Report - noflix-web.vercel.app/

Report Overview

Visited public
2023-12-08 15:20:51
Tags
URL
noflix-web.vercel.app/
Finishing URL
noflix-web.vercel.app/
IP / ASN
76.76.21.241
#16509 AMAZON-02
Title
Netflix Clone

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-12-08 05:47:56	452 B	80 kB	142.250.74.168
www.paypal.com	2583	1999-07-15	2012-05-21 15:22:43	2023-12-08 05:17:02	536 B	82 kB	151.101.65.21
www.sandbox.paypal.com	42943	1999-07-15	2015-06-18 01:35:36	2023-12-03 14:43:44	1.2 kB	4.1 kB	151.101.65.21
noflix-web.vercel.app	unknown	2020-01-28	2023-10-25 03:55:12	2023-11-17 13:25:13	2.8 kB	1.4 MB	76.76.21.93
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-08 07:43:19	925 B	6.2 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-08 07:46:22	540 B	17 kB	142.250.74.131
assets.nflxext.com	3871	2011-02-11	2015-07-22 06:02:07	2023-12-07 20:25:24	590 B	108 kB	45.57.91.1
firebase.googleapis.com	4897	2005-01-25	2018-10-19 11:09:59	2023-12-07 20:19:56	1.2 kB	1.2 kB	142.250.74.74

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-12-08	medium	noflix-web.vercel.app/	Netflix Inc.
2023-12-08	medium	noflix-web.vercel.app/	Netflix Inc.
2023-12-08	medium	noflix-web.vercel.app/	Netflix Inc.
2023-12-08	medium	noflix-web.vercel.app/	Netflix Inc.
2023-12-08	medium	noflix-web.vercel.app/	Netflix Inc.
2023-12-08	medium	noflix-web.vercel.app/	Netflix Inc.

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (3)

	URL	From	Size	First Seen	Last Seen
	noflix-web.vercel.app/static/js/main.a1502955.js	ScriptElement	914 kB	2023-11-17	2024-08-20
Pretty URL noflix-web.vercel.app/static/js/main.a1502955.js IP 76.76.21.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-17 14:05 Last Seen2024-08-20 19:06 Times Seen5 Hash 39a975193e806dc2e77d5db6e910b0f5 bb86091d8b65e503b9c92a460c58deaafc4cf593 0668d033bd2193d1901893c5958add986535caeaefbacc25aadf352d6debf0b4 Loading...

	www.googletagmanager.com/gtag/js?l=dataLayer&id=G-YM8VKG60HJ	ScriptElement	222 kB	2023-12-08	2023-12-08
Pretty URL www.googletagmanager.com/gtag/js?l=dataLayer&id=G-YM8VKG60HJ IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-08 16:20 Last Seen2023-12-08 16:20 Times Seen1 Hash 88d8f1c4a3a0557996e55f1ae4955456 b91ecd769467634359cc7ff8ec3509b254d69974 cc8b95bed91386cce35917030fd5c9de42beec33f617ad409f8796c97e1309f6 Loading...

	www.paypal.com/sdk/js?client-id=Ae9eRAbkkvOxkpIXK57vAAnLFVJXlJ99jC6BWADhR1LeNE8XKNOXnE_3OguYBp8wQVH8QoiBEJVIPUUO&components=buttons&currency=USD	ScriptElement	298 kB	2023-12-08	2023-12-12
Pretty URL www.paypal.com/sdk/js?client-id=Ae9eRAbkkvOxkpIXK57vAAnLFVJXlJ99jC6BWADhR1LeNE8XKNOXnE_3OguYBp8wQVH8QoiBEJVIPUUO&components=buttons&currency=USD IP 151.101.65.21 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-08 16:20 Last Seen2023-12-12 06:25 Times Seen2 Hash c23eab8d46a92e6273670a9ff5f06178 21643b45b371df6bc3a1d26518ea645851d324ff cb524e05a1797adb9fe46e86dce4e2062b03455428e0203553e23ffc5ce34d61 Loading...

