r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5fe582397f3003b225cb9058e02c2190
68174a54a8f6c4de9247ccea2dcae3c9b76bdb9f
238a2ef5b61d56353d0a5e97ec3092b8f2792cde7cecf40e1a858f8c129d3a9d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "238A2EF5B61D56353D0A5E97EC3092B8F2792CDE7CECF40E1A858F8C129D3A9D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8841
Expires: Fri, 27 Jan 2023 13:36:46 GMT
Date: Fri, 27 Jan 2023 11:09:25 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 58ffdcb539c3b250fdf31ed761627fc1
5b55b1522ef84c39b5c42f9bbfbc62b806c1269f
eb783cfa8c8544b0574b345abc0bf3c150979d4efce1a013f17b6cd48076fc63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB783CFA8C8544B0574B345ABC0BF3C150979D4EFCE1A013F17B6CD48076FC63"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11463
Expires: Fri, 27 Jan 2023 14:20:28 GMT
Date: Fri, 27 Jan 2023 11:09:25 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 27 Jan 2023 10:42:58 GMT
content-type: application/json
age: 1587
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4795
Expires: Fri, 27 Jan 2023 12:29:20 GMT
Date: Fri, 27 Jan 2023 11:09:25 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: guLxC/JwAvOKSSUyaFwK0wQuu+aBVQRiFKl6efjrx0Q5GWrgFxR1A/m+dCWchK0UxCzOOLuRiP4=
x-amz-request-id: 1MWQ2ZYFK25XQVQB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 27 Jan 2023 10:20:30 GMT
age: 2935
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
cofense.com/contact-support
301 Moved Permanently 162 B URL HTTP/1.1 cofense.com/contact-support
IP
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /contact-support HTTP/1.1
Host: cofense.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 27 Jan 2023 11:09:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://cofense.com/contact-support
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7901093a8c6eb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 11:09:25 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4c86ff3baec53b033f60aa7656b5a73b
021f24073f6a1ba0a2593d505d8934fd9783a52f
ec5c8a38373ce6cb7bba1ad63bef6ef001d1cdb1dab7f048fe8e876b55987a59
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC5C8A38373CE6CB7BBA1AD63BEF6EF001D1CDB1DAB7F048FE8E876B55987A59"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14865
Expires: Fri, 27 Jan 2023 15:17:11 GMT
Date: Fri, 27 Jan 2023 11:09:26 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 27 Jan 2023 10:41:40 GMT
age: 1666
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10651
Expires: Fri, 27 Jan 2023 14:06:57 GMT
Date: Fri, 27 Jan 2023 11:09:26 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4c86ff3baec53b033f60aa7656b5a73b
021f24073f6a1ba0a2593d505d8934fd9783a52f
ec5c8a38373ce6cb7bba1ad63bef6ef001d1cdb1dab7f048fe8e876b55987a59
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC5C8A38373CE6CB7BBA1AD63BEF6EF001D1CDB1DAB7F048FE8E876B55987A59"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14865
Expires: Fri, 27 Jan 2023 15:17:11 GMT
Date: Fri, 27 Jan 2023 11:09:26 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UOWvlCdvVkzMu6ucwaNgbA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jMN9QM5aVxbS1sp/ns8ybxMlRPw=
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 48f87f021aa43dc85cabc3b624264811
6dcc2e3610ec6ef91768905aae267c984227f54a
0e77dc8ff90169c7db1343058490de4942217f3846ca0586bebd33d32513b305
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:09:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 5.9 kB IP
Hash 3676133b0e5e515d82e499c804a35b38
442dac27b415f292c5d993dd6f550a3fb6afa9da
cebfb9127ad2fee22651573a06dcb873d7ed7b0e601fbf8d4558c48bf5073d87
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:09:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
p.typekit.net/p.css?s=1&k=zlo5wor&ht=tk&f=26014&a=103167865&app=typekit&e=css
200 OK 6.7 kB URL HTTP/2 p.typekit.net/p.css?s=1&k=zlo5wor&ht=tk&f=26014&a=103167865&app=typekit&e=css
IP
ASN #20940 Akamai International B.V.
Hash a159b5cb30a522b452f0a8db75254a3e
cf2346c23987ba44368729a3806905c49b678c05
8de9b5db05093d7fde9d9d91534ac21322e5befddd426ec60b5851d3ea5908d5
GET /p.css?s=1&k=zlo5wor&ht=tk&f=26014&a=103167865&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Fri, 27 Jan 2023 11:09:27 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 12 kB IP
Hash ac8061a2dc2b9bf02968f9b3fda9b4e9
7b049d597545a47af424b6209902295d37ab5be2
08b04cbf61c141f083b952000f4766deafff14094ab65aa5d753ca422be185e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:09:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Inter%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap
200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Inter%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap
IP
Hash 7a34b1ae0713290c24b3ecb90b79d271
ba4319de854c92a3a6832c1591c0899ca1c56f32
16ae6f3023a096976724f648199111fc5a956f7d0c29481746e2852b9f725e45
GET /css?family=Inter%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 27 Jan 2023 11:09:27 GMT
date: Fri, 27 Jan 2023 11:09:27 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 733 B IP
Hash 1743726a4ef3633c0f174a7d34c7fc68
e614702d096ff8aa4709e582e986a5cf69822e36
c3922b672788f5fd89922d3a776838af53fee874ad01e10f0cfd05f9029c6732
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:09:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
Hash d7bbefc70904c8e328a2390debc6b520
0ccf4f18f36c3937600c8ba7a869f84860b37241
567b3089bdded4ba2001cb1529a71a66d281bcb26c5e3f307fc9686616e4362d
GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cofense.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 22 Jan 2023 01:47:10 GMT
expires: Mon, 22 Jan 2024 01:47:10 GMT
cache-control: public, max-age=31536000
age: 465737
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 4.4 kB IP
Hash 71bec02b9e4c22734874301805144581
ee90797872ba39ccc200a0ef649f3aad2c992024
a0b8b489860a1120982ffd7602026bdfd9d16077b936f85a2108409cf3103cc6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:09:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:09:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 727 B IP
Hash f978e7b8ea11f4c1417f2518b53f9e08
d361784225d9ffbdf7fbe14afb31f685c162cde5
f4b69893cf528093a23a352e7a9cfaaf08c0b7e7bd228f3418983801e9a9a2e5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1384
Cache-Control: max-age=90534
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:09:27 GMT
Etag: "63d26a25-2d7"
Expires: Sat, 28 Jan 2023 12:18:21 GMT
Last-Modified: Thu, 26 Jan 2023 11:55:17 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 727
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3986
Expires: Fri, 27 Jan 2023 12:15:53 GMT
Date: Fri, 27 Jan 2023 11:09:27 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 727 B IP
Hash f978e7b8ea11f4c1417f2518b53f9e08
d361784225d9ffbdf7fbe14afb31f685c162cde5
f4b69893cf528093a23a352e7a9cfaaf08c0b7e7bd228f3418983801e9a9a2e5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4371
Cache-Control: max-age=93521
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:09:27 GMT
Etag: "63d26a25-2d7"
Expires: Sat, 28 Jan 2023 13:08:08 GMT
Last-Modified: Thu, 26 Jan 2023 11:55:17 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 727
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd33883a9-7857-4110-892f-73f67db692bc.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd33883a9-7857-4110-892f-73f67db692bc.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a85badd84c0542610b94f22c4f265511
5b490095b5e02d9fef4b762888353998b645dfc9
23d6d9848caf36f0556438c371f112b40dcbf9b08b8b27bd37d4d73960c701c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd33883a9-7857-4110-892f-73f67db692bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9482
x-amzn-requestid: 825c5e6b-8fda-445e-9ed3-f5d634943c00
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIZd0HqkIAMFn7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ccd5f1-2b31fe3001a1b04a406ff7ff;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 06:21:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CLTiEOu21gcngjMAN7EcwiAVeXsOYrTqwKr-puh4Cq9W51bI4WivVQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 05:22:53 GMT
age: 20794
etag: "5b490095b5e02d9fef4b762888353998b645dfc9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:59:56 GMT
age: 47372
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3986
Expires: Fri, 27 Jan 2023 12:15:53 GMT
Date: Fri, 27 Jan 2023 11:09:27 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3985
Expires: Fri, 27 Jan 2023 12:15:53 GMT
Date: Fri, 27 Jan 2023 11:09:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba0a42dadf6a976df148f652e9cc1844
4d825b74865effa4a858ddcad1d0969671facc07
7276a38c9ba6b13a06f24ab8b802f210f98c5541df53fbcd8e879a14d2957d95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5943
x-amzn-requestid: 6774f4a4-ed83-49df-868f-4517c2af914b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxNF2UIAMFlYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a007-75b1e8975c3f4b503e0a1c5b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MeE0Qrn_yZvUApGQTbOKQ14Z2ipPLbPFPyVqkKTk0Bs7ETn0UU6yMg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:48:43 GMT
age: 48045
etag: "4d825b74865effa4a858ddcad1d0969671facc07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91a77b6d-ccc1-422b-8493-221c615accaf.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91a77b6d-ccc1-422b-8493-221c615accaf.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e0fe44d9606e6a149a253423f312dfc5
78e442e8a9142311c25dafd01823a240f4acb0d6
9aad8938c1fda9641f95a4369f57ea57303a28e05f56e3bb1961e17cfbb123f4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91a77b6d-ccc1-422b-8493-221c615accaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13175
x-amzn-requestid: 14ccf28a-a84a-4903-9edc-7659096cb3ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRxOCFrkIAMFt8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0958c-6a67f1aa65038439793808fd;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 02:35:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 10J4VSVgerDXDZu4y_1eRSX9p883b6Rx82BCc-B2Ck4Z8Eh31jB5uA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 07:43:52 GMT
age: 12336
etag: "78e442e8a9142311c25dafd01823a240f4acb0d6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
j.6sc.co/6si.min.js
200 OK 10 kB IP
File type ASCII text, with very long lines (31446), with no line terminators
Hash 196d887c95a70e13368078cd7dc3588b
152f2169214fbaabca75c73721ff3af9830b4c0d
acc2a94beeae0d952d795c021bddca3077b053bbbd1417208d6b4f517b9410d7
GET /6si.min.js HTTP/1.1
Host: j.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/javascript
etag: "63890c9b-7ad6"
last-modified: Thu, 01 Dec 2022 20:20:43 GMT
pragma: no-cache
server: nginx/1.14.0 (Ubuntu)
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, no-cache, proxy-revalidate
expires: Fri, 27 Jan 2023 11:09:28 GMT
date: Fri, 27 Jan 2023 11:09:28 GMT
content-length: 10143
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e7158416f60576804ccff03307319fe
a342f94625e913fa6b8d862a59979f1e3ad80dd1
5c525df7d169cc7e033d920c11f4a0163a781c025a22b70530882b56964a9a52
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5737
x-amzn-requestid: cc977ea9-c418-4a5a-a13b-c86e16bbe6ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRGPFGL5oAMFiSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d050c6-2d540cac5ca7d4e64cfdb8bc;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 21:42:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uZnA5gkRlZyqamh_n3992G9PlMJa4gJ-mjSOQEysII73dDKLXmeXsg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 12:26:22 GMT
age: 81786
etag: "a342f94625e913fa6b8d862a59979f1e3ad80dd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bc02c23-d6b7-4540-bebd-59cf20f191e3.jpeg
200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bc02c23-d6b7-4540-bebd-59cf20f191e3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b31e73071ee6af880d3939c698c0514
1ac5ee7d1398eb29a9484a1154b0c96556bb6bf4
bc5520882250fc495f2da3c114f83b8f690dc6d8dc67ac759a183c88581fb967
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bc02c23-d6b7-4540-bebd-59cf20f191e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5378
x-amzn-requestid: 907321d1-ba63-4c67-9e20-605a090da987
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxDHH_IAMFXxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a006-4cc2e9550d0b6b504bd09899;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EsKE5lHMRa9uiqkdhhiJyaDfr0rH9waQeKtbdoYpsHUR4Ywo0TxweQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:57:34 GMT
age: 47514
etag: "1ac5ee7d1398eb29a9484a1154b0c96556bb6bf4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
j.6sc.co/6si.min.js
304 Not Modified 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /6si.min.js HTTP/1.1
Host: j.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 01 Dec 2022 20:20:43 GMT
If-None-Match: "63890c9b-7ad6"
TE: trailers
HTTP/2 304 Not Modified
