learn.cisecurity.org/e/799323/mitigations-M1038-/4tltxf/2128837011/h/1g1t36qnTqdBfucklniIIJDF9Y_EcJG6bm73UVg2mDA
18.208.125.13 119 B URL learn.cisecurity.org/e/799323/mitigations-M1038-/4tltxf/2128837011/h/1g1t36qnTqdBfucklniIIJDF9Y_EcJG6bm73UVg2mDA
IP 18.208.125.13:0
File type HTML document, ASCII text, with no line terminators
Hash a62d0c8b957a49e6b13fc01fdd4af785
952676473dd3df3ce3e410eb73d70f61d3fcb66b
33522a85b16ccf6a22fe4c6aa66e809995965d63245014dfb49ce570f74336d5
GET /e/799323/mitigations-M1038-/4tltxf/2128837011/h/1g1t36qnTqdBfucklniIIJDF9Y_EcJG6bm73UVg2mDA HTTP/1.1
Host: learn.cisecurity.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Fri, 19 Apr 2024 10:32:30 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 119
Connection: keep-alive
set-cookie: pardot=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
location: https://attack.mitre.org/mitigations/M1038/
p3p: CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT", policyref="/w3c/p3p.xml"
cache-control: max-age=63072000
expires: Sun, 19 Apr 2026 10:32:29 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
X-Pardot-Route: e8229a0ff18ebffc83a98010d2521dd5
attack.mitre.org/mitigations/M1038/
185.199.109.153200 OK 14 kB URL User Request GET HTTP/2 attack.mitre.org/mitigations/M1038/
IP 185.199.109.153:443
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type HTML document, ASCII text, with very long lines (3190)
Hash 788c90c5dfc2acabbf9b52e91a4ca179
efc56ca302743a5afa47bfde4bb95ba080ef63dc
1b33ef0b8a078fbc5c5119f62d34db860fc04241e610dbe0716ce45c519bfef0
GET /mitigations/M1038/ HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: GitHub.com
content-type: text/html; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-1d401"
expires: Fri, 19 Apr 2024 10:42:30 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 5C72:2C77F2:115BB37:11BD666:6622483E
accept-ranges: bytes
age: 0
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713522750.192163,VS0,VE127
vary: Accept-Encoding
x-fastly-request-id: 7a2210017b976364d09f34deb7fa50ba809d8c3e
content-length: 14426
X-Firefox-Spdy: h2
attack.mitre.org/theme/style/bootstrap.min.css
185.199.109.153200 OK 24 kB URL GET HTTP/2 attack.mitre.org/theme/style/bootstrap.min.css
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type ASCII text, with very long lines (65324)
Hash a15c2ac3234aa8f6064ef9c1f7383c37
6e10354828454898fda80f55f3decb347fd9ed21
60b19e5da6a9234ff9220668a5ec1125c157a268513256188ee80f2d2c8d8d36
GET /theme/style/bootstrap.min.css HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-2606e"
expires: Fri, 19 Apr 2024 10:10:14 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: HIT
x-github-request-id: 7FFA:2C0AE3:64E498B:6729998:662240BC
accept-ranges: bytes
age: 149
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1713522751.518950,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 8bdf70b782e4efd2754c88b4ed10b34d28f2a22a
content-length: 23620
X-Firefox-Spdy: h2
attack.mitre.org/theme/style/bootstrap-select.min.css
185.199.109.153200 OK 2.3 kB URL GET HTTP/2 attack.mitre.org/theme/style/bootstrap-select.min.css
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type ASCII text, with very long lines (10943), with CRLF line terminators
Hash 486d7426635cb3698ca5bd4c50e5a7f7
aefc4756004cdae1903f6aaceb5ef20f76b277e4
c22308edbb8e579501cdd58de2ce245ea13f2d9efde21c79a0938e21094305a3
GET /theme/style/bootstrap-select.min.css HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-2bb0"
expires: Fri, 19 Apr 2024 10:31:05 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 4252:2AF6FA:4D18C47:4EC4ABB:66224591
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
age: 18
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522751.520529,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: a8db40698718e9f08841d6db88c07a3b336ba83c
content-length: 2262
X-Firefox-Spdy: h2
attack.mitre.org/theme/style/fontawesome-6.5.1/css/brands.min.css
185.199.109.153200 OK 5.0 kB URL GET HTTP/2 attack.mitre.org/theme/style/fontawesome-6.5.1/css/brands.min.css
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type ASCII text, with very long lines (19088)
Hash c34572fbb8256bceaa2d72c6bbf4a54b
61821918deb7a14d789b08b008c6bedce7819cea
321e5ebea077d3b3be03f5b0218ceab2259cf6e93035aa8644e7970a054fd687
GET /theme/style/fontawesome-6.5.1/css/brands.min.css HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-4b6b"
expires: Fri, 19 Apr 2024 10:02:02 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: HIT
x-github-request-id: A9B8:303CF7:E281B0:E7A2E1:66223EFF
accept-ranges: bytes
age: 149
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1713522751.524976,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 48833852a6b70343cd1a712916ff94e31243b0c4
content-length: 4959
X-Firefox-Spdy: h2
attack.mitre.org/theme/style.min.css?fbd3eefa
185.199.109.153200 OK 10 kB URL GET HTTP/2 attack.mitre.org/theme/style.min.css?fbd3eefa
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type ASCII text, with very long lines (857)
Hash fbd3eefaf70c9d3fd0e4717a0c08fee4
f9f99644605ef48f528364c96e74278874fa1726
476285b1ab4637e090f6268caef4b5996cf63b5c3a91075a4d077d2eb17c56cb
GET /theme/style.min.css?fbd3eefa HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-dd02"
expires: Fri, 19 Apr 2024 09:34:30 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 7A00:1F2E28:29512F6:2A36CF4:6622384D