HTTP Transactions (16)

URL IP Response Size

noflix-web.vercel.app/

76.76.21.93

200 OK

660 B

URL User Request GET HTTP/2
noflix-web.vercel.app/
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (660), with no line terminators
Size
660 B (660 bytes)
Hash
dec59937ac9e9ae0816e8fce64e8122f
b34865c67389c1d8baeb7b5b416fefd5297b0b87
053113ebaed78b11161852f8c68ab443bef8a2597c278780729f1de055753cc5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Netflix Inc.

HTTP Headers

GET / HTTP/1.1
Host: noflix-web.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 3857665
cache-control: public, max-age=0, must-revalidate
content-disposition: inline
content-type: text/html; charset=utf-8
date: Fri, 08 Dec 2023 15:20:32 GMT
etag: "dec59937ac9e9ae0816e8fce64e8122f"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::4fxmh-1702048832674-f41895d2fdd2
content-length: 660
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:700,900

142.250.74.106

200 OK

1.1 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:700,900
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://noflix-web.vercel.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
gzip compressed data, max compression\012- data
Size
1.1 kB (1073 bytes)
Hash
1dfc811a3a6e91bf461bf2b2540b9181
6a5768a6249055bc9bad51729c80d8f44d86c4c0
16b787c11bca6f03aad34e81ffadea2c9e87de3712f4ab15b770e09a2965e121

HTTP Headers

GET /css?family=Roboto:700,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://noflix-web.vercel.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 08 Dec 2023 15:20:33 GMT
date: Fri, 08 Dec 2023 15:20:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.131

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://noflix-web.vercel.app/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://noflix-web.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 06 Dec 2023 21:52:12 GMT
expires: Thu, 05 Dec 2024 21:52:12 GMT
cache-control: public, max-age=31536000
age: 149301
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

assets.nflxext.com/ffe/siteui/vlv3/61b1ed99-aa5e-4310-91cb-317f7140c653/316508ee-271d-401d-a6e7-69daf1160421/GH-en-20211220-popsignuptwoweeks-perspective_alpha_website_small.jpg

45.57.91.1

200 OK

108 kB

URL GET HTTP/1.1
assets.nflxext.com/ffe/siteui/vlv3/61b1ed99-aa5e-4310-91cb-317f7140c653/316508ee-271d-401d-a6e7-69daf1160421/GH-en-20211220-popsignuptwoweeks-perspective_alpha_website_small.jpg
IP
45.57.91.1:443
ASN
#40027 NETFLIX-ASN

Requested by
https://noflix-web.vercel.app/
Certificate
IssuerDigiCert Inc
Subject*.1.nflxso.net
Fingerprint54:FB:08:0B:4E:D6:8E:2B:CD:B5:16:CE:35:1C:05:C5:DE:1F:92:E3
ValidityWed, 29 Nov 2023 00:00:00 GMT - Tue, 02 Jan 2024 23:00:57 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2000x1125, components 3\012- data
Size
108 kB (107844 bytes)
Hash
6b0e6f517837ffe97a0086b2b2b0ad93
114f03f3b628bd14a7867038c44d2399e3965c23
58ca9e5098e3841a9b4790ad422a548f9bb068df6f41da189ab0adfc49eb8aca

HTTP Headers

GET /ffe/siteui/vlv3/61b1ed99-aa5e-4310-91cb-317f7140c653/316508ee-271d-401d-a6e7-69daf1160421/GH-en-20211220-popsignuptwoweeks-perspective_alpha_website_small.jpg HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://noflix-web.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 08 Dec 2023 15:20:33 GMT
Content-Type: image/jpeg
Content-Length: 107844
Connection: keep-alive
Accept-Ranges: bytes
Content-MD5: aw5vUXg3/+l6AIaysrCtkw==
Last-Modified: Wed, 22 Dec 2021 13:54:38 GMT
Cache-Control: max-age=604801
Expires: Fri, 15 Dec 2023 15:20:34 GMT

firebase.googleapis.com/v1alpha/projects/-/apps/1:911780200236:web:d358dbdcf162246e343689%22/webConfig