content-type: application/javascript
last-modified: Thu, 01 Dec 2022 20:20:43 GMT
etag: "63890c9b-7ad6"
cache-control: private, no-cache, proxy-revalidate
expires: Fri, 27 Jan 2023 11:09:28 GMT
date: Fri, 27 Jan 2023 11:09:28 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 74448ec65c928e03a8d37ca80185b458
de6d482f0615b5cda3ed8ba91afb3195f7e5f0b9
6c985f2ceaad519a0eb691daffea0f7723e0aa4572edbc434ea60aed15f56363
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=160645
Date: Fri, 27 Jan 2023 11:09:28 GMT
Etag: "63d37250-1d7"
Expires: Sun, 29 Jan 2023 07:46:53 GMT
Last-Modified: Fri, 27 Jan 2023 06:42:24 GMT
Server: ECS (dcb/7FA8)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gHWY_17QjNWFehNw49kA6GwdVGhnpr5wtgU7bXmAE5Yf3DCOdpQ3cw==
Age: 3870
c.6sc.co/
200 OK 3.5 kB IP
Hash f17b33a90c40b0eac08c2985bf724d88
0d7b3199c6ca586f3d17bc0595efd8262e66425e
6048bfd6ee1228987fc72973d255a743ef95f0a5dd7af0099dbc1175accb640d
GET / HTTP/1.1
Host: c.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cofense.com
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 7
date: Fri, 27 Jan 2023 11:09:28 GMT
access-control-allow-origin: https://cofense.com
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/zVnlZCVtVEw
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/zVnlZCVtVEw
IP
Hash b6b9be48f7d58b800de111a22938fae9
cd8631064a8ef43500384a9815171c10a173f943
88052679c4ad2dcd3909d331f001e2fa8ab1ac0317296d717e81ee578d4fab7e
POST /s/gts1d4/zVnlZCVtVEw HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:09:28 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.6sc.co/
200 OK 7 B IP
File type ASCII text, with no line terminators
Hash d97623d172f087d9640da9acd38830ff
515bd358bb7d990930f0e2b3de399db1787a2567
fe04a9dc88d3f3be8d4f6bc63a9a80f45a4c6d8460e7551dab849457c091920a
GET / HTTP/1.1
Host: c.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cofense.com
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 7
date: Fri, 27 Jan 2023 11:09:28 GMT
access-control-allow-origin: https://cofense.com
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/zVnlZCVtVEw
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/zVnlZCVtVEw
IP
Hash b6b9be48f7d58b800de111a22938fae9
cd8631064a8ef43500384a9815171c10a173f943
88052679c4ad2dcd3909d331f001e2fa8ab1ac0317296d717e81ee578d4fab7e
POST /s/gts1d4/zVnlZCVtVEw HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:09:28 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
secure.adnxs.com/getuidj
200 OK 11 B IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 096dc398f48c9a61584478fea3ee50a1
7d0a5f87833db711b2eb52c73638c5e14538a969
31b45c462302ac175bfa43f9e5591491db780ca094f6ecdd2907f25ad578448d
GET /getuidj HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cofense.com
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Fri, 27 Jan 2023 11:09:28 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 11
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://cofense.com
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: eaae5a14-9783-438c-be35-a90eacce29c1
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 956.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ipv6.6sc.co/
200 OK 4 B IP
File type ASCII text, with no line terminators
Hash 37a6259cc0c1dae299a7866489dff0bd
2be88ca4242c76e8253ac62474851065032d6833
74234e98afe7498fb5daf1f36ac2d78acc339464f950703b8c019892f982b90b
GET / HTTP/1.1
Host: ipv6.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cofense.com
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 4
expires: Fri, 27 Jan 2023 11:09:28 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 27 Jan 2023 11:09:28 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
6si-ipv6: null
access-control-allow-origin: https://cofense.com
vary: Origin
X-Firefox-Spdy: h2
ipv6.6sc.co/
200 OK 4 B IP
File type ASCII text, with no line terminators
Hash 37a6259cc0c1dae299a7866489dff0bd
2be88ca4242c76e8253ac62474851065032d6833
74234e98afe7498fb5daf1f36ac2d78acc339464f950703b8c019892f982b90b
GET / HTTP/1.1
Host: ipv6.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cofense.com
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 4
expires: Fri, 27 Jan 2023 11:09:28 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 27 Jan 2023 11:09:28 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
6si-ipv6: null
access-control-allow-origin: https://cofense.com
vary: Origin
X-Firefox-Spdy: h2
secure.adnxs.com/getuidj
200 OK 11 B IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 096dc398f48c9a61584478fea3ee50a1
7d0a5f87833db711b2eb52c73638c5e14538a969
31b45c462302ac175bfa43f9e5591491db780ca094f6ecdd2907f25ad578448d
GET /getuidj HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cofense.com
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Fri, 27 Jan 2023 11:09:28 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 11
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://cofense.com
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: bfa20855-8162-4307-bb62-86566b020e20
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 956.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
cofense2022stg.wpengine.com/wp-content/uploads/2022/06/NETWORKHEADERBG-1.png
200 OK 83 kB URL HTTP/2 cofense2022stg.wpengine.com/wp-content/uploads/2022/06/NETWORKHEADERBG-1.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash fe82c707bc82e1fe2f56c80ff0f2975b
245c1556a19501278ec8d9a353558efe0b69670f
9691b1d979b9f4be55976899cdc6fd2f598555d4710cebf0847744507bf4bd39
GET /wp-content/uploads/2022/06/NETWORKHEADERBG-1.png HTTP/1.1
Host: cofense2022stg.wpengine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 11:09:28 GMT
content-type: image/png
content-length: 79487
last-modified: Tue, 20 Dec 2022 21:51:08 GMT
etag: "63a22e4c-1367f"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
ibc-flow.techtarget.com/a/gif.gif?actTypeId=31&cid=17654763&r=1674817767889&ref=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&version=2.4
200 OK 0 B URL HTTP/2 ibc-flow.techtarget.com/a/gif.gif?actTypeId=31&cid=17654763&r=1674817767889&ref=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&version=2.4
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /a/gif.gif?actTypeId=31&cid=17654763&r=1674817767889&ref=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&version=2.4 HTTP/1.1
Host: ibc-flow.techtarget.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: ibc_rate_tier
Referer: https://cofense.com/
Origin: https://cofense.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.20.2
date: Fri, 27 Jan 2023 11:09:28 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-guploader-uploadid: ADPycduPK2_BmafegJ_CkDJWDHPPmxhhY6CmR0OjHoWjF2OwCz7trCQjlqmuvkoFns43nU5MnAVnd9OFO0H-z7KDnV3fHQ
vary: Origin
expires: Fri, 27 Jan 2023 11:09:28 GMT
cache-control: private, max-age=0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: ibc_header,ibc_rate_tier,User-Agent,X-Requested-With,Cache-Control,Content-Type,Range
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cofense2022stg.wpengine.com/wp-content/uploads/2022/05/Inter-Medium.ttf
404 Not Found 567 B URL HTTP/2 cofense2022stg.wpengine.com/wp-content/uploads/2022/05/Inter-Medium.ttf
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 2e79b82b3583329febf654114b78b65a
3a08fd186acca8a8c42b90c6ce671d70c6710174
53af2eccd180592bb8e9079a73d7cec461df3e0516d34d8f45f93561fae2f929
GET /wp-content/uploads/2022/05/Inter-Medium.ttf HTTP/1.1
Host: cofense2022stg.wpengine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cofense.com
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 27 Jan 2023 11:09:28 GMT
content-type: text/html
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/25.8f107198.chunk.js
200 OK 61 kB URL HTTP/2 js.driftt.com/core/assets/js/25.8f107198.chunk.js
IP
File type ASCII text, with very long lines (60777), with no line terminators
Hash e2511c69e5bdc03467952abaccdb5383
af75238635df55196daec43421db2e58df0ec009
6c93a2e253cf1b83c4549ee38234134aa07f3b0293815375c49c9d4576986db1
GET /core/assets/js/25.8f107198.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 60777
server: istio-envoy
date: Mon, 28 Nov 2022 08:57:17 GMT
last-modified: Tue, 22 Nov 2022 15:49:58 GMT
etag: "e2511c69e5bdc03467952abaccdb5383"
x-amz-server-side-encryption: AES256
x-amz-version-id: Yy.qQ1ml8oAQJH1PLNOETYe7eMVT06MA
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 19
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XPTodRqZQN67t68nuvqKEWioRozZmKokeOLotUhMHS77vRU-t8whvA==
age: 5191931
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/runtime~main.0182ab86.js
200 OK 2.6 kB URL HTTP/2 js.driftt.com/core/assets/js/runtime~main.0182ab86.js
IP
Hash 94d1693631aa8603bf77f5b4d761347d
49e946e0430029a7d23d3c548c9c64e59df0fd94
9c2032e6aee6faa7cf813925fbbf1787c1bcb806a5a6703b1c1a4c4c6f2cbd83
GET /core/assets/js/runtime~main.0182ab86.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 25 Jan 2023 16:42:40 GMT
last-modified: Wed, 25 Jan 2023 15:22:48 GMT
etag: W/"e77bbdc5962481f76de5bd5bd9395cda"
x-amz-server-side-encryption: AES256
x-amz-version-id: BHq4yaYWT1EdNzv0R9fkwL5xdadkzhDi
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 18
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: T-AQkgXJaQZXWklXHcWVPYarPf5o91ztVO9HvQ61RtX1PpMXkYgrkQ==
age: 152808
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 495f76009a43155f8b3957275c282a5a
702ddf240bc14806df4cc3441c9500800389d8c5
4723633a710f996860586b4b3cef094f376d0fb3c162df26325ee13ea24f3d03
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4723633A710F996860586B4B3CEF094F376D0FB3C162DF26325EE13EA24F3D03"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17554
Expires: Fri, 27 Jan 2023 16:02:02 GMT
Date: Fri, 27 Jan 2023 11:09:28 GMT
Connection: keep-alive
ibc-flow.techtarget.com/a/gif.gif?actTypeId=31&cid=17654763&r=1674817767889&ref=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&version=2.4
200 OK 43 B URL HTTP/2 ibc-flow.techtarget.com/a/gif.gif?actTypeId=31&cid=17654763&r=1674817767889&ref=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&version=2.4
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /a/gif.gif?actTypeId=31&cid=17654763&r=1674817767889&ref=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&version=2.4 HTTP/1.1
Host: ibc-flow.techtarget.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
ibc_rate_tier: 17654763
Origin: https://cofense.com
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Fri, 27 Jan 2023 11:09:28 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ADPycdvXZkAwyjsRxzm54VjBspUB-6DB3hNTOj889LdSX8s9-sOUiqL-mBNpyMsiqLTQloW8xMSiEZBJvuJuTnr0NG5f1A
expires: Fri, 27 Jan 2023 12:09:28 GMT
cache-control: public, max-age=3600
last-modified: Thu, 08 Dec 2022 21:19:29 GMT
etag: "fc94fb0c3ed8a8f909dbc7630a0987ff"
x-goog-generation: 1670534369365034
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=7uenZA==, md5=/JT7DD7YqPkJ28djCgmH/w==
x-goog-storage-class: STANDARD
accept-ranges: bytes
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: ibc_header,ibc_rate_tier,User-Agent,X-Requested-With,Cache-Control,Content-Type,Range
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/35.438351b2.chunk.js
200 OK 6.2 kB URL HTTP/2 js.driftt.com/core/assets/js/35.438351b2.chunk.js
IP
File type ASCII text, with very long lines (16465)
Hash c41bb7e3601fae6f26a61aa05aee9abd
72570de94c23b270919369ea2a0b77d0eedd5a39
c2b6d5448296334fca9bf17e657c3deaa2a97d00b1d2f83485b8ffd626c95c77
GET /core/assets/js/35.438351b2.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 29 Nov 2022 09:35:06 GMT
last-modified: Mon, 28 Nov 2022 20:48:11 GMT
etag: W/"6d42b26d199471df6876d34dd3714424"
x-amz-server-side-encryption: AES256
x-amz-version-id: QhlyljBKsBjDwjJjkSDZfnhr7833Byrf
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: B4yTGuzGP0FrQ8dgiIm4xp0UpZ9is83I643Syf30QsX4peh2UzDWWw==
age: 5103262
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/18.2ab31195.chunk.js
200 OK 27 kB URL HTTP/2 js.driftt.com/core/assets/js/18.2ab31195.chunk.js
IP
Hash b3f144bec3076a4ed5cd322786dd430c
2bfb7c7288876ce1df7e3ee60c6d51dda75619d7
c56124ba02121972b95db1ab85a4f56c29bbf4599dbb1d3cb3dff5ce577a6f65
GET /core/assets/js/18.2ab31195.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 29 Nov 2022 09:35:05 GMT
last-modified: Mon, 28 Nov 2022 20:48:10 GMT
etag: W/"09e4a870348ecb960c5807c49bbf0c16"
x-amz-server-side-encryption: AES256
x-amz-version-id: 7QY.k3aW4w3SXwLpYXRxCoBV.7gk5Lob
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 20
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8OaYstR7ZAcoLyqvRvdELfCWxG3x8y9s2zMjqRCMW9XbRdCXiWW3pg==
age: 5103263
X-Firefox-Spdy: h2
js.driftt.com/core?d=1&embedId=28krvx2uf9n3&eId=28krvx2uf9n3®ion=US&forceShow=false&skipCampaigns=false&sessionId=bfb80fbc-75e1-4abc-a93a-370b7e017918&sessionStarted=1674817768.033&campaignRefreshToken=a82c6977-f1d9-46d0-b788-703083839da6&hideController=false&pageLoadStartTime=1674817766748&mode=CHAT&driftEnableLog=false&loadStrategy=EAGER&secureIframe=false&u=https%3A%2F%2Fcofense.com%2Fcontact-support%2F
