letsdefend.io/
104.26.15.61301 Moved Permanently 230 B IP 104.26.15.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3e729acd6dec727442eea0ff2dd11586
f01405a30fbc933646fd7c39ba80003d07e15242
84050b7294c77fc24d059bb2452557b6296779ae3798ec88ce32461ce9760477
GET / HTTP/1.1
Host: letsdefend.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 05 Feb 2023 22:19:01 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://letsdefend.io/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zoY%2FamNjZlot53b1vbRXH%2BpI6kZcZWr7ayMH1j%2FYk05kfiq9iv0RIGMGQ%2BgjwVXB%2F1rJ0hDpq%2BNgtOJJh6ScIs3yZQsOPa6afqt4rYkHbU2UIRb5ZFc0WN9Q38v3J7k%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 794f0672ba43b52d-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8674
Expires: Mon, 06 Feb 2023 00:43:35 GMT
Date: Sun, 05 Feb 2023 22:19:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12473
Expires: Mon, 06 Feb 2023 01:46:54 GMT
Date: Sun, 05 Feb 2023 22:19:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 21:33:58 GMT
content-type: application/json
age: 2703
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18670
Expires: Mon, 06 Feb 2023 03:30:11 GMT
Date: Sun, 05 Feb 2023 22:19:01 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 3v/O43bFktn2t1+ebFCKu1vs9DRpvtN4G5KFdyCPQ+SXcACNOuG7cQBaCtdzbd0lncwTyTbXOzA=
x-amz-request-id: 64YH3QCS4VWF3XQY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 21:24:39 GMT
age: 3262
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 22:19:01 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0b5bde4b21fe58683f93d755b314ef35
09a354ffe493254998f3c59c459e4b085bdd6aaa
16ff233f227d22117213964494a7febd8a04311c84b9bc68d27dc97bfcf22c7f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "16FF233F227D22117213964494A7FEBD8A04311C84B9BC68D27DC97BFCF22C7F"
Last-Modified: Sun, 05 Feb 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3723
Expires: Sun, 05 Feb 2023 23:21:04 GMT
Date: Sun, 05 Feb 2023 22:19:01 GMT
Connection: keep-alive
letsdefend.io/images/landing-v2/3-steps-letsdefend.png
104.26.15.61200 OK 145 kB URL HTTP/2 letsdefend.io/images/landing-v2/3-steps-letsdefend.png
IP 104.26.15.61:0
File type PNG image data, 1280 x 800, 8-bit/color RGBA, non-interlaced\012- data
Size 145 kB (145101 bytes)
Hash 2b4228aa6bbc939f815291eb672846fc
527a5b6d954d4dd3bbde0ea017a7ea25da9eda41
74d14f8a0b7f047daf68ee223a9640010c88301fe3f4ace92d9cceeb048c0038
GET /images/landing-v2/3-steps-letsdefend.png HTTP/1.1
Host: letsdefend.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:01 GMT
content-type: image/png
content-length: 145101
last-modified: Tue, 09 Aug 2022 18:47:43 GMT
etag: "236cd-5e5d35e26603b"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5382
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j%2BGFg4WvGh3mHul51gLm55cLw0xAB3YdrXRsioQOSCRBit9SW2Xh2TuDbJhBSpQqPLmFJHEfh8fJlSgBpmQ6kyjml0vQ7QCusCwoW6dntj9PW%2BzngNE3vTeDTcstkng%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06772ff70b59-OSL
X-Firefox-Spdy: h2
letsdefend.io/js/main.4c7f84ac44dc.js
104.26.15.61200 OK 88 kB URL HTTP/2 letsdefend.io/js/main.4c7f84ac44dc.js
IP 104.26.15.61:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash ecae6bf85d64f98174e48cda4398db70
ed48c73ae17c9cb4f45153002616db23f2c4f05c
53b0d5039727f396387ff4422a7316f22216eb77c66fbeec3bc902d5d32e9d21
GET /js/main.4c7f84ac44dc.js HTTP/1.1
Host: letsdefend.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:01 GMT
content-type: application/javascript
last-modified: Tue, 09 Aug 2022 19:00:24 GMT
etag: W/"4555e-5e5d38b8025d6-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 5382
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BsK9DMJKM7uP3ATX0nFlmnY3m1jPK5rivNxAI5AJ0Yq7AVxI%2FBjn8jmw5K40mujCJJ7QnHB05pegZEp1wUsIeHQynDv%2BPPNOkjzroOXP8SXm%2BH1StP1zP5PFt0MO0yg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 794f06772ff00b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
letsdefend.io/css/main.02cdf5a5db4d.css
104.26.15.61200 OK 58 kB URL HTTP/2 letsdefend.io/css/main.02cdf5a5db4d.css
IP 104.26.15.61:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash c021a3a50145768f75ad1e90073a9210
59ae82a28aaa00563f97f8963db7528341754bea
5aef7d549481484d1d06fe40e342ae3a05115af12b8c6d7fee75e8c27607b416
GET /css/main.02cdf5a5db4d.css HTTP/1.1
Host: letsdefend.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:01 GMT
content-type: text/css
last-modified: Tue, 09 Aug 2022 19:00:15 GMT
etag: W/"6d108-5e5d38af69fa8-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 5382
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aMgFvvDkyirH4%2FKmJUdywxV1RRaZN4mYy3ZqyTX8iPIgSwxXrnwlmGNmqyv1nz5uR76nEVgmWkItRBjkrzXIhgb4ZNJOZ1tT2XRL%2BdKX1aNnJ7ZwBCAPYGgmY7Kot%2F0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 794f06772fef0b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-180235701-1
142.250.74.168200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-180235701-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash 0f76d572795d16b9832912f3a2c2b674
1bc02490dbdb3d03e84d693087651cf3ca6c9ec0
76857ebd99f99ce8d7bc1bbe3fd0eb5198557128c1ddbfe04b220a4bf60b4a43
GET /gtag/js?id=UA-180235701-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 05 Feb 2023 22:19:01 GMT
expires: Sun, 05 Feb 2023 22:19:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44891
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Archivo+Black&family=Poppins:wght@300&display=swap
142.250.74.106200 OK 824 B URL HTTP/2 fonts.googleapis.com/css2?family=Archivo+Black&family=Poppins:wght@300&display=swap
IP 142.250.74.106:0
Hash 161953cbb912280e318bce36ec0d3216
099ae438d46d628a3a0d02c7e1b19b596117316f
e0d84811d3884488b12483581191ae7e817a4a749c6e8f181664d526f3ed4f8c
GET /css2?family=Archivo+Black&family=Poppins:wght@300&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Feb 2023 22:19:01 GMT
date: Sun, 05 Feb 2023 22:19:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9206c3ba6d5a17d62244c438fd03496e
069e8257aebe618953434b1299d065540125a512
937d395fed398e9410f75945e80f607f3146458b48cd47ba7249536ca2195817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.paddle.com/paddle/assets/images/health-check.gif?_=1675635584022
172.66.43.196200 OK 35 B URL HTTP/2 cdn.paddle.com/paddle/assets/images/health-check.gif?_=1675635584022
IP 172.66.43.196:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /paddle/assets/images/health-check.gif?_=1675635584022 HTTP/1.1
Host: cdn.paddle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:01 GMT
content-type: image/gif
content-length: 35
cf-bgj: imgq:85,h2pri
cf-polished: status=not_needed
etag: "28d6814f309ea289f847c69cf91194c6"
last-modified: Fri, 03 Feb 2023 14:07:01 GMT
via: 1.1 208ed8b46a45d58d14b6e0be1aab3dac.cloudfront.net (CloudFront)
x-amz-cf-id: Ip41knxGHWd0saYEgtM65Kn5FcVgdyWKvMzSzWhOPsALL7rux0mKKw==
x-amz-cf-pop: ARN1-C1
x-cache: Hit from cloudfront
x-amz-replication-status: COMPLETED
x-amz-server-side-encryption: AES256
x-amz-version-id: Nt.m8hI3JxCpHjpK8FAeeYI.8ZZMGd.u
cf-cache-status: HIT
age: 6320
expires: Mon, 06 Feb 2023 02:19:01 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f0678ed60b518-OSL