142.250.74.74

400 Bad Request

0 B

URL GET HTTP/2
firebase.googleapis.com/v1alpha/projects/-/apps/1:911780200236:web:d358dbdcf162246e343689%22/webConfig
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://noflix-web.vercel.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v1alpha/projects/-/apps/1:911780200236:web:d358dbdcf162246e343689%22/webConfig HTTP/1.1
Host: firebase.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-goog-api-key
Referer: https://noflix-web.vercel.app/
Origin: https://noflix-web.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: https://noflix-web.vercel.app
vary: origin, referer, x-origin
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: x-goog-api-key
access-control-max-age: 3600
date: Fri, 08 Dec 2023 15:20:34 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

firebase.googleapis.com/v1alpha/projects/-/apps/1:911780200236:web:d358dbdcf162246e343689%22/webConfig

142.250.74.74

400 Bad Request

129 B

URL GET HTTP/2
firebase.googleapis.com/v1alpha/projects/-/apps/1:911780200236:web:d358dbdcf162246e343689%22/webConfig
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://noflix-web.vercel.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
JSON data\012- , ASCII text
Size
129 B (129 bytes)
Hash
121589201d2d9f474e1befbb7610df01
f61ebf444e3ee2d5479ea14c85bdc73b5ac178e7
b01105ed229707571186fdc753a734401dcd3dca044538c55285824604725bd3

HTTP Headers

GET /v1alpha/projects/-/apps/1:911780200236:web:d358dbdcf162246e343689%22/webConfig HTTP/1.1
Host: firebase.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://noflix-web.vercel.app/
x-goog-api-key: AIzaSyArfFQkPMzxxPTWnw1beU7w6g9NQlyn3ws
Origin: https://noflix-web.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 400 Bad Request
vary: Origin, X-Origin, Referer
content-type: application/json; charset=UTF-8
content-encoding: gzip
date: Fri, 08 Dec 2023 15:20:34 GMT
server: ESF
cache-control: private
content-length: 129
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://noflix-web.vercel.app
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

noflix-web.vercel.app/logo192.png

76.76.21.93

200 OK

15 kB

URL GET HTTP/2
noflix-web.vercel.app/logo192.png
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://noflix-web.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
15 kB (15414 bytes)
Hash
7cd4a9cac54651687d67f1e6572c46be
de07208feb4c2483c383c90822bce89cf24bbf78
1628dc1e770f1ba84be147b4efd27fc82960ae8f9d1946208aa7fa3361232f2a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Netflix Inc.

HTTP Headers

GET /logo192.png HTTP/1.1
Host: noflix-web.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://noflix-web.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="logo192.png"
content-type: image/png
date: Fri, 08 Dec 2023 15:20:34 GMT
etag: "7cd4a9cac54651687d67f1e6572c46be"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::4fxmh-1702048834101-242c4970f23b
content-length: 15414
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?l=dataLayer&id=G-YM8VKG60HJ

142.250.74.168

200 OK

79 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?l=dataLayer&id=G-YM8VKG60HJ
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://noflix-web.vercel.app/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (5955)
Size
79 kB (79200 bytes)
Hash
88d8f1c4a3a0557996e55f1ae4955456
b91ecd769467634359cc7ff8ec3509b254d69974
cc8b95bed91386cce35917030fd5c9de42beec33f617ad409f8796c97e1309f6