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
age: 18
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522751.526277,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 376ed48d6da2c6a80bd479db8544c513d0e52a73
content-length: 10096
X-Firefox-Spdy: h2
attack.mitre.org/theme/images/mitre_attack_logo.png
185.199.109.153 8.5 kB URL attack.mitre.org/theme/images/mitre_attack_logo.png
IP 185.199.109.153:0
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type PNG image data, 1191 x 126, 8-bit colormap, non-interlaced
Hash c11bfbd5df76c3768bcb8562303647f2
83dedfa61f10b1de0ec98ec1bc1e5cf6f1264d8d
3ae6a7bfab7524a73fda8afb924ee4ebcaede820e4aacbbadfa7a958a45bef93
GET /theme/images/mitre_attack_logo.png HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/png
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: "660b797f-210d"
expires: Fri, 19 Apr 2024 08:56:39 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: E664:1C8AC3:162CAD6:16A80AB:66222F6E
accept-ranges: bytes
age: 148
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1713522751.527723,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 4f90bf8f774dc7d5828c4d59cfcae987be3b1e1e
content-length: 8461
X-Firefox-Spdy: h2
attack.mitre.org/theme/images/external-site.svg
185.199.109.153200 OK 1.0 kB URL GET HTTP/2 attack.mitre.org/theme/images/external-site.svg
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type SVG Scalable Vector Graphics image
Hash ca1d4086ac72385da77bfddef57baca7
1f5893a8aaa43348d9ae0b1699f48f6964568d50
92232d88078e2a618a3a4a02443fa1df4649718289bb9cec2a3bbd5910b337a4
GET /theme/images/external-site.svg HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-7c6"
expires: Fri, 19 Apr 2024 10:20:54 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 7FCE:263237:5248F6F:53FD0CE:6622432D
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
age: 148
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522751.530265,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 7fddeae0947762e3b0eeaf70011fcd291cb50414
content-length: 1022
X-Firefox-Spdy: h2
attack.mitre.org/theme/images/external-site-dark.jpeg
185.199.109.153200 OK 15 kB URL GET HTTP/2 attack.mitre.org/theme/images/external-site-dark.jpeg
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 90x90, segment length 16, progressive, precision 8, 512x512, components 3
Hash 4be87aa32da619e2deb03f384dcd0113
463448bc680ec7c41b0dae13b49b06f179fab6bc
42a7279fdff15eebdfcda93b2ceeedb3e4d379c68cbb711b84d41ed9b71252cf
GET /theme/images/external-site-dark.jpeg HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/jpeg
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: "660b797f-3a2b"
expires: Fri, 19 Apr 2024 09:53:58 GMT
cache-control: max-age=600
x-proxy-cache: HIT
x-github-request-id: C442:28A741:38F3694:3A30B1B:66223CF6
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
age: 9
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522751.531004,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 8666106cc56b9fd7013b192370a5c04139da6fe1
content-length: 14891
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/settings.js
185.199.109.153200 OK 224 B URL GET HTTP/2 attack.mitre.org/theme/scripts/settings.js
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Hash 1b57359133e8f499b517337a288004e4
cdbdfba747eb68d939596e2caf06b056d4d9a0d0
b8a23f5cdad819c9354e7edd5b276ec17635823b134c62fd516845ff9918b0ad
GET /theme/scripts/settings.js HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-12b"
expires: Fri, 19 Apr 2024 10:40:02 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: C770:263237:528E7B6:5443E07:662247AA
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
age: 18
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522751.533269,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: ac74514567789f052d620abb6f508ad2cc21b48e
content-length: 224
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/bootstrap.bundle.min.js
185.199.109.153200 OK 23 kB URL GET HTTP/2 attack.mitre.org/theme/scripts/bootstrap.bundle.min.js
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type JavaScript source, ASCII text, with very long lines (65297)
Hash 964f6fdf7b2080375cdd6c6392aa62ef
ef7d2ef43eb11fa0b6ca3f917afa3cfb1e164c85
124bbd8d249b86351701081fde6f3584811ecaeaa6a179154ea170d6ad48eff8
GET /theme/scripts/bootstrap.bundle.min.js HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-13b3c"
expires: Fri, 19 Apr 2024 10:40:02 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: F278:29EF9F:5789820:5976E36:662247A9
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
age: 18
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522751.539900,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 26c9fdafb3c7f16c1c2e0d4acf3e2bba616f2a54
content-length: 22985
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/site.js?1078
185.199.109.153200 OK 445 B URL GET HTTP/2 attack.mitre.org/theme/scripts/site.js?1078
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type JavaScript source, ASCII text
Hash 16d9492a7c971bb213abafdc335fb671
e809da48d7fca0d39b6947dc233b84eee5c67826
caab156d665d81279e379525e46e84463f37467dad0b67d416f5136617e9cfbc
GET /theme/scripts/site.js?1078 HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-3ca"
expires: Fri, 19 Apr 2024 10:05:37 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 18C4:263237:520FF34:53C2FBE:66223F99
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
age: 148
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522751.542941,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 7ba25ac4f63d6641ccdfc66b9b65881f4eb7478a
content-length: 445
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/settings.js?6071
185.199.109.153200 OK 224 B URL GET HTTP/2 attack.mitre.org/theme/scripts/settings.js?6071
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Hash 1b57359133e8f499b517337a288004e4
cdbdfba747eb68d939596e2caf06b056d4d9a0d0
b8a23f5cdad819c9354e7edd5b276ec17635823b134c62fd516845ff9918b0ad
GET /theme/scripts/settings.js?6071 HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-12b"
expires: Fri, 19 Apr 2024 10:40:02 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: C770:263237:528E7B6:5443E07:662247AA
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
age: 18
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 2
x-timer: S1713522751.543989,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: aa66edffb10475a77fc28214038e5559b49735c2
content-length: 224
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/search_bundle.js
185.199.109.153200 OK 108 kB URL GET HTTP/2 attack.mitre.org/theme/scripts/search_bundle.js
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65502), with no line terminators
Size 108 kB (107850 bytes)
Hash ec8aa8edf0cc379b236bed71b9842ef8
99b3a06647ef450964a209aff90568cea7c68b67
6a19f14ed56f9c80fb48fdb384e11a93aa8776d4392e0aab9a719f90f8263b72
GET /theme/scripts/search_bundle.js HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-63f9b"
expires: Fri, 19 Apr 2024 10:42:12 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: E398:263237:5296D6C:544C623:6622482C
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
age: 18
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522751.545580,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 3079cc2570d1186f74d9bf2a523886f014dd9871
content-length: 107850
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/resizer.js
185.199.109.153200 OK 401 B URL GET HTTP/2 attack.mitre.org/theme/scripts/resizer.js
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Hash f10494c1b6cf88c889c6184a91797016
3f0377d2a8867b1cf138b68136cd313b04b6d828
a5581c8fd475cbef05bd3ea452986457c4b61de2fd0f6b6d8c3073305b7e4c4e
GET /theme/scripts/resizer.js HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-455"
expires: Fri, 19 Apr 2024 10:42:12 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 6DEE:263237:5296D6C:544C622:6622482B
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
age: 18
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522751.547444,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 42db602bcd81d64e6bba63d8541038c72bc7801a
content-length: 401
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-62667723-1
142.250.74.40200 OK 55 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-62667723-1
IP 142.250.74.40:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D
ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File type JavaScript source, ASCII text, with very long lines (1900)
Hash d9fde264344d27989c23f5fa22a5471e
32a020258c2b0c4cd4232c1566e56350c31b8459
8b08fa96369c0a492401486b50595f365d113aedd43bb9b5e64ae78c66220276
GET /gtag/js?id=UA-62667723-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 19 Apr 2024 10:32:30 GMT
expires: Fri, 19 Apr 2024 10:32:30 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 55429
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/sidebar-load-all.js
185.199.109.153200 OK 817 B URL GET HTTP/2 attack.mitre.org/theme/scripts/sidebar-load-all.js
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type JavaScript source, ASCII text
Hash b570ad692461d0bd17b4f2881710b676
fc6476286b6944d55a6e123e50738216004c06e7
b479d046a4d9a248ba5b7b980b8afb8e2434033c6c00b6726c86abe111781581
GET /theme/scripts/sidebar-load-all.js HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-8f9"
expires: Fri, 19 Apr 2024 10:40:02 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: CF9C:1B5FBD:496120B:4B069DA:662247AA
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
age: 18
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522751.549649,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 820a94a148ffea7b05e336284af0a19544276f62
content-length: 817
X-Firefox-Spdy: h2
attack.mitre.org/theme/style/bootstrap-tourist.css
185.199.109.153200 OK 671 B URL GET HTTP/2 attack.mitre.org/theme/style/bootstrap-tourist.css
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Hash 6721d13d3961015102896e679284bcac
71eba6f04f5d8b1ccdd34982d65887b9ba1bdcca
50d579034cf5e54e53ad48172173f27b9eae3cd1c493c554526510386ac0200c
GET /theme/style/bootstrap-tourist.css HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-978"
expires: Fri, 19 Apr 2024 10:42:30 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: E652:2285C3:7A0C8C0:7CC18EA:6622483E
accept-ranges: bytes
age: 0
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713522751.519799,VS0,VE124
vary: Accept-Encoding
x-fastly-request-id: 82f8578f0c2784f0a876a579193fdfb308e19af7
content-length: 671
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/bootstrap-select.min.js
185.199.109.153200 OK 16 kB URL GET HTTP/2 attack.mitre.org/theme/scripts/bootstrap-select.min.js
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type JavaScript source, ASCII text, with very long lines (53354)
Hash 3a7fa5da04cf747fa04aa1ec8d2c2794
f6ffcd620919065a9614ab16d7d7d255c508106e
aa8d026a6e17274410d3a5e70a20856018771835d4e398f7969529f9e9b6c815
GET /theme/scripts/bootstrap-select.min.js HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-d18c"
expires: Fri, 19 Apr 2024 10:42:30 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: B918:1C8AC3:17A71A6:1829BF6:6622483E
accept-ranges: bytes
age: 0
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713522751.536111,VS0,VE111
vary: Accept-Encoding
x-fastly-request-id: 167787e0280dd03fda8157e5e1c818f277392f71
content-length: 16053
X-Firefox-Spdy: h2
attack.mitre.org/theme/style/fontawesome-6.5.1/css/fontawesome.min.css
185.199.109.153200 OK 18 kB URL GET HTTP/2 attack.mitre.org/theme/style/fontawesome-6.5.1/css/fontawesome.min.css
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type ASCII text, with very long lines (52276)
Hash 050a20fcaed9e77ff3c43b7aae625283
397e1e16117c1a4166e52f424e2ae4a2b5fcbe09
8eb5b44ce5971a501e5a17954c464b80aba0c4604675b5603a7f456459af88a1
GET /theme/style/fontawesome-6.5.1/css/fontawesome.min.css HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-13b9b"
expires: Fri, 19 Apr 2024 10:42:30 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: F6AE:28A741:3999D4B:3ADA713:6622483E
accept-ranges: bytes
age: 0
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713522751.524486,VS0,VE128
vary: Accept-Encoding
x-fastly-request-id: 30251883d33ed94f3a3e8f7608f8748ad177d025
content-length: 17654
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/popper.min.js
185.199.109.153200 OK 6.1 kB URL GET HTTP/2 attack.mitre.org/theme/scripts/popper.min.js
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type JavaScript source, ASCII text, with very long lines (3324)
Hash 33150817803ad0bc16b719be221c8701
fa042c1587180e47a71fd6bd3b819d17b7c1d017
976705f4556d7fb372a1696b61112f0091182e1761a27a7ff261cafb4da551da
GET /theme/scripts/popper.min.js HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-5050"
expires: Fri, 19 Apr 2024 10:42:30 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 408A:2AF6FA:4D410EF:4EEDBFF:6622483E
accept-ranges: bytes
age: 0
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713522751.535302,VS0,VE119
vary: Accept-Encoding
x-fastly-request-id: 7a2066a35acb8964fe50148838e203a9169d0075
content-length: 6148
X-Firefox-Spdy: h2
attack.mitre.org/theme/images/mitrelogowhiteontrans.gif
185.199.109.153200 OK 661 B URL GET HTTP/2 attack.mitre.org/theme/images/mitrelogowhiteontrans.gif
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type GIF image data, version 89a, 189 x 86
Hash d1fafd1b628d38206e63aa5d9ab0efbe
bea2645a2ff9e13c8b2506a51e6d88dead4c771c
55f61ce63b8f846de286d53083e0380f2b8898fa15245437a3f960fa9dc27503
GET /theme/images/mitrelogowhiteontrans.gif HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/gif
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: "660b797f-295"
expires: Fri, 19 Apr 2024 10:29:11 GMT
cache-control: max-age=600
x-proxy-cache: HIT
x-github-request-id: 32E0:156FBE:417A534:42F8ED6:66224591
accept-ranges: bytes
age: 0
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1713522751.533947,VS0,VE124
vary: Accept-Encoding
x-fastly-request-id: bfbc9579bde40eb2312b3edecbaa794a6dffa29e
content-length: 661
X-Firefox-Spdy: h2
attack.mitre.org/theme/style/fontawesome-6.5.1/css/solid.min.css
185.199.109.153 326 B URL attack.mitre.org/theme/style/fontawesome-6.5.1/css/solid.min.css
IP 185.199.109.153:0
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type ASCII text, with very long lines (353)
Hash 4d63c1a82931dd3b2d8ba3135987b9c3
b79ead6a4a6548ec021c030e9b0e95c9ba0648e7
b8afa4243dd1bf735f512708da5335b0ed314d9e58a0a1cf1b781250cf5fb004
GET /theme/style/fontawesome-6.5.1/css/solid.min.css HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-23c"
expires: Fri, 19 Apr 2024 10:42:30 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: DB3C:260522:CE91F9:D3555B:6622483E
accept-ranges: bytes
age: 0
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713522751.525807,VS0,VE139
vary: Accept-Encoding
x-fastly-request-id: 4a572a456c09074b8936a22869241569092a13ad
content-length: 326
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/jquery-3.5.1.min.js
185.199.109.153200 OK 31 kB URL GET HTTP/2 attack.mitre.org/theme/scripts/jquery-3.5.1.min.js
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type JavaScript source, ASCII text, with very long lines (65451)
Hash dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
GET /theme/scripts/jquery-3.5.1.min.js HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-15d84"
expires: Fri, 19 Apr 2024 10:42:30 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: A028:2AF6FA:4D410EF:4EEDBFE:6622483D
accept-ranges: bytes
age: 0
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713522751.534599,VS0,VE162
vary: Accept-Encoding
x-fastly-request-id: aae31c30d0f6550ad0f3029e7863cb7935e4a5e8
content-length: 31147
X-Firefox-Spdy: h2
attack.mitre.org/theme/fonts/Roboto/Roboto-Light.ttf
185.199.109.153200 OK 91 kB URL GET HTTP/2 attack.mitre.org/theme/fonts/Roboto/Roboto-Light.ttf
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type TrueType Font data, 18 tables, 1st "GDEF", 28 names, Macintosh, Copyright 2011 Google Inc. All Rights Reserved.Roboto LightRegularVersion 2.137; 2017Roboto-Ligh
Hash fc84e998bc29b297ea20321e4c90b6ed
73a2bb2d6e591a90ffb4ed118a3989fb17b54c7b
a6d343d425bc38db90152fa06058b1c7391eca9264f334ef65c1ce175085c6f6
GET /theme/fonts/Roboto/Roboto-Light.ttf HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/theme/style.min.css?fbd3eefa
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: font/ttf
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-299b4"
expires: Fri, 19 Apr 2024 10:42:13 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 9AE8:1B5FBD:4968CBE:4B0E6F7:6622482C
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
age: 18
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522751.872590,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 6a20ebc2688907c84e1e9542010b4fc2cff5ed42
content-length: 90875
X-Firefox-Spdy: h2
attack.mitre.org/theme/fonts/Roboto/Roboto-Regular.ttf
185.199.109.153200 OK 91 kB URL GET HTTP/2 attack.mitre.org/theme/fonts/Roboto/Roboto-Regular.ttf
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type TrueType Font data, 18 tables, 1st "GDEF", 26 names, Macintosh, Copyright 2011 Google Inc. All Rights Reserved.RobotoRegularVersion 2.137; 2017Roboto-RegularRob
Hash 3e1af3ef546b9e6ecef9f3ba197bf7d2
dd1b1db13ff1f72138c134c62f38fef83749f36a
79e851404657dac2106b3d22ad256d47824a9a5765458edb72c9102a45816d95
GET /theme/fonts/Roboto/Roboto-Regular.ttf HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/theme/style.min.css?fbd3eefa
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: font/ttf
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-29e9c"
expires: Fri, 19 Apr 2024 10:13:11 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: HIT
x-github-request-id: CA78:263237:5234991:53E84A0:662241D7
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:30 GMT
via: 1.1 varnish
age: 18
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 6
x-timer: S1713522751.874328,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: bbf8e60dd0f424cf60ca3ddc8e2180307d3876f6
content-length: 91002
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-C8EHW4DS2X&l=dataLayer&cx=c
142.250.74.40200 OK 93 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-C8EHW4DS2X&l=dataLayer&cx=c
IP 142.250.74.40:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D
ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File type JavaScript source, ASCII text, with very long lines (3034)
Hash df481e04f4a1aa0afd80438fb8ee7019
aa023f3f068c8aae89cccf6ba4aa3ae2882e9905
ea2b37d4b3f870d493bb3c0293cb547523bc7efd8a88fcd7b1b9d18c3f7243c5
GET /gtag/js?id=G-C8EHW4DS2X&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 19 Apr 2024 10:32:30 GMT
expires: Fri, 19 Apr 2024 10:32:30 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93365
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
attack.mitre.org/theme/fonts/Roboto/Roboto-Thin.ttf
185.199.109.153200 OK 89 kB URL GET HTTP/2 attack.mitre.org/theme/fonts/Roboto/Roboto-Thin.ttf
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type TrueType Font data, 18 tables, 1st "GDEF", 28 names, Macintosh, Copyright 2011 Google Inc. All Rights Reserved.Roboto ThinRegularVersion 2.137; 2017Roboto-ThinR
Hash 89e2666c24d37055bcb60e9d2d9f7e35
9514ad7aee341594f43a33893f0b3d8a6d81f32e
3d91f7aa69cb7f7064035895c566ac5cb9b2084582d351af7267bb4e0fba60f5
GET /theme/fonts/Roboto/Roboto-Thin.ttf HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/theme/style.min.css?fbd3eefa
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: font/ttf
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-29f80"
expires: Fri, 19 Apr 2024 10:42:31 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 1934:1C8AC3:17A720B:1829C60:6622483E
accept-ranges: bytes
age: 0
date: Fri, 19 Apr 2024 10:32:31 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713522751.955823,VS0,VE154
vary: Accept-Encoding
x-fastly-request-id: 30656789733afc1f8d48679737d5e3443807eac9
content-length: 89365
X-Firefox-Spdy: h2
attack.mitre.org/search/datasources.json
185.199.109.153200 OK 199 kB URL GET HTTP/2 attack.mitre.org/search/datasources.json
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Size 199 kB (198833 bytes)
Hash 1f4a4d46042d93477ef2c29678150357
247480048ab3ecaea1d46833c8ea85341c1ccda5
6a474367ee37fd5c0e4d7c907f07d2229b2418cd24ed99973981eb1c95b3552d
Analyzer Verdict Alert Public Nextron YARA rules malware Detects strings found in Runspace Post Exploitation Toolkit
GET /search/datasources.json HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-e028f"
expires: Fri, 19 Apr 2024 10:29:27 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: CB6A:19F0E8:452FC46:46B0AB5:66224527
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:31 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522751.005385,VS0,VE121
vary: Accept-Encoding
x-fastly-request-id: 0e7613f5efe77518dd00101ba936abe6ff33729f
content-length: 198833
X-Firefox-Spdy: h2
attack.mitre.org/search/groups.json
185.199.109.153200 OK 298 kB URL GET HTTP/2 attack.mitre.org/search/groups.json
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Size 298 kB (298296 bytes)
Hash f4eeac5bc4fbaa7baaaf421de2dd9a29
ac76585b74e9416d7d277a52a9ad9dac45584d26
cbcebf083c6906c4c1a1bdb64bc92c7906d2ea61cee6c25b21e9beeda622bab6
Analyzer Verdict Alert Public Nextron YARA rules malware Detects strings found in Runspace Post Exploitation Toolkit
Public InfoSec YARA rules malware Identifies KPortScan, port scanner.
GET /search/groups.json HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-1482e5"
expires: Fri, 19 Apr 2024 10:29:26 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 855C:2AF6FA:4D12F30:4EBEBC7:6622452D
accept-ranges: bytes
age: 0
date: Fri, 19 Apr 2024 10:32:31 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1713522751.006106,VS0,VE123
vary: Accept-Encoding
x-fastly-request-id: 20b4742a7c0eb6464134e126dba3eaf23e3b9210
content-length: 298296
X-Firefox-Spdy: h2
attack.mitre.org/search/misc.json
185.199.109.153200 OK 168 kB URL GET HTTP/2 attack.mitre.org/search/misc.json
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Size 168 kB (167502 bytes)
Hash f75b4d5a30ffcd7df227b2d97dfbde00
7d0ce735f4d386c2c913c3e2d0a72ea94ff30598
c84597b2cc0060132561b7e6cf7719e85d534ccddc8e16f97616333cd9d18012
GET /search/misc.json HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-959da"
expires: Fri, 19 Apr 2024 10:15:11 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: F5C8:2285C3:79ACDC1:7C5FFD2:662241D6
accept-ranges: bytes
age: 0
date: Fri, 19 Apr 2024 10:32:31 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1713522751.007686,VS0,VE125
vary: Accept-Encoding
x-fastly-request-id: 350060dcbb04f648ad20357b3988ba878aa1c0f7
content-length: 167502
X-Firefox-Spdy: h2
attack.mitre.org/search/matrices.json
185.199.109.153200 OK 16 kB URL GET HTTP/2 attack.mitre.org/search/matrices.json
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Hash 582625217ca49ddb3d8e91edfc76b64f
b35fb23b9b884da1e26209074c7c2d34e53a86b9
0ddeaa85ae97b21f04d4b666229b0fccb2768ea2709cdc018536454e6c4bee1b
GET /search/matrices.json HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-2b103"
expires: Fri, 19 Apr 2024 10:29:26 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: E7F8:156FBE:4174896:42F3055:6622452E
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:31 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522751.007073,VS0,VE130
vary: Accept-Encoding
x-fastly-request-id: 3d389a8750c75d7c8d0be239d9a8c33db8b46134
content-length: 16219
X-Firefox-Spdy: h2
attack.mitre.org/search/mitigations.json
185.199.109.153200 OK 113 kB URL GET HTTP/2 attack.mitre.org/search/mitigations.json
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Size 113 kB (113076 bytes)
Hash 662c299d929faff511cbecf233d7bc62
a9d866364b07edb64bd6a1fa0674b39fd3325d29
511b59c4f7a45b5fb086545e99a3a0de8d359be9a53a1b227e3baf8f09b6710d
GET /search/mitigations.json HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-833bd"
expires: Fri, 19 Apr 2024 10:27:37 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: HIT
x-github-request-id: C1C0:260522:CBC083:D0757F:6622452E
accept-ranges: bytes
age: 0
date: Fri, 19 Apr 2024 10:32:31 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1713522751.008258,VS0,VE137
vary: Accept-Encoding
x-fastly-request-id: c646a781aebb01ab7f8efb88e2deca0a5602adf8
content-length: 113076
X-Firefox-Spdy: h2
attack.mitre.org/search/tactics.json
185.199.109.153200 OK 133 kB URL GET HTTP/2 attack.mitre.org/search/tactics.json
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Size 133 kB (133230 bytes)
Hash ea17db12d724f51616547bd51b18e97d
af5fe71e411ea23b157a9db6d0158d0ca34180f4
3b4fa587814c1e13c5139e16c2dae9f741e1fef3cc0d5663d177d57b9fe7548e
GET /search/tactics.json HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: W/"660b7982-7716f"
expires: Fri, 19 Apr 2024 10:29:26 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: A3D6:21BD59:7D8058F:8045D42:6622452E
accept-ranges: bytes
age: 0
date: Fri, 19 Apr 2024 10:32:31 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1713522751.016135,VS0,VE134
vary: Accept-Encoding
x-fastly-request-id: 44bea753b097bb51c7dc941f75dafbfa6d1fb29b
content-length: 133230
X-Firefox-Spdy: h2
attack.mitre.org/mitigations/sidebar-mitigations
185.199.109.153301 Moved Permanently 162 B URL GET HTTP/2 attack.mitre.org/mitigations/sidebar-mitigations
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /mitigations/sidebar-mitigations HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: GitHub.com
content-type: text/html
x-origin-cache: HIT
location: https://attack.mitre.org/mitigations/sidebar-mitigations/
access-control-allow-origin: *
expires: Fri, 19 Apr 2024 10:42:31 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: A038:1F2E28:2A407C6:2B2AC8D:6622483E
accept-ranges: bytes
age: 0
date: Fri, 19 Apr 2024 10:32:31 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713522751.025649,VS0,VE126
vary: Accept-Encoding
x-fastly-request-id: 7300a7fb559d35e923bea2701ef3b9eac4ffad7e
content-length: 162
X-Firefox-Spdy: h2
attack.mitre.org/search/campaigns.json
185.199.109.153 42 kB URL attack.mitre.org/search/campaigns.json
IP 185.199.109.153:0
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Hash d44848f4d08ceb80f1534d834ac23cee
1de06e08da75529a22df2bf5b7bd800c26261515
da3e0b019f6a644692f940227e1b9bffdf95bb4683f71d7acf033187b575e53a
Analyzer Verdict Alert Public Nextron YARA rules malware Detects strings found in Runspace Post Exploitation Toolkit
Public Nextron YARA rules malware Detects a set of reconnaissance commands on Windows systems
GET /search/campaigns.json HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-27ce9"
expires: Fri, 19 Apr 2024 10:42:31 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: A034:2285C3:7A0C947:7CC196E:6622483E
accept-ranges: bytes
age: 0
date: Fri, 19 Apr 2024 10:32:31 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713522751.001894,VS0,VE150
vary: Accept-Encoding
x-fastly-request-id: badfbfd10a86406211feb8078429e90704d66408
content-length: 41616
X-Firefox-Spdy: h2
attack.mitre.org/search/assets.json
185.199.109.153200 OK 8.3 kB URL GET HTTP/2 attack.mitre.org/search/assets.json
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Hash 272dc155d0e68f42fddf898d0d2465f5
6b77687f66eec38799d87b4a9872b70c48455488
6f4bd0f5e001722feb002e311916d1e2deb6eb77f8130f260957b3a4770720c6
GET /search/assets.json HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-b18b"
expires: Fri, 19 Apr 2024 10:42:31 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: B90A:21BD59:7DB0D10:8077317:6622483E
accept-ranges: bytes
age: 0
date: Fri, 19 Apr 2024 10:32:31 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713522751.004141,VS0,VE158
vary: Accept-Encoding
x-fastly-request-id: a7c0c69503734f38dd561a741ba9b0358a346382
content-length: 8251
X-Firefox-Spdy: h2
attack.mitre.org/theme/style/fontawesome-6.5.1/webfonts/fa-brands-400.woff2
185.199.109.153200 OK 117 kB URL GET HTTP/2 attack.mitre.org/theme/style/fontawesome-6.5.1/webfonts/fa-brands-400.woff2
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 117372, version 773.768
Size 117 kB (117372 bytes)
Hash b6356c957274676e6571c1ff5e11c9a8
4022f95e001d734ca8f082b8e7627abd205609ec
3a8924cd5203a28628716aedb5cef0943da4c3b44e3ffcee90ab06387b41c490
GET /theme/style/fontawesome-6.5.1/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/theme/style/fontawesome-6.5.1/css/brands.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: font/woff2
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: "660b797f-1ca7c"
expires: Fri, 19 Apr 2024 10:42:31 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: A022:1B1E45:312CF67:3240DBE:6622483E
accept-ranges: bytes
age: 0
date: Fri, 19 Apr 2024 10:32:31 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713522751.956597,VS0,VE271
vary: Accept-Encoding
x-fastly-request-id: ad7c5c556a4925ff4d1c6b8febd0cd3b09bff651
content-length: 117372
X-Firefox-Spdy: h2
attack.mitre.org/search/software.json
185.199.109.153200 OK 628 kB URL GET HTTP/2 attack.mitre.org/search/software.json
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Size 628 kB (628542 bytes)
Hash 67984623cf33dad29e1106ba0465e1c3
ef90f9aa9934a8a2bdca1eb7ce51f6e9ebef47d4
0eb553ef0e5ceba79fa33a96f3d5bd042f7da64c5d2b83735a15dc9a5b6a2a2b
Analyzer Verdict Alert Public Nextron YARA rules malware Detects strings found in Runspace Post Exploitation Toolkit
GET /search/software.json HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-236dde"
expires: Fri, 19 Apr 2024 10:42:31 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: F51A:21BD59:7DB0D11:807731A:6622483E
accept-ranges: bytes
age: 0
date: Fri, 19 Apr 2024 10:32:31 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713522751.012216,VS0,VE249
vary: Accept-Encoding
x-fastly-request-id: 21d77c46ea420f67e3531c1c2ba1067ca83682de
content-length: 628542
X-Firefox-Spdy: h2
attack.mitre.org/mitigations/sidebar-mitigations/
185.199.109.153200 OK 2.4 kB URL GET HTTP/2 attack.mitre.org/mitigations/sidebar-mitigations/
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type HTML document, ASCII text
Hash 964333aef6e452b2c9a28961c57eb3b2
8e90fd2b26f97449e73d5a7014175ce08de8cfc6
a4e5dc260a39046635bfa7bd9884d483420c25104aaea07fc8f1f2f4026304b2
GET /mitigations/sidebar-mitigations/ HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Referer: https://attack.mitre.org/mitigations/M1038/
DNT: 1
Connection: keep-alive
Cookie: _ga_C8EHW4DS2X=GS1.1.1713522751.1.0.1713522751.0.0.0; _ga=GA1.1.1964955412.1713522751
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: text/html; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:32 GMT
access-control-allow-origin: *
etag: W/"660b7980-5ad4"
expires: Fri, 19 Apr 2024 10:42:32 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: F9B0:2AF6FA:4D41262:4EEDD74:6622483F
accept-ranges: bytes
age: 0
date: Fri, 19 Apr 2024 10:32:32 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713522752.946336,VS0,VE127
vary: Accept-Encoding
x-fastly-request-id: df162ccf33f55b8475b139383f84c7eed10e240b
content-length: 2434
X-Firefox-Spdy: h2
attack.mitre.org/search/techniques.json
185.199.109.153200 OK 2.0 MB URL GET HTTP/2 attack.mitre.org/search/techniques.json
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
Size 2.0 MB (2031592 bytes)
Hash bb5d31e735e6ee31b8cc6c1894ed5005
af152942f72d1632e1be365425eea884120fe19b
646da5f19fd6816e850992b6b6567b53c7b391a8f183304bdfc29f27f2e7c721
Analyzer Verdict Alert Public Nextron YARA rules malware Detects password dumper mimikatz in memory (False Positives: an service that could have copied a Mimikatz executable, AV signatures)
Public Nextron YARA rules malware Detects strings found in Runspace Post Exploitation Toolkit
Public InfoSec YARA rules malware Identifies KPortScan, port scanner.
Public InfoSec YARA rules malware Identifies RDP Wrapper, sometimes used by attackers to maintain persistence.
GET /search/techniques.json HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-68683a"
expires: Fri, 19 Apr 2024 10:42:31 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 5772:21BD59:7DB0D12:807731E:6622483E
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:31 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713522751.018594,VS0,VE302
vary: Accept-Encoding
x-fastly-request-id: 7037a7caa7195e8be7b3082d275a1e429fc134c8
content-length: 2031592
X-Firefox-Spdy: h2
attack.mitre.org/theme/scripts/navigation.js
185.199.109.153200 OK 1.1 kB URL GET HTTP/2 attack.mitre.org/theme/scripts/navigation.js
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type JavaScript source, ASCII text
Hash 80b3941b97e9ad0528fce0606e543864
a740301d14cc0ae1c89c2dcd36bac3404676edf8
9fc29c072e63b7ec02697b5a76e523719b7922b30715415071ea0bfda13377f8
GET /theme/scripts/navigation.js HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Cookie: _ga_C8EHW4DS2X=GS1.1.1713522751.1.0.1713522751.0.0.0; _ga=GA1.1.1964955412.1713522751
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-d58"
expires: Fri, 19 Apr 2024 10:32:00 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: CD98:29EF9F:576EDE3:595BB18:662245C7
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:32 GMT
via: 1.1 varnish
age: 19
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522752.449766,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: a7d2cca75631c2591e904e20886eaef6edf6346d
content-length: 1118
X-Firefox-Spdy: h2
attack.mitre.org/theme/favicon.ico
185.199.109.153200 OK 1.1 kB URL GET HTTP/2 attack.mitre.org/theme/favicon.ico
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Hash 0f5637e9265409a2ec33297c558ad2df
8ffd0e662863a047a76e23d4d67b21aecde69bff
954182ac30724d6ba9b75332a189a4f8b851286320a11485190ecf10f092dc23
GET /theme/favicon.ico HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/mitigations/M1038/
Cookie: _ga_C8EHW4DS2X=GS1.1.1713522751.1.0.1713522751.0.0.0; _ga=GA1.1.1964955412.1713522751
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: image/vnd.microsoft.icon
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-1976"
expires: Fri, 19 Apr 2024 09:08:26 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 17B6:2C8D98:741D4BE:76A0F94:66223231
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:32 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522752.449867,VS0,VE123
vary: Accept-Encoding
x-fastly-request-id: 21df84d001e1c529c0fac74c65744d3088e7c787
content-length: 1070
X-Firefox-Spdy: h2
attack.mitre.org/theme/fonts/Roboto/Roboto-Bold.ttf
185.199.109.153200 OK 92 kB URL GET HTTP/2 attack.mitre.org/theme/fonts/Roboto/Roboto-Bold.ttf
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type TrueType Font data, 18 tables, 1st "GDEF", 26 names, Macintosh, Copyright 2011 Google Inc. All Rights Reserved.RobotoBoldRoboto BoldVersion 2.137; 2017Roboto-Bo
Hash ee7b96fa85d8fdb8c126409326ac2d2b
0ce37ced9c5fcac9bdc452a432c1258870ba4677
7d0b991ee3e0be7af01ad7ea8cd2beea6c00a25e679a0226b6737f079aafff86
GET /theme/fonts/Roboto/Roboto-Bold.ttf HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/theme/style.min.css?fbd3eefa
Cookie: _ga_C8EHW4DS2X=GS1.1.1713522751.1.0.1713522751.0.0.0; _ga=GA1.1.1964955412.1713522751
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: font/ttf
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:31 GMT
access-control-allow-origin: *
etag: W/"660b797f-29b08"
expires: Fri, 19 Apr 2024 10:27:33 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: HIT
x-github-request-id: F328:156FBE:417498A:42F3156:6622452F
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
age: 20
x-served-by: cache-hel1410032-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713522754.701885,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 82071f64494aa95da1a880e2b76b540004fabbdb
content-length: 91581
X-Firefox-Spdy: h2
attack.mitre.org/theme/style/fontawesome-6.5.1/webfonts/fa-solid-900.woff2
185.199.109.153200 OK 156 kB URL GET HTTP/2 attack.mitre.org/theme/style/fontawesome-6.5.1/webfonts/fa-solid-900.woff2
IP 185.199.109.153:443
Requested by https://attack.mitre.org/mitigations/M1038/
Certificate IssuerLet's Encrypt
Subjectattack.mitre.org
Fingerprint6B:36:CB:3D:F8:73:89:FF:FC:5B:E4:C6:A9:4C:4D:2B:FA:66:AE:65
ValiditySat, 09 Mar 2024 10:14:25 GMT - Fri, 07 Jun 2024 10:14:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 156496, version 773.768
Size 156 kB (156496 bytes)
Hash 6c4eee562650e53cee32496bdfbe534b
1aae708e3b94ee981b452a918d28ed037fbb5e18
9fc85f3a4544ab0d570c7f8f9bbb88db8d92c359b2707580ea8b07c75673eae2
GET /theme/style/fontawesome-6.5.1/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: attack.mitre.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://attack.mitre.org/theme/style/fontawesome-6.5.1/css/solid.min.css
Cookie: _ga_C8EHW4DS2X=GS1.1.1713522751.1.0.1713522751.0.0.0; _ga=GA1.1.1964955412.1713522751
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: GitHub.com
content-type: font/woff2
x-origin-cache: HIT
last-modified: Tue, 02 Apr 2024 03:20:34 GMT
access-control-allow-origin: *
etag: "660b7982-26350"
expires: Fri, 19 Apr 2024 10:42:33 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: F51A:21BD59:7DB0FD0:80775E3:66224841
accept-ranges: bytes
age: 0
date: Fri, 19 Apr 2024 10:32:33 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1713522754.701094,VS0,VE129
vary: Accept-Encoding
x-fastly-request-id: b908f22aba05b131d70c14e232ff94f70705a045
content-length: 156496
X-Firefox-Spdy: h2