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash f03c3fdba89c3d499da474edfffbe599
26f756b6129977a140f24ac2ee526a6564d6d840
2c1565ff6e0bfd317dafce1a1e09217bcf2cbfaf8bfa34115571248d2c50bc53
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 05 Feb 2023 22:19:01 GMT
Last-Modified: Sun, 05 Feb 2023 20:40:34 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Ckko6RZgKhnwAPzJPiSOHZrJBPAcb287urPtS3SrtgJ_FGXIRpUJ3w==
Age: 5907
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3160
Expires: Sun, 05 Feb 2023 23:11:41 GMT
Date: Sun, 05 Feb 2023 22:19:01 GMT
Connection: keep-alive
embed.typeform.com/next/embed.js
54.230.111.81304 Not Modified 0 B URL HTTP/2 embed.typeform.com/next/embed.js
IP 54.230.111.81:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /next/embed.js HTTP/1.1
Host: embed.typeform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Mon, 30 Jan 2023 10:11:16 GMT
If-None-Match: W/"fb1d68b72178df5229dcca73466ecfc1"
TE: trailers
HTTP/2 304 Not Modified
last-modified: Mon, 30 Jan 2023 10:11:16 GMT
x-amz-version-id: wu8VpFEwiMIutFky5Rky_ouuxZmoV68D
server: AmazonS3
date: Sun, 05 Feb 2023 22:14:26 GMT
etag: W/"fb1d68b72178df5229dcca73466ecfc1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 0qrKqcQN7Y_1ESsFmX6F3pQI0MxDDq1I4kIxfoPxfOvkp-2so5FWmg==
age: 277
cache-control: public, max-age=0, must-revalidate
X-Firefox-Spdy: h2
letsdefend.io/static/img/letsdefend-logo.png
104.26.15.61200 OK 11 kB URL HTTP/2 letsdefend.io/static/img/letsdefend-logo.png
IP 104.26.15.61:0
File type PNG image data, 400 x 400, 8-bit colormap, non-interlaced\012- data
Hash 48fcba478ac786acc7607e00f73bb1e5
2b596dc5509bde57d1910894c635bd829efbf232
d89dbfea5350d060392891790f7dcea1bebb5891652a793e1dd1c3d22e1fa6b8
GET /static/img/letsdefend-logo.png HTTP/1.1
Host: letsdefend.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:02 GMT
content-type: image/png
content-length: 11147
last-modified: Mon, 24 Jan 2022 14:45:52 GMT
etag: "2b8b-5d655067b4c2e"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5382
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZdOn0Oe2psQHK8IA0wtFR7UXr8KPG4yCr6rrKb0D3nA68xIflhgi7WqdIieAvZqNymWiKuL8zg%2FpmbM1SC%2FuQTxu9Z6ZhvY6X1ydsK7cqLkNVYSLhJg8h8nuPsYTiz0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f067989fb0b59-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 87f4d5a26d06de12da102e0876bf96c8
bcbdf7cfde807360ec9666a26960b34097a164b6
8b6151bd884109553e08aab8c9a087cfb7f055f7950e28fe90adb82986bc5e43
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B6151BD884109553E08AAB8C9A087CFB7F055F7950E28FE90ADB82986BC5E43"
Last-Modified: Sat, 04 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14994
Expires: Mon, 06 Feb 2023 02:28:56 GMT
Date: Sun, 05 Feb 2023 22:19:02 GMT
Connection: keep-alive
letsdefend.io/images/landing-v2/DeloitteLogoWhite.png
104.26.15.61200 OK 2.5 kB URL HTTP/2 letsdefend.io/images/landing-v2/DeloitteLogoWhite.png
IP 104.26.15.61:0
File type PNG image data, 328 x 62, 8-bit colormap, non-interlaced\012- data
Hash be63e041f2bb9a3bef9fac10648e054a
d17d4cdf2dd3ddb6a749a3ed111e7d092305638b
7c6c1c4286a60869949ce7cecb3da35e12c60efe1593866451fb1fe54a33cf83
GET /images/landing-v2/DeloitteLogoWhite.png HTTP/1.1
Host: letsdefend.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:02 GMT
content-type: image/png
content-length: 2515
last-modified: Tue, 16 Aug 2022 07:01:16 GMT
etag: "9d3-5e656508c65c9"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5382
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KZdPnWufWacT7VuCk92ec5oy%2FrRNkp2ux6Z9emD778HSG%2BUNsJ6Rg71LrXbWBTh1mCJmE6f8ILcUiZN1Ubf4zFOvhQ9y5fb%2FvwNtXVQLGHbYHJpx0EDeAM1sRRLQkFs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06799a0a0b59-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
letsdefend.io/images/landing-v2/Hepsiburada_logo_official.svg.png
104.26.15.61200 OK 3.9 kB URL HTTP/2 letsdefend.io/images/landing-v2/Hepsiburada_logo_official.svg.png
IP 104.26.15.61:0
File type PNG image data, 282 x 48, 8-bit colormap, non-interlaced\012- data
Hash 039bd559825f769101a127558a1b6e10
f101738c4d898607e956cd880fcdc559c1f328b1
bf73eb78d10b853a6cd6b03647f8d69301258f5812f2dda3e2e5274d4fc17b05
GET /images/landing-v2/Hepsiburada_logo_official.svg.png HTTP/1.1
Host: letsdefend.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:02 GMT
content-type: image/png
content-length: 3935
last-modified: Tue, 16 Aug 2022 07:01:16 GMT
etag: "f5f-5e6565091e428"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5382
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W81f6l1WmlVC35SOgOga3TH%2Fr8brGo%2FvpSp222i4rmejNQDJoY3Fpt46j9sLP0XLaFoP822zry7N06HMft2zi0VMknhsJXlAdnllYZFfMKDilqxLCa9yh%2BC5xbuFG9g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06799a0b0b59-OSL
X-Firefox-Spdy: h2
letsdefend.io/images/landing-v2/Banco_Santander_Logotipo.svg.png
104.26.15.61200 OK 3.1 kB URL HTTP/2 letsdefend.io/images/landing-v2/Banco_Santander_Logotipo.svg.png
IP 104.26.15.61:0
File type PNG image data, 238 x 42, 8-bit colormap, non-interlaced\012- data
Hash 270aad2a782e9339aff8bdfd4f2bbc9f
20fc5d75fdf71ee1e82a9b914d59210f72925320
fadc6036d0d5e1bc468ef41f2aaf0769cde9cb52cd9d2ead5865e9da23b5cc9f
GET /images/landing-v2/Banco_Santander_Logotipo.svg.png HTTP/1.1
Host: letsdefend.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:02 GMT
content-type: image/png
content-length: 3123
last-modified: Tue, 16 Aug 2022 07:01:16 GMT
etag: "c33-5e6565089b639"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5382
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qcta%2FnOR1XcidAPytzO2bFiqlUQSNFAlzQJtexlt7IyKzv3WUwDHiiDpqTdVOVTJUR44COhsDz1zwSYqUsPwO2uNUMOGDWofaHKAQHd3%2B02eHFAVbTNrtsff2b3mFaM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06799a0e0b59-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
142.250.74.35200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 47728, version 1.0\012- data
Hash b1581ddd77372ceb06eb14adfd1bea07
1a3b0fc96fa73b808aa1f91f122a3c9bdcf93ee8
97e82d8eac8d106b28abf1b716982c40c06fffe49cc2f34cd1c299266745ef73
GET /s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://letsdefend.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 Feb 2023 18:28:54 GMT
expires: Mon, 05 Feb 2024 18:28:54 GMT
cache-control: public, max-age=31536000
age: 13808
last-modified: Tue, 23 Aug 2022 17:55:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 87a2c3cd60978578c6384544b441917f
a9bd71fc7868bd3f18f4b5528de3e88581de1b7f
041a4aff46ae2c2a8d8e4f29c6c43f1b8d43f00582180582dbe1f483c8baccc3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5145
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:02 GMT
Last-Modified: Sun, 05 Feb 2023 20:53:17 GMT
Server: ECS (amb/6B7F)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
letsdefend.io/images/landing-v2/Mandiant_logo.svg
104.26.15.61200 OK 2.4 kB URL HTTP/2 letsdefend.io/images/landing-v2/Mandiant_logo.svg
IP 104.26.15.61:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (1148)
Hash 49e3446a7a7c9afcc5ad1e96c85603fa
07b16b717c8f9654d14e65a1e98aaee1943e4be9
1cb153a52ef8719135bc776e42b0754df1c38024550295abee96956847f17c83
GET /images/landing-v2/Mandiant_logo.svg HTTP/1.1