HTTP Headers

GET /gtag/js?l=dataLayer&id=G-YM8VKG60HJ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://noflix-web.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 08 Dec 2023 15:20:34 GMT
expires: Fri, 08 Dec 2023 15:20:34 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79200
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.paypal.com/sdk/js?client-id=Ae9eRAbkkvOxkpIXK57vAAnLFVJXlJ99jC6BWADhR1LeNE8XKNOXnE_3OguYBp8wQVH8QoiBEJVIPUUO&components=buttons&currency=USD

151.101.65.21

200 OK

79 kB

URL GET HTTP/2
www.paypal.com/sdk/js?client-id=Ae9eRAbkkvOxkpIXK57vAAnLFVJXlJ99jC6BWADhR1LeNE8XKNOXnE_3OguYBp8wQVH8QoiBEJVIPUUO&components=buttons&currency=USD
IP
151.101.65.21:443
ASN
#54113 FASTLY

Requested by
https://noflix-web.vercel.app/
Certificate
IssuerDigiCert Inc
Subjectwww.paypal.com
FingerprintEA:FF:48:F5:D0:D2:52:21:68:19:F0:08:CE:AB:9B:F5:52:C0:26:D7
ValidityFri, 13 Oct 2023 00:00:00 GMT - Tue, 20 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65408)
Size
79 kB (79360 bytes)
Hash
c23eab8d46a92e6273670a9ff5f06178
21643b45b371df6bc3a1d26518ea645851d324ff
cb524e05a1797adb9fe46e86dce4e2062b03455428e0203553e23ffc5ce34d61

HTTP Headers

GET /sdk/js?client-id=Ae9eRAbkkvOxkpIXK57vAAnLFVJXlJ99jC6BWADhR1LeNE8XKNOXnE_3OguYBp8wQVH8QoiBEJVIPUUO&components=buttons&currency=USD HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://noflix-web.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ch: sec-ch-ua-full, sec-ch-ua-arch, sec-ch-ua-model, sec-ch-ua-platform-version, sec-ch-ua-full-version, sec-ch-ua-full-version-list, sec-ch-ua-bitness, sec-ch-ua-wow64
access-control-allow-origin: *
access-control-expose-headers: Server-Timing
cache-control: public, max-age=3600, s-maxage=10800
content-encoding: gzip
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com; connect-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.qualtrics.com; frame-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.qualtrics.com; script-src 'nonce-3L4FA13ifjONnrsWs0wOXR9v3BBQuaX4VW/oTaWP9QdNFt60' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; style-src 'nonce-3L4FA13ifjONnrsWs0wOXR9v3BBQuaX4VW/oTaWP9QdNFt60' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; object-src 'none'; img-src https: data:; form-action 'self' https://*.paypal.com; base-uri 'self' https://*.paypal.com; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp
content-type: application/javascript; charset=utf-8
disable-set-cookie: true
etag: W/"13600-EQ7AGtUVqi8OLi/RTKUi7QQChcU"
origin-trial: AlIogV3KFtnbfVCyl9Z2NprE7FD8PYCt+TQiYdE3ppeJjJ0xJKcthYwOxXpRCNopxVWdOIENMcNSvQCGAmj0fw0AAAB2eyJvcmlnaW4iOiJodHRwczovL3BheXBhbC5jb206NDQzIiwiZmVhdHVyZSI6IlNlbmRGdWxsVXNlckFnZW50QWZ0ZXJSZWR1Y3Rpb24iLCJleHBpcnkiOjE2ODQ4ODYzOTksImlzU3ViZG9tYWluIjp0cnVlfQ==
p3p: true
paypal-debug-id: f284476336e32
permissions-policy: ch-ua-platform-version=(self "https://c.paypal.com"),ch-ua-arch=(self "https://c.paypal.com"),ch-ua-wow64=(self "https://c.paypal.com"),ch-ua-model=(self "https://c.paypal.com"),ch-ua-bitness=(self "https://c.paypal.com"),ch-ua-full-version=(self "https://c.paypal.com"),ch-ua-full-version-list=(self "https://c.paypal.com")
traceparent: 00-0000000000000000000f284476336e32-62b5e9352414fdbe-01
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
dc: ccg11-origin-www-1.paypal.com
via: 1.1 varnish, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 0
date: Fri, 08 Dec 2023 15:20:34 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-fra-eddf8230131-FRA, cache-bma1674-BMA, cache-bma1674-BMA
x-cache: MISS, MISS, MISS
x-cache-hits: 0, 0, 0
x-timer: S1702048834.885445,VS0,VE828
vary: Accept-Encoding
server-timing: "traceparent;desc="00-0000000000000000000f284476336e32-05fe2ed9d29f8032-01"";content-encoding;desc="gzip",x-cdn;desc="fastly"
content-length: 79360
X-Firefox-Spdy: h2