200 OK 3.4 kB URL HTTP/2 js.driftt.com/core?d=1&embedId=28krvx2uf9n3&eId=28krvx2uf9n3®ion=US&forceShow=false&skipCampaigns=false&sessionId=bfb80fbc-75e1-4abc-a93a-370b7e017918&sessionStarted=1674817768.033&campaignRefreshToken=a82c6977-f1d9-46d0-b788-703083839da6&hideController=false&pageLoadStartTime=1674817766748&mode=CHAT&driftEnableLog=false&loadStrategy=EAGER&secureIframe=false&u=https%3A%2F%2Fcofense.com%2Fcontact-support%2F
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8806)
Hash f7af99d3d706fa9b571d23d41cbf6b42
a8c87109414b5e735d131b8df53b753155fb0328
edec653a8d31fbe94736064c6b80e668b19caff254b34b53624852cdf7384c59
GET /core?d=1&embedId=28krvx2uf9n3&eId=28krvx2uf9n3®ion=US&forceShow=false&skipCampaigns=false&sessionId=bfb80fbc-75e1-4abc-a93a-370b7e017918&sessionStarted=1674817768.033&campaignRefreshToken=a82c6977-f1d9-46d0-b788-703083839da6&hideController=false&pageLoadStartTime=1674817766748&mode=CHAT&driftEnableLog=false&loadStrategy=EAGER&secureIframe=false&u=https%3A%2F%2Fcofense.com%2Fcontact-support%2F HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: istio-envoy
last-modified: Wed, 25 Jan 2023 16:42:40 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 2vh7op0smgKVwhR_IHAioM0myhR60lq9
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
x-envoy-upstream-service-time: 14
date: Fri, 27 Jan 2023 11:09:28 GMT
cache-control: no-cache
etag: W/"61d595b5e6c4d27d6ec51fdf29d348ac"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3FuE0pFbIeOi2wbWSd2efNOPqGg-HVdwIy7HIo9FyN2-RdshAPkERw==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 61b07ec18bd0517d727603f51ee96cbe
03caefc67f3485fcad58d669cd4e7c8b371acce5
604702d9942ca8804874e6923a37438ce46c913122ed7b700273f46f1029afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:09:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.driftt.com/core/assets/css/19.c695453b.chunk.css
200 OK 365 B URL HTTP/2 js.driftt.com/core/assets/css/19.c695453b.chunk.css
IP
File type ASCII text, with very long lines (365), with no line terminators
Hash 06b2963b029c0824382815165bfea73e
de23fb128e2589cf384603cfbb7f6b7bef969b05
ec3a84e593065a50cd77ce9fba273b4196936940c0813ca248b045df2e2c8eff
GET /core/assets/css/19.c695453b.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=28krvx2uf9n3&eId=28krvx2uf9n3®ion=US&forceShow=false&skipCampaigns=false&sessionId=bfb80fbc-75e1-4abc-a93a-370b7e017918&sessionStarted=1674817768.033&campaignRefreshToken=a82c6977-f1d9-46d0-b788-703083839da6&hideController=false&pageLoadStartTime=1674817766748&mode=CHAT&driftEnableLog=false&loadStrategy=EAGER&secureIframe=false&u=https%3A%2F%2Fcofense.com%2Fcontact-support%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 365
server: istio-envoy
date: Tue, 06 Dec 2022 07:53:09 GMT
last-modified: Thu, 01 Dec 2022 14:26:44 GMT
etag: "06b2963b029c0824382815165bfea73e"
x-amz-server-side-encryption: AES256
x-amz-version-id: w1vOcwITmb.cUDNW_lvsPGI3OxFp7KF_
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cV0xGF75Pg7dCd8l5FFKuPDI6m8vTQ9agmUjmWdJ9Xrym2CUleZ5KQ==
age: 4504579
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 1.2 kB IP
Hash 711b5521083243a3d0274e7a8d9a29d6
48216a8f4fcf2fddf12e139aff7f04496b510583
0689d53ef3a48184019a64dc52ad46f583d6224baa523ac863a027fa543b7d73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:09:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.analytics.google.com/g/collect?v=2&tid=G-3G76T4W3LR>m=2oe1p0&_p=99136609&_gaz=1&cid=2033121132.1674817768&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674817767&sct=1&seg=0&dl=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&dt=Contact%20Customer%20Support%20-%20Cofense&en=page_view&_fv=1&_nsi=1&_ss=1
204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-3G76T4W3LR>m=2oe1p0&_p=99136609&_gaz=1&cid=2033121132.1674817768&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674817767&sct=1&seg=0&dl=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&dt=Contact%20Customer%20Support%20-%20Cofense&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-3G76T4W3LR>m=2oe1p0&_p=99136609&_gaz=1&cid=2033121132.1674817768&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674817767&sct=1&seg=0&dl=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&dt=Contact%20Customer%20Support%20-%20Cofense&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cofense.com
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://cofense.com
date: Fri, 27 Jan 2023 11:09:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/28.190877b8.chunk.js
200 OK 5.0 kB URL HTTP/2 js.driftt.com/core/assets/js/28.190877b8.chunk.js
IP
Hash 8de6f3d190f0da2c5dc132c1d55a639e
8efc2a40bad7420efeecb2ba8462a9ed833ae4ac
45e79e174c7838d250160e20dec88667ba04c1979b946c813b15d69cd1c33f14
GET /core/assets/js/28.190877b8.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Tue, 08 Nov 2022 02:51:06 GMT
server: nginx
last-modified: Mon, 07 Nov 2022 15:08:07 GMT
etag: W/"94c7e7cb2f40e10abeee8e28c0f68eb7"
x-amz-server-side-encryption: AES256
x-amz-version-id: L8nstOjS9BL74DtkC4CKqTOHCxrzaxLu
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Hf3X50Mwahpxy8tAWGi7NDxTAFeZbIbII-x6nirW_43T24NiOyxQcQ==
age: 6941902
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/3.f50b964b.chunk.js
200 OK 55 kB URL HTTP/2 js.driftt.com/core/assets/js/3.f50b964b.chunk.js
IP
File type ASCII text, with very long lines (54960), with no line terminators
Hash 1ac37bf2b93050f29058b66a9ad43e10
60cd4567c1c895e694be5a75c24da7215e43c01e
d14e287ddae470b06c4639e73260ca21a4c9b7cfdf56e02965a8f50fb5333b42
GET /core/assets/js/3.f50b964b.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 54960
server: istio-envoy
date: Fri, 25 Nov 2022 11:40:36 GMT
last-modified: Tue, 22 Nov 2022 15:49:58 GMT
etag: "1ac37bf2b93050f29058b66a9ad43e10"
x-amz-server-side-encryption: AES256
x-amz-version-id: _VlCl_q6kDr8YgcVv1VAKP6WzfoymtRJ
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tFnInwl1DNhFAyIs8Ml-PSUSg2rOc0C_Nkf9_KZjYHtfMH2mNMv9nQ==
age: 5441331
X-Firefox-Spdy: h2
static.oktopost.com/oktrk.js
200 OK 4.0 kB URL HTTP/2 static.oktopost.com/oktrk.js
IP
File type ASCII text, with very long lines (11981), with no line terminators
Hash 1bbbdff3b9d30b038b5b8678a33c9a1a
d622c5cac0f9f15c21096c05fb107a0d1e8e33b4
b88c547134485e8a398ca7af006aa4397f3c4f0894c1ddfc9992dbd89ee5b39a
GET /oktrk.js HTTP/1.1
Host: static.oktopost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 27 Jan 2020 09:47:41 GMT
server: AmazonS3
content-encoding: gzip
date: Thu, 26 Jan 2023 19:56:01 GMT
etag: W/"57315c24d6fec75c4d46a8cc3fa6e0d5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2lF143GeKtdywTDLYr-EpTlgJKUhyur5RKxFu-f2wDvcYu5aOP5HPw==
age: 54857
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5d26c41823a6e8c5fdcf3c28efbfdd01
2415b281bb7ee36d62aec11e477e4797e8bbc10c
e7c952964c5abd9aa20b354673bedf66a9ddb64c8c9ce0075a6601fe5d28cabe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:09:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.driftt.com/core/assets/js/1.2e27d274.chunk.js
200 OK 26 kB URL HTTP/2 js.driftt.com/core/assets/js/1.2e27d274.chunk.js
IP
Hash f1a7ce26ebe39af14d556e5fe0b6b604
adf025244c90bee62f950b876d97a08a431bcced
81780ab551020b71401af91854c80382883b6f07df38e236199ee60ea2dad4c6
GET /core/assets/js/1.2e27d274.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 21 Dec 2022 21:54:21 GMT
last-modified: Wed, 21 Dec 2022 21:28:25 GMT
etag: W/"a6d0fdb505a88f9c55049ebe66d7667a"
x-amz-server-side-encryption: AES256
x-amz-version-id: UNJr5Kja1ABr.guWFosCRkEJaAhCHOiA
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 37
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ow6QPdRdLJqyObUZCtRMk1X8GiCgKb6RnEgb09C3lY4mDdb0ceaI4w==
age: 3158107
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1f4c8e17a668764556ab61c7c31e53c7
ada5ee5917ab9faf3d55a6da1d5bfc3077e42de2
8ac89ed8b6650ea140c2eac1b1dd61f8498e97e278e6bd6debfd803a588e2468
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:09:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.driftt.com/core/assets/js/47.9d4808ed.chunk.js
200 OK 37 kB URL HTTP/2 js.driftt.com/core/assets/js/47.9d4808ed.chunk.js
IP
Hash 9b0c1446843595fbe6e4e5c9d5f70c20
e72bcf9e413a81524bbb4426982c4beb7f91113d
fec8e37179445e5d66b35f46919d525b32e205ba5c1237c4e82c63b1b96e505f
GET /core/assets/js/47.9d4808ed.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 30 Nov 2022 06:28:48 GMT
last-modified: Mon, 28 Nov 2022 20:48:11 GMT
etag: W/"dfc66008c702c40fea0587f735010013"
x-amz-server-side-encryption: AES256
x-amz-version-id: 8QR3cgb7WpaI7MofwiJyqQRRt0Z0IBFB
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 21
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OQK2Vk49l5upW2YusxMi1yFrIshj5DsDR-kjrK9reHCEbPflvI5qmg==
age: 5028039
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/40.5fa801cd.chunk.js
200 OK 9.0 kB URL HTTP/2 js.driftt.com/core/assets/js/40.5fa801cd.chunk.js
IP
Hash 22fcf55ee6388aa467cd745bf65edd14
d68bb3a71c00563738d27fc51ecf0106a7ddba85
007b014035b8d509b6fbf4da8ba18e5b73ff5538e51f73d54268738dbc5a7909
GET /core/assets/js/40.5fa801cd.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Mon, 28 Nov 2022 14:14:55 GMT
last-modified: Tue, 22 Nov 2022 15:49:59 GMT
etag: W/"e7d37d5ffc01767c10d8677c65ead60b"
x-amz-server-side-encryption: AES256
x-amz-version-id: 2JyWLT5kiYVrWdx2kqymOz0l_b0Z1qRY
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FNR7jS-BhpDGdSz6lGZW_98Fp-5BFmen6sl2u4XL5WL-zZAL0pdfrA==
age: 5172873
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 7760e9307af223f8443b6f24b870f353
135699c142ecf65629426feaa2c6af4311245e8f
79ba56f507cd11cd64fab5819ea24a13700f1ba59bfa97cc14f6fa1915cc46d3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 27 Jan 2023 11:09:29 GMT
Last-Modified: Fri, 27 Jan 2023 10:13:49 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: V5wPXrfy76Y_jZBZhblUrKmf2ZYRgCtZXU4v36XwNXehm5643iMCUg==
Age: 3341
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 7760e9307af223f8443b6f24b870f353
135699c142ecf65629426feaa2c6af4311245e8f
79ba56f507cd11cd64fab5819ea24a13700f1ba59bfa97cc14f6fa1915cc46d3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 27 Jan 2023 11:09:29 GMT
Last-Modified: Fri, 27 Jan 2023 10:40:39 GMT
Server: ECS (bsa/EB11)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nIR0uGsi9MHLpdzo7aZctTPXRE_5Z820IrKNbgrKzdvwzsY45SPTuA==
Age: 1731
b.6sc.co/v1/beacon/img.gif?token=b253130e4accad98012a3abe3f4b4c7a&svisitor=null&visitor=813c56b8-0556-4fb2-8eeb-bac92dd88f5a&session=2bbf86f6-650f-4044-8348-1bd7ded3e99b&event=a_pageload&q=%7B%22pageLoadTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A27%20GMT%22%7D&isIframe=false&m=%7B%22description%22%3A%22Have%20questions%20or%20need%20technical%20support%20on%20how%20to%20get%20the%20most%20out%20of%20your%20Cofense%20solution%3F%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22Contact%20Customer%20Support%20-%20Cofense%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&pageViewId=f9f83362-7eed-4927-810e-c0beadca6ce3
200 OK 43 B URL HTTP/2 b.6sc.co/v1/beacon/img.gif?token=b253130e4accad98012a3abe3f4b4c7a&svisitor=null&visitor=813c56b8-0556-4fb2-8eeb-bac92dd88f5a&session=2bbf86f6-650f-4044-8348-1bd7ded3e99b&event=a_pageload&q=%7B%22pageLoadTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A27%20GMT%22%7D&isIframe=false&m=%7B%22description%22%3A%22Have%20questions%20or%20need%20technical%20support%20on%20how%20to%20get%20the%20most%20out%20of%20your%20Cofense%20solution%3F%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22Contact%20Customer%20Support%20-%20Cofense%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&pageViewId=f9f83362-7eed-4927-810e-c0beadca6ce3
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /v1/beacon/img.gif?token=b253130e4accad98012a3abe3f4b4c7a&svisitor=null&visitor=813c56b8-0556-4fb2-8eeb-bac92dd88f5a&session=2bbf86f6-650f-4044-8348-1bd7ded3e99b&event=a_pageload&q=%7B%22pageLoadTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A27%20GMT%22%7D&isIframe=false&m=%7B%22description%22%3A%22Have%20questions%20or%20need%20technical%20support%20on%20how%20to%20get%20the%20most%20out%20of%20your%20Cofense%20solution%3F%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22Contact%20Customer%20Support%20-%20Cofense%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&pageViewId=f9f83362-7eed-4927-810e-c0beadca6ce3 HTTP/1.1
Host: b.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
content-type: image/gif
etag: "60bb2e15-2b"
expires: Wed, 19 Apr 2000 11:43:00 GMT
last-modified: Sat, 05 Jun 2021 07:56:05 GMT
pragma: no-cache
server: nginx/1.14.0 (Ubuntu)
x-content-type-options: nosniff
content-length: 43
date: Fri, 27 Jan 2023 11:09:29 GMT
set-cookie: 6suuid=98054917c6560000e9b0d363b8000000cf26c900; expires=Sun, 26-Jan-2025 11:09:29 GMT; path=/; domain=.6sc.co; SameSite=None; secure
access-control-allow-origin:
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
X-Firefox-Spdy: h2
epsilon.6sense.com/v3/company/details
200 OK 382 B URL HTTP/2 epsilon.6sense.com/v3/company/details
IP
File type JSON data\012- , ASCII text, with very long lines (716), with no line terminators
Hash d3ca07e37e22a6feff0ab7c7b87f94a8
6e1aab772ea39963c86cccaee7cec2d30c8685f7
c86e7ddf37f9cb163eaf9255176369e218cf6dbb061ec53420359fb39de8ead7
GET /v3/company/details HTTP/1.1
Host: epsilon.6sense.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Authorization: Token a9e769d7d96a596f969b9dc5023033e21a69bf40
Origin: https://cofense.com
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:09:29 GMT
content-type: application/json
content-length: 382
server: nginx
access-control-allow-origin: https://cofense.com
access-control-allow-credentials: true
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lltrck.com/scripts/lt-v3.js?llid=19612
200 OK 14 kB URL HTTP/2 lltrck.com/scripts/lt-v3.js?llid=19612
IP
Hash 265b7693dae3a64ce0eef1048a3e8851
150b16f9f249e39bdd3c9eb4c6f5891723415656
017479080b746f6b139be6b08e420f3ebfc04ba2b15225754be0727002152d8d
GET /scripts/lt-v3.js?llid=19612 HTTP/1.1
Host: lltrck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:09:29 GMT
content-type: text/javascript
content-length: 6849
server: Kestrel
cache-control: public, max-age=172800
strict-transport-security: max-age=2592000
X-Firefox-Spdy: h2
munchkin.marketo.net/162/munchkin.js
200 OK 4.7 kB URL HTTP/1.1 munchkin.marketo.net/162/munchkin.js
IP
File type ASCII text, with very long lines (606)
Hash 3e9baed982956735f6e0a0e756d97ed9
9223be6a494a10959101a7942419df7b05b84d73
930a508ed0ea6b4861d19c0738360182514010913c4ebfe9352064ae5006f8a1
GET /162/munchkin.js HTTP/1.1
Host: munchkin.marketo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "75daf56f6191efe42577301908659c29:1656637152.894482"
Last-Modified: Fri, 01 Jul 2022 00:59:12 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=8640000
Expires: Sun, 07 May 2023 11:09:29 GMT
Date: Fri, 27 Jan 2023 11:09:29 GMT
Content-Length: 4677
Connection: keep-alive
P3P: policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR"
b.6sc.co/v1/beacon/img.gif?token=b253130e4accad98012a3abe3f4b4c7a&svisitor=null&visitor=813c56b8-0556-4fb2-8eeb-bac92dd88f5a&session=2bbf86f6-650f-4044-8348-1bd7ded3e99b&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A28%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A27%20GMT%22%2C%22timeSpent%22%3A%221008%22%2C%22totalTimeSpent%22%3A%221008%22%7D&isIframe=false&m=%7B%22description%22%3A%22Have%20questions%20or%20need%20technical%20support%20on%20how%20to%20get%20the%20most%20out%20of%20your%20Cofense%20solution%3F%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22Contact%20Customer%20Support%20-%20Cofense%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&pageViewId=f9f83362-7eed-4927-810e-c0beadca6ce3&an_uid=0
200 OK 43 B URL HTTP/2 b.6sc.co/v1/beacon/img.gif?token=b253130e4accad98012a3abe3f4b4c7a&svisitor=null&visitor=813c56b8-0556-4fb2-8eeb-bac92dd88f5a&session=2bbf86f6-650f-4044-8348-1bd7ded3e99b&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A28%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A27%20GMT%22%2C%22timeSpent%22%3A%221008%22%2C%22totalTimeSpent%22%3A%221008%22%7D&isIframe=false&m=%7B%22description%22%3A%22Have%20questions%20or%20need%20technical%20support%20on%20how%20to%20get%20the%20most%20out%20of%20your%20Cofense%20solution%3F%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22Contact%20Customer%20Support%20-%20Cofense%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&pageViewId=f9f83362-7eed-4927-810e-c0beadca6ce3&an_uid=0
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /v1/beacon/img.gif?token=b253130e4accad98012a3abe3f4b4c7a&svisitor=null&visitor=813c56b8-0556-4fb2-8eeb-bac92dd88f5a&session=2bbf86f6-650f-4044-8348-1bd7ded3e99b&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A28%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A27%20GMT%22%2C%22timeSpent%22%3A%221008%22%2C%22totalTimeSpent%22%3A%221008%22%7D&isIframe=false&m=%7B%22description%22%3A%22Have%20questions%20or%20need%20technical%20support%20on%20how%20to%20get%20the%20most%20out%20of%20your%20Cofense%20solution%3F%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22Contact%20Customer%20Support%20-%20Cofense%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&pageViewId=f9f83362-7eed-4927-810e-c0beadca6ce3&an_uid=0 HTTP/1.1
Host: b.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
content-type: image/gif
etag: "60bb2e15-2b"
expires: Wed, 19 Apr 2000 11:43:00 GMT
last-modified: Sat, 05 Jun 2021 07:56:05 GMT
pragma: no-cache
server: nginx/1.14.0 (Ubuntu)
x-content-type-options: nosniff
content-length: 43
date: Fri, 27 Jan 2023 11:09:29 GMT
set-cookie: 6suuid=98054917c6560000e9b0d3636f010000d626c900; expires=Sun, 26-Jan-2025 11:09:29 GMT; path=/; domain=.6sc.co; SameSite=None; secure
access-control-allow-origin:
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 27 Jan 2023 09:45:20 GMT
expires: Fri, 27 Jan 2023 11:45:20 GMT
cache-control: public, max-age=7200
age: 5049
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/32.a3318c5e.chunk.css
200 OK 2.8 kB URL HTTP/2 js.driftt.com/core/assets/css/32.a3318c5e.chunk.css
IP
Hash 49da806d9cf98007479ef2d018164f84
0f16f85061f79c3117cbb87dc7007148b0da2b03
b55a16f881f89784a7981e941c51f4529942489fceedd5ffe8e856d3dedecca9
GET /core/assets/css/32.a3318c5e.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Tue, 06 Dec 2022 11:39:43 GMT
last-modified: Thu, 01 Dec 2022 14:26:45 GMT
etag: W/"b06e02b360914b25e58305b1b9b954dc"
x-amz-server-side-encryption: AES256
x-amz-version-id: e31zNZ7OvbqwI30C7A3j44RjIqkVwPQA
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 36
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hQkROGLuSH06OhkckFmzqTV7T-oBLxd4VvoBvQzK52OJ-PV_HekQRw==
age: 4490985
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/1.fbdab3a3.chunk.css
200 OK 7.0 kB URL HTTP/2 js.driftt.com/core/assets/css/1.fbdab3a3.chunk.css
IP
Hash e5811439ad378ae5c7f6807e9a7cbd56
5a6ada1a33d88eb9a87fc65e86fac8889c0651c9
0f445ebe8ec48535108984392b89aa2fa83909b2dd91e41ef2eaa568598bb36a
GET /core/assets/css/1.fbdab3a3.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Tue, 27 Dec 2022 19:08:44 GMT
last-modified: Wed, 21 Dec 2022 21:28:24 GMT
etag: W/"6eae9d8917505f7858dc56cf0731728a"
x-amz-server-side-encryption: AES256
x-amz-version-id: .i3LEu4TuE5j0c7IojMGjyXnoYwhN8p3
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 41
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 78xwOoRfQgkWBunkO-GTPkqeOmkjh3zXQKu84f6vFOZutmuqQ5lvPg==
age: 2649644
X-Firefox-Spdy: h2
js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
200 OK 25 kB URL HTTP/2 js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
IP
Hash 570f2e8f0fda6cb0674d2d900b749be8
0226343ffebafca58458988d6f5ed02214bbca4c
704c8111dfd7607d99ac192f3c736cede3a2ac3fca7da8b446705c3425e1e0dc
GET /core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748 HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: istio-envoy
last-modified: Wed, 25 Jan 2023 16:42:40 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 2vh7op0smgKVwhR_IHAioM0myhR60lq9
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
x-envoy-upstream-service-time: 13
date: Fri, 27 Jan 2023 11:09:28 GMT
cache-control: no-cache
etag: W/"61d595b5e6c4d27d6ec51fdf29d348ac"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PBhYY9oQXybQ6lTO9Fzai5a6qcXu4nfsVN8n9vJxreFSguCaopCjlw==
X-Firefox-Spdy: h2
bootstrap.api.drift.com/widget_bootstrap/ping
200 OK 13 B URL HTTP/2 bootstrap.api.drift.com/widget_bootstrap/ping
IP
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /widget_bootstrap/ping HTTP/1.1
Host: bootstrap.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:09:29 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: drift2539c494cffaba9d8a07192664f
content-length: 13
x-envoy-upstream-service-time: 1
server: istio-envoy
X-Firefox-Spdy: h2
www.clarity.ms/tag/ed9ggbnvvo?ref=gtm2
200 OK 1.2 kB URL HTTP/2 www.clarity.ms/tag/ed9ggbnvvo?ref=gtm2
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (1238), with no line terminators
Hash 28efa1ccc67fe0d67575e77cf860280f
fa17b0d6ac9454cafe4272eefe0c6339842db0a8
6bd204578c9d9d1ce61bbd5a3fb6f972c56af2f88b721d3d43509e0ae9e2b322
GET /tag/ed9ggbnvvo?ref=gtm2 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=7597c7133a494343aa46dda49db4f779.20230127.20240127; expires=Sat, 27 Jan 2024 11:09:28 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:e97341f6-8fff-46a6-9229-fbbfe0892c78
x-cache: CONFIG_NOCACHE
x-azure-ref: 06LDTYwAAAAANdlr5865ZQpVK/aLkzpHEQ1BIMzBFREdFMDQxMQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Fri, 27 Jan 2023 11:09:28 GMT
X-Firefox-Spdy: h2
bootstrap.api.drift.com/widget_bootstrap/ping
200 OK 161 B URL HTTP/2 bootstrap.api.drift.com/widget_bootstrap/ping
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 71b3ddc13c6874d4d0a9228d62272d42
3d1ffc34b1c037a714f1baa20393ab7e8628b9e1
814d45cce5caa5b45bc44934f24e210c64cb36ba1438a14d40ad7d23784e78e7
POST /widget_bootstrap/ping HTTP/1.1
Host: bootstrap.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 75
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:09:29 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: 1b48ed7fb1043a4c
vary: Accept-Encoding
content-length: 161
x-envoy-upstream-service-time: 2
server: istio-envoy
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 9a156f9e1eec43fbfc3ea11e27aa3091
280292e0c5a0896c45598aa00e3fb607edf0b3a7
419b77a2c7ed19e8d086c82e3c9096d6ed2ab3032bba31afce0499ee83bc233a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:09:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-114787942-1&cid=2033121132.1674817768&jid=473740442&_u=YCDAgUABAAAAAEAAI~&z=1373725024
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-114787942-1&cid=2033121132.1674817768&jid=473740442&_u=YCDAgUABAAAAAEAAI~&z=1373725024
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-114787942-1&cid=2033121132.1674817768&jid=473740442&_u=YCDAgUABAAAAAEAAI~&z=1373725024 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 27 Jan 2023 11:09:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash f83562d47133761ff37ea36c9f07189e
226d6a41120b671c09f49051a593fc048fa296eb
784b4d4fb6eba57b076109fdb225b109e38f7f8d188c035c618fb4eea3452f3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3532
Cache-Control: max-age=96254
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:09:29 GMT
Etag: "63d2781b-1d7"
Expires: Sat, 28 Jan 2023 13:53:43 GMT
Last-Modified: Thu, 26 Jan 2023 12:54:51 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D300721%26time%3D1674817768555%26url%3Dhttps%253A%252F%252Fcofense.com%252Fcontact-support%252F%26tm%3Dgtmv2%26liSync%3Dtrue
302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D300721%26time%3D1674817768555%26url%3Dhttps%253A%252F%252Fcofense.com%252Fcontact-support%252F%26tm%3Dgtmv2%26liSync%3Dtrue
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D300721%26time%3D1674817768555%26url%3Dhttps%253A%252F%252Fcofense.com%252Fcontact-support%252F%26tm%3Dgtmv2%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cofense.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=300721&time=1674817768555&url=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&tm=gtmv2&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&8cab0bf8-569e-4222-83cc-2d05ed4af29f"; Domain=.linkedin.com; Expires=Sat, 27-Jan-2024 11:09:29 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&202301271109298e42a715-9195-43c2-87c2-3e0f25d997a2AQGHrCsMhc51OjVd02x27Rl2ovLYCqFy"; Domain=.www.linkedin.com; Expires=Sat, 27-Jan-2024 11:09:29 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzQ4MTc3Njk7MjswMjGALFHK2mQerlbndutSedolJm8fG67G7QM1FZXFXchLUA==; Domain=.linkedin.com; Expires=Wed, 26 Jul 2023 11:09:29 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2450:u=1:x=1:i=1674817769:t=1674904169:v=2:sig=AQFP8iyQbsLpzIiEXjwERfsYRo76WplG"; Expires=Sat, 28 Jan 2023 11:09:29 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXzPOY5cFg65cGpHGV6tg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 5465E29558094D6BBA117194B767FF85 Ref B: OSL30EDGE0521 Ref C: 2023-01-27T11:09:29Z
date: Fri, 27 Jan 2023 11:09:29 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 61f119c4b6311c87501f54da9ad62e7e
479c65a3be3e77ff0af6f26118389cac97852c74
e00fa0353240654d541e2aee878c14feb77837a1b5a4a12fa326ec2cc5a92e59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 11:09:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
px.ads.linkedin.com/collect?v=2&fmt=js&pid=300721&time=1674817768555&url=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&tm=gtmv2&liSync=true
200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=300721&time=1674817768555&url=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&tm=gtmv2&liSync=true
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=300721&time=1674817768555&url=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&tm=gtmv2&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cofense.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&b1253d7e-2f93-406e-8cf3-a052a233e8cf"; domain=.linkedin.com; Path=/; Secure; Expires=Sat, 27-Jan-2024 11:09:29 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2478:u=1:x=1:i=1674817769:t=1674904169:v=2:sig=AQGFIA0jNE9bV-IEjAPugdVPNSAkpUXD"; Expires=Sat, 28 Jan 2023 11:09:29 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXzPOY7rQALGHvKcCjfig==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: FB841C579E1446F4BA9D350199C48AAB Ref B: OSL30EDGE0521 Ref C: 2023-01-27T11:09:29Z
date: Fri, 27 Jan 2023 11:09:29 GMT
content-length: 0
X-Firefox-Spdy: h2
404-jhu-612.mktoresp.com/webevents/visitWebPage?_mchNc=1674817769188&_mchCn=&_mchId=404-JHU-612&_mchTk=_mch-cofense.com-1674817769187-18440&_mchHo=cofense.com&_mchPo=&_mchRu=%2Fcontact-support%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=&_mchQp=
200 OK 28 B URL HTTP/1.1 404-jhu-612.mktoresp.com/webevents/visitWebPage?_mchNc=1674817769188&_mchCn=&_mchId=404-JHU-612&_mchTk=_mch-cofense.com-1674817769187-18440&_mchHo=cofense.com&_mchPo=&_mchRu=%2Fcontact-support%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=&_mchQp=
IP
File type ASCII text, with no line terminators
Hash 9dafc521bd59955b4986f0fc3777f77a
5a572b4730d4a2bce2fa35597a0993c649f26c74
e4e90a7b8bacdfe395361149a9fd42f9192b68bdf1497e4454d0ab4c4917f746
POST /webevents/visitWebPage?_mchNc=1674817769188&_mchCn=&_mchId=404-JHU-612&_mchTk=_mch-cofense.com-1674817769187-18440&_mchHo=cofense.com&_mchPo=&_mchRu=%2Fcontact-support%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=&_mchQp= HTTP/1.1
Host: 404-jhu-612.mktoresp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cofense.com
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 27 Jan 2023 11:09:29 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Request-Id: d8c14ad3-f7ad-495d-af77-e059915f31fc
Content-Encoding: gzip
Access-Control-Allow-Origin: *
d.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 643
Origin: https://cofense.com
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://cofense.com
access-control-allow-credentials: true
date: Fri, 27 Jan 2023 11:09:29 GMT
X-Firefox-Spdy: h2
c.clarity.ms/c.gif
302 Found 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=3C519C6B14F34FC2A8E7CF97025E61A8&RedC=c.clarity.ms&MXFR=33DC9C4D090266F001C68EEB0D02689F
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=33DC9C4D090266F001C68EEB0D02689F; domain=.clarity.ms; expires=Wed, 21-Feb-2024 11:09:30 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Fri, 27 Jan 2023 11:09:29 GMT
content-length: 0
X-Firefox-Spdy: h2
metrics.api.drift.com/monitoring/metrics/widget/init/v2
200 OK 13 B URL HTTP/2 metrics.api.drift.com/monitoring/metrics/widget/init/v2
IP
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /monitoring/metrics/widget/init/v2 HTTP/1.1
Host: metrics.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:09:30 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: drift1706cd74187932a340d798a89f0
content-length: 13
x-envoy-upstream-service-time: 1
server: istio-envoy
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=3C519C6B14F34FC2A8E7CF97025E61A8&RedC=c.clarity.ms&MXFR=33DC9C4D090266F001C68EEB0D02689F
302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=3C519C6B14F34FC2A8E7CF97025E61A8&RedC=c.clarity.ms&MXFR=33DC9C4D090266F001C68EEB0D02689F
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=3C519C6B14F34FC2A8E7CF97025E61A8&RedC=c.clarity.ms&MXFR=33DC9C4D090266F001C68EEB0D02689F HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cofense.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=3C519C6B14F34FC2A8E7CF97025E61A8&MUID=02B9608B924463A83BC0722D93B16240
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=02B9608B924463A83BC0722D93B16240; domain=c.bing.com; expires=Wed, 21-Feb-2024 11:09:30 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 12D6A3248B824F44814E40F6C2D23E40 Ref B: OSL30EDGE0114 Ref C: 2023-01-27T11:09:30Z
date: Fri, 27 Jan 2023 11:09:29 GMT
content-length: 0
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=3C519C6B14F34FC2A8E7CF97025E61A8&MUID=02B9608B924463A83BC0722D93B16240
200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=3C519C6B14F34FC2A8E7CF97025E61A8&MUID=02B9608B924463A83BC0722D93B16240
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=3C519C6B14F34FC2A8E7CF97025E61A8&MUID=02B9608B924463A83BC0722D93B16240 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cofense.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 17 Jan 2023 20:36:49 GMT
accept-ranges: bytes
etag: "b1c8df6cb32ad91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Fri, 27-Jan-2023 11:19:30 GMT; path=/; SameSite=None; Secure;
date: Fri, 27 Jan 2023 11:09:29 GMT
content-length: 42
X-Firefox-Spdy: h2
metrics.api.drift.com/monitoring/metrics/widget/init/v2
200 OK 25 B URL HTTP/2 metrics.api.drift.com/monitoring/metrics/widget/init/v2
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 61228f8f544358e9ea1f463f01b5853c
582766f30c82dc2df6938c8e16455fa5e329afb1
f8c91e009d219173c41b4c0b6e43ad28081f7580df6cb99a76aa0a476390ca47
POST /monitoring/metrics/widget/init/v2 HTTP/1.1
Host: metrics.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization:
Content-Length: 358
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:09:30 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: 7068387d269f6291
vary: Accept-Encoding
content-length: 25
x-envoy-upstream-service-time: 13
server: istio-envoy
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 79d163b8c6da68479bc34ef77c1b740f
d3cb4c41ceeb8b32c04a0f33721b94f3c7ffeca0
c4d9a89da53df384e4eef94382ee93916f42d11379b992ff6fc2243312637a09
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 27 Jan 2023 11:09:30 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 26 Jan 2023 21:20:11 GMT
Expires: Fri, 27 Jan 2023 21:20:11 GMT
ETag: "d3cb4c41ceeb8b32c04a0f33721b94f3c7ffeca0"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
d.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 99524
Origin: https://cofense.com
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://cofense.com
access-control-allow-credentials: true
date: Fri, 27 Jan 2023 11:09:29 GMT
X-Firefox-Spdy: h2
b.6sc.co/v1/beacon/img.gif?token=b253130e4accad98012a3abe3f4b4c7a&svisitor=null&visitor=813c56b8-0556-4fb2-8eeb-bac92dd88f5a&session=2bbf86f6-650f-4044-8348-1bd7ded3e99b&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A29%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A28%20GMT%22%2C%22timeSpent%22%3A%221001%22%2C%22totalTimeSpent%22%3A%222009%22%7D&isIframe=false&m=%7B%22description%22%3A%22Have%20questions%20or%20need%20technical%20support%20on%20how%20to%20get%20the%20most%20out%20of%20your%20Cofense%20solution%3F%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22Contact%20Customer%20Support%20-%20Cofense%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&pageViewId=f9f83362-7eed-4927-810e-c0beadca6ce3&an_uid=0
200 OK 43 B URL HTTP/2 b.6sc.co/v1/beacon/img.gif?token=b253130e4accad98012a3abe3f4b4c7a&svisitor=null&visitor=813c56b8-0556-4fb2-8eeb-bac92dd88f5a&session=2bbf86f6-650f-4044-8348-1bd7ded3e99b&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A29%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A28%20GMT%22%2C%22timeSpent%22%3A%221001%22%2C%22totalTimeSpent%22%3A%222009%22%7D&isIframe=false&m=%7B%22description%22%3A%22Have%20questions%20or%20need%20technical%20support%20on%20how%20to%20get%20the%20most%20out%20of%20your%20Cofense%20solution%3F%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22Contact%20Customer%20Support%20-%20Cofense%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&pageViewId=f9f83362-7eed-4927-810e-c0beadca6ce3&an_uid=0
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /v1/beacon/img.gif?token=b253130e4accad98012a3abe3f4b4c7a&svisitor=null&visitor=813c56b8-0556-4fb2-8eeb-bac92dd88f5a&session=2bbf86f6-650f-4044-8348-1bd7ded3e99b&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A29%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A28%20GMT%22%2C%22timeSpent%22%3A%221001%22%2C%22totalTimeSpent%22%3A%222009%22%7D&isIframe=false&m=%7B%22description%22%3A%22Have%20questions%20or%20need%20technical%20support%20on%20how%20to%20get%20the%20most%20out%20of%20your%20Cofense%20solution%3F%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22Contact%20Customer%20Support%20-%20Cofense%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&pageViewId=f9f83362-7eed-4927-810e-c0beadca6ce3&an_uid=0 HTTP/1.1
Host: b.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Cookie: 6suuid=98054917c6560000e9b0d3636f010000d626c900
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
content-type: image/gif
etag: "615ccf10-2b"
expires: Wed, 19 Apr 2000 11:43:00 GMT
last-modified: Tue, 05 Oct 2021 22:17:52 GMT
pragma: no-cache
server: nginx/1.14.0 (Ubuntu)
x-content-type-options: nosniff
content-length: 43
date: Fri, 27 Jan 2023 11:09:30 GMT
set-cookie: 6suuid=98054917c6560000e9b0d3636f010000d626c900; expires=Sun, 26-Jan-2025 11:09:30 GMT; path=/; domain=.6sc.co; SameSite=None; secure
access-control-allow-origin:
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash ad5c7df2e1b4b545d6c54c1680c12c18
70847a7550ef6369855cef86cc2af874c07d0953
0cc8e7e730b66f718e15ec12b4ad3e9618cacf2995ef54489ca1558f685910d7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=162645
Date: Fri, 27 Jan 2023 11:09:30 GMT
Etag: "63d37119-1d7"
Expires: Sun, 29 Jan 2023 08:20:15 GMT
Last-Modified: Fri, 27 Jan 2023 06:37:13 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 62lNKcOIQhxL4ffOMlhXU0yxPd93zTlI7UKjn3wmOs8_H9PuYRcH6g==
Age: 6182
1452868-18.chat.api.drift.com/ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAAVMTQ1Mjg2OC0xNzA4NDkwNTE3NC00ZAAGb3JnX2lkbQAAAAcxNDUyODY4ZAAJc2NvcGVfc2V0bQAAAARsZWFkZAAHdXNlcl9pZG0AAAALMTcwODQ5MDUxNzRkAAl1c2VyX3R5cGVkAARsZWFkbgYACxTr8oUBYgABUYA.CuC6TiL9oHCSHthqBgEwvR4ammC0fVZzOrV7QBq-ax0&remote_ip=52.205.21.197&vsn=2.0.0
101 Switching Protocols 0 B URL HTTP/1.1 1452868-18.chat.api.drift.com/ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAAVMTQ1Mjg2OC0xNzA4NDkwNTE3NC00ZAAGb3JnX2lkbQAAAAcxNDUyODY4ZAAJc2NvcGVfc2V0bQAAAARsZWFkZAAHdXNlcl9pZG0AAAALMTcwODQ5MDUxNzRkAAl1c2VyX3R5cGVkAARsZWFkbgYACxTr8oUBYgABUYA.CuC6TiL9oHCSHthqBgEwvR4ammC0fVZzOrV7QBq-ax0&remote_ip=52.205.21.197&vsn=2.0.0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAAVMTQ1Mjg2OC0xNzA4NDkwNTE3NC00ZAAGb3JnX2lkbQAAAAcxNDUyODY4ZAAJc2NvcGVfc2V0bQAAAARsZWFkZAAHdXNlcl9pZG0AAAALMTcwODQ5MDUxNzRkAAl1c2VyX3R5cGVkAARsZWFkbgYACxTr8oUBYgABUYA.CuC6TiL9oHCSHthqBgEwvR4ammC0fVZzOrV7QBq-ax0&remote_ip=52.205.21.197&vsn=2.0.0 HTTP/1.1
Host: 1452868-18.chat.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://js.driftt.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: GuU+YeuuF/cuQXd7aNoLNA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Fri, 27 Jan 2023 11:09:31 GMT
Connection: upgrade
cache-control: max-age=0, private, must-revalidate
sec-websocket-accept: 50Cr/D1DKPhz49CrLY5asnI7ClE=
server: Cowboy
upgrade: websocket
b.6sc.co/v1/beacon/img.gif?token=b253130e4accad98012a3abe3f4b4c7a&svisitor=null&visitor=813c56b8-0556-4fb2-8eeb-bac92dd88f5a&session=2bbf86f6-650f-4044-8348-1bd7ded3e99b&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A30%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A29%20GMT%22%2C%22timeSpent%22%3A%221003%22%2C%22totalTimeSpent%22%3A%223012%22%7D&isIframe=false&m=%7B%22description%22%3A%22Have%20questions%20or%20need%20technical%20support%20on%20how%20to%20get%20the%20most%20out%20of%20your%20Cofense%20solution%3F%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22Contact%20Customer%20Support%20-%20Cofense%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&pageViewId=f9f83362-7eed-4927-810e-c0beadca6ce3&an_uid=0
200 OK 43 B URL HTTP/2 b.6sc.co/v1/beacon/img.gif?token=b253130e4accad98012a3abe3f4b4c7a&svisitor=null&visitor=813c56b8-0556-4fb2-8eeb-bac92dd88f5a&session=2bbf86f6-650f-4044-8348-1bd7ded3e99b&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A30%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A29%20GMT%22%2C%22timeSpent%22%3A%221003%22%2C%22totalTimeSpent%22%3A%223012%22%7D&isIframe=false&m=%7B%22description%22%3A%22Have%20questions%20or%20need%20technical%20support%20on%20how%20to%20get%20the%20most%20out%20of%20your%20Cofense%20solution%3F%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22Contact%20Customer%20Support%20-%20Cofense%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&pageViewId=f9f83362-7eed-4927-810e-c0beadca6ce3&an_uid=0
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /v1/beacon/img.gif?token=b253130e4accad98012a3abe3f4b4c7a&svisitor=null&visitor=813c56b8-0556-4fb2-8eeb-bac92dd88f5a&session=2bbf86f6-650f-4044-8348-1bd7ded3e99b&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A30%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A29%20GMT%22%2C%22timeSpent%22%3A%221003%22%2C%22totalTimeSpent%22%3A%223012%22%7D&isIframe=false&m=%7B%22description%22%3A%22Have%20questions%20or%20need%20technical%20support%20on%20how%20to%20get%20the%20most%20out%20of%20your%20Cofense%20solution%3F%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22Contact%20Customer%20Support%20-%20Cofense%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&pageViewId=f9f83362-7eed-4927-810e-c0beadca6ce3&an_uid=0 HTTP/1.1
Host: b.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Cookie: 6suuid=98054917c6560000e9b0d3636f010000d626c900
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
content-type: image/gif
etag: "615ccf10-2b"
expires: Wed, 19 Apr 2000 11:43:00 GMT
last-modified: Tue, 05 Oct 2021 22:17:52 GMT
pragma: no-cache
server: nginx/1.14.0 (Ubuntu)
x-content-type-options: nosniff
content-length: 43
date: Fri, 27 Jan 2023 11:09:31 GMT
set-cookie: 6suuid=98054917c6560000e9b0d3636f010000d626c900; expires=Sun, 26-Jan-2025 11:09:31 GMT; path=/; domain=.6sc.co; SameSite=None; secure
access-control-allow-origin:
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
X-Firefox-Spdy: h2
event.api.drift.com/track
200 OK 13 B URL HTTP/2 event.api.drift.com/track
IP
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /track HTTP/1.1
Host: event.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:09:31 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: driftdfa443a4479a7e8759f91579cd2
content-length: 13
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2
targeting.api.drift.com/targeting/evaluate_with_log
200 OK 13 B URL HTTP/2 targeting.api.drift.com/targeting/evaluate_with_log
IP
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /targeting/evaluate_with_log HTTP/1.1
Host: targeting.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:09:31 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: drift69cf70b4015b44514df2d8d035b
content-length: 13
x-envoy-upstream-service-time: 1
server: istio-envoy
X-Firefox-Spdy: h2
www.clarity.ms/eus/s/0.7.1/clarity.js
200 OK 64 kB URL HTTP/2 www.clarity.ms/eus/s/0.7.1/clarity.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (56646)
Hash 9c27bc895984de43edf6f55d2a2e087b
7ef43fa7da29f4c95c822474f90d10d786b143ce
e7142aac6c41f214318ab4193dd06e2a1754404b0d9646a0b94818c0e34bc92d
GET /eus/s/0.7.1/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d928dd7500799e"
server: Microsoft-IIS/10.0
x-cache: TCP_HIT
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
x-azure-ref-originshield: 0gMrSYwAAAACON915zEqoRKjh23ohzUG0RlJBMjMxMDUwNDE4MDM3ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
x-azure-ref: 06bDTYwAAAACsrbo14NeQRJLDMDFRoay+Q1BIMzBFREdFMDQxMQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Fri, 27 Jan 2023 11:09:29 GMT
X-Firefox-Spdy: h2
event.api.drift.com/track
200 OK 536 B URL HTTP/2 event.api.drift.com/track
IP
File type JSON data\012- , ASCII text, with very long lines (536), with no line terminators
Hash d0739f3bf6baee9e0673238cbf896d75
f852091eae4a6b3b391340968179b60eec1cc8c7
77883428ebfad2468e160f742bd7d4a7b97df09561e09f8aebd3f662b49a266a
POST /track HTTP/1.1
Host: event.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIxNzA4NDkwNTE3NCIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6IjE0NTI4NjgiLCJleHAiOjE3MDYzNTM3NzAsImlhdCI6MTY3NDgxNzc3MH0.mXuH8XstAMLrGQNVeXsxu7aZCt_Gdc8W3QdbxsVisW1KvbWAs7nicXlgP5OiGQvY8OzSDJsKIQq5KWtftNlWJA
Content-Length: 381
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:09:31 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: fc3ebd71bd7ca1d3
content-length: 536
x-envoy-upstream-service-time: 1
server: istio-envoy
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/54.87fa78e6.chunk.js
200 OK 6.6 kB URL HTTP/2 js.driftt.com/core/assets/js/54.87fa78e6.chunk.js
IP
File type ASCII text, with very long lines (19488), with no line terminators
Hash 3f8122c04a0d25bcd6f6fd9b0720221f
04a26a5549898e3f65430a4b6bfa07aa760e92f1
88eedcb898bdb3b262cc8d5c2163929400e63d3c71615849ca02f535cd193a35
GET /core/assets/js/54.87fa78e6.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=28krvx2uf9n3&eId=28krvx2uf9n3®ion=US&forceShow=false&skipCampaigns=false&sessionId=bfb80fbc-75e1-4abc-a93a-370b7e017918&sessionStarted=1674817768.033&campaignRefreshToken=a82c6977-f1d9-46d0-b788-703083839da6&hideController=false&pageLoadStartTime=1674817766748&mode=CHAT&driftEnableLog=false&loadStrategy=EAGER&secureIframe=false&u=https%3A%2F%2Fcofense.com%2Fcontact-support%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Mon, 28 Nov 2022 14:14:58 GMT
last-modified: Tue, 22 Nov 2022 15:49:59 GMT
etag: W/"1841053bd39b920527bc6aa4916331ea"
x-amz-server-side-encryption: AES256
x-amz-version-id: KzSEF2LxzGEoVzinmgIjqSDmOSZ9eNM2
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 21
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LeyWg4eF0EG51_YaKAdT95ch55RhwL3QWpnY7d2z3LE3Kl-vrz2X0A==
age: 5172873
X-Firefox-Spdy: h2
presence.api.drift.com/ws/websocket?session_token=SFMyNTY.g3QAAAACZAAEZGF0YXQAAAAFZAACaWRtAAAAFTE0NTI4NjgtMTcwODQ5MDUxNzQtNGQABm9yZ19pZG0AAAAHMTQ1Mjg2OGQACXNjb3BlX3NldG0AAAAEbGVhZGQAB3VzZXJfaWRtAAAACzE3MDg0OTA1MTc0ZAAJdXNlcl90eXBlZAAEbGVhZGQABnNpZ25lZG4GAA8U6_KFAQ.m6oOMjdGsm_TLus-btSSx9Feum0-TcQO7H8raWGmVRU&remote_ip=52.205.21.197&vsn=2.0.0
101 Switching Protocols 0 B URL HTTP/1.1 presence.api.drift.com/ws/websocket?session_token=SFMyNTY.g3QAAAACZAAEZGF0YXQAAAAFZAACaWRtAAAAFTE0NTI4NjgtMTcwODQ5MDUxNzQtNGQABm9yZ19pZG0AAAAHMTQ1Mjg2OGQACXNjb3BlX3NldG0AAAAEbGVhZGQAB3VzZXJfaWRtAAAACzE3MDg0OTA1MTc0ZAAJdXNlcl90eXBlZAAEbGVhZGQABnNpZ25lZG4GAA8U6_KFAQ.m6oOMjdGsm_TLus-btSSx9Feum0-TcQO7H8raWGmVRU&remote_ip=52.205.21.197&vsn=2.0.0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws/websocket?session_token=SFMyNTY.g3QAAAACZAAEZGF0YXQAAAAFZAACaWRtAAAAFTE0NTI4NjgtMTcwODQ5MDUxNzQtNGQABm9yZ19pZG0AAAAHMTQ1Mjg2OGQACXNjb3BlX3NldG0AAAAEbGVhZGQAB3VzZXJfaWRtAAAACzE3MDg0OTA1MTc0ZAAJdXNlcl90eXBlZAAEbGVhZGQABnNpZ25lZG4GAA8U6_KFAQ.m6oOMjdGsm_TLus-btSSx9Feum0-TcQO7H8raWGmVRU&remote_ip=52.205.21.197&vsn=2.0.0 HTTP/1.1
Host: presence.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://js.driftt.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: eRcro5D7WU+o790hgnVbyA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
cache-control: max-age=0, private, must-revalidate
connection: Upgrade
date: Fri, 27 Jan 2023 11:09:30 GMT
sec-websocket-accept: 2RV5dqB7U9GUF+GZwPjvZNK9K3s=
server: Cowboy
upgrade: websocket
flow.api.drift.com/flows/render_initial_v3
200 OK 13 B URL HTTP/2 flow.api.drift.com/flows/render_initial_v3
IP
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /flows/render_initial_v3 HTTP/1.1
Host: flow.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:09:31 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: driftd0555e949869f55fdae50fff4c5
content-length: 13
x-envoy-upstream-service-time: 1
server: istio-envoy
X-Firefox-Spdy: h2
flow.api.drift.com/flows/render_initial_v3
200 OK 2.2 kB URL HTTP/2 flow.api.drift.com/flows/render_initial_v3
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (4107), with no line terminators
Hash fa558c24904202ad94321870a0cfb146
b533c1ebdb2caae60600897891886e9d643f8b40
026bb4f0bf51dd22653cf71f09259adb858e72173f9f7d6d65837296f84b7b2b
POST /flows/render_initial_v3 HTTP/1.1
Host: flow.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIxNzA4NDkwNTE3NCIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6IjE0NTI4NjgiLCJleHAiOjE3MDYzNTM3NzAsImlhdCI6MTY3NDgxNzc3MH0.mXuH8XstAMLrGQNVeXsxu7aZCt_Gdc8W3QdbxsVisW1KvbWAs7nicXlgP5OiGQvY8OzSDJsKIQq5KWtftNlWJA
Content-Length: 460
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:09:31 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: 3395d160351529d0
vary: Accept-Encoding
content-encoding: gzip
content-length: 2240
x-envoy-upstream-service-time: 34
server: istio-envoy
X-Firefox-Spdy: h2
driftt.imgix.net/https%3A%2F%2Fdriftt.imgix.net%2Fhttps%253A%252F%252Fs3.amazonaws.com%252Fcustomer-api-avatars-prod%252F2106400%252F13690614ba4dc30e40747e74e1535a5adzn4mi89fik3%3Ffit%3Dmax%26fm%3Dpng%26h%3D200%26w%3D200%26s%3D3d628948700c6adffa763ed302d1aec1?fit=max&fm=png&h=200&w=200&s=b89b9dce21f66015eedf860da053c36f
200 OK 24 kB URL HTTP/2 driftt.imgix.net/https%3A%2F%2Fdriftt.imgix.net%2Fhttps%253A%252F%252Fs3.amazonaws.com%252Fcustomer-api-avatars-prod%252F2106400%252F13690614ba4dc30e40747e74e1535a5adzn4mi89fik3%3Ffit%3Dmax%26fm%3Dpng%26h%3D200%26w%3D200%26s%3D3d628948700c6adffa763ed302d1aec1?fit=max&fm=png&h=200&w=200&s=b89b9dce21f66015eedf860da053c36f
IP
File type PNG image data, 198 x 200, 8-bit/color RGB, non-interlaced\012- data
Hash 149f864c62bceff896eac8fc7657f5df
bebee201ad65feaab9631fd85ea044f8f1527dcf
4bfadbef6403a8d94ce18f4c015c320c8627a0ecaf0e2633ae3e7c601cd00f14
GET /https%3A%2F%2Fdriftt.imgix.net%2Fhttps%253A%252F%252Fs3.amazonaws.com%252Fcustomer-api-avatars-prod%252F2106400%252F13690614ba4dc30e40747e74e1535a5adzn4mi89fik3%3Ffit%3Dmax%26fm%3Dpng%26h%3D200%26w%3D200%26s%3D3d628948700c6adffa763ed302d1aec1?fit=max&fm=png&h=200&w=200&s=b89b9dce21f66015eedf860da053c36f HTTP/1.1
Host: driftt.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 04 Nov 2022 14:23:32 GMT
cache-control: public, max-age=315360000
server: imgix
x-imgix-id: cb532a9cb21d744d1142c271dda5bafae1725107
x-imgix-render-farm: 01.592
date: Fri, 27 Jan 2023 11:09:32 GMT
age: 7245958
accept-ranges: bytes
content-type: image/png
access-control-allow-origin: *
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10076-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
content-length: 23915
X-Firefox-Spdy: h2
targeting.api.drift.com/impressions/widget
200 OK 13 B URL HTTP/2 targeting.api.drift.com/impressions/widget
IP
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /impressions/widget HTTP/1.1
Host: targeting.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:09:32 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: drift6cf2ec94e58840ce0a737e375d6
content-length: 13
x-envoy-upstream-service-time: 1
server: istio-envoy
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/42.e483d03f.chunk.css
200 OK 900 B URL HTTP/2 js.driftt.com/core/assets/css/42.e483d03f.chunk.css
IP
File type ASCII text, with very long lines (900), with no line terminators
Hash 0bd11a8facc0a9d41713c64ed1ba1289
23d92b5b9138666f5c33517d53451a6e2e8ec30a
12ffe3ad71f763d9057baf43e0f1c1482bb9a0372602020554c4d52f52b37981
GET /core/assets/css/42.e483d03f.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 900
server: istio-envoy
date: Mon, 05 Dec 2022 07:33:28 GMT
last-modified: Thu, 01 Dec 2022 14:26:45 GMT
etag: "0bd11a8facc0a9d41713c64ed1ba1289"
x-amz-server-side-encryption: AES256
x-amz-version-id: lrdfRMcaevkhOI7jiBPuWz5TTNOFFoIT
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 27
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mBVTqAztUZIBN_SUkDql8caqWQ3zZ-KPvdBsUXtdtSmOoTm1tUffyQ==
age: 4592164
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/42.8271042f.chunk.js
200 OK 303 B URL HTTP/2 js.driftt.com/core/assets/js/42.8271042f.chunk.js
IP
File type ASCII text, with very long lines (303), with no line terminators
Hash 259dfa28338c4e29369921c2e83f2f58
c8d1c1acf574d607b1631f3aef4fd7d994bc0476
97c45b6d5894df822e26f3ce08d0596398130dc27d9a2515e3ac6d9ed71e33be
GET /core/assets/js/42.8271042f.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 303
server: istio-envoy
date: Wed, 30 Nov 2022 06:48:32 GMT
last-modified: Mon, 28 Nov 2022 20:48:11 GMT
etag: "259dfa28338c4e29369921c2e83f2f58"
x-amz-server-side-encryption: AES256
x-amz-version-id: 0dBu7kYnnDL2T7fV8EEs.OSHpRrpcChf
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 15
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: URW6107lxSYIWdi1r609acDUm1esCfN00zROy3DUHrV269xAzVMh2Q==
age: 5026860
X-Firefox-Spdy: h2
js.driftt.com/conductor/assets/4.3b34b074.chunk.js
200 OK 813 B URL HTTP/2 js.driftt.com/conductor/assets/4.3b34b074.chunk.js
IP
File type gzip compressed data, max compression\012- data
Hash 920a9c4b63d1d162dd24d2c890924173
6a414a16251fb57f05431f35204ce90e13127f66
c267ab6e6b46eabd31616ff9244df453f2708c61bd1260aa5615b186760cb67d
GET /conductor/assets/4.3b34b074.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 158
server: istio-envoy
date: Tue, 06 Dec 2022 11:29:47 GMT
last-modified: Thu, 01 Dec 2022 14:26:56 GMT
etag: "04cb478629934587f65fb92a62238885"
x-amz-server-side-encryption: AES256
x-amz-version-id: nrmn4gV_Iv0bQ8XJ5J9YR5CSZh_jpsqE
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 19
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fbJXV8cytVIdKoVhQkMCdHprhtjS-mnCbi8NMmBPCn_HIXa7DY9UEQ==
age: 4491585
X-Firefox-Spdy: h2
js.driftt.com/conductor/assets/media/notification.5f7c6014.mp3
206 Partial Content 7.8 kB URL HTTP/2 js.driftt.com/conductor/assets/media/notification.5f7c6014.mp3
IP
File type MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Monaural\012- data
Hash 5f7c6014cf73831f91963a668b71fbb9
c49eafebb17d0ae937eaa47e8f81392a8e271b69
bf06f41bb3a1429115fa2dcfbee9986234d6d319da3597648e4e980340d52027
GET /conductor/assets/media/notification.5f7c6014.mp3 HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
content-type: audio/mpeg
content-length: 7755
date: Sat, 03 Sep 2022 07:38:10 GMT
server: nginx
last-modified: Thu, 01 Sep 2022 13:18:52 GMT
etag: "5f7c6014cf73831f91963a668b71fbb9"
x-amz-server-side-encryption: AES256
x-amz-version-id: Ub51puyo1Locv75rMJeYD6NAYp0fo__l
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-range: bytes 0-7754/7755
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RRwy4vIQKBrOwRNYb3-Ex7QQKrZ7_klOb-CRxDmtAQZFSa7iTgKgqA==
age: 12627082
X-Firefox-Spdy: h2
targeting.api.drift.com/impressions/widget
204 No Content 0 B URL HTTP/2 targeting.api.drift.com/impressions/widget
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /impressions/widget HTTP/1.1
Host: targeting.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIxNzA4NDkwNTE3NCIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6IjE0NTI4NjgiLCJleHAiOjE3MDYzNTM3NzAsImlhdCI6MTY3NDgxNzc3MH0.mXuH8XstAMLrGQNVeXsxu7aZCt_Gdc8W3QdbxsVisW1KvbWAs7nicXlgP5OiGQvY8OzSDJsKIQq5KWtftNlWJA
Content-Length: 669
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 27 Jan 2023 11:09:32 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
requestid: 4e8837e55ea73315
x-envoy-upstream-service-time: 8
server: istio-envoy
X-Firefox-Spdy: h2
b.6sc.co/v1/beacon/img.gif?token=b253130e4accad98012a3abe3f4b4c7a&svisitor=null&visitor=813c56b8-0556-4fb2-8eeb-bac92dd88f5a&session=2bbf86f6-650f-4044-8348-1bd7ded3e99b&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A31%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A30%20GMT%22%2C%22timeSpent%22%3A%221001%22%2C%22totalTimeSpent%22%3A%224013%22%7D&isIframe=false&m=%7B%22description%22%3A%22Have%20questions%20or%20need%20technical%20support%20on%20how%20to%20get%20the%20most%20out%20of%20your%20Cofense%20solution%3F%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22Contact%20Customer%20Support%20-%20Cofense%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&pageViewId=f9f83362-7eed-4927-810e-c0beadca6ce3&an_uid=0
200 OK 43 B URL HTTP/2 b.6sc.co/v1/beacon/img.gif?token=b253130e4accad98012a3abe3f4b4c7a&svisitor=null&visitor=813c56b8-0556-4fb2-8eeb-bac92dd88f5a&session=2bbf86f6-650f-4044-8348-1bd7ded3e99b&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A31%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A30%20GMT%22%2C%22timeSpent%22%3A%221001%22%2C%22totalTimeSpent%22%3A%224013%22%7D&isIframe=false&m=%7B%22description%22%3A%22Have%20questions%20or%20need%20technical%20support%20on%20how%20to%20get%20the%20most%20out%20of%20your%20Cofense%20solution%3F%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22Contact%20Customer%20Support%20-%20Cofense%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&pageViewId=f9f83362-7eed-4927-810e-c0beadca6ce3&an_uid=0
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /v1/beacon/img.gif?token=b253130e4accad98012a3abe3f4b4c7a&svisitor=null&visitor=813c56b8-0556-4fb2-8eeb-bac92dd88f5a&session=2bbf86f6-650f-4044-8348-1bd7ded3e99b&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A31%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A30%20GMT%22%2C%22timeSpent%22%3A%221001%22%2C%22totalTimeSpent%22%3A%224013%22%7D&isIframe=false&m=%7B%22description%22%3A%22Have%20questions%20or%20need%20technical%20support%20on%20how%20to%20get%20the%20most%20out%20of%20your%20Cofense%20solution%3F%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22Contact%20Customer%20Support%20-%20Cofense%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&pageViewId=f9f83362-7eed-4927-810e-c0beadca6ce3&an_uid=0 HTTP/1.1
Host: b.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Cookie: 6suuid=98054917c6560000e9b0d3636f010000d626c900
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
content-type: image/gif
etag: "615ccf10-2b"
expires: Wed, 19 Apr 2000 11:43:00 GMT
last-modified: Tue, 05 Oct 2021 22:17:52 GMT
pragma: no-cache
server: nginx/1.14.0 (Ubuntu)
x-content-type-options: nosniff
content-length: 43
date: Fri, 27 Jan 2023 11:09:32 GMT
set-cookie: 6suuid=98054917c6560000e9b0d3636f010000d626c900; expires=Sun, 26-Jan-2025 11:09:32 GMT; path=/; domain=.6sc.co; SameSite=None; secure
access-control-allow-origin:
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
X-Firefox-Spdy: h2
metrics.api.drift.com/monitoring/metrics/event2/bulk
200 OK 13 B URL HTTP/2 metrics.api.drift.com/monitoring/metrics/event2/bulk
IP
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /monitoring/metrics/event2/bulk HTTP/1.1
Host: metrics.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:09:32 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: drift5b07b9347d69dddb9634f8cbeed
content-length: 13
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2
metrics.api.drift.com/monitoring/metrics/event2/bulk
200 OK 25 B URL HTTP/2 metrics.api.drift.com/monitoring/metrics/event2/bulk
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 61228f8f544358e9ea1f463f01b5853c
582766f30c82dc2df6938c8e16455fa5e329afb1
f8c91e009d219173c41b4c0b6e43ad28081f7580df6cb99a76aa0a476390ca47
POST /monitoring/metrics/event2/bulk HTTP/1.1
Host: metrics.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIxNzA4NDkwNTE3NCIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6IjE0NTI4NjgiLCJleHAiOjE3MDYzNTM3NzAsImlhdCI6MTY3NDgxNzc3MH0.mXuH8XstAMLrGQNVeXsxu7aZCt_Gdc8W3QdbxsVisW1KvbWAs7nicXlgP5OiGQvY8OzSDJsKIQq5KWtftNlWJA
Content-Length: 657
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:09:32 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: bac3425338cf5318
vary: Accept-Encoding
content-length: 25
x-envoy-upstream-service-time: 14
server: istio-envoy
X-Firefox-Spdy: h2
b.6sc.co/v1/beacon/img.gif?token=b253130e4accad98012a3abe3f4b4c7a&svisitor=null&visitor=813c56b8-0556-4fb2-8eeb-bac92dd88f5a&session=2bbf86f6-650f-4044-8348-1bd7ded3e99b&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A32%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A31%20GMT%22%2C%22timeSpent%22%3A%221001%22%2C%22totalTimeSpent%22%3A%225014%22%7D&isIframe=false&m=%7B%22description%22%3A%22Have%20questions%20or%20need%20technical%20support%20on%20how%20to%20get%20the%20most%20out%20of%20your%20Cofense%20solution%3F%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22(1)%20New%20Messages!%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&pageViewId=f9f83362-7eed-4927-810e-c0beadca6ce3&an_uid=0
200 OK 43 B URL HTTP/2 b.6sc.co/v1/beacon/img.gif?token=b253130e4accad98012a3abe3f4b4c7a&svisitor=null&visitor=813c56b8-0556-4fb2-8eeb-bac92dd88f5a&session=2bbf86f6-650f-4044-8348-1bd7ded3e99b&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A32%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A31%20GMT%22%2C%22timeSpent%22%3A%221001%22%2C%22totalTimeSpent%22%3A%225014%22%7D&isIframe=false&m=%7B%22description%22%3A%22Have%20questions%20or%20need%20technical%20support%20on%20how%20to%20get%20the%20most%20out%20of%20your%20Cofense%20solution%3F%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22(1)%20New%20Messages!%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&pageViewId=f9f83362-7eed-4927-810e-c0beadca6ce3&an_uid=0
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /v1/beacon/img.gif?token=b253130e4accad98012a3abe3f4b4c7a&svisitor=null&visitor=813c56b8-0556-4fb2-8eeb-bac92dd88f5a&session=2bbf86f6-650f-4044-8348-1bd7ded3e99b&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A32%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A31%20GMT%22%2C%22timeSpent%22%3A%221001%22%2C%22totalTimeSpent%22%3A%225014%22%7D&isIframe=false&m=%7B%22description%22%3A%22Have%20questions%20or%20need%20technical%20support%20on%20how%20to%20get%20the%20most%20out%20of%20your%20Cofense%20solution%3F%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22(1)%20New%20Messages!%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&pageViewId=f9f83362-7eed-4927-810e-c0beadca6ce3&an_uid=0 HTTP/1.1
Host: b.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Cookie: 6suuid=98054917c6560000e9b0d3636f010000d626c900
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
content-type: image/gif
etag: "5e502810-2b"
expires: Wed, 19 Apr 2000 11:43:00 GMT
last-modified: Fri, 21 Feb 2020 18:57:20 GMT
pragma: no-cache
server: nginx/1.14.0 (Ubuntu)
x-content-type-options: nosniff
content-length: 43
date: Fri, 27 Jan 2023 11:09:33 GMT
set-cookie: 6suuid=98054917c6560000e9b0d3636f010000d626c900; expires=Sun, 26-Jan-2025 11:09:33 GMT; path=/; domain=.6sc.co; SameSite=None; secure
access-control-allow-origin:
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
X-Firefox-Spdy: h2
d.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3506
Origin: https://cofense.com
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://cofense.com
access-control-allow-credentials: true
date: Fri, 27 Jan 2023 11:09:33 GMT
X-Firefox-Spdy: h2
b.6sc.co/v1/beacon/img.gif?token=b253130e4accad98012a3abe3f4b4c7a&svisitor=null&visitor=813c56b8-0556-4fb2-8eeb-bac92dd88f5a&session=2bbf86f6-650f-4044-8348-1bd7ded3e99b&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A33%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A32%20GMT%22%2C%22timeSpent%22%3A%221002%22%2C%22totalTimeSpent%22%3A%226016%22%7D&isIframe=false&m=%7B%22description%22%3A%22Have%20questions%20or%20need%20technical%20support%20on%20how%20to%20get%20the%20most%20out%20of%20your%20Cofense%20solution%3F%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22Contact%20Customer%20Support%20-%20Cofense%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&pageViewId=f9f83362-7eed-4927-810e-c0beadca6ce3&an_uid=0
200 OK 43 B URL HTTP/2 b.6sc.co/v1/beacon/img.gif?token=b253130e4accad98012a3abe3f4b4c7a&svisitor=null&visitor=813c56b8-0556-4fb2-8eeb-bac92dd88f5a&session=2bbf86f6-650f-4044-8348-1bd7ded3e99b&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A33%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A32%20GMT%22%2C%22timeSpent%22%3A%221002%22%2C%22totalTimeSpent%22%3A%226016%22%7D&isIframe=false&m=%7B%22description%22%3A%22Have%20questions%20or%20need%20technical%20support%20on%20how%20to%20get%20the%20most%20out%20of%20your%20Cofense%20solution%3F%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22Contact%20Customer%20Support%20-%20Cofense%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&pageViewId=f9f83362-7eed-4927-810e-c0beadca6ce3&an_uid=0
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /v1/beacon/img.gif?token=b253130e4accad98012a3abe3f4b4c7a&svisitor=null&visitor=813c56b8-0556-4fb2-8eeb-bac92dd88f5a&session=2bbf86f6-650f-4044-8348-1bd7ded3e99b&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A33%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2027%20Jan%202023%2011%3A09%3A32%20GMT%22%2C%22timeSpent%22%3A%221002%22%2C%22totalTimeSpent%22%3A%226016%22%7D&isIframe=false&m=%7B%22description%22%3A%22Have%20questions%20or%20need%20technical%20support%20on%20how%20to%20get%20the%20most%20out%20of%20your%20Cofense%20solution%3F%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22Contact%20Customer%20Support%20-%20Cofense%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fcofense.com%2Fcontact-support%2F&pageViewId=f9f83362-7eed-4927-810e-c0beadca6ce3&an_uid=0 HTTP/1.1
Host: b.6sc.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Cookie: 6suuid=98054917c6560000e9b0d3636f010000d626c900
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
content-type: image/gif
etag: "615ccf10-2b"
expires: Wed, 19 Apr 2000 11:43:00 GMT
last-modified: Tue, 05 Oct 2021 22:17:52 GMT
pragma: no-cache
server: nginx/1.14.0 (Ubuntu)
x-content-type-options: nosniff
content-length: 43
date: Fri, 27 Jan 2023 11:09:34 GMT
set-cookie: 6suuid=98054917c6560000e9b0d3636f010000d626c900; expires=Sun, 26-Jan-2025 11:09:34 GMT; path=/; domain=.6sc.co; SameSite=None; secure
access-control-allow-origin:
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/27.9bf46b67.chunk.css
200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/css/27.9bf46b67.chunk.css
IP
GET /core/assets/css/27.9bf46b67.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=28krvx2uf9n3&eId=28krvx2uf9n3®ion=US&forceShow=false&skipCampaigns=false&sessionId=bfb80fbc-75e1-4abc-a93a-370b7e017918&sessionStarted=1674817768.033&campaignRefreshToken=a82c6977-f1d9-46d0-b788-703083839da6&hideController=false&pageLoadStartTime=1674817766748&mode=CHAT&driftEnableLog=false&loadStrategy=EAGER&secureIframe=false&u=https%3A%2F%2Fcofense.com%2Fcontact-support%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Tue, 06 Dec 2022 11:39:43 GMT
last-modified: Thu, 01 Dec 2022 14:26:44 GMT
etag: W/"4f21faf2ba450e5fcdf7eda90813e185"
x-amz-server-side-encryption: AES256
x-amz-version-id: .EabxsG1IF6_xnfvUkaQ8CsZ1TLBkAR.
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 17
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: d5Q7eq1Lfb-YbuUFHSLjkC2c6ot6xMFpUE5aT3ce1zyfOhRClqQQsQ==
age: 4490985
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/19.6cfbb4ba.chunk.js
200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/19.6cfbb4ba.chunk.js
IP
GET /core/assets/js/19.6cfbb4ba.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=28krvx2uf9n3&eId=28krvx2uf9n3®ion=US&forceShow=false&skipCampaigns=false&sessionId=bfb80fbc-75e1-4abc-a93a-370b7e017918&sessionStarted=1674817768.033&campaignRefreshToken=a82c6977-f1d9-46d0-b788-703083839da6&hideController=false&pageLoadStartTime=1674817766748&mode=CHAT&driftEnableLog=false&loadStrategy=EAGER&secureIframe=false&u=https%3A%2F%2Fcofense.com%2Fcontact-support%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 20 Jan 2023 14:58:30 GMT
last-modified: Fri, 20 Jan 2023 14:19:28 GMT
etag: W/"27094f59fa05480a3625851513658215"
x-amz-server-side-encryption: AES256
x-amz-version-id: CEIslmsJZSe7cea7kOJkOpwH043YHmFS
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6hQIPTJEXebXK8EKfZKRPVYj1UH3y3P99nfmTdNXWTcA9J11OKuwKA==
age: 591058
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/26.64322869.chunk.js
200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/26.64322869.chunk.js
IP
GET /core/assets/js/26.64322869.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=28krvx2uf9n3&eId=28krvx2uf9n3®ion=US&forceShow=false&skipCampaigns=false&sessionId=bfb80fbc-75e1-4abc-a93a-370b7e017918&sessionStarted=1674817768.033&campaignRefreshToken=a82c6977-f1d9-46d0-b788-703083839da6&hideController=false&pageLoadStartTime=1674817766748&mode=CHAT&driftEnableLog=false&loadStrategy=EAGER&secureIframe=false&u=https%3A%2F%2Fcofense.com%2Fcontact-support%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 20 Dec 2022 15:41:38 GMT
last-modified: Tue, 20 Dec 2022 15:26:20 GMT
etag: W/"744c4be1daa9277dcf54fdd19ba78200"
x-amz-server-side-encryption: AES256
x-amz-version-id: PTEOwy_2auoAERJW2cYbyU5O_d.Ysx0V
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 22
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fJCj2sLDuOdsvVgEcpmww7kGzKLy0bVFN4aTK2WFr905sXSFBMidwg==
age: 3266870
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/38.5941b51c.chunk.js
200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/38.5941b51c.chunk.js
IP
GET /core/assets/js/38.5941b51c.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 29 Nov 2022 09:35:05 GMT
last-modified: Mon, 28 Nov 2022 20:48:11 GMT
etag: W/"aa24724b97a516c589a05bc577d15db9"
x-amz-server-side-encryption: AES256
x-amz-version-id: vJ4l4Xhv63Wbg7qXfYNntPn3WeE7h5J0
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 28
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3h2zorvAVXiKWkG4jO5tdXf9-6u8U344X1EzzXAeo4P_t2E0yj11DA==
age: 5103263
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/300721/domain/cofense.com/token
200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/300721/domain/cofense.com/token
IP
GET /partner/300721/domain/cofense.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cofense.com
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Fri, 27 Jan 2023 10:44:41 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GgyE_T1F4lDGx9aK3sDVmxTFbvSiEUGCjGJXK7AUU04fj5iqKrtxOA==
age: 1488
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/8.611ead2e.chunk.js
200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/8.611ead2e.chunk.js
IP
GET /core/assets/js/8.611ead2e.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Mon, 05 Dec 2022 03:22:45 GMT
last-modified: Thu, 01 Dec 2022 14:26:49 GMT
etag: W/"6aa29962f34a8e117268142c7cc1cc3d"
x-amz-server-side-encryption: AES256
x-amz-version-id: FEmcNMm7bgl3LTWxdVAFr5N2puOGeTSU
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 19
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CX0-mGhjb1En0x-as0VekKapw26pC2OxNZlr85TpttmozMqUbn68_w==
age: 4607203
X-Firefox-Spdy: h2
epsilon.6sense.com/v3/company/details
200 OK 0 B URL HTTP/2 epsilon.6sense.com/v3/company/details
IP
OPTIONS /v3/company/details HTTP/1.1
Host: epsilon.6sense.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization
Referer: https://cofense.com/
Origin: https://cofense.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:09:29 GMT
server: nginx
access-control-allow-origin: https://cofense.com
access-control-allow-credentials: true
access-control-max-age: 1800
access-control-allow-methods: OPTIONS,GET
access-control-allow-headers: authorization
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/24.29247f88.chunk.js
200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/24.29247f88.chunk.js
IP
GET /core/assets/js/24.29247f88.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 25 Jan 2023 16:42:40 GMT
last-modified: Wed, 25 Jan 2023 15:22:45 GMT
etag: W/"1a5b88806014144bbc7ea072e911b17a"
x-amz-server-side-encryption: AES256
x-amz-version-id: 24i1l1FsLgqw6gcF0XTTXcFWc8OgQ6yC
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 19
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tccVZP459np0svLEibWjTMbuouroZ8AhSyQe47zm8J5ODcbnZEorfw==
age: 152808
X-Firefox-Spdy: h2
cofense.com/contact-support
301 Moved Permanently 0 B URL HTTP/2 cofense.com/contact-support
IP
ASN #209242 Cloudflare London, LLC
GET /contact-support HTTP/1.1
Host: cofense.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Fri, 27 Jan 2023 11:09:26 GMT
content-type: text/html; charset=UTF-8
location: https://cofense.com/contact-support/
vary: X-NR-SAMPLE-PERCENT
x-pingback: https://cofense.com/xmlrpc.php
x-redirect-by: WordPress
x-powered-by: WP Engine
x-cacheable: non200
cache-control: max-age=600, must-revalidate
x-cache: MISS
x-cache-group: normal
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7901093ddf971c02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cofense2022stg.wpengine.com/wp-content/uploads/2022/05/Inter-Medium.ttf
404 Not Found 0 B URL HTTP/2 cofense2022stg.wpengine.com/wp-content/uploads/2022/05/Inter-Medium.ttf
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/uploads/2022/05/Inter-Medium.ttf HTTP/1.1
Host: cofense2022stg.wpengine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cofense.com
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
server: nginx
date: Fri, 27 Jan 2023 11:09:28 GMT
content-type: text/html
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
bootstrap.api.drift.com/widget_bootstrap
200 OK 0 B URL HTTP/2 bootstrap.api.drift.com/widget_bootstrap
IP
POST /widget_bootstrap HTTP/1.1
Host: bootstrap.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 633
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:09:29 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: ab3e70ffedfa5ea7
vary: Accept-Encoding
content-encoding: gzip
x-envoy-upstream-service-time: 543
server: istio-envoy
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-5RQ37KH
200 OK 0 B URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-5RQ37KH
IP
GET /gtm.js?id=GTM-5RQ37KH HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 27 Jan 2023 11:09:27 GMT
expires: Fri, 27 Jan 2023 11:09:27 GMT
cache-control: private, max-age=900
last-modified: Fri, 27 Jan 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 96376
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/3.07aa08a5.chunk.css
200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/css/3.07aa08a5.chunk.css
IP
GET /core/assets/css/3.07aa08a5.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Mon, 14 Nov 2022 02:01:00 GMT
server: nginx
last-modified: Wed, 09 Nov 2022 18:21:19 GMT
etag: W/"189aeffd571884559dababa22c66d75a"
x-amz-server-side-encryption: AES256
x-amz-version-id: 6eDD8hJAoclD6yRsTxOCYDa1IzjcvXMP
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jXFQnOOTOXf6VL1eBEa0nOEKswsMaNK7jwCjlBhVRzSj7d4oY9mQIQ==
age: 6426508
X-Firefox-Spdy: h2
trk.techtarget.com/tracking.js
200 OK 0 B URL HTTP/2 trk.techtarget.com/tracking.js
IP
GET /tracking.js HTTP/1.1
Host: trk.techtarget.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:09:28 GMT
content-type: text/javascript
cache-control: max-age=1200
cf-bgj: minify
expires: Fri, 27 Jan 2023 11:06:26 GMT
last-modified: Tue, 13 Dec 2022 15:01:39 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 210
set-cookie: __cf_bm=bRCyTN.Q.t52LNqaA96j1gXuIJ0miIvXWl8.68keafA-1674817768-0-AZPCP86N1g00roFNuK46jCbgQVEubjcsCmlTEv6MX/YCJ0QUnfTRQ9OeAhH8521bYm1OcoFbC45X1xMe1CJ5+4g=; path=/; expires=Fri, 27-Jan-23 11:39:28 GMT; domain=.techtarget.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7901094a5a051c16-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/20.8c21ea18.chunk.js
200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/20.8c21ea18.chunk.js
IP
GET /core/assets/js/20.8c21ea18.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 30 Nov 2022 06:28:48 GMT
last-modified: Mon, 28 Nov 2022 20:48:10 GMT
etag: W/"6d77a76055d81227033363af2f18caf8"
x-amz-server-side-encryption: AES256
x-amz-version-id: Fsl5YzjyzYkGyh.Qov9hdU0MvlCwCPrF
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 15
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sKkhOOrnKJW-P0wBDLxno16krtPqwfTgMBmWOH815OpqSeSsfQ4dgQ==
age: 5028039
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/23.60057654.chunk.js
200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/23.60057654.chunk.js
IP
GET /core/assets/js/23.60057654.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Sun, 13 Nov 2022 04:37:57 GMT
server: nginx
last-modified: Wed, 09 Nov 2022 18:21:21 GMT
etag: W/"0e963aeeee70e63f5078955e6db860f3"
x-amz-server-side-encryption: AES256
x-amz-version-id: h0iqbZ_gASSHNL6Etsh3GsO.e_uJcwGW
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 66o6EwxkWBHrnOp7PCQBQxowwoy-LZcvHdU3HLO98Y8TcEo_5CKjWA==
age: 6503491
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/27.71ef102c.chunk.js
200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/27.71ef102c.chunk.js
IP
GET /core/assets/js/27.71ef102c.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=28krvx2uf9n3&eId=28krvx2uf9n3®ion=US&forceShow=false&skipCampaigns=false&sessionId=bfb80fbc-75e1-4abc-a93a-370b7e017918&sessionStarted=1674817768.033&campaignRefreshToken=a82c6977-f1d9-46d0-b788-703083839da6&hideController=false&pageLoadStartTime=1674817766748&mode=CHAT&driftEnableLog=false&loadStrategy=EAGER&secureIframe=false&u=https%3A%2F%2Fcofense.com%2Fcontact-support%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Mon, 23 Jan 2023 19:28:35 GMT
last-modified: Mon, 23 Jan 2023 18:49:41 GMT
etag: W/"55e8f07ca34244b182e06eb9e46152cb"
x-amz-server-side-encryption: AES256
x-amz-version-id: VES5fewo5j97iYAllSYD3hVlsFtTtOZf
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 35
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0PqkbMW1u0py6UBL7tydVPj2TWEolQ100LSTaCZmY2xz7n8cI32C-Q==
age: 315653
X-Firefox-Spdy: h2
ws.zoominfo.com/pixel/2Uq3HoQoVZEHgHXXf288
200 OK 0 B URL HTTP/2 ws.zoominfo.com/pixel/2Uq3HoQoVZEHgHXXf288
IP
GET /pixel/2Uq3HoQoVZEHgHXXf288 HTTP/1.1
Host: ws.zoominfo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:09:28 GMT
content-type: text/javascript
vary: Accept-Encoding
x-powered-by: Express
x-content-type-options: nosniff
access-control-allow-headers: Content-Type,cf-ipcountry,service-version,x-appengine-user-ip,x-forwarded-for, x-ws-collect-type
access-control-allow-credentials: true
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: visitorId=a1fa79aeea8a9748c20ada2d13804f9a793f428b6773aaaeb147d917a642c36f; Max-Age=31536000; Domain=ws.zoominfo.com; Path=/; Expires=Sat, 27 Jan 2024 11:09:28 GMT; Secure; SameSite=None
__cf_bm=1VOTJvvjU4fsE4ZjXPHY7CckpBoPF7.X2AxCwN6P1_s-1674817768-0-ATjOPLBcALPLppF5SSbhbE3nfGjuw9w5A8shbUjUmtYh4ozB+jeKE+Xx73PZdiuCHovmeLYu+juZuVMoALjIGTg=; path=/; expires=Fri, 27-Jan-23 11:39:28 GMT; domain=.zoominfo.com; HttpOnly; Secure; SameSite=None
_cfuvid=f70UqgSZz4Jyx740.vXsFk56aRm4cCHs5ODqOfPxWNs-1674817768199-0-604800000; path=/; domain=.zoominfo.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7901094a2ab2b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/11.639238ba.chunk.js
200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/11.639238ba.chunk.js
IP
GET /core/assets/js/11.639238ba.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Sat, 03 Dec 2022 12:04:21 GMT
last-modified: Thu, 01 Dec 2022 14:26:46 GMT
etag: W/"4049f38c00add1738dc4806148ff8829"
x-amz-server-side-encryption: AES256
x-amz-version-id: umvKX3aSunwjzGTx0HeJH2jCGVVK3dzQ
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 25
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IG8BvFBIU-VIwuXtRDhIJ3S7ULyZZEY2GusxC09FQg7kgOQTjaNU9w==
age: 4748707
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/17.d96f5704.chunk.js
200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/17.d96f5704.chunk.js
IP
GET /core/assets/js/17.d96f5704.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Mon, 09 Jan 2023 09:30:32 GMT
last-modified: Thu, 05 Jan 2023 16:27:50 GMT
etag: W/"f7132278cd8921e8f42d2d92ca6e0510"
x-amz-server-side-encryption: AES256
x-amz-version-id: V93gkE03KYl05B16xFEHmgoK5uuFdYMG
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 54
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PFE0oQNoE8YPWXXsArArgA98xxbZBvwT3nGbbmV-RiEFoRJYRrHMXA==
age: 1561136
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/49.b6336d11.chunk.js
200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/49.b6336d11.chunk.js
IP
GET /core/assets/js/49.b6336d11.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 07 Dec 2022 07:25:34 GMT
last-modified: Thu, 01 Dec 2022 14:26:48 GMT
etag: W/"8004ba5ba9fc99e5c559490658a3863f"
x-amz-server-side-encryption: AES256
x-amz-version-id: SRmWR6_2IAVyTfdeBA3UHsUTKF9vig0O
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4mfl4pJs0P5xkTuKAWhhRwOkPXZmcODtdTPzj89RIHLlgK9nW54GhA==
age: 4419833
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/0.0b2ebd4a.chunk.js
200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/0.0b2ebd4a.chunk.js
IP
GET /core/assets/js/0.0b2ebd4a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=28krvx2uf9n3&eId=28krvx2uf9n3®ion=US&forceShow=false&skipCampaigns=false&sessionId=bfb80fbc-75e1-4abc-a93a-370b7e017918&sessionStarted=1674817768.033&campaignRefreshToken=a82c6977-f1d9-46d0-b788-703083839da6&hideController=false&pageLoadStartTime=1674817766748&mode=CHAT&driftEnableLog=false&loadStrategy=EAGER&secureIframe=false&u=https%3A%2F%2Fcofense.com%2Fcontact-support%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Sun, 13 Nov 2022 04:26:39 GMT
server: nginx
last-modified: Wed, 09 Nov 2022 18:21:20 GMT
etag: W/"c5efcdc9e465604f32cf24af10fd6c13"
x-amz-server-side-encryption: AES256
x-amz-version-id: YXvZ4HcypaoU47j75DlnYQCGjq19D5hr
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DvKpKTj8mCAJE1vCJBTjWd6oM_oqu5Ytuona2alYD_IKPcfyc3Mjkw==
age: 6504169
X-Firefox-Spdy: h2
cofense.com/contact-support/
200 OK 0 B URL HTTP/2 cofense.com/contact-support/
IP
ASN #209242 Cloudflare London, LLC
GET /contact-support/ HTTP/1.1
Host: cofense.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 11:09:26 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding,Cookie
x-pingback: https://cofense.com/xmlrpc.php
link: <https://cofense.com/wp-json/>; rel="https://api.w.org/", <https://cofense.com/wp-json/wp/v2/pages/9458>; rel="alternate"; type="application/json", <https://cofense.com/?p=9458>; rel=shortlink
x-powered-by: WP Engine
x-cacheable: SHORT
cache-control: max-age=600, must-revalidate
x-cache: HIT: 1
x-cache-group: normal
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 790109427c891c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.driftt.com/include/1674817800000/28krvx2uf9n3.js
200 OK 0 B URL HTTP/2 js.driftt.com/include/1674817800000/28krvx2uf9n3.js
IP
GET /include/1674817800000/28krvx2uf9n3.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cofense.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
last-modified: Wed, 25 Jan 2023 16:43:06 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: tIrapvypp.wnxyZBzcsNMQV3SkapBGkO
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
x-envoy-upstream-service-time: 19
content-encoding: gzip
date: Fri, 27 Jan 2023 11:09:28 GMT
cache-control: no-cache
etag: W/"2ff80a66fdf7592f196f7ef0575d5485"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: r_s4JB3J7rHkFb53Lr8WfE2zJWs0T_r5Q2iT6BD02all76UT32pYgQ==
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/32.ae96a119.chunk.js
200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/32.ae96a119.chunk.js
IP
GET /core/assets/js/32.ae96a119.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1674817766748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Mon, 23 Jan 2023 19:28:35 GMT
last-modified: Mon, 23 Jan 2023 18:49:42 GMT
etag: W/"aa7dd23ca4902c49d4a83fd6a222b154"
x-amz-server-side-encryption: AES256
x-amz-version-id: Z3QLz.CJDkdUdGy.lDftcCPoxtNbzxPa
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 21
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9fq5fBy25o8OUMC5COP6lBCKiDWLlhzUVTYv3hO4qrn8t8B8swWSow==
age: 315653
X-Firefox-Spdy: h2
141.193.213.21
93.184.220.29
104.85.176.46
104.16.168.82
3.122.221.58
95.101.11.112