL HTTP/1.1 l.sharethis.com/pview?event=pview&hostname=www.banyansecurity.io&location=%2Fblog%2Fretiring-your-covid-era-vpn%2F&product=unknown&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&source=sharethis-share-buttons-wordpress&fcmp=false&fcmpv2=false&has_segmentio=false&title=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&cms=unknown&publisher=62390030d4aa8b001922b085&sop=true&version=st_sop.js&lang=en&description=With%20all%20of%20their%20inherent%20limitations%2C%20don%E2%80%99t%20rely%20on%20a%20legacy%20VPN%20that%20barely%20meets%20minimum%20requirements.%20Banyan%E2%80%99s%20Team%20Edition%20provides%20a%20better%20solution%20for%20free%2C%20forever%2C%20for%20up%20to%2050%20users.
IP 3.121.20.17:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pview?event=pview&hostname=www.banyansecurity.io&location=%2Fblog%2Fretiring-your-covid-era-vpn%2F&product=unknown&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&source=sharethis-share-buttons-wordpress&fcmp=false&fcmpv2=false&has_segmentio=false&title=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&cms=unknown&publisher=62390030d4aa8b001922b085&sop=true&version=st_sop.js&lang=en&description=With%20all%20of%20their%20inherent%20limitations%2C%20don%E2%80%99t%20rely%20on%20a%20legacy%20VPN%20that%20barely%20meets%20minimum%20requirements.%20Banyan%E2%80%99s%20Team%20Edition%20provides%20a%20better%20solution%20for%20free%2C%20forever%2C%20for%20up%20to%2050%20users. HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.banyansecurity.io
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: https://www.banyansecurity.io
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Fri, 02 Dec 2022 03:46:59 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash fe00a8d45f578269a68305d6cba6c515
fb532e5a130b9070b30ad314e1f02595a50c4591
b6e850b4ae47b9c742230f745a34bff04872735638807aa29e873aa1db7b7943
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5160
Cache-Control: max-age=120820
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:59 GMT
Etag: "638895ff-139"
Expires: Sat, 03 Dec 2022 13:20:39 GMT
Last-Modified: Thu, 01 Dec 2022 11:54:39 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash fe00a8d45f578269a68305d6cba6c515
fb532e5a130b9070b30ad314e1f02595a50c4591
b6e850b4ae47b9c742230f745a34bff04872735638807aa29e873aa1db7b7943
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5024
Cache-Control: max-age=120684
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:59 GMT
Etag: "638895ff-139"
Expires: Sat, 03 Dec 2022 13:18:23 GMT
Last-Modified: Thu, 01 Dec 2022 11:54:39 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 313
cdn.taboola.com/libtrc/unip/1440686/tfa.js
151.101.193.44200 OK 18 kB URL HTTP/2 cdn.taboola.com/libtrc/unip/1440686/tfa.js
IP 151.101.193.44:0
File type ASCII text, with very long lines (58484)
Hash aed3b46337f67f947d1710054b8cd268
655ced4701f037befc7368850cf611fc9b91d2c8
204b841ed2061155491f8cb4f5dbf0e9eb2e40cdf129299389a4a0dc5b62a920
GET /libtrc/unip/1440686/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: WiVGkZ5XUqcMsIVB+tKHfl6gqq2s3ayqE+vaOhrVeGEth3mwkdaXe2Rtxhpj12kF53BbSzXWREg=
x-amz-request-id: A4DAXNWS5N94P2XJ
x-amz-replication-status: COMPLETED
last-modified: Sun, 27 Nov 2022 11:19:57 GMT
etag: "d04074fc39ad08fe72bd35e6b0bd5517"
x-amz-version-id: uMQ1Ila9ubLQL_o_PuRha8sr9JkWNy9G
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Fri, 02 Dec 2022 03:46:59 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1669952819.327244,VS0,VE215
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 99
content-length: 17941
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=1960201%2C2384081&time=1669952817689&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tm=gtmv2
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=1960201%2C2384081&time=1669952817689&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tm=gtmv2
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=1960201%2C2384081&time=1669952817689&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tm=gtmv2 HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D1960201%252C2384081%26time%3D1669952817689%26url%3Dhttps%253A%252F%252Fwww.banyansecurity.io%252Fblog%252Fretiring-your-covid-era-vpn%252F%253Futm_source%253Dcyfluencer%2526utm_medium%253Dinfluencer_library%26tm%3Dgtmv2%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQL9FUeRb7PcEQAAAYTQ8dEaTY-PnFya_qqzbbMKEROtAYvlfhttOFKdrWUWknLdUVMcFaQ1HDyq9A; Max-Age=2592000; Expires=Sun, 01 Jan 2023 03:46:59 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQKn0c6TqXCq_wAAAYTQ8dEaSD18NybIlrlUB8vHPIHJ3ViUVTn0-j_gc4CA0TwDKspH30RmZ1s3JtRpdohl2A; Max-Age=2592000; Expires=Sun, 01 Jan 2023 03:46:59 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&7e69897f-7602-4a44-8032-988d5716447d"; domain=.linkedin.com; Path=/; Secure; Expires=Sat, 02-Dec-2023 03:46:59 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2427:u=1:x=1:i=1669952819:t=1670039219:v=2:sig=AQFH46EOoWG5vD_Yen8_8Cp6TluVJsaL"; Expires=Sat, 03 Dec 2022 03:46:59 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXu0DCYsd7iVD10W6xC8Q==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 36CA9983FDBA4420B73FC1DD8AA34C8D Ref B: OSL30EDGE0509 Ref C: 2022-12-02T03:46:59Z
date: Fri, 02 Dec 2022 03:46:59 GMT
content-length: 0
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15331
Expires: Fri, 02 Dec 2022 08:02:30 GMT
Date: Fri, 02 Dec 2022 03:46:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15331
Expires: Fri, 02 Dec 2022 08:02:30 GMT
Date: Fri, 02 Dec 2022 03:46:59 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:49:56 GMT
age: 21423
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15331
Expires: Fri, 02 Dec 2022 08:02:30 GMT
Date: Fri, 02 Dec 2022 03:46:59 GMT
Connection: keep-alive
t.co/i/adsct?bci=3&eci=2&event_id=39d74377-2218-4263-97e9-b6b4fbaf0daa&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2dd0f587-7cf8-436b-ac4e-1607cb0c17f9&tw_document_href=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5hfh&type=javascript&version=2.3.29
104.244.42.133200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=39d74377-2218-4263-97e9-b6b4fbaf0daa&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2dd0f587-7cf8-436b-ac4e-1607cb0c17f9&tw_document_href=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5hfh&type=javascript&version=2.3.29
IP 104.244.42.133:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=39d74377-2218-4263-97e9-b6b4fbaf0daa&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2dd0f587-7cf8-436b-ac4e-1607cb0c17f9&tw_document_href=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5hfh&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:58 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=3c5fb34c-e8b9-463b-870d-04e755d8e19c; Max-Age=63072000; Expires=Sun, 01 Dec 2024 03:46:59 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: d711a982a9502688
strict-transport-security: max-age=0
x-response-time: 105
x-connection-hash: 5df75438b625441294bd045f5d6d9a081f1270f26d112db5fa080b7cf5b022fc
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15331
Expires: Fri, 02 Dec 2022 08:02:30 GMT
Date: Fri, 02 Dec 2022 03:46:59 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F356e23df-cb76-452a-b299-da5410086837.png
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F356e23df-cb76-452a-b299-da5410086837.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 82ea44d6cb116fb1f5752ce9bb87e345
f799dfd89a4f5a452dc837b8616549f578fb4184
e9087e7fce332289d67d4d5646d0233c2f2d871cc88dc1c51d5ea1e9f2fb5abd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F356e23df-cb76-452a-b299-da5410086837.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15495
x-amzn-requestid: 977cdbce-3a9c-4006-a5a1-5c4c82bd4a94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfHDIFxzIAMFzEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891ee0-4b2cb3a16ca745537a8caf8c;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:38:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KnOx0PJ8BR9OoAzXfuWk_Je_yawqzY4isC0hYTZRvJ74YiVs8jqyIQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:25:42 GMT
age: 19277
etag: "f799dfd89a4f5a452dc837b8616549f578fb4184"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 07:20:09 GMT
age: 73610
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d147ccb10bda82b153a596c3c967cd6a
ffd0763f997e71a8c1458523fc17cafe8849dfdf
1cfeb90a4ba027195f903d938d4a0aac418a1c2f0b52215ec023263f15905971
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7591
x-amzn-requestid: e179862e-f840-4e50-a9dc-09f325479b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgMFRZIAMFl7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e01-676a1571459f2d83488f2765;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oB5K_ZCWWwCltMx8FQSjDdXRMzSTSyRLSYSLAooQXuCrUxadLUiWkA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:51 GMT
age: 21488
etag: "ffd0763f997e71a8c1458523fc17cafe8849dfdf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png
34.120.237.76200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 89e1a735e16f55c78fa75ae434294029
6c56f4015305eff04a99cec9758cd40bf4e5f704
26e8b042c0bbef2c7f93f77451563cf6e12af282251ef864652574be2b2c5b15
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3711
x-amzn-requestid: 68772438-16c4-40ab-a40e-860425d8301c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGyhHVsIAMFmsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e76-21d27db6708228002e738938;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JOCSKxy4WUDbS22Gd9BlyN1gmcDsDNlNWnT57KITGlNwfOe_Iaco9g==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:59 GMT
age: 21480
etag: "6c56f4015305eff04a99cec9758cd40bf4e5f704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 498ab4412ed5cf977bc23e4e870894b0
23753fe8af09ec8ffa10eed4d201a71833885c99
036042656f15e42b4d1537c45f5b8e7190c70305fa9a69c1287c6739ad0b7122
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7334
x-amzn-requestid: a6b8b420-8394-496b-8be8-26dee52e3887
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoHJOoAMF75g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-0b38d07f518c8b3134457df2;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: tuKmV_nb4HVbqkhtCnZY3b33VB-bB6UxaBl6HsY_JgWesbUB8SPt-g==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:09:38 GMT
age: 20241
etag: "23753fe8af09ec8ffa10eed4d201a71833885c99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
t.co/i/adsct?bci=3&eci=2&event_id=5b4a99ec-1232-411d-89ce-323cd0b9f37d&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2dd0f587-7cf8-436b-ac4e-1607cb0c17f9&tw_document_href=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5hfh&type=javascript&version=2.3.29
104.244.42.133200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=5b4a99ec-1232-411d-89ce-323cd0b9f37d&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2dd0f587-7cf8-436b-ac4e-1607cb0c17f9&tw_document_href=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5hfh&type=javascript&version=2.3.29
IP 104.244.42.133:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=5b4a99ec-1232-411d-89ce-323cd0b9f37d&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2dd0f587-7cf8-436b-ac4e-1607cb0c17f9&tw_document_href=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5hfh&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:58 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=32183bac-b621-4e45-8966-14506d4490af; Max-Age=63072000; Expires=Sun, 01 Dec 2024 03:46:59 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 0e52dfc0885f66f1
strict-transport-security: max-age=0
x-response-time: 174
x-connection-hash: 5df75438b625441294bd045f5d6d9a081f1270f26d112db5fa080b7cf5b022fc
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ccaf5f1bf1101f3d43ae777be4f6a9
2740c2403e005eac512a829e64de6a03a65fcbb6
1c6da1c071531cd11b32e943b42798202de1a80882e067773ed4d6147094587f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 16c3ad4a2bc7f419fb354b37778f8b2f
d193a1336556dcf6b4975a057e7c849037eef0ff
5993deb5a53b2e844b9027a6b6906c718f6e9f69c27388199c4343a80ef067f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 16c3ad4a2bc7f419fb354b37778f8b2f
d193a1336556dcf6b4975a057e7c849037eef0ff
5993deb5a53b2e844b9027a6b6906c718f6e9f69c27388199c4343a80ef067f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 81abfd63eeb2fadc85b31541378babb1
09d3223c1a2a4e2cbfcba0381ead2cee5ee0a200
c7665c83165956c11bdbe0509ae03bf6af1b34ca68bf352fbfd629dc3a04b815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash b107b05d618b22da172fe6404e9b166a
dacbaaae26c8227a9e6f284caa6753e01acdf4d1
ef6a76d9c730d4450182d3e13294f58e4dcb882b073d15decf9f07132d9de01b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5168
Cache-Control: max-age=161866
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:59 GMT
Etag: "6389364d-139"
Expires: Sun, 04 Dec 2022 00:44:45 GMT
Last-Modified: Thu, 01 Dec 2022 23:18:37 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 313
www.google.no/pagead/1p-user-list/697029496/?random=1669952817413&cv=11&fst=1669950000000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tiba=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1874113202&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/697029496/?random=1669952817413&cv=11&fst=1669950000000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tiba=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1874113202&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/697029496/?random=1669952817413&cv=11&fst=1669950000000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tiba=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1874113202&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 03:46:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash b107b05d618b22da172fe6404e9b166a
dacbaaae26c8227a9e6f284caa6753e01acdf4d1
ef6a76d9c730d4450182d3e13294f58e4dcb882b073d15decf9f07132d9de01b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5209
Cache-Control: max-age=161907
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:59 GMT
Etag: "6389364d-139"
Expires: Sun, 04 Dec 2022 00:45:26 GMT
Last-Modified: Thu, 01 Dec 2022 23:18:37 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 313
www.google.com/pagead/1p-user-list/697029496/?random=1669952816526&cv=11&fst=1669950000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tiba=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&fmt=3&is_vtc=1&random=3688457698&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/697029496/?random=1669952816526&cv=11&fst=1669950000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tiba=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&fmt=3&is_vtc=1&random=3688457698&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/697029496/?random=1669952816526&cv=11&fst=1669950000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tiba=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&fmt=3&is_vtc=1&random=3688457698&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 03:46:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/697029496/?random=1669952817413&cv=11&fst=1669950000000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tiba=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1874113202&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/697029496/?random=1669952817413&cv=11&fst=1669950000000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tiba=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1874113202&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/697029496/?random=1669952817413&cv=11&fst=1669950000000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tiba=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1874113202&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 03:46:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/697029496/?random=1669952816526&cv=11&fst=1669950000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tiba=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&fmt=3&is_vtc=1&random=3688457698&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/697029496/?random=1669952816526&cv=11&fst=1669950000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tiba=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&fmt=3&is_vtc=1&random=3688457698&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/697029496/?random=1669952816526&cv=11&fst=1669950000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tiba=VPN%20Replacement%20%E2%80%93%20It%E2%80%99s%20Time%20to%20Retire%20COVID-Era%20VPN%20%7C%20Banyan%20Security&fmt=3&is_vtc=1&random=3688457698&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 03:46:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-62743513-1&cid=1011568842.1669952817&jid=842182938&gjid=1835505875&_gid=48882849.1669952818&_u=YADAAEAAAAAAACAAI~&z=1197944960
108.177.14.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-62743513-1&cid=1011568842.1669952817&jid=842182938&gjid=1835505875&_gid=48882849.1669952818&_u=YADAAEAAAAAAACAAI~&z=1197944960
IP 108.177.14.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-62743513-1&cid=1011568842.1669952817&jid=842182938&gjid=1835505875&_gid=48882849.1669952818&_u=YADAAEAAAAAAACAAI~&z=1197944960 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.banyansecurity.io
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.banyansecurity.io
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 02 Dec 2022 03:46:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ccaf5f1bf1101f3d43ae777be4f6a9
2740c2403e005eac512a829e64de6a03a65fcbb6
1c6da1c071531cd11b32e943b42798202de1a80882e067773ed4d6147094587f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D1960201%252C2384081%26time%3D1669952817689%26url%3Dhttps%253A%252F%252Fwww.banyansecurity.io%252Fblog%252Fretiring-your-covid-era-vpn%252F%253Futm_source%253Dcyfluencer%2526utm_medium%253Dinfluencer_library%26tm%3Dgtmv2%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D1960201%252C2384081%26time%3D1669952817689%26url%3Dhttps%253A%252F%252Fwww.banyansecurity.io%252Fblog%252Fretiring-your-covid-era-vpn%252F%253Futm_source%253Dcyfluencer%2526utm_medium%253Dinfluencer_library%26tm%3Dgtmv2%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D1960201%252C2384081%26time%3D1669952817689%26url%3Dhttps%253A%252F%252Fwww.banyansecurity.io%252Fblog%252Fretiring-your-covid-era-vpn%252F%253Futm_source%253Dcyfluencer%2526utm_medium%253Dinfluencer_library%26tm%3Dgtmv2%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.banyansecurity.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=1960201%2C2384081&time=1669952817689&url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tm=gtmv2&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&fc924682-4f25-4372-858a-d6e2dd21e343"; Domain=.linkedin.com; Expires=Sat, 02-Dec-2023 03:46:59 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20221202034659bda7831f-c755-4633-8d4e-3f263e48327eAQGa5QAp30ZVSOhCYc0amRlW4mvuc1xV"; Domain=.www.linkedin.com; Expires=Sat, 02-Dec-2023 03:46:59 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2Njk5NTI4MTk7MjswMjE5ErHnwbwukSPzGMOp5uMTnjsZvh6aKhDSSGMf3iUZsg==; Domain=.linkedin.com; Expires=Wed, 31 May 2023 03:46:59 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2427:u=1:x=1:i=1669952819:t=1670039219:v=2:sig=AQFH46EOoWG5vD_Yen8_8Cp6TluVJsaL"; Expires=Sat, 03 Dec 2022 03:46:59 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/status linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com client.learningapp.microsoft.com onyx.www.linkedin.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
nel: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXu0DCeAtGODXunIZWDbg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: CAB7A674C45846CB8E5EBEBE32CF09CE Ref B: OSL30EDGE0509 Ref C: 2022-12-02T03:46:59Z
date: Fri, 02 Dec 2022 03:46:59 GMT
content-length: 0
X-Firefox-Spdy: h2
platform-cdn.sharethis.com/img/twitter.svg
54.230.111.18200 OK 731 B URL HTTP/2 platform-cdn.sharethis.com/img/twitter.svg
IP 54.230.111.18:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (575)
Hash 0af2fb38987598376c99e21af17ade45
bfbdfd0b1a2dcef714e347928bd11b8410dc7ca2
7c93346d4f681a0be90d1dfc19346382a4700f1810f41caa54415688dee1777f
GET /img/twitter.svg HTTP/1.1
Host: platform-cdn.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 731
date: Sun, 13 Nov 2022 03:02:50 GMT
last-modified: Thu, 10 Oct 2019 01:20:13 GMT
etag: "0af2fb38987598376c99e21af17ade45"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=2592000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0XkiKs19Gdhp5v5m5ru15pSKLr0VZo9dRqQxdpezt14awBvvjSDXdg==
age: 1644250
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-62743513-1&cid=1011568842.1669952817&jid=842182938&_u=YADAAEAAAAAAACAAI~&z=2101762995
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-62743513-1&cid=1011568842.1669952817&jid=842182938&_u=YADAAEAAAAAAACAAI~&z=2101762995
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-62743513-1&cid=1011568842.1669952817&jid=842182938&_u=YADAAEAAAAAAACAAI~&z=2101762995 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 03:46:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-62743513-1&cid=1011568842.1669952817&jid=842182938&_u=YADAAEAAAAAAACAAI~&z=2101762995
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-62743513-1&cid=1011568842.1669952817&jid=842182938&_u=YADAAEAAAAAAACAAI~&z=2101762995
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-62743513-1&cid=1011568842.1669952817&jid=842182938&_u=YADAAEAAAAAAACAAI~&z=2101762995 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 03:46:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js.hs-analytics.net/analytics/1669952700000/4897008.js
104.17.69.176200 OK 21 kB URL HTTP/2 js.hs-analytics.net/analytics/1669952700000/4897008.js
IP 104.17.69.176:0
File type ASCII text, with very long lines (64572)
Hash 9a0ba345f539fcacbb477fbd639ecd91
ddfcc577e1c515ce43cd93910c713e20f27d60ab
22ab9bfb46e1e651e8f00196b9fbffa92faa04151ee4b1e9b3eabce2c5147804
GET /analytics/1669952700000/4897008.js HTTP/1.1
Host: js.hs-analytics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:59 GMT
content-type: text/javascript
x-amz-id-2: WwidjsZbJcRpLLLSBwqAgkd67qyKODsZKBoi7iZz90IYmvZsPnDLuPCgBrNxbFRA2KYnB8wnOr8=
x-amz-request-id: G1R5F0F6BHR9WYZ4
last-modified: Thu, 01 Dec 2022 14:14:04 GMT
etag: W/"2f0f9292c07dae30e3fa100206c368e9"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
vary: origin, Accept-Encoding
expires: Fri, 02 Dec 2022 03:51:59 GMT
cf-cache-status: MISS
server: cloudflare
cf-ray: 77311420bf5fb4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
platform-cdn.sharethis.com/img/facebook.svg
54.230.111.18200 OK 301 B URL HTTP/2 platform-cdn.sharethis.com/img/facebook.svg
IP 54.230.111.18:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash c6e9be45643e197ce1db1d7e24a99adc
d7338e398bb0f7a9082d24f121140d2cf9e88859
768d97ec0916217ae82c70aeda3a61b9b0dab344edc4a3240a4f7cd94af00307
GET /img/facebook.svg HTTP/1.1
Host: platform-cdn.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 301
last-modified: Thu, 10 Oct 2019 01:20:12 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Thu, 03 Nov 2022 15:33:17 GMT
cache-control: public, max-age=2592000
etag: "c6e9be45643e197ce1db1d7e24a99adc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0O8QlVmzHI2cq3kDVLqhgWyAqJB1cbU-5bNmFAlZBXSUHrWe4lrWqw==
age: 2463222
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
platform-cdn.sharethis.com/img/linkedin.svg
54.230.111.18200 OK 456 B URL HTTP/2 platform-cdn.sharethis.com/img/linkedin.svg
IP 54.230.111.18:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash fa43b4ede18498b114fc7185993f6da7
53c9d2acffab46dd9da8872ee6d8c0d7cab42fd8
cb8c2b19fd9b56c41db14bd71b5c0616c1ba4e99b08c8e75084cf695f74b7120
GET /img/linkedin.svg HTTP/1.1
Host: platform-cdn.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 456
date: Tue, 08 Nov 2022 01:25:49 GMT
last-modified: Thu, 10 Oct 2019 01:20:12 GMT
etag: "fa43b4ede18498b114fc7185993f6da7"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=2592000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ia4QgoJqeSBH5mNC-vCdWFN2I1eume2UgVrKVNYMCaQ1GWXsy2aB_w==
age: 2082071
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:46:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform-cdn.sharethis.com/img/arrow_left.svg
54.230.111.18200 OK 565 B URL HTTP/2 platform-cdn.sharethis.com/img/arrow_left.svg
IP 54.230.111.18:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (409)
Hash b55d8d2b9321e381a3c38a4bddb74037
000c29635758e608bbe15d191e953adb27627c2e
5c833b1818762f1e134fbb158447fb0b92f2b018b15aa36f2e2405213f830d38
GET /img/arrow_left.svg HTTP/1.1
Host: platform-cdn.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 565
date: Wed, 09 Nov 2022 08:21:03 GMT
last-modified: Thu, 10 Oct 2019 01:20:12 GMT
etag: "b55d8d2b9321e381a3c38a4bddb74037"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=2592000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IYoJAWEIdBLQTBSJ6Cs-xg7T0EMpEVAJ8_LsOFdqBRqIKWKlX5cRoA==
age: 1970757
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
platform-cdn.sharethis.com/img/arrow_right.svg
54.230.111.18200 OK 565 B URL HTTP/2 platform-cdn.sharethis.com/img/arrow_right.svg
IP 54.230.111.18:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (409)
Hash 9928d025bd5792b718ee0a185f62e67c
16406d7b5b6d383b12859b853cf6cb7e3733e33d
1bae747c7fd090f56608956a97c870391e1c43f89d24d5766129b75628985c1e
GET /img/arrow_right.svg HTTP/1.1
Host: platform-cdn.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 565
date: Thu, 03 Nov 2022 06:02:32 GMT
last-modified: Thu, 10 Oct 2019 01:20:12 GMT
etag: "9928d025bd5792b718ee0a185f62e67c"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=2592000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 64kEHJPhfvPNvhiBti966HpTI0OxAjWRODSrZLNL29wZV2Vg6Ak1wQ==
age: 2497468
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=39d74377-2218-4263-97e9-b6b4fbaf0daa&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2dd0f587-7cf8-436b-ac4e-1607cb0c17f9&tw_document_href=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5hfh&type=javascript&version=2.3.29
104.244.42.131200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=39d74377-2218-4263-97e9-b6b4fbaf0daa&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2dd0f587-7cf8-436b-ac4e-1607cb0c17f9&tw_document_href=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5hfh&type=javascript&version=2.3.29
IP 104.244.42.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=39d74377-2218-4263-97e9-b6b4fbaf0daa&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2dd0f587-7cf8-436b-ac4e-1607cb0c17f9&tw_document_href=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5hfh&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:58 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_ASSn/5rPsZXlEmssKaRsQg=="; Max-Age=63072000; Expires=Sun, 01 Dec 2024 03:46:59 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 25a4fa7ee6759a8c
strict-transport-security: max-age=631138519
x-response-time: 106
x-connection-hash: c5d98961cfff89bb1b00f0a524ab5910d7300fa2fe88249afb7c18d0e9f34b0a
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=5b4a99ec-1232-411d-89ce-323cd0b9f37d&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2dd0f587-7cf8-436b-ac4e-1607cb0c17f9&tw_document_href=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5hfh&type=javascript&version=2.3.29
104.244.42.131200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=5b4a99ec-1232-411d-89ce-323cd0b9f37d&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2dd0f587-7cf8-436b-ac4e-1607cb0c17f9&tw_document_href=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5hfh&type=javascript&version=2.3.29
IP 104.244.42.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=5b4a99ec-1232-411d-89ce-323cd0b9f37d&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2dd0f587-7cf8-436b-ac4e-1607cb0c17f9&tw_document_href=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5hfh&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:59 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_/SQIxuEFNWDWqckpBe42Tw=="; Max-Age=63072000; Expires=Sun, 01 Dec 2024 03:46:59 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 6d47d970767f79c8
strict-transport-security: max-age=631138519
x-response-time: 102
x-connection-hash: c5d98961cfff89bb1b00f0a524ab5910d7300fa2fe88249afb7c18d0e9f34b0a
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/1960201,2384081/domain/banyansecurity.io/token
54.230.111.8200 OK 62 B URL HTTP/2 cdn.linkedin.oribi.io/partner/1960201,2384081/domain/banyansecurity.io/token
IP 54.230.111.8:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d39abb34da93ec5faa48669ac4788977
cc2627a86b99e91540251b6fb7e17a9b1faa1ee7
b329d16bd7e06de93beac4a9e4d67b8be6d1c944b7b8e398b929460f73b7c4ce
GET /partner/1960201,2384081/domain/banyansecurity.io/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.banyansecurity.io
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Fri, 02 Dec 2022 03:46:59 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _VvlMLTfr5D-X0qJW53CfULyG0dHTm_xl1Du6pfLmFdsPYJ6oy3qAg==
X-Firefox-Spdy: h2
trc-events.taboola.com/1440686/log/3/unip?en=pre_d_eng_tb&tos=1591&scd=28&ssd=1&est=1669952817921&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1669952819514&vi=1669952817920&ri=7228d4e9a952bbc17a6dc85432f97938&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&ler=other
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1440686/log/3/unip?en=pre_d_eng_tb&tos=1591&scd=28&ssd=1&est=1669952817921&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1669952819514&vi=1669952817920&ri=7228d4e9a952bbc17a6dc85432f97938&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&ler=other
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1440686/log/3/unip?en=pre_d_eng_tb&tos=1591&scd=28&ssd=1&est=1669952817921&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1669952819514&vi=1669952817920&ri=7228d4e9a952bbc17a6dc85432f97938&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&ler=other HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.banyansecurity.io
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Fri, 02 Dec 2022 03:47:01 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.banyansecurity.io
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
trc-events.taboola.com/1440686/log/3/unip?en=pre_d_eng_tb&tos=4592&scd=28&ssd=1&est=1669952817921&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1669952822516&vi=1669952817920&ri=7228d4e9a952bbc17a6dc85432f97938&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&ler=other
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1440686/log/3/unip?en=pre_d_eng_tb&tos=4592&scd=28&ssd=1&est=1669952817921&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1669952822516&vi=1669952817920&ri=7228d4e9a952bbc17a6dc85432f97938&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&ler=other
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1440686/log/3/unip?en=pre_d_eng_tb&tos=4592&scd=28&ssd=1&est=1669952817921&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1669952822516&vi=1669952817920&ri=7228d4e9a952bbc17a6dc85432f97938&ref=null&cv=20221124-3-RELEASE&item-url=https%3A%2F%2Fwww.banyansecurity.io%2Fblog%2Fretiring-your-covid-era-vpn%2F%3Futm_source%3Dcyfluencer%26utm_medium%3Dinfluencer_library&ler=other HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.banyansecurity.io
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 02 Dec 2022 03:47:04 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.banyansecurity.io
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
buttons-config.sharethis.com/js/62390030d4aa8b001922b085.js
54.230.111.11200 OK 0 B URL HTTP/2 buttons-config.sharethis.com/js/62390030d4aa8b001922b085.js
IP 54.230.111.11:0
GET /js/62390030d4aa8b001922b085.js HTTP/1.1
Host: buttons-config.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
last-modified: Mon, 28 Mar 2022 22:51:47 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Fri, 02 Dec 2022 03:47:00 GMT
cache-control: public, max-age=60
etag: W/"129ac89de4681b614d6ac347bd395dfb"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dUORw2BDV3fezcUGP_eKa-w9KO6bXoi6Zo5GtMVyYxUNJTv15GsiJg==
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
js.hs-scripts.com/4897008.js
104.17.213.204200 OK 0 B URL HTTP/2 js.hs-scripts.com/4897008.js
IP 104.17.213.204:0
GET /4897008.js HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:57 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2B24AB1667A861EA4CA479B60272C6D77E0D4FB211000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
x-hubspot-correlation-id: 90760051-4ef0-421b-952c-2cc8b2d7a674
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://www.banyansecurity.io
last-modified: Thu, 01 Dec 2022 21:07:09 GMT
cf-cache-status: EXPIRED
expires: Fri, 02 Dec 2022 03:47:57 GMT
server: cloudflare
cf-ray: 773114154c6e1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.hscollectedforms.net/collectedforms.js
104.17.128.171200 OK 0 B URL HTTP/2 js.hscollectedforms.net/collectedforms.js
IP 104.17.128.171:0
GET /collectedforms.js HTTP/1.1
Host: js.hscollectedforms.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.banyansecurity.io
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:58 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Wed, 16 Nov 2022 03:41:33 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: _5EZs_H26Fc6JgVRh7ahoi0orqifRkcW
etag: W/"59a69a76233d8365d7266548d5703c09"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e8eec15d9551dd475d4c478f9fbb5f04.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: Y8fgFE56t_JBE-cT4wwAH6_I4CD3woJfGgyvRHLegvMUI4k_HIVu6A==
cache-control: s-maxage=600, max-age=300
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=collected-forms-embed-js/static-1.311/bundles/project.js&cfRay=773114185be80b65-IAD
x-hs-target-asset: collected-forms-embed-js/static-1.311/bundles/project.js
access-control-allow-origin: *
x-hs-cache-status: HIT
cache-tag: staticjsapp-collected-forms-embed-js-web-prod,staticjsapp-prod
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 773114185be80b65-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.hsadspixel.net/fb.js
104.17.113.176200 OK 0 B IP 104.17.113.176:0
GET /fb.js HTTP/1.1
Host: js.hsadspixel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:58 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 03:38:56 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: aoUPWE.Bu9NRjxDy7F1Soox3yNWe2Us6
etag: W/"c32a10854f4ff995fc7198ba0324bcc6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76e55a2361219fb19722e949475d1844.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: smhvQzjcFZrUF_W80GOlXD1DdtGd0AC68U0HlvjmUpwB5gIHEEOtRA==
age: 110
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=adsscriptloaderstatic/static-1.302/bundles/pixels-release.js&cfRay=76d6427b4847b506-IAD
x-hs-target-asset: adsscriptloaderstatic/static-1.302/bundles/pixels-release.js
x-hs-cache-status: HIT
cache-tag: staticjsapp-AdsScriptLoaderCloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
server: cloudflare
cf-ray: 773114189bc7b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2
forms.hsforms.com/embed/v3/form/4897008/eaad9530-828d-4f5b-a0e7-e2d90815422a/json?hs_static_app=forms-embed&hs_static_app_version=1.2422&X-HubSpot-Static-App-Info=forms-embed-1.2422
104.16.85.5200 OK 0 B URL HTTP/2 forms.hsforms.com/embed/v3/form/4897008/eaad9530-828d-4f5b-a0e7-e2d90815422a/json?hs_static_app=forms-embed&hs_static_app_version=1.2422&X-HubSpot-Static-App-Info=forms-embed-1.2422
IP 104.16.85.5:0
GET /embed/v3/form/4897008/eaad9530-828d-4f5b-a0e7-e2d90815422a/json?hs_static_app=forms-embed&hs_static_app_version=1.2422&X-HubSpot-Static-App-Info=forms-embed-1.2422 HTTP/1.1
Host: forms.hsforms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.banyansecurity.io
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:58 GMT
content-type: application/json;charset=utf-8
x-trace: 2BDDA9352F8CFC529546C71D9E716E57DE3EDDB8D2000000000000000000
x-origin-hublet: na1
vary: origin
x-hubspot-correlation-id: a318acef-3410-4d9c-a1fc-9d5e86377258
access-control-allow-origin: https://www.banyansecurity.io
access-control-allow-methods: OPTIONS, GET
access-control-allow-headers: *
access-control-allow-credentials: false
access-control-max-age: 180
access-control-expose-headers: X-Origin-Hublet
cache-control: max-age=0, no-cache, no-store
x-robots-tag: none
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 773114181be10b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.matomo.cloud/aimlogic.matomo.cloud/container_sGCCKv5p.js
54.230.111.91200 OK 0 B URL HTTP/2 cdn.matomo.cloud/aimlogic.matomo.cloud/container_sGCCKv5p.js
IP 54.230.111.91:0
GET /aimlogic.matomo.cloud/container_sGCCKv5p.js HTTP/1.1
Host: cdn.matomo.cloud
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Fri, 02 Dec 2022 03:46:59 GMT
x-amz-replication-status: COMPLETED
last-modified: Mon, 31 Oct 2022 23:16:57 GMT
etag: W/"1fc3b019894dfcfed42c2ef9976cd086"
x-amz-server-side-encryption: AES256
cache-control: max-age=691200
x-amz-version-id: nRhO0M3rpeRS24On0sMl59MPSWzlv7ZH
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XXh_6LgZ5b2PseADJuJ7hwnz04V2n2nL3j3MlKbpYw7PfPvf5OAFVA==
X-Firefox-Spdy: h2
js.hs-banner.com/4897008.js
172.64.154.85200 OK 0 B URL HTTP/2 js.hs-banner.com/4897008.js
IP 172.64.154.85:0
GET /4897008.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:46:58 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: CwEhQM1XbNC0NW0XkNEk69q2WPfE7G1L1v9CY3wc2Yx7Y60gs0OEgFXAm3ZCCDS1Mvkf2GAB55U=
x-amz-request-id: M4DNPBPESSBH43P0
last-modified: Sat, 12 Nov 2022 01:14:17 GMT
etag: W/"d7b7707079621051d70bd866f9b655f5"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: mrqZ9iEHu2AijP6AopyuPkU9iNvMH2GX
access-control-allow-origin: https://www.banyansecurity.io
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Fri, 02 Dec 2022 03:51:58 GMT
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 77311418882f0afe-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/1960201,2384081/domain/banyansecurity.io/token
54.230.111.8200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/1960201,2384081/domain/banyansecurity.io/token
IP 54.230.111.8:0
GET /partner/1960201,2384081/domain/banyansecurity.io/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.banyansecurity.io
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Fri, 02 Dec 2022 03:46:59 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RbiPsTa_dDpr4btVeRK2lbSpT-Zqf2ezyx4MSnpljqXw9SpyS1QOXA==
X-Firefox-Spdy: h2
platform-api.sharethis.com/js/sharethis.js
143.204.55.6200 OK 0 B URL HTTP/2 platform-api.sharethis.com/js/sharethis.js
IP 143.204.55.6:0
GET /js/sharethis.js HTTP/1.1
Host: platform-api.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-encoding: gzip
edge-control: cache-maxage=60m,downstream-ttl=60m
x-frame-options: SAMEORIGIN
date: Fri, 02 Dec 2022 03:41:38 GMT
cache-control: max-age=600, public
etag: W/"30217-4R/x1mcbHYoN8J5L8eO1d9Nv/qY"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 39Czj_UKpB204B6Q5CI-k4-PJhrr_-IfWfjQlByBrKW6A4eDRjT_EQ==
age: 397
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/1960201,2384081/domain/banyansecurity.io/token
54.230.111.8200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/1960201,2384081/domain/banyansecurity.io/token
IP 54.230.111.8:0
GET /partner/1960201,2384081/domain/banyansecurity.io/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.banyansecurity.io
Connection: keep-alive
Referer: https://www.banyansecurity.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Fri, 02 Dec 2022 03:46:59 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Miss from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: byebj4juMWK9F2_EGjG9VFBeqDMDM8aJxRazSw09giBU2Xh5pcVm6g==
X-Firefox-Spdy: h2