www.sandbox.paypal.com/xoplatform/logger/api/logger?disableSetCookie=true

151.101.65.21

200 OK

1.0 kB

URL POST HTTP/2
www.sandbox.paypal.com/xoplatform/logger/api/logger?disableSetCookie=true
IP
151.101.65.21:443
ASN
#54113 FASTLY

Requested by
https://noflix-web.vercel.app/
Certificate
IssuerDigiCert Inc
Subjectwww.sandbox.paypal.com
Fingerprint65:73:F5:A5:CB:D0:EA:36:1A:D0:57:FB:F2:F1:22:35:5A:79:30:30
ValidityFri, 11 Aug 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (1098), with no line terminators
Size
1.0 kB (1010 bytes)
Hash
e49c23b068cbf183bc8c6221a1d4957f
4f0dc367480f37b672343c8fae903074110e624e
105243bfe4a63496fb4eb4f34c1d04784c031678f8117d08dc175b55cc94f898

HTTP Headers

POST /xoplatform/logger/api/logger?disableSetCookie=true HTTP/1.1
Host: www.sandbox.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1716
Origin: https://noflix-web.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://noflix-web.vercel.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=utf-8
accept-ch: sec-ch-ua-full, sec-ch-ua-arch, sec-ch-ua-model, sec-ch-ua-platform-version, sec-ch-ua-full-version, sec-ch-ua-full-version-list, sec-ch-ua-bitness, sec-ch-ua-wow64
access-control-allow-credentials: true
access-control-allow-origin: https://noflix-web.vercel.app
cache-control: max-age=0, no-cache, no-store, must-revalidate
etag: W/"3f2-WI1MpzT4+l/KNdWsww7E4+fkEqE"
origin-trial: AlIogV3KFtnbfVCyl9Z2NprE7FD8PYCt+TQiYdE3ppeJjJ0xJKcthYwOxXpRCNopxVWdOIENMcNSvQCGAmj0fw0AAAB2eyJvcmlnaW4iOiJodHRwczovL3BheXBhbC5jb206NDQzIiwiZmVhdHVyZSI6IlNlbmRGdWxsVXNlckFnZW50QWZ0ZXJSZWR1Y3Rpb24iLCJleHBpcnkiOjE2ODQ4ODYzOTksImlzU3ViZG9tYWluIjp0cnVlfQ==
paypal-debug-id: f90605478d8db
permissions-policy: ch-ua-platform-version=(self "https://c.paypal.com"),ch-ua-arch=(self "https://c.paypal.com"),ch-ua-wow64=(self "https://c.paypal.com"),ch-ua-model=(self "https://c.paypal.com"),ch-ua-bitness=(self "https://c.paypal.com"),ch-ua-full-version=(self "https://c.paypal.com"),ch-ua-full-version-list=(self "https://c.paypal.com")
x-content-type-options: nosniff
accept-ranges: none
via: 1.1 varnish, 1.1 varnish
content-encoding: br
date: Fri, 08 Dec 2023 15:20:35 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-fra-eddf8230133-FRA, cache-bma1626-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1702048835.246147,VS0,VE187
vary: Accept-Encoding
server-timing: content-encoding;desc=br
X-Firefox-Spdy: h2