Host: letsdefend.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:02 GMT
content-type: image/svg+xml
last-modified: Tue, 09 Aug 2022 18:47:35 GMT
etag: W/"ca4-5e5d35da8e071"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5382
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nqHKVUpzLCIQiNlVdB3s1m%2BUZqqxcVsp5vBash%2FMFNDkhuXvdfYNGtJL0AB4tmqYjOVM7uX5mDGvdmGKwN%2BbAxSOXwtyDrgcwMtDk5ORJ7kqiBF3yj1bmz79Ncg%2FmCE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f067989fd0b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.paddle.com/paddle/assets/css/paddle.css
172.66.43.196200 OK 20 kB URL HTTP/2 cdn.paddle.com/paddle/assets/css/paddle.css
IP 172.66.43.196:0
Hash c61ba7b4137d8853332e5fe2ad66c0d0
03a35007ef7e799152efc7bb390e17ca6dfb9f6c
e0fe0b933bb028b1a11d8e241cb6188567609205f3e6b6bbc94972429c036df0
GET /paddle/assets/css/paddle.css HTTP/1.1
Host: cdn.paddle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:01 GMT
content-type: text/css
x-amz-replication-status: COMPLETED
last-modified: Fri, 03 Feb 2023 14:07:01 GMT
etag: W/"363959fb7459f6a3ff15190f211b628a"
x-amz-server-side-encryption: AES256
x-amz-version-id: tmDND.XQzgWRIMpX0II5M_gxhuxWK3Uj
x-cache: Hit from cloudfront
via: 1.1 9c3701a40f5e4766165113d719972734.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: l2ARrFAXsgtYgMXo8AvgKNyKgACudpj2ZqMTH4A7ARIs8ZUdyf1O3A==
cf-cache-status: HIT
age: 13778
expires: Mon, 06 Feb 2023 02:19:01 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f0678ed63b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.84.241.69101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.84.241.69:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ferNYz0OK93uYWQIoG7UWg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Cx3bR0b5CPWwSxOVM5nyFHoxsTk=
letsdefend.io/images/landing-v2/hands-on-training.svg
104.26.15.61200 OK 42 kB URL HTTP/2 letsdefend.io/images/landing-v2/hands-on-training.svg
IP 104.26.15.61:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2830), with no line terminators
Hash edf09eb4c0bbbe7ab1165380006d6538
10b60352ee37681862f3911ba412f9f77e8a1dbf
70c366a2aa91437307104ab2863af53a614915cd3daa056653128606de32642c
GET /images/landing-v2/hands-on-training.svg HTTP/1.1
Host: letsdefend.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:02 GMT
content-type: image/svg+xml
last-modified: Tue, 09 Aug 2022 18:47:37 GMT
etag: W/"b0e-5e5d35dc34ea8"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5382
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jFwAMurUXw9FiJz2vmpQUEdFcgHJzaucnED2Rw9RETv%2BqZ8bDUA7Gc1SFbklbzkSjmqgo3WdOXtTY87HJw1dNiwhwRDsi%2BMeDiKViIChj48LTq4DR8rep0WrzlMl9xc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06799a1b0b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
script.hotjar.com/modules.bca0d1c28285412bb689.js
143.204.55.96200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.bca0d1c28285412bb689.js
IP 143.204.55.96:0
File type Unicode text, UTF-8 text, with very long lines (49086)
Hash e923aa360dc485b9df86355bd040c998
03c46dbd41e9d4bdf8a9e4bfbaba3f7f2e9280ec
9c7575553c5b81f9b905dbb27c8116b175b69e7472aa6597f8cace1c6434d676
GET /modules.bca0d1c28285412bb689.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 67924
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "e923aa360dc485b9df86355bd040c998"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: n6LTZiNznPJR9Phb1Z_-if9fagYIpQ7ll8Qofr7y_Q0P4EPP1Vyn0A==
age: 205736
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 87f4d5a26d06de12da102e0876bf96c8
bcbdf7cfde807360ec9666a26960b34097a164b6
8b6151bd884109553e08aab8c9a087cfb7f055f7950e28fe90adb82986bc5e43
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B6151BD884109553E08AAB8C9A087CFB7F055F7950E28FE90ADB82986BC5E43"
Last-Modified: Sat, 04 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14994
Expires: Mon, 06 Feb 2023 02:28:56 GMT
Date: Sun, 05 Feb 2023 22:19:02 GMT
Connection: keep-alive
www.google-analytics.com/analytics.js
216.239.32.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.32.178:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 05 Feb 2023 21:44:08 GMT
expires: Sun, 05 Feb 2023 23:44:08 GMT
cache-control: public, max-age=7200
age: 2094
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
images.typeform.com/images/pUzd4b3tFDPR/background/large
143.204.55.84200 OK 2.7 kB URL HTTP/2 images.typeform.com/images/pUzd4b3tFDPR/background/large
IP 143.204.55.84:0
File type JPEG image data, baseline, precision 8, 100x100, components 3\012- data
Hash 1b3df24e7fbe4eac2ad5892adca29683
366a9da0e6505e60e04cf4d4486da274aa1647e3
40ccb6e891c26a144d258199a999d17ac1a01d8c3c3a159b568a1a1cd9014c18
GET /images/pUzd4b3tFDPR/background/large HTTP/1.1
Host: images.typeform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100
Connection: keep-alive
Cookie: __cf_bm=fBNjri52x1IRFcuVkCgjh8SqrlmYcHXny7VDTXEajxs-1675635542-0-AeuHwimSn/EwyfEw8qwJjuQ86d7DHTANHsDLnhwJ8zQtddVy8axp9kVmEYqR6Esd48U2IG80L3zmi8IhpW1iEAM=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2677
date: Sun, 05 Feb 2023 09:48:28 GMT
x-amzn-requestid: 4b0ae15c-967d-41e0-987e-8a6b40d1e4c0
access-control-allow-origin: *
content-security-policy: script-src 'self'
x-amz-apigw-id: f3A49G-2IAMFpdw=
cache-control: max-age=1296000
x-amzn-trace-id: Root=1-63df7b6c-49b68a786527c91740c1d9ee;Sampled=0
via: 1.1 ee6ddabcc69c6aa1c28ad24a4a8f86b2.cloudfront.net (CloudFront), 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA50-C1, OSL50-C1
x-amz-cf-id: tWsq3Fq7p5JMZnAr3n6j1bqMQeggWbiouLBlXgFZ9e687o5MIOW4dg==
age: 45034
X-Firefox-Spdy: h2
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
143.204.55.105200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP 143.204.55.105:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "112fdf47cdb80b9ce3d033ed09717460"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vKDIzo_Vy3hAM7DsKoTRUIih_6zg3SNUxaX8l-Ri0Jyd3uWj0RKV-A==
age: 205736
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 370e74ead61664d84985db7a9087c0e4
7c55daf6c9231e1586a0c9d48375766e7f02405f
ddc18509904868cb8e31ad5cbbd27245fc163eaac44d40a7e95fb795c6e248db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 846
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:02 GMT
Last-Modified: Sun, 05 Feb 2023 22:04:56 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.12.1/css/all.min.css
104.17.24.14200 OK 10 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.12.1/css/all.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (57147)
Hash 3c292a51a538afbd149feeff74c3ffe8
7ab76905b7ccea15f11dc21bd49a03f8634add10
816a099099ffbfe5309857cb24f585c73928529c618036eab5fe2dee9a9c6be6
GET /ajax/libs/font-awesome/5.12.1/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://embed.testimonial.to
Connection: keep-alive
Referer: https://embed.testimonial.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:02 GMT
content-type: text/css; charset=utf-8
content-length: 10134
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-dff5"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4507396
expires: Fri, 26 Jan 2024 22:19:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cAXZskixb3%2FO6RU5h41x3Q4Kvh1EqB4kRl8PI6D9O0%2BJmN%2FFJY15jZEdVVKLmuYK7kR5%2FGJ5W5W7TjZaUzRsunHyQHxnXPLcgF0ZXnoXan4L3qcTF%2BdN5ljialLpar65CaDT7mWn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 794f067c9f05b4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 370e74ead61664d84985db7a9087c0e4
7c55daf6c9231e1586a0c9d48375766e7f02405f
ddc18509904868cb8e31ad5cbbd27245fc163eaac44d40a7e95fb795c6e248db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 846
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:02 GMT
Last-Modified: Sun, 05 Feb 2023 22:04:56 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
images.typeform.com/images/NJuWqUW4gis2/image/default
143.204.55.84200 OK 9.3 kB URL HTTP/2 images.typeform.com/images/NJuWqUW4gis2/image/default
IP 143.204.55.84:0
File type PNG image data, 400 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash c5b06a0721d3005bb32e5c42c745159a
7304fe4d37fd9e2e45b99200b27f1b933c5c4804
8cb86fb81c91ea0550e44791969f4b6365b556534292cccb43949a5c819ceeaf
GET /images/NJuWqUW4gis2/image/default HTTP/1.1
Host: images.typeform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100
Connection: keep-alive
Cookie: __cf_bm=fBNjri52x1IRFcuVkCgjh8SqrlmYcHXny7VDTXEajxs-1675635542-0-AeuHwimSn/EwyfEw8qwJjuQ86d7DHTANHsDLnhwJ8zQtddVy8axp9kVmEYqR6Esd48U2IG80L3zmi8IhpW1iEAM=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 9258
date: Wed, 25 Jan 2023 20:07:35 GMT
x-amzn-requestid: 0f85c9af-72c3-464c-8e14-ecbff9f0ace8
access-control-allow-origin: *
content-security-policy: script-src 'self'
x-amz-apigw-id: fULRJE51IAMFzEA=
cache-control: max-age=1296000
x-amzn-trace-id: Root=1-63d18c07-148257004933ab3926a9b2ea;Sampled=0
via: 1.1 bab8148a65b29113f79cf2725076287c.cloudfront.net (CloudFront), 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA50-C1, OSL50-C1
x-amz-cf-id: xFG5YliqUpCEka9jg-Je3APt5eojGu4xU7fXS0JK567cUPW8UuYqKA==
age: 958287
X-Firefox-Spdy: h2
embed.testimonial.to/static/css/12.5fda178e.chunk.css
216.24.57.3200 OK 44 kB URL HTTP/2 embed.testimonial.to/static/css/12.5fda178e.chunk.css
IP 216.24.57.3:0
File type ASCII text, with very long lines (18189), with no line terminators
Hash 9fa894b3d60ee8f1571ba6010672e244
715f6cca7a63a2d5dd143b0950779a36fe928b01
0e1ec5af169c67628ad7a9749a7614616e8073ff3378a80d366f1a7b9b252e19
GET /static/css/12.5fda178e.chunk.css HTTP/1.1
Host: embed.testimonial.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embed.testimonial.to/w/letsdefend-ambassadors?animated=on&theme=dark&shadowColor=ffffff
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:02 GMT
content-type: text/css; charset=utf-8
cf-ray: 794f067c395db50c-OSL
age: 35
cache-control: public, max-age=0, s-maxage=300
etag: W/"d71c9ae62fdb1936505bbca50b6b4b9d"
last-modified: Fri, 03 Feb 2023 19:37:35 UTC
vary: Accept-Encoding
cf-cache-status: HIT
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-HSKZYXTX40>m=45je3210&_p=942414014&cid=295445026.1675635585&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675635584&sct=1&seg=0&dl=https%3A%2F%2Fletsdefend.io%2F&dt=LetsDefend%20-%20Blue%20Team%20Training%20Platform&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-HSKZYXTX40>m=45je3210&_p=942414014&cid=295445026.1675635585&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675635584&sct=1&seg=0&dl=https%3A%2F%2Fletsdefend.io%2F&dt=LetsDefend%20-%20Blue%20Team%20Training%20Platform&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-HSKZYXTX40>m=45je3210&_p=942414014&cid=295445026.1675635585&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675635584&sct=1&seg=0&dl=https%3A%2F%2Fletsdefend.io%2F&dt=LetsDefend%20-%20Blue%20Team%20Training%20Platform&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://letsdefend.io
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://letsdefend.io
date: Sun, 05 Feb 2023 22:19:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
font.typeform.com/dist/google/lekton/files/lekton-latin-400-normal.woff2
54.230.111.25200 OK 9.2 kB URL HTTP/2 font.typeform.com/dist/google/lekton/files/lekton-latin-400-normal.woff2
IP 54.230.111.25:0
File type Web Open Font Format (Version 2), TrueType, length 9228, version 1.0\012- data
Hash 786d33c9f731e0ffcd9989c1ebbf95bf
4ecb2d139be3de13fed4b574fe6189848918cdd0
dc4e9bb99227a0ab1ee1016d7a4f128c63847bca183c022cda88424018273ec2
GET /dist/google/lekton/files/lekton-latin-400-normal.woff2 HTTP/1.1
Host: font.typeform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://form.typeform.com
Connection: keep-alive
Referer: https://font.typeform.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 9228
date: Fri, 03 Feb 2023 06:24:51 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 0
last-modified: Tue, 31 Jan 2023 00:24:23 GMT
etag: "786d33c9f731e0ffcd9989c1ebbf95bf"
x-amz-server-side-encryption: AES256
cache-control: max-age=432000
x-amz-version-id: xFKURQEu1bLT9qRuXQTcuXqrnKN2Cbb6
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: xfOXR3ecGxTY8AmsxLpoFUsO-TPwkZXTqYbpNCnKiqFHOh64OkZROQ==
age: 230053
X-Firefox-Spdy: h2
fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
142.250.74.35200 OK 38 kB URL HTTP/2 fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data
Hash e08be6d5d433944f7ad52902e4d24db5
e2600c1d60d12d397b3ee44411a021231d71e974
450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e
GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://embed.testimonial.to
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 09:38:52 GMT
expires: Sat, 03 Feb 2024 09:38:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
content-type: font/woff2
age: 218411
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 8fd59aaf072bfd08e29086a15aab5a00
3b13b2b8612ac56c1cfaa15a6583fd6c83fa2ba6
ce981b205b0f7d3c7dcb1b9d0d05d3af04cd8c67564124bdd6204d56e81cac2c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1265
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:03 GMT
Etag: "63dfdf64-116"
Last-Modified: Sun, 05 Feb 2023 21:57:59 GMT
Server: ECS (amb/6B7F)
X-Cache: HIT
Content-Length: 278
font.typeform.com/dist/google/lekton/files/lekton-latin-700-normal.woff2
54.230.111.25200 OK 284 kB URL HTTP/2 font.typeform.com/dist/google/lekton/files/lekton-latin-700-normal.woff2
IP 54.230.111.25:0
Size 284 kB (283726 bytes)
Hash eb8ad43652beadecfc04d77f43e84205
a6612e61e5b7b6a734b73a5742b99af95fec32ae
e9733964d68191c9b5bcafe380519ba0f6be7e033b78acde90e001015b828552
GET /dist/google/lekton/files/lekton-latin-700-normal.woff2 HTTP/1.1
Host: font.typeform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://form.typeform.com
Connection: keep-alive
Referer: https://font.typeform.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 9344
date: Fri, 03 Feb 2023 07:27:57 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 0
last-modified: Tue, 31 Jan 2023 00:24:23 GMT
etag: "838cde1d8f810829a4801c7188563907"
x-amz-server-side-encryption: AES256
cache-control: max-age=432000
x-amz-version-id: bRsRNMY4gaVS6zqTMrnPVvx.xalbJ4eJ
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: nZCU5yESE4DjFNeDkOAmhWzjOM8GGCgW8dObgXo4n9aHY3dYrdbJ_Q==
age: 226267
X-Firefox-Spdy: h2
vc.hotjar.io/sessions/2258091?s=0.25&r=0.04942288139115436
54.230.111.64204 No Content 0 B URL HTTP/2 vc.hotjar.io/sessions/2258091?s=0.25&r=0.04942288139115436
IP 54.230.111.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sessions/2258091?s=0.25&r=0.04942288139115436 HTTP/1.1
Host: vc.hotjar.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://letsdefend.io
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-store
date: Sun, 05 Feb 2023 22:19:03 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vRVShPvNcN9S9CPMXV2g8e9_EUU5qI0c9Ms271Rwx9EesP3Tf2ihKQ==
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 2.7 kB URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 4ea6e95e9a0efb1fa3d322aeb23c6672
bf0f38b37ec07adc7c0a631473fb2f35c5e381bc
45fa1bc1b7288a92822819b1b75c4b4eb2351b2bff9c814790e4b34778f4d30d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 05 Feb 2023 22:19:03 GMT
Last-Modified: Sun, 05 Feb 2023 21:40:57 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2nAQa97gmJhoIMB24MclSNZ_U5PC-AMGQqC3_Lsm1RKC5tdl4rZGEQ==
Age: 2286
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3880
Expires: Sun, 05 Feb 2023 23:23:43 GMT
Date: Sun, 05 Feb 2023 22:19:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3880
Expires: Sun, 05 Feb 2023 23:23:43 GMT
Date: Sun, 05 Feb 2023 22:19:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3880
Expires: Sun, 05 Feb 2023 23:23:43 GMT
Date: Sun, 05 Feb 2023 22:19:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3880
Expires: Sun, 05 Feb 2023 23:23:43 GMT
Date: Sun, 05 Feb 2023 22:19:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a24cf7b2db6d65c3fe5daf78b3309ced
a3653a9a7baea412808dd91572ff21e1a505c26f
f55ee98bab5ce53d6acc1cac7f54f089b42d5f2ffbe750d869c4f4a7bc26f715
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13230
x-amzn-requestid: 8171829a-cf6d-4c33-99a1-f3cef7cd4475
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiTH8GoAMFYLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-1597a0f06ef3db2534a101aa;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Nvfp0sEYw5bxnFHisq80WCXh6T-LdFlPqs95tyX2epjMfhM_hjUj0A==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 1740
etag: "a3653a9a7baea412808dd91572ff21e1a505c26f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d0c62c5956f36c9f1c5d2f17bc372d98
fca4d7140e4c391b02d734425ccc92acec568a70
eb1b743ede5ed223536358bd92a322ca5231267f4434be1eced98a0fe93b790d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8929
x-amzn-requestid: ea29dd36-d05b-4824-ba18-78f868259f76
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiQEeTIAMFqGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-7a6ade1c4501a81c0823ce10;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: O-QHP886Cczm6dsVDQVMR7SMSxgIhUSuEPAKJvzQTQtkj59Pg-z9QA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 1740
etag: "fca4d7140e4c391b02d734425ccc92acec568a70"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31cf5553-4c3f-4c6d-8dfb-d292e38275bb.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31cf5553-4c3f-4c6d-8dfb-d292e38275bb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5f54c8725e5dab88b12d42876fa61b12
89c734d690981e30f9d566a7763a1870724d65aa
b8cc5148ae01e1a1fe32f56bdce71de086da320cdd8a55a746609c9773fdaf77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31cf5553-4c3f-4c6d-8dfb-d292e38275bb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9809
x-amzn-requestid: 533de5fa-8173-430e-a657-4386728723eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpc-VEGbIAMFSmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63da0ec1-4e160c5c2a46d2913cc8e71e;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 07:03:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: BgSfqU3WmIhR8N86AEfaU7pXN7jIKs_lKJVD6yCSaJBl5AVx13e5hw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:54:03 GMT
etag: "89c734d690981e30f9d566a7763a1870724d65aa"
content-type: image/jpeg
age: 1500
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.rudderlabs.com/v1/rudder-analytics.min.js
54.230.111.7200 OK 138 kB URL HTTP/2 cdn.rudderlabs.com/v1/rudder-analytics.min.js
IP 54.230.111.7:0
Size 138 kB (137597 bytes)
Hash d499d38ea2a8513a14a64f7c138988f5
ba39ddf08c402b4d92efc05840d0bc3502955e11
01c3dd5ffc5d356edff62463ffd28ada02b7eee01fe9c6e8074e412725c690db
GET /v1/rudder-analytics.min.js HTTP/1.1
Host: cdn.rudderlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://form.typeform.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
last-modified: Mon, 16 Jan 2023 13:42:05 GMT
server: AmazonS3
content-encoding: gzip
date: Sun, 05 Feb 2023 22:11:26 GMT
cache-control: max-age=3600
etag: W/"a5276d3897dc2eb367139d09a2ba84cf"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IWjVh3AkHdNQ5nhUPHxhOdtmv5ubettzo8jeo4EqWxhaNYGULbPFWw==
age: 472
X-Firefox-Spdy: h2
letsdefend.io/images/landing-v2/apple.svg
104.26.15.61200 OK 11 kB URL HTTP/2 letsdefend.io/images/landing-v2/apple.svg
IP 104.26.15.61:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (661), with no line terminators
Hash 646af609c27240b79fdc5506cfbf7941
441819938fb4b7460b38c9bf97b4d11ac9fa10b1
aaaadc0ef2463733079ef6c0d1e07bcc6bdab53d25bbf632d36953a069c44ca5
GET /images/landing-v2/apple.svg HTTP/1.1
Host: letsdefend.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:02 GMT
content-type: image/svg+xml
last-modified: Tue, 09 Aug 2022 18:47:43 GMT
etag: W/"295-5e5d35e1cbb44"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5382
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vXr9Ov5Kyda06zYLAu%2B10Pr4aE4%2FDF%2BQlOrROZd2ATg8lhJ5Tg14sAqu3gsHvv9Oii%2BnSo9dObzhRKBiwukhzW0K%2F%2F20jBj%2B7HEuOExuQuK8JiKAh5WLwhLHgJUx8G0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06799a110b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
letsdefend.io/images/landing-v2/EBay_logo.svg
104.26.15.61200 OK 11 kB URL HTTP/2 letsdefend.io/images/landing-v2/EBay_logo.svg
IP 104.26.15.61:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (723)
Hash a2715ecd7f28275c080e633da738e651
aba8a9570f1fdb4f44a0a870166c45723dca71a6
8af660bc535e3a0cf56ac1c94ca8562fb44377d634933f6c2b2c39bdfd79588c
GET /images/landing-v2/EBay_logo.svg HTTP/1.1
Host: letsdefend.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:02 GMT
content-type: image/svg+xml
last-modified: Tue, 16 Aug 2022 07:01:16 GMT
etag: W/"9db-5e656508f4439"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5382
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hyntkeu7q2GoQucu%2BzC3uTDRQSzGltuvhpRvsGxAzPGAiCHApkJfQlELXq55LwADDn7gDf%2FUgZG7lUeRIGJHibvCxvDR6AwTEPmWVgNJc7xaGP7JyPBvqrZOQTZ4ovE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06799a090b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4int/v_VQG5OMB60
216.58.211.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4int/v_VQG5OMB60
IP 216.58.211.3:0
Hash d60de415d033a95504b91bcd6be3e9e9
f2229d5cdabe7414159a934006d766e8058840a6
cfeb0f8c3e776d4b0e95dafb873df21ca75137fe7b5a396547aa313928097286
POST /s/gts1d4int/v_VQG5OMB60 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 22:19:03 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
testimonialto-default-rtdb.firebaseio.com/.ws?v=5
34.120.160.131101 Switching Protocols 0 B URL HTTP/1.1 testimonialto-default-rtdb.firebaseio.com/.ws?v=5
IP 34.120.160.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /.ws?v=5 HTTP/1.1
Host: testimonialto-default-rtdb.firebaseio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://embed.testimonial.to
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JSt1wQNwm3H4zjX4Xul9Iw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Sun, 05 Feb 2023 22:19:03 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: VrxKZ2MSUURfAOkZCffBOKzZ6MY=
Strict-Transport-Security: max-age=31556926; includeSubDomains; preload
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 5b217bf212f7314b8413b2eddb65224f
3f671017bc9bebabe40e96a85106532950cc69c8
6005ba485126ad20e9b1be8de7e6a1c1a2a655c13eed936e4f48720866f9c888
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=105395
Date: Sun, 05 Feb 2023 22:19:03 GMT
Etag: "63df1642-1d7"
Expires: Tue, 07 Feb 2023 03:35:38 GMT
Last-Modified: Sun, 05 Feb 2023 02:36:50 GMT
Server: ECS (bsa/EB13)
X-Cache: Miss from cloudfront
Via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PIe_bIsrDBA3UutDyKr3R-yhpYsc7YdmZjf5ECt0W7ZvGor3YO_8BA==
Age: 3528
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 5b217bf212f7314b8413b2eddb65224f
3f671017bc9bebabe40e96a85106532950cc69c8
6005ba485126ad20e9b1be8de7e6a1c1a2a655c13eed936e4f48720866f9c888
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=104174
Date: Sun, 05 Feb 2023 22:19:03 GMT
Etag: "63df1642-1d7"
Expires: Tue, 07 Feb 2023 03:15:17 GMT
Last-Modified: Sun, 05 Feb 2023 02:36:50 GMT
Server: ECS (nyb/1DCD)
X-Cache: Miss from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XLQFDnUsoT9yr5VAXPe_CZSbSfoeF1RaoVDZhjdlHr-dHJoyl3Lcew==
Age: 2307
rudderstack-control-plane.cdp.prod.data.typeform.com/sourceConfig/?p=cdn&v=1.23.1
34.233.157.77200 OK 2 B URL HTTP/2 rudderstack-control-plane.cdp.prod.data.typeform.com/sourceConfig/?p=cdn&v=1.23.1
IP 34.233.157.77:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /sourceConfig/?p=cdn&v=1.23.1 HTTP/1.1
Host: rudderstack-control-plane.cdp.prod.data.typeform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization
Referer: https://form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100
Origin: https://form.typeform.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:04 GMT
content-type: text/plain; charset=utf-8
content-length: 2
server: uvicorn
vary: Origin
access-control-allow-methods: DELETE, GET, HEAD, OPTIONS, PATCH, POST, PUT
access-control-max-age: 600
access-control-allow-credentials: true
access-control-allow-origin: https://form.typeform.com
access-control-allow-headers: authorization
X-Firefox-Spdy: h2
rudderstack-control-plane.cdp.prod.data.typeform.com/sourceConfig/?p=cdn&v=1.23.1
34.233.157.77200 OK 610 B URL HTTP/2 rudderstack-control-plane.cdp.prod.data.typeform.com/sourceConfig/?p=cdn&v=1.23.1
IP 34.233.157.77:0
File type JSON data\012- , ASCII text, with very long lines (610), with no line terminators
Hash b472ddb84e71008d7e128aa58199352f
bb19a929d005eb384268d4e73cd994324ffc5db4
1e1bfbb50209ae8693353623fab7eeeef5ae1c0ca5d128a40c3be54099e59028
GET /sourceConfig/?p=cdn&v=1.23.1 HTTP/1.1
Host: rudderstack-control-plane.cdp.prod.data.typeform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100
Authorization: Basic MjJLTUZoSEpiY3pnR1cwZ0pWM1NCcnpCbE5lOg==
Origin: https://form.typeform.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:04 GMT
content-type: application/json
content-length: 610
server: uvicorn
access-control-allow-origin: *
access-control-allow-credentials: true
X-Firefox-Spdy: h2
rudderstack.cdp.prod.data.typeform.com/v1/track
3.228.83.197200 OK 0 B URL HTTP/2 rudderstack.cdp.prod.data.typeform.com/v1/track
IP 3.228.83.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/track HTTP/1.1
Host: rudderstack.cdp.prod.data.typeform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: anonymousid,authorization,content-type
Referer: https://form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100
Origin: https://form.typeform.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:04 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: Anonymousid, Authorization, Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://form.typeform.com
access-control-max-age: 900
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2
rudderstack.cdp.prod.data.typeform.com/v1/track
3.228.83.197200 OK 2 B URL HTTP/2 rudderstack.cdp.prod.data.typeform.com/v1/track
IP 3.228.83.197:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /v1/track HTTP/1.1
Host: rudderstack.cdp.prod.data.typeform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100
Content-Type: application/json
Authorization: Basic MjJLTUZoSEpiY3pnR1cwZ0pWM1NCcnpCbE5lOg==
AnonymousId: YjQ1NWJlOTctNjNiMC00ZWNhLWFjMjctMDU5YTZhYmJhYmI3
Content-Length: 1994
Origin: https://form.typeform.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:04 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://form.typeform.com
vary: Origin
X-Firefox-Spdy: h2
rudderstack.cdp.prod.data.typeform.com/v1/track
3.228.83.197200 OK 2 B URL HTTP/2 rudderstack.cdp.prod.data.typeform.com/v1/track
IP 3.228.83.197:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /v1/track HTTP/1.1
Host: rudderstack.cdp.prod.data.typeform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100
Content-Type: application/json
Authorization: Basic MjJLTUZoSEpiY3pnR1cwZ0pWM1NCcnpCbE5lOg==
AnonymousId: YjQ1NWJlOTctNjNiMC00ZWNhLWFjMjctMDU5YTZhYmJhYmI3
Content-Length: 2041
Origin: https://form.typeform.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:05 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://form.typeform.com
vary: Origin
X-Firefox-Spdy: h2
rudderstack.cdp.prod.data.typeform.com/v1/track
3.228.83.197200 OK 2 B URL HTTP/2 rudderstack.cdp.prod.data.typeform.com/v1/track
IP 3.228.83.197:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /v1/track HTTP/1.1
Host: rudderstack.cdp.prod.data.typeform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100
Content-Type: application/json
Authorization: Basic MjJLTUZoSEpiY3pnR1cwZ0pWM1NCcnpCbE5lOg==
AnonymousId: YjQ1NWJlOTctNjNiMC00ZWNhLWFjMjctMDU5YTZhYmJhYmI3
Content-Length: 2452
Origin: https://form.typeform.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:05 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://form.typeform.com
vary: Origin
X-Firefox-Spdy: h2
embed.testimonial.to/static/js/12.d0c81f7a.chunk.js
216.24.57.3200 OK 0 B URL HTTP/2 embed.testimonial.to/static/js/12.d0c81f7a.chunk.js
IP 216.24.57.3:0
GET /static/js/12.d0c81f7a.chunk.js HTTP/1.1
Host: embed.testimonial.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embed.testimonial.to/w/letsdefend-ambassadors?animated=on&theme=dark&shadowColor=ffffff
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:02 GMT
content-type: text/javascript; charset=utf-8
cf-ray: 794f067c3961b50c-OSL
age: 35
cache-control: public, max-age=0, s-maxage=300
etag: W/"82ecf1941a9303575662d3b0a5271f26"
last-modified: Fri, 03 Feb 2023 19:37:34 UTC
vary: Accept-Encoding
cf-cache-status: HIT
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
letsdefend.io/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
104.26.15.61200 OK 0 B URL HTTP/2 letsdefend.io/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 104.26.15.61:0
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: letsdefend.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:01 GMT
content-type: application/javascript
last-modified: Fri, 03 Feb 2023 16:56:26 GMT
etag: W/"63dd3cba-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rD%2F%2Bc%2B8mS9XsjRsOt0kvke1ETW4VQW3t%2BJrHZLNlf8mfuqNUPSvOBUhDU7H%2BrMtnNwPA%2B8Q0EmJ7Uv67UiOkILFdZWmpIa26yNNUPtn8uQadwgJMOM954WT9%2FYovwwA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06773ffd0b59-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Tue, 07 Feb 2023 22:19:01 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
letsdefend.io/img/other/white-waves.8fbe13fbd386.svg
104.26.15.61404 Not Found 0 B URL HTTP/2 letsdefend.io/img/other/white-waves.8fbe13fbd386.svg
IP 104.26.15.61:0
GET /img/other/white-waves.8fbe13fbd386.svg HTTP/1.1
Host: letsdefend.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/css/main.02cdf5a5db4d.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Sun, 05 Feb 2023 22:19:02 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ogvqSORkfNlzihqYCGjHbgrJj69O%2BQvM78%2FbXy8IhPUd0Zs7Fy1PFp3tElij2PtC3JoTlUb3u2IckDk1gC3DKjdXM4o0u50wlWZHw4AeF1uFVeo7SGvajrl9oluYiSc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f067929b60b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
embed.testimonial.to/static/js/main.2ca58e8f.chunk.js
216.24.57.3200 OK 0 B URL HTTP/2 embed.testimonial.to/static/js/main.2ca58e8f.chunk.js
IP 216.24.57.3:0
GET /static/js/main.2ca58e8f.chunk.js HTTP/1.1
Host: embed.testimonial.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embed.testimonial.to/w/letsdefend-ambassadors?animated=on&theme=dark&shadowColor=ffffff
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:02 GMT
content-type: text/javascript; charset=utf-8
cf-ray: 794f067c4980b50c-OSL
age: 35
cache-control: public, max-age=0, s-maxage=300
etag: W/"abad49421214753e7a86e934a39dde8f"
last-modified: Fri, 03 Feb 2023 19:37:35 UTC
vary: Accept-Encoding
cf-cache-status: HIT
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
letsdefend.io/images/landing-v2/rocket.svg
104.26.15.61200 OK 0 B URL HTTP/2 letsdefend.io/images/landing-v2/rocket.svg
IP 104.26.15.61:0
GET /images/landing-v2/rocket.svg HTTP/1.1
Host: letsdefend.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:02 GMT
content-type: image/svg+xml
last-modified: Tue, 09 Aug 2022 18:47:35 GMT
etag: W/"290-5e5d35d9e02f3"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5382
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H%2B3ok3Qr2fdiWJ9IA9scjkz2nIbdFfIq%2FKAnMg2ZIJl8nL8kM8CBF9D3lkyRMoLUjzilHaIB3GOIcXQMcOwjOQ8RXkkzYVEmxEDajKdnRdEvtEDgMHdlfaNmqZ8fMrI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f0679ca3c0b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.paddle.com/paddle/assets/css/animate.css
172.66.43.196200 OK 0 B URL HTTP/2 cdn.paddle.com/paddle/assets/css/animate.css
IP 172.66.43.196:0
GET /paddle/assets/css/animate.css HTTP/1.1
Host: cdn.paddle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:01 GMT
content-type: text/css
x-amz-replication-status: COMPLETED
last-modified: Fri, 03 Feb 2023 14:07:01 GMT
etag: W/"6b0b1b3d169eb424f5898cad70ee4496"
x-amz-server-side-encryption: AES256
x-amz-version-id: MJGQRJr.pbPiXj1kcuiJqbDOHlX17NbJ
x-cache: Hit from cloudfront
via: 1.1 f9a0ddc3860252ab6c4d02ab024b4890.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: wNnhnlG4bhpNrL2xnhEjmBhSpfDHA6-_DNqkcu6097Sk1T3zYOqzgA==
cf-cache-status: HIT
age: 13778
expires: Mon, 06 Feb 2023 02:19:01 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f0678ed61b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.paddle.com/paddle/paddle.js
172.66.43.196200 OK 0 B URL HTTP/2 cdn.paddle.com/paddle/paddle.js
IP 172.66.43.196:0
GET /paddle/paddle.js HTTP/1.1
Host: cdn.paddle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:01 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=228558
etag: W/"a4cd95d0e54d00143755a18c1638d855"
last-modified: Fri, 03 Feb 2023 14:07:01 GMT
via: 1.1 e9eeb72bccacc26d81e7bd02c27d126a.cloudfront.net (CloudFront)
x-amz-cf-id: _HIkTHqMpP25ttQL6rBkVPrn4ySvEUbRQANpPXhTujkTmeDq1avOOw==
x-amz-cf-pop: ARN1-C1
x-cache: Hit from cloudfront
x-amz-replication-status: PENDING
x-amz-server-side-encryption: AES256
x-amz-version-id: l9uE1wT4RZERe9ns1N867acB0SM2xoxd
cf-cache-status: HIT
age: 13720
expires: Mon, 06 Feb 2023 02:19:01 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f0677cc1ab518-OSL
content-encoding: br
X-Firefox-Spdy: h2
letsdefend.io/images/landing-v2/ibm.svg
104.26.15.61200 OK 0 B URL HTTP/2 letsdefend.io/images/landing-v2/ibm.svg
IP 104.26.15.61:0
GET /images/landing-v2/ibm.svg HTTP/1.1
Host: letsdefend.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:02 GMT
content-type: image/svg+xml
last-modified: Tue, 09 Aug 2022 18:47:36 GMT
etag: W/"68f-5e5d35dbbbcfc"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5382
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6ODKRUX5VotgJMSG6CUocIFRtP1qIb9l8UiBoGbiqj2SjMWuWfNZk44lu5wHXDe4EvObLexom2MEkUORS2xtey011f7VxPPDkCK2VYnl3sNUf2Sm2Gtl7DanotmFEHY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f067989ff0b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
letsdefend.io/images/landing-v2/Adobe_Corporate_logo.svg
104.26.15.61200 OK 0 B URL HTTP/2 letsdefend.io/images/landing-v2/Adobe_Corporate_logo.svg
IP 104.26.15.61:0
GET /images/landing-v2/Adobe_Corporate_logo.svg HTTP/1.1
Host: letsdefend.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:02 GMT
content-type: image/svg+xml
last-modified: Tue, 16 Aug 2022 07:04:03 GMT
etag: W/"e83-5e6565a7e45c9"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5382
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KLXemDQl7g%2F7foV%2B0hemj1jJNHrD2Mzt%2BylOyfUrjZutIFbF8eJhjsZmXeQKp0obXnNR0xAp0cyWWWFKPCG24AwW6XtnqjPDVBQUCbeg%2F6rB%2FfCa%2BtPs0S1At7Y0VP4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06799a100b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
letsdefend.io/images/landing-v2/virtual-job-experience.svg
104.26.15.61200 OK 0 B URL HTTP/2 letsdefend.io/images/landing-v2/virtual-job-experience.svg
IP 104.26.15.61:0
GET /images/landing-v2/virtual-job-experience.svg HTTP/1.1
Host: letsdefend.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:02 GMT
content-type: image/svg+xml
last-modified: Tue, 09 Aug 2022 18:47:32 GMT
etag: W/"c8b-5e5d35d78b73f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5382
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Eree8wB621GJb4t1Qw62AagPBcm6bb2JNl0cisVE4mN4l%2BwlRHkE1Th3DcvtuNJ06gkhweio3dLB%2BFWFaWWsIbXGCWiwAfZiXGmnkWwcoBZk4Fc8wZ2RnJoNH4aHkbo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06799a1e0b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2258091.js?sv=6
143.204.55.37200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-2258091.js?sv=6
IP 143.204.55.37:0
GET /c/hotjar-2258091.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sun, 05 Feb 2023 22:19:02 GMT
cache-control: max-age=60
etag: W/0e516f69e76850445404b4f8ae50d128
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: o15z_oCbDS4_X2gpqfYJAils7jo8hoyNlBxYzU5XBjZ1rEIl-ZxBvQ==
X-Firefox-Spdy: h2
letsdefend.io/
104.26.15.61200 OK 0 B IP 104.26.15.61:0
GET / HTTP/1.1
Host: letsdefend.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:01 GMT
content-type: text/html
last-modified: Mon, 30 Jan 2023 11:54:25 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l6i1Z8CHT440NK7Dju5FFmmJYqfFJegkAVfd69zgBti9E8Onr%2FA2x1JWsLtyk9VnCGD7i4Mf0a3Is4FOm10SPZ2NyYBN9Ci6MCp%2Fy8T1OUNX746W2sH%2Bd8jRqoH8Fsc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 794f0675cefc0b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Work+Sans:400,500,700&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Work+Sans:400,500,700&display=swap
IP 142.250.74.106:0
GET /css?family=Work+Sans:400,500,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Feb 2023 22:19:01 GMT
date: Sun, 05 Feb 2023 22:19:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
letsdefend.io/images/landing-v2/virgin.svg
104.26.15.61200 OK 0 B URL HTTP/2 letsdefend.io/images/landing-v2/virgin.svg
IP 104.26.15.61:0
GET /images/landing-v2/virgin.svg HTTP/1.1
Host: letsdefend.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:02 GMT
content-type: image/svg+xml
last-modified: Tue, 09 Aug 2022 18:47:33 GMT
etag: W/"20be-5e5d35d80970c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5382
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W2cRs4V%2Bouhv84JuYCsVhreOC6lE%2BzcHCj1icgEpRnfRMfWgf9qHXtLDX7wilPJS6SH79GdBvIkhlypo7DdkWT3ZFTA7TOcOIH9PvCq6EFAd6iY5cdy0SzCHxshdBhw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06799a150b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
embed.testimonial.to/static/css/main.3d7344a9.chunk.css
216.24.57.3200 OK 0 B URL HTTP/2 embed.testimonial.to/static/css/main.3d7344a9.chunk.css
IP 216.24.57.3:0
GET /static/css/main.3d7344a9.chunk.css HTTP/1.1
Host: embed.testimonial.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embed.testimonial.to/w/letsdefend-ambassadors?animated=on&theme=dark&shadowColor=ffffff
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:02 GMT
content-type: text/css; charset=utf-8
cf-ray: 794f067c395fb50c-OSL
age: 36
cache-control: public, max-age=0, s-maxage=300
etag: W/"34f8492fd7ee3e2483a58cf7d39b7a04"
last-modified: Fri, 03 Feb 2023 19:37:35 UTC
vary: Accept-Encoding
cf-cache-status: HIT
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
renderer-assets.typeform.com/modern-renderer.f17dcdde8bca6f807d17.js
143.204.55.76200 OK 0 B URL HTTP/2 renderer-assets.typeform.com/modern-renderer.f17dcdde8bca6f807d17.js
IP 143.204.55.76:0
GET /modern-renderer.f17dcdde8bca6f807d17.js HTTP/1.1
Host: renderer-assets.typeform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100
Origin: https://form.typeform.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/x-javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 02 Feb 2023 10:23:49 GMT
x-amz-version-id: bi8c_lUU5sMeXMJe7VNyJHRTvGsPxRht
server: AmazonS3
content-encoding: gzip
date: Sun, 05 Feb 2023 10:42:53 GMT
etag: W/"406ebbd19adbb7a29b72f01a9709758e"
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: EP2n5atsL8WRqFgVoGTG4SOAN0S-7vFp-OFBZeGxzUuG4i1o7cih3Q==
age: 41770
cache-control: max-age=2419200
X-Firefox-Spdy: h2
testimonial.to/js/iframeResizer.contentWindow.min.js
172.66.40.60200 OK 0 B URL HTTP/2 testimonial.to/js/iframeResizer.contentWindow.min.js
IP 172.66.40.60:0
GET /js/iframeResizer.contentWindow.min.js HTTP/1.1
Host: testimonial.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embed.testimonial.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:03 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: max-age=14400
etag: W/"369679aa12b01b6f6c506a2edd6f50ecc566ce6bcd3eead28af6b39b0e43c2c9"
last-modified: Tue, 24 Jan 2023 07:07:19 GMT
strict-transport-security: max-age=31556926
x-served-by: cache-yyz4535-YYZ
x-cache: MISS
x-cache-hits: 0
x-timer: S1674559197.436457,VS0,VE72
vary: x-fh-requested-host, accept-encoding
cf-cache-status: HIT
age: 2352
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dIl9jFyf61VIMj1wamgnOvJQ8%2B4dIZDDSrWVlyzaD4wH908uB71cL1zq0ZPPZGSfeALBiXFDVubPWVPIly0%2BobWgaatg354FYNvSJSiF2NR1R6HOW2ZxIVFKdYigX1ov"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 794f06817c890b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
embed.typeform.com/next/embed.js
54.230.111.81200 OK 0 B URL HTTP/2 embed.typeform.com/next/embed.js
IP 54.230.111.81:0
GET /next/embed.js HTTP/1.1
Host: embed.typeform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Mon, 30 Jan 2023 10:11:16 GMT
x-amz-version-id: wu8VpFEwiMIutFky5Rky_ouuxZmoV68D
server: AmazonS3
content-encoding: gzip
date: Sun, 05 Feb 2023 22:14:26 GMT
etag: W/"fb1d68b72178df5229dcca73466ecfc1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: RtI1UKhAUlD5fxjAwRCB_1fpDcEVKmKb7_pDnZpkPpYcYlCRhE2VjA==
age: 277
cache-control: public, max-age=0, must-revalidate
X-Firefox-Spdy: h2
font.typeform.com/dist/google/lekton/index.css
54.230.111.25200 OK 0 B URL HTTP/2 font.typeform.com/dist/google/lekton/index.css
IP 54.230.111.25:0
GET /dist/google/lekton/index.css HTTP/1.1
Host: font.typeform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100
Connection: keep-alive
Cookie: __cf_bm=fBNjri52x1IRFcuVkCgjh8SqrlmYcHXny7VDTXEajxs-1675635542-0-AeuHwimSn/EwyfEw8qwJjuQ86d7DHTANHsDLnhwJ8zQtddVy8axp9kVmEYqR6Esd48U2IG80L3zmi8IhpW1iEAM=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 24 Jan 2023 00:24:14 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: uFd9OXAB51aoxYS9LhOlcVB6mwCYp7ya
server: AmazonS3
content-encoding: gzip
date: Sat, 04 Feb 2023 20:38:17 GMT
cache-control: max-age=432000
etag: W/"4f1a7f55fc836fd95732b2948117bb05"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: tcGlS0k4WIH4KP5TAQHB5Whm9bxkvDiVI1tB8rJW7NaDCp_XIAgW9Q==
age: 92446
X-Firefox-Spdy: h2
letsdefend.io/images/landing-v2/Microsoft_logo.svg
104.26.15.61200 OK 0 B URL HTTP/2 letsdefend.io/images/landing-v2/Microsoft_logo.svg
IP 104.26.15.61:0
GET /images/landing-v2/Microsoft_logo.svg HTTP/1.1
Host: letsdefend.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:02 GMT
content-type: image/svg+xml
last-modified: Tue, 09 Aug 2022 18:47:35 GMT
etag: W/"de8-5e5d35da13f26"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5382
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WfgG8IV0fRzPze5ZaC76u%2FaddwM4S2kMoHXJ6%2FswRJj5DfzfOwyHZvn2iGVqUuFbxRmMyCbmtcNZiyBjhSE12%2Fa77UisQukEly2FC3h2pqjpP2t4V4wUcHJashfQ%2F1c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794f06798a030b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/2258091/visit-data?sv=6
52.19.186.201200 OK 0 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/2258091/visit-data?sv=6
IP 52.19.186.201:0
POST /api/v2/client/sites/2258091/visit-data?sv=6 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 129
Origin: https://letsdefend.io
Connection: keep-alive
Referer: https://letsdefend.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 22:19:03 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2