noflix-web.vercel.app/favicon.ico

76.76.21.93

200 OK

116 kB

URL GET HTTP/2
noflix-web.vercel.app/favicon.ico
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://noflix-web.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
MS Windows icon resource - 6 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel\012- data
Size
116 kB (116353 bytes)
Hash
ab24af284909c7a10bbaa9c30c2c3e16
68dd67e9e89a9e5cee1029776c83372a9f2a7938
2f608a09479eb7c7d8e9c12d9a9e62761c16036e852e195e49ef661a3f1f9f2b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Netflix Inc.

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: noflix-web.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://noflix-web.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="favicon.ico"
content-encoding: br
content-type: image/vnd.microsoft.icon
date: Fri, 08 Dec 2023 15:20:34 GMT
etag: W/"ab24af284909c7a10bbaa9c30c2c3e16"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::pp48d-1702048834101-857ac58034e0
X-Firefox-Spdy: h2

noflix-web.vercel.app/static/js/main.a1502955.js

76.76.21.93

200 OK

914 kB

URL GET HTTP/2
noflix-web.vercel.app/static/js/main.a1502955.js
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://noflix-web.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text, with very long lines (65465)
Size
914 kB (914083 bytes)
Hash
39a975193e806dc2e77d5db6e910b0f5
bb86091d8b65e503b9c92a460c58deaafc4cf593
0668d033bd2193d1901893c5958add986535caeaefbacc25aadf352d6debf0b4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Netflix Inc.

HTTP Headers

GET /static/js/main.a1502955.js HTTP/1.1
Host: noflix-web.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://noflix-web.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1822521
cache-control: s-maxage=31536000, immutable
content-disposition: inline; filename="main.a1502955.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Fri, 08 Dec 2023 15:20:33 GMT
etag: W/"39a975193e806dc2e77d5db6e910b0f5"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::f4wn8-1702048833163-aeb1af0931a8
X-Firefox-Spdy: h2

noflix-web.vercel.app/static/media/NetflixLogo1.b1812cf8a0b5a49a222a848813e199b2.svg

76.76.21.93

200 OK

1.1 kB

URL GET HTTP/2
noflix-web.vercel.app/static/media/NetflixLogo1.b1812cf8a0b5a49a222a848813e199b2.svg
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://noflix-web.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1151), with no line terminators
Size
1.1 kB (1136 bytes)
Hash
26cb3d3c545ad5f501927e9592404c69
9a5e391ef80671ac9c65969dae844f4937b078e5
e9f5d02811c345e1c04de507a13f8336ce2c4ede01be3ab9bbf8b422a086c7d6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Netflix Inc.

HTTP Headers

GET /static/media/NetflixLogo1.b1812cf8a0b5a49a222a848813e199b2.svg HTTP/1.1
Host: noflix-web.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://noflix-web.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1822521
cache-control: s-maxage=31536000, immutable
content-disposition: inline; filename="NetflixLogo1.b1812cf8a0b5a49a222a848813e199b2.svg"
content-encoding: br
content-type: image/svg+xml
date: Fri, 08 Dec 2023 15:20:33 GMT
etag: W/"44f81246c379fe6d1593fc59af6c80f2"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::mrt27-1702048833685-28c46948df41
X-Firefox-Spdy: h2

www.sandbox.paypal.com/xoplatform/logger/api/logger?disableSetCookie=true

151.101.65.21

200 OK

0 B

URL OPTIONS HTTP/2
www.sandbox.paypal.com/xoplatform/logger/api/logger?disableSetCookie=true
IP
151.101.65.21:443
ASN
#54113 FASTLY

Requested by
https://noflix-web.vercel.app/
Certificate
IssuerDigiCert Inc
Subjectwww.sandbox.paypal.com
Fingerprint65:73:F5:A5:CB:D0:EA:36:1A:D0:57:FB:F2:F1:22:35:5A:79:30:30
ValidityFri, 11 Aug 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /xoplatform/logger/api/logger?disableSetCookie=true HTTP/1.1
Host: www.sandbox.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://noflix-web.vercel.app/
Origin: https://noflix-web.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ch: sec-ch-ua-full, sec-ch-ua-arch, sec-ch-ua-model, sec-ch-ua-platform-version, sec-ch-ua-full-version, sec-ch-ua-full-version-list, sec-ch-ua-bitness, sec-ch-ua-wow64
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://noflix-web.vercel.app
cache-control: max-age=0, no-cache, no-store, must-revalidate
origin-trial: AlIogV3KFtnbfVCyl9Z2NprE7FD8PYCt+TQiYdE3ppeJjJ0xJKcthYwOxXpRCNopxVWdOIENMcNSvQCGAmj0fw0AAAB2eyJvcmlnaW4iOiJodHRwczovL3BheXBhbC5jb206NDQzIiwiZmVhdHVyZSI6IlNlbmRGdWxsVXNlckFnZW50QWZ0ZXJSZWR1Y3Rpb24iLCJleHBpcnkiOjE2ODQ4ODYzOTksImlzU3ViZG9tYWluIjp0cnVlfQ==
paypal-debug-id: f9060544517a6
permissions-policy: ch-ua-platform-version=(self "https://c.paypal.com"),ch-ua-arch=(self "https://c.paypal.com"),ch-ua-wow64=(self "https://c.paypal.com"),ch-ua-model=(self "https://c.paypal.com"),ch-ua-bitness=(self "https://c.paypal.com"),ch-ua-full-version=(self "https://c.paypal.com"),ch-ua-full-version-list=(self "https://c.paypal.com")
x-content-type-options: nosniff
accept-ranges: none
via: 1.1 varnish, 1.1 varnish
content-encoding: br
date: Fri, 08 Dec 2023 15:20:35 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-fra-etou8220048-FRA, cache-bma1626-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1702048835.050649,VS0,VE184
vary: accept-encoding
server-timing: content-encoding;desc=br
X-Firefox-Spdy: h2

noflix-web.vercel.app/static/css/main.f47ba63f.css

76.76.21.93

200 OK

339 kB

URL GET HTTP/2
noflix-web.vercel.app/static/css/main.f47ba63f.css
IP
76.76.21.93:443
ASN
#16509 AMAZON-02

Requested by
https://noflix-web.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
339 kB (338874 bytes)
Hash
f68ded03614ba2f7ae0a27e3d52e47cb
f73e0f6c737d499c0337a1164c54d4a675dffb1b
6381412e7cf1d51f327b6199e6f7a87f56d144d816d5e3b39d2cf4e452e439a9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Netflix Inc.

HTTP Headers

GET /static/css/main.f47ba63f.css HTTP/1.1
Host: noflix-web.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://noflix-web.vercel.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1822521
cache-control: s-maxage=31536000, immutable
content-disposition: inline; filename="main.f47ba63f.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Fri, 08 Dec 2023 15:20:33 GMT
etag: W/"f68ded03614ba2f7ae0a27e3d52e47cb"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::sv86g-1702048833172-51e210823bc7
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Oswald:wght@600;700&display=swap

142.250.74.106

200 OK

3.9 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Oswald:wght@600;700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://noflix-web.vercel.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (3968), with no line terminators
Size
3.9 kB (3878 bytes)
Hash
435b110df8140dab655f33a45b561246
d14f2758ad6a1d55494b18c375cb9291f529c6c7
d76b3c65b0699af12152b2953134514164c397991b03b2f3229f742f3125de6b

HTTP Headers

GET /css2?family=Oswald:wght@600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://noflix-web.vercel.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 08 Dec 2023 15:20:33 GMT
date: Fri, 08 Dec 2023 15:20:33 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (16)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers