{"report_id":"fcd572cb-8197-4b7f-a994-ecd03c40c995","version":6,"status":"done","tags":["netflix","phishing"],"date":"2025-09-07T09:40:48Z","url":{"schema":"http","addr":"lambent-cannoli-4f64ba.netlify.app/","fqdn":"lambent-cannoli-4f64ba.netlify.app","domain":"lambent-cannoli-4f64ba.netlify.app","tld":"netlify.app"},"ip":{"addr":"63.176.8.218","port":0,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"final":{"url":{"schema":"https","addr":"lambent-cannoli-4f64ba.netlify.app/","fqdn":"lambent-cannoli-4f64ba.netlify.app","domain":"lambent-cannoli-4f64ba.netlify.app","tld":"netlify.app"},"title":"Netflix India – Watch TV Shows Online, Watch Movies Online"},"submit":{"url":{"schema":"http","addr":"lambent-cannoli-4f64ba.netlify.app/","fqdn":"lambent-cannoli-4f64ba.netlify.app","domain":"lambent-cannoli-4f64ba.netlify.app","tld":"netlify.app"},"ip":{"addr":"63.176.8.218","port":0,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-12T09:40:48Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":1,"urlquery":2,"analyzer":2}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-09-07T09:40:26Z","timestamp":1757238026,"ip_dst":{"addr":"35.157.26.135","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"ip_src":{"addr":"172.18.0.12","port":42760,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET HUNTING Suspicious Netlify Hosted TLS SNI Request - Possible Phishing Landing","source":"{\"timestamp\":\"2025-09-07T09:40:26.125638+0000\",\"flow_id\":1591037668241959,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.12\",\"src_port\":42760,\"dest_ip\":\"35.157.26.135\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032760,\"rev\":1,\"signature\":\"ET HUNTING Suspicious Netlify Hosted TLS SNI Request - Possible Phishing Landing\",\"category\":\"Possible Social Engineering Attempted\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Web_Browsers\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2021_04_14\"],\"deployment\":[\"Perimeter\"],\"mitre_tactic_id\":[\"TA0001\"],\"mitre_tactic_name\":[\"Initial_Access\"],\"mitre_technique_id\":[\"T1566\"],\"mitre_technique_name\":[\"Phishing\"],\"signature_severity\":[\"Critical\"],\"tag\":[\"Phishing\"],\"updated_at\":[\"2021_04_14\"]}},\"tls\":{\"sni\":\"lambent-cannoli-4f64ba.netlify.app\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"f4febc55ea12b31ae17cfb7e614afda8\",\"string\":\"771,4865,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":3503,\"start\":\"2025-09-07T09:40:26.078375+0000\"}}"}],"analyzer":[{"sensor_name":"openphish","sensor_type":"Blocklist","title":"OpenPhish","description":"OpenPhish","scan_date":"2025-09-07","alert":"Phishing - Netflix Inc.","trigger":"lambent-cannoli-4f64ba.netlify.app","verdict":"phishing","severity":"medium","comment":"Netflix Inc.","link":"https://openphish.com/","meta":null},{"sensor_name":"openphish","sensor_type":"url","title":"OpenPhish","description":"OpenPhish","scan_date":"2025-09-07","alert":"Phishing - Netflix Inc.","trigger":"lambent-cannoli-4f64ba.netlify.app/","verdict":"phishing","severity":"medium","comment":"Netflix Inc.","link":"https://openphish.com","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Netflix","verdict":"phishing","severity":"medium","comment":"Associated with Netflix phishing","tags":["netflix","phishing"],"meta":null},{"sensor_name":"urlquery","alert":"Phishing - Netflix","verdict":"phishing","severity":"medium","comment":"Associated with Netflix phishing","tags":["netflix","phishing"],"meta":null}]},"summary":[{"fqdn":"lambent-cannoli-4f64ba.netlify.app","ip":{"addr":"35.157.26.135","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"domain_registered":"2018-05-08","domain_rank":0,"first_seen":"2025-09-07T09:40:48.622048Z","last_seen":"2025-09-07T09:40:48.622048Z","alert_count":10,"request_count":5,"received_data":23346,"sent_data":2435,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Netlify","description":"Netlify providers hosting and server-less backend services for web applications and static websites.","website":"https://www.netlify.com/","common_platform_enumeration":"","icon":"Netlify.svg","categories":["PaaS","CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-09-03T15:14:36.780259Z","alert_count":0,"request_count":1,"received_data":5516,"sent_data":519,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"occ-0-2849-3646.1.nflxso.net","ip":{"addr":"112.196.177.74","port":443,"asn":45184,"as":"Den Digital Entertainment Pvt. Ltd. AS ISP india","country":"India","country_code":"IN"},"domain_registered":"2016-03-25","domain_rank":0,"first_seen":"2023-11-18T13:19:49Z","last_seen":"2025-09-03T21:35:11.202303Z","alert_count":0,"request_count":1,"received_data":255043,"sent_data":610,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-09-03T15:11:16.573868Z","alert_count":0,"request_count":3,"received_data":23634,"sent_data":1672,"comment":"","tags":null,"fingerprints":null},{"fqdn":"assets.nflxext.com","ip":{"addr":"45.57.90.1","port":443,"asn":40027,"as":"NETFLIX-ASN","country":"United States","country_code":"US"},"domain_registered":"2011-02-11","domain_rank":22756,"first_seen":"2015-07-22T04:02:07Z","last_seen":"2025-08-31T17:24:01.894059Z","alert_count":0,"request_count":4,"received_data":404409,"sent_data":2155,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-09-07T09:40:26Z","timestamp":1757238026,"ip_dst":{"addr":"35.157.26.135","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"ip_src":{"addr":"172.18.0.12","port":42760,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET HUNTING Suspicious Netlify Hosted TLS SNI Request - Possible Phishing Landing","source":"{\"timestamp\":\"2025-09-07T09:40:26.125638+0000\",\"flow_id\":1591037668241959,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.12\",\"src_port\":42760,\"dest_ip\":\"35.157.26.135\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032760,\"rev\":1,\"signature\":\"ET HUNTING Suspicious Netlify Hosted TLS SNI Request - Possible Phishing Landing\",\"category\":\"Possible Social Engineering Attempted\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Web_Browsers\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2021_04_14\"],\"deployment\":[\"Perimeter\"],\"mitre_tactic_id\":[\"TA0001\"],\"mitre_tactic_name\":[\"Initial_Access\"],\"mitre_technique_id\":[\"T1566\"],\"mitre_technique_name\":[\"Phishing\"],\"signature_severity\":[\"Critical\"],\"tag\":[\"Phishing\"],\"updated_at\":[\"2021_04_14\"]}},\"tls\":{\"sni\":\"lambent-cannoli-4f64ba.netlify.app\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"f4febc55ea12b31ae17cfb7e614afda8\",\"string\":\"771,4865,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":3503,\"start\":\"2025-09-07T09:40:26.078375+0000\"}}"}]}],"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Netflix","verdict":"phishing","severity":"medium","comment":"Associated with Netflix phishing","tags":["netflix","phishing"],"meta":null}]},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"occ-0-2849-3646.1.nflxso.net/dnm/api/v6/19OhWN2dO19C9txTON9tvTFtefw/AAAABVr8nYuAg0xDpXDv0VI9HUoH7r2aGp4TKRCsKNQrMwxzTtr-NlwOHeS8bCI2oeZddmu3nMYr3j9MjYhHyjBASb1FaOGYZNYvPBCL.png?r=54d","fqdn":"occ-0-2849-3646.1.nflxso.net","domain":"nflxso.net","tld":"net"},"ip":{"addr":"112.196.177.74","port":443,"asn":45184,"as":"Den Digital Entertainment Pvt. Ltd. AS ISP india","country":"India","country_code":"IN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lambent-cannoli-4f64ba.netlify.app/","date":"2025-09-07T09:40:26.369Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.1.nflxso.net","organization":"Netflix"},"issuer":{"commonName":"DigiCert Secure Site ECC CA-1","organization":"DigiCert Inc"},"validity":{"start":"Sat, 23 Aug 2025 00:00:00 GMT","end":"Thu, 25 Sep 2025 21:14:00 GMT"},"fingerprint":{"sha1":"47:69:ED:F4:16:E0:4F:91:A2:53:EE:30:4F:37:94:E9:63:62:DE:F6","sha256":"56:16:65:D8:54:33:5C:6D:F3:1C:29:24:2A:29:ED:A5:E1:4B:6F:F0:3A:7E:FB:3B:D0:D5:74:CB:D5:9D:29:2C"}}},"request":{"raw":"GET /dnm/api/v6/19OhWN2dO19C9txTON9tvTFtefw/AAAABVr8nYuAg0xDpXDv0VI9HUoH7r2aGp4TKRCsKNQrMwxzTtr-NlwOHeS8bCI2oeZddmu3nMYr3j9MjYhHyjBASb1FaOGYZNYvPBCL.png?r=54d HTTP/1.1\r\nHost: occ-0-2849-3646.1.nflxso.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lambent-cannoli-4f64ba.netlify.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: freenginx\r\nDate: Sun, 07 Sep 2025 09:40:28 GMT\r\nContent-Type: image/png\r\nContent-Length: 254586\r\nConnection: keep-alive\r\nlast-modified: Thu, 07 Aug 2025 09:47:11 GMT\r\netag: \"2995e70023477ef72300f24e45aba1d5\"\r\naccept-ch: Device-Memory, Downlink, DPR, ECT, RTT, Save-Data, Viewport-Width, Width\r\ncache-control: max-age=31104000, public, s-maxage=604800\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":254586,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 640 x 480, 8-bit/color RGBA, non-interlaced","md5":"2995e70023477ef72300f24e45aba1d5","sha1":"92c13cd17c41cb9580f59197a3008fd9cca432c7","sha256":"1e5a6122c8e39862aa1c92eae0e83e92458232d930620e9ca0c68e9be425aa67","sha512":"7eba01faa077439a2bc80840579c5654885a99f3878600b5c3e9b59b3f8d269fef9d7ed373a4ef8886ab71d70fe1fb47845192160b3102765f430e5b01877574","ssdeep":"3072:KEPpQE67ZSxps4pKmlRbFCS/u5hWcfIV2Gn1kXNrA+HdnhPkOWlTPZCLh7Ywax6s:5P6t4HRu5hWd3nanHTkpo7Raj","tlshash":"e7442330cf628c5afcdbf513813d638b36b886cc6a97891183a1d76ca9575ccc531a6e","first_seen":"2023-05-18T15:45:41Z","last_seen":"2026-06-07T20:32:28.166294Z","times_seen":9147,"resource_available":false,"data":null}},"time_used":4552,"timings":{"blocked":1520,"dns":24,"connect":254,"send":0,"wait":241,"receive":1255,"ssl":1253},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v23/pxiByp8kv8JHgFVrLCz7Z1JlFc-K.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://lambent-cannoli-4f64ba.netlify.app/","date":"2025-09-07T09:40:26.661Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 18 Aug 2025 08:41:11 GMT","end":"Mon, 10 Nov 2025 08:41:10 GMT"},"fingerprint":{"sha1":"92:56:50:82:E4:D4:6F:F6:7B:08:95:2A:7C:4B:F5:6F:25:84:83:94","sha256":"A3:71:9C:57:37:7B:05:4E:9A:BB:BF:7C:17:AC:AB:9F:F1:32:11:03:1E:97:2E:B5:1A:B6:60:D5:7D:87:FF:8E"}}},"request":{"raw":"GET /s/poppins/v23/pxiByp8kv8JHgFVrLCz7Z1JlFc-K.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://lambent-cannoli-4f64ba.netlify.app\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 5432\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 04 Sep 2025 10:10:11 GMT\r\nexpires: Fri, 04 Sep 2026 10:10:11 GMT\r\ncache-control: public, max-age=31536000\r\nage: 257415\r\nlast-modified: Wed, 23 Apr 2025 16:07:28 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5432,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 5432, version 1.0","md5":"367d2aa05bf0382d8bc48614fbaf8740","sha1":"57566ddfd1dede1f5f0ee67ac376859248d31976","sha256":"ccfd87f69ef00d811da3d06488cec4e79ec99d289cfbcbe4be42031cecae775a","sha512":"23848f39655b1ce3b64c14ce382a66ec18d1c7abf33694fd0e5a504208127872b15ddb13707932a060a2f43bb0eff96f7a253fc0146357ec86cb7a559aee2ac4","ssdeep":"96:0o7L0c+v8JPgykZh1SsLiYMT8fWHdvm9coBtYuIYySmrPaoVG/KgElAWaV:z4khgf8cJMTmWNEBtYuIJfqN9/","tlshash":"88b16c93b89b3caddc32057eaf9b8366042ae6d78f6174ce4b09a1b640c78214e16566","first_seen":"2024-12-05T13:29:29.813365Z","last_seen":"2026-06-08T00:50:24.988498Z","times_seen":7236,"resource_available":false,"data":null}},"time_used":171,"timings":{"blocked":77,"dns":1,"connect":22,"send":0,"wait":8,"receive":1,"ssl":58},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/tv.png","fqdn":"assets.nflxext.com","domain":"nflxext.com","tld":"com"},"ip":{"addr":"45.57.90.1","port":443,"asn":40027,"as":"NETFLIX-ASN","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lambent-cannoli-4f64ba.netlify.app/","date":"2025-09-07T09:40:26.359Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.1.nflxso.net","organization":"Netflix"},"issuer":{"commonName":"DigiCert Secure Site ECC CA-1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 20 Aug 2025 00:00:00 GMT","end":"Mon, 22 Sep 2025 00:42:40 GMT"},"fingerprint":{"sha1":"CB:4D:E1:3B:7F:9E:4A:EC:E1:11:DB:C4:D0:65:4C:EC:14:64:87:C9","sha256":"E9:5A:81:38:0C:B1:80:FB:F8:7E:93:A4:8F:77:3F:89:36:1E:0F:CE:D9:E4:45:B4:95:8C:92:B7:D9:EF:DD:C2"}}},"request":{"raw":"GET /ffe/siteui/acquisition/ourStory/fuji/desktop/tv.png HTTP/1.1\r\nHost: assets.nflxext.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lambent-cannoli-4f64ba.netlify.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: freenginx\r\nDate: Sun, 07 Sep 2025 09:40:26 GMT\r\nContent-Type: image/png\r\nContent-Length: 11418\r\nConnection: keep-alive\r\nContent-MD5: d5lKZzJ7qVff2IDjOpHwQQ==\r\nLast-Modified: Wed, 14 Nov 2018 18:20:41 GMT\r\nCache-Control: max-age=604801\r\nExpires: Sun, 14 Sep 2025 09:40:27 GMT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11418,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 640 x 480, 8-bit colormap, non-interlaced","md5":"77994a67327ba957dfd880e33a91f041","sha1":"5ba507de8c9bc4a063beecb569e89bcf9e0a901c","sha256":"b68ea2c7bea397aa11fadb189ce7d83862baebaf03ece643eb5aa9fb5f755056","sha512":"a6de315aea77f4b862fb43d08bc0664ee1c085bf551760add9d6749bd45515349d6ae416e941bf9b3fc9156aac10a73d80bf4fcc6ff61297f7155f666652ae79","ssdeep":"192:OmrrVi2S1Vk8jYiyXte75R7e8AnFdw8ozUeepPaIYXUPPiHd74HH8rZEyEwz:JrrQ2S0/I777eBk8kULYkcIHuZBEwz","tlshash":"c432b02d2632de066bddf62cb1a785707bf092c0703641e2f5c59092ec67dae121a35b","first_seen":"2023-04-30T21:53:20Z","last_seen":"2026-06-07T06:17:51.05513Z","times_seen":16673,"resource_available":false,"data":null}},"time_used":156,"timings":{"blocked":64,"dns":1,"connect":18,"send":0,"wait":22,"receive":0,"ssl":48},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/video-tv-in-0819.m4v","fqdn":"assets.nflxext.com","domain":"nflxext.com","tld":"com"},"ip":{"addr":"45.57.90.1","port":443,"asn":40027,"as":"NETFLIX-ASN","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://lambent-cannoli-4f64ba.netlify.app/","date":"2025-09-07T09:40:26.388Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.1.nflxso.net","organization":"Netflix"},"issuer":{"commonName":"DigiCert Secure Site ECC CA-1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 20 Aug 2025 00:00:00 GMT","end":"Mon, 22 Sep 2025 00:42:40 GMT"},"fingerprint":{"sha1":"CB:4D:E1:3B:7F:9E:4A:EC:E1:11:DB:C4:D0:65:4C:EC:14:64:87:C9","sha256":"E9:5A:81:38:0C:B1:80:FB:F8:7E:93:A4:8F:77:3F:89:36:1E:0F:CE:D9:E4:45:B4:95:8C:92:B7:D9:EF:DD:C2"}}},"request":{"raw":"GET /ffe/siteui/acquisition/ourStory/fuji/desktop/video-tv-in-0819.m4v HTTP/1.1\r\nHost: assets.nflxext.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lambent-cannoli-4f64ba.netlify.app/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 206 Partial Content\r\nServer: freenginx\r\nDate: Sun, 07 Sep 2025 09:40:26 GMT\r\nContent-Type: video/x-m4v\r\nContent-Length: 267712\r\nConnection: keep-alive\r\nContent-MD5: pYX28yVkH4IOMnLz7ACG7Q==\r\nLast-Modified: Mon, 12 Aug 2019 20:49:12 GMT\r\nCache-Control: max-age=604801\r\nExpires: Sun, 14 Sep 2025 09:40:27 GMT\r\nContent-Range: bytes 0-267711/267712\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":267712,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, Apple iTunes Video (.M4V) Video","md5":"a585f6f325641f820e3272f3ec0086ed","sha1":"faea17ded67d6df03c0bf8d08b2a3dcf1d5b340a","sha256":"b71753769da84bf6bda2349bd9fa2f4a0af54f87923f6b3a20d5836117be68f4","sha512":"f2071d21f0fa2fe4f91ec54609dc88765d2031730818be433a3c4648a362e556de4dc461ce7da537f7b52a5a535244eea4c21ecedcb90dfc0b7e92c56d9b98c2","ssdeep":"6144:6kCH7bTyVslQH+8ngL8999RSWh0mWlNXPsfAn9CwhnnUlx9:vyTgOigoT9Rn0/Pplhnuz","tlshash":"b54412974731a328df59973871aa2e430231c329fd6ae317f9951835b78a72e8f9530c","first_seen":"2023-04-05T17:57:45Z","last_seen":"2026-06-07T06:17:51.066577Z","times_seen":11607,"resource_available":false,"data":null}},"time_used":257,"timings":{"blocked":151,"dns":0,"connect":0,"send":0,"wait":21,"receive":85,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/video-devices-in.m4v","fqdn":"assets.nflxext.com","domain":"nflxext.com","tld":"com"},"ip":{"addr":"45.57.90.1","port":443,"asn":40027,"as":"NETFLIX-ASN","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://lambent-cannoli-4f64ba.netlify.app/","date":"2025-09-07T09:40:26.391Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.1.nflxso.net","organization":"Netflix"},"issuer":{"commonName":"DigiCert Secure Site ECC CA-1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 20 Aug 2025 00:00:00 GMT","end":"Thu, 25 Sep 2025 00:36:34 GMT"},"fingerprint":{"sha1":"02:B1:8D:11:29:6A:9D:88:C1:45:29:A8:77:C2:27:29:0E:1C:AF:55","sha256":"77:63:D5:9E:6B:24:D1:E7:2F:7A:6E:2E:C3:E1:79:B7:FE:6A:D1:69:50:90:4A:EC:1D:9D:0B:1D:83:DD:CD:BE"}}},"request":{"raw":"GET /ffe/siteui/acquisition/ourStory/fuji/desktop/video-devices-in.m4v HTTP/1.1\r\nHost: assets.nflxext.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lambent-cannoli-4f64ba.netlify.app/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 206 Partial Content\r\nServer: freenginx\r\nDate: Sun, 07 Sep 2025 09:40:26 GMT\r\nContent-Type: video/x-m4v\r\nContent-Length: 74303\r\nConnection: keep-alive\r\nContent-MD5: c+JdHa496slk30MRHATJcw==\r\nLast-Modified: Wed, 23 Jan 2019 00:35:07 GMT\r\nCache-Control: max-age=604801\r\nExpires: Sun, 14 Sep 2025 09:40:27 GMT\r\nContent-Range: bytes 0-74302/74303\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":74303,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, Apple iTunes Video (.M4V) Video","md5":"73e25d1dae3deac964df43111c04c973","sha1":"6301d10955803c58b803d04f6e4830f0aee5d01d","sha256":"92259a1c73354bce2540a94397feed47d41bde07f23359decea3187799e5c19d","sha512":"9c610f8bc47b52c855a15cd3f66b05cd3c527db68141bfdeedd50e13f45be7ef7070f479461b5db12b693c424197e91f585a3bd5d5c7f9f9697725182a56cbe5","ssdeep":"1536:nkxpHovDAiPFnFQb+4QZ9AD17YXU8mUzDxUyzmIZk6+YviRj41mMs7:kxZovlFnJ/XbzDSww6Q5d","tlshash":"9b73020af343c43be7b981bd2e86fb1252b7f1613d6a634359c5b834aa035d4fd511a4","first_seen":"2023-04-05T17:57:45Z","last_seen":"2026-06-07T06:17:51.056905Z","times_seen":11289,"resource_available":false,"data":null}},"time_used":363,"timings":{"blocked":148,"dns":1,"connect":22,"send":0,"wait":20,"receive":42,"ssl":98},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lambent-cannoli-4f64ba.netlify.app/public/assets/images/prof.jpg","fqdn":"lambent-cannoli-4f64ba.netlify.app","domain":"lambent-cannoli-4f64ba.netlify.app","tld":"netlify.app"},"ip":{"addr":"35.157.26.135","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lambent-cannoli-4f64ba.netlify.app/","date":"2025-09-07T09:40:26.657Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.netlify.app","organization":"Netlify, Inc"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 31 Jan 2025 00:00:00 GMT","end":"Tue, 03 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"04:28:C9:A3:BC:06:50:9C:6B:0B:67:72:82:27:C6:3D:99:1B:5B:71","sha256":"FA:34:6A:A0:1C:F5:9C:C7:30:CA:55:23:13:A1:3E:0F:21:8C:3A:0B:B5:CC:E5:67:09:FE:64:EC:97:4E:8D:75"}}},"request":{"raw":"GET /public/assets/images/prof.jpg HTTP/1.1\r\nHost: lambent-cannoli-4f64ba.netlify.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lambent-cannoli-4f64ba.netlify.app/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nage: 59361\r\ncache-control: public,max-age=0,must-revalidate\r\ncache-status: \"Netlify Edge\"; hit\r\ncontent-encoding: br\r\ncontent-type: text/html; charset=utf-8\r\ndate: Sun, 07 Sep 2025 09:40:26 GMT\r\netag: 1751637147-ssl-df\r\nserver: Netlify\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding\r\nx-nf-request-id: 01K4HRRRD5XARJ9TTJQVWNMFR6\r\ncontent-length: 1206\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Netlify","description":"Netlify providers hosting and server-less backend services for web applications and static websites.","website":"https://www.netlify.com/","common_platform_enumeration":"","icon":"Netlify.svg","categories":["PaaS","CDN"]}],"data":{"size":3449,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"0f89e18d0abacb99149c5e59bf69b5e1","sha1":"9e1ebb10be890c5855eec444233c028270d3e65a","sha256":"8514f0009a58c6e0acb5468f88037732b59b70af5e524f452e3bef8fb33effc5","sha512":"5275d80f3f8f1f5e0d1b6b6b0745732a69d669d66dcdab418fc5a2094bffcb81ff1d34252c97c6dffe5470f0d359a3be03cfd3dfe3d729bf186917c8cf21ece0","ssdeep":"","tlshash":"1f61848dc9a7209b5c93643e27eb560a2274a247cd46da4c3fde6348cf492f214d36ac","first_seen":"2024-12-12T10:00:11.490986Z","last_seen":"2026-06-08T01:55:19.870104Z","times_seen":11747,"resource_available":true,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"openphish","sensor_type":"Blocklist","title":"OpenPhish","description":"OpenPhish","scan_date":"2025-09-07","alert":"Phishing - Netflix Inc.","trigger":"lambent-cannoli-4f64ba.netlify.app","verdict":"phishing","severity":"medium","comment":"Netflix Inc.","link":"https://openphish.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Netflix","verdict":"phishing","severity":"medium","comment":"Associated with Netflix phishing","tags":["netflix","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v23/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://lambent-cannoli-4f64ba.netlify.app/","date":"2025-09-07T09:40:26.660Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 18 Aug 2025 08:41:11 GMT","end":"Mon, 10 Nov 2025 08:41:10 GMT"},"fingerprint":{"sha1":"92:56:50:82:E4:D4:6F:F6:7B:08:95:2A:7C:4B:F5:6F:25:84:83:94","sha256":"A3:71:9C:57:37:7B:05:4E:9A:BB:BF:7C:17:AC:AB:9F:F1:32:11:03:1E:97:2E:B5:1A:B6:60:D5:7D:87:FF:8E"}}},"request":{"raw":"GET /s/poppins/v23/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://lambent-cannoli-4f64ba.netlify.app\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 7816\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 04 Sep 2025 10:13:27 GMT\r\nexpires: Fri, 04 Sep 2026 10:13:27 GMT\r\ncache-control: public, max-age=31536000\r\nage: 257219\r\nlast-modified: Wed, 23 Apr 2025 16:07:25 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7816,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 7816, version 1.0","md5":"25b0e113ca7cce3770d542736db26368","sha1":"cb726212d5d525021752a1d8470a0fb593e0c49e","sha256":"9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526","sha512":"a0d331e62ab4727f49ca286a1ee7fb81cddc5bb9edf71ef84f4bd4fa1552069af1a82752011ba88fae80862d034135926b7e99d70e59d626d66d4ede90e94c30","ssdeep":"192:Agw5ksLwlyK8F2BXU96Fc575OI3+ga534SlEFwTG4ovej9be:Al5y8FSUMS5VOq1KISlvS4ov+4","tlshash":"a3f1af19d5de5a73f80032b45b6911ba7e42fa83bc68bbedf8046a10ad542cb467cc91","first_seen":"2023-04-05T13:48:05Z","last_seen":"2026-06-08T01:37:01.420062Z","times_seen":258355,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":79,"dns":1,"connect":20,"send":0,"wait":8,"receive":1,"ssl":62},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lambent-cannoli-4f64ba.netlify.app/favicon.ico","fqdn":"lambent-cannoli-4f64ba.netlify.app","domain":"lambent-cannoli-4f64ba.netlify.app","tld":"netlify.app"},"ip":{"addr":"35.157.26.135","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lambent-cannoli-4f64ba.netlify.app/","date":"2025-09-07T09:40:26.976Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.netlify.app","organization":"Netlify, Inc"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 31 Jan 2025 00:00:00 GMT","end":"Tue, 03 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"04:28:C9:A3:BC:06:50:9C:6B:0B:67:72:82:27:C6:3D:99:1B:5B:71","sha256":"FA:34:6A:A0:1C:F5:9C:C7:30:CA:55:23:13:A1:3E:0F:21:8C:3A:0B:B5:CC:E5:67:09:FE:64:EC:97:4E:8D:75"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: lambent-cannoli-4f64ba.netlify.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lambent-cannoli-4f64ba.netlify.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nage: 59359\r\ncache-control: public,max-age=0,must-revalidate\r\ncache-status: \"Netlify Edge\"; hit\r\ncontent-encoding: br\r\ncontent-type: text/html; charset=utf-8\r\ndate: Sun, 07 Sep 2025 09:40:26 GMT\r\netag: 1751637147-ssl-df\r\nserver: Netlify\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding\r\nx-nf-request-id: 01K4HRRRQ9ZCZGBVC1DWH5NZ32\r\ncontent-length: 1206\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Netlify","description":"Netlify providers hosting and server-less backend services for web applications and static websites.","website":"https://www.netlify.com/","common_platform_enumeration":"","icon":"Netlify.svg","categories":["PaaS","CDN"]}],"data":{"size":3449,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"0f89e18d0abacb99149c5e59bf69b5e1","sha1":"9e1ebb10be890c5855eec444233c028270d3e65a","sha256":"8514f0009a58c6e0acb5468f88037732b59b70af5e524f452e3bef8fb33effc5","sha512":"5275d80f3f8f1f5e0d1b6b6b0745732a69d669d66dcdab418fc5a2094bffcb81ff1d34252c97c6dffe5470f0d359a3be03cfd3dfe3d729bf186917c8cf21ece0","ssdeep":"","tlshash":"1f61848dc9a7209b5c93643e27eb560a2274a247cd46da4c3fde6348cf492f214d36ac","first_seen":"2024-12-12T10:00:11.490986Z","last_seen":"2026-06-08T01:55:19.870104Z","times_seen":11747,"resource_available":true,"data":null}},"time_used":25,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"openphish","sensor_type":"Blocklist","title":"OpenPhish","description":"OpenPhish","scan_date":"2025-09-07","alert":"Phishing - Netflix Inc.","trigger":"lambent-cannoli-4f64ba.netlify.app","verdict":"phishing","severity":"medium","comment":"Netflix Inc.","link":"https://openphish.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Netflix","verdict":"phishing","severity":"medium","comment":"Associated with Netflix phishing","tags":["netflix","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"lambent-cannoli-4f64ba.netlify.app/","fqdn":"lambent-cannoli-4f64ba.netlify.app","domain":"lambent-cannoli-4f64ba.netlify.app","tld":"netlify.app"},"ip":{"addr":"35.157.26.135","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-09-07T09:40:26.063Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.netlify.app","organization":"Netlify, Inc"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 31 Jan 2025 00:00:00 GMT","end":"Tue, 03 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"04:28:C9:A3:BC:06:50:9C:6B:0B:67:72:82:27:C6:3D:99:1B:5B:71","sha256":"FA:34:6A:A0:1C:F5:9C:C7:30:CA:55:23:13:A1:3E:0F:21:8C:3A:0B:B5:CC:E5:67:09:FE:64:EC:97:4E:8D:75"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: lambent-cannoli-4f64ba.netlify.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 85565\r\ncache-control: public,max-age=0,must-revalidate\r\ncache-status: \"Netlify Edge\"; hit\r\ncontent-encoding: br\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Sun, 07 Sep 2025 09:40:26 GMT\r\netag: \"06ddc7d81df86de8bebe18b43f030766-ssl-df\"\r\nserver: Netlify\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding\r\nx-nf-request-id: 01K4HRRQXGTV1EKSCTAPTFSVE2\r\ncontent-length: 1479\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Netlify","description":"Netlify providers hosting and server-less backend services for web applications and static websites.","website":"https://www.netlify.com/","common_platform_enumeration":"","icon":"Netlify.svg","categories":["PaaS","CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6692,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"50bb335faa154bc942a07060dc5e7baf","sha1":"d482778f2fbf525945b688d7497e10a216be8850","sha256":"da56ec56bed463a3685a59ede8b5e3a6804ab26862606ecaa0a5f8c465f424a0","sha512":"095275b994b536016fdc67ea1b1bbf80f235f55ada736c7d0a1f593bc57598a5dab58204b9327d015e59b32509b7e26591289c96e17df8dcac6bc9d4aa2bf1d2","ssdeep":"48:8k6IMxZHW1MFeoOVDz/e+/E1z/wKxJjz/e+/QUUN29mdSH2/FL/t/p/xL8u:J6m1IeTVDqX1MKXjqzU19mdXdL1x5L8u","tlshash":"1bd1216212f1846a1267c193bb713b2b2fe7a153d74a1304b47e4aa01fd6d0ed93b4d8","first_seen":"2025-09-07T09:40:50.500598Z","last_seen":"2025-09-07T13:33:21.995719Z","times_seen":2,"resource_available":false,"data":null}},"time_used":199,"timings":{"blocked":88,"dns":15,"connect":23,"send":0,"wait":23,"receive":0,"ssl":47},"alerts":{"ids":null,"analyzer":[{"sensor_name":"openphish","sensor_type":"url","title":"OpenPhish","description":"OpenPhish","scan_date":"2025-09-07","alert":"Phishing - Netflix Inc.","trigger":"lambent-cannoli-4f64ba.netlify.app/","verdict":"phishing","severity":"medium","comment":"Netflix Inc.","link":"https://openphish.com","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Netflix","verdict":"phishing","severity":"medium","comment":"Associated with Netflix phishing","tags":["netflix","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"lambent-cannoli-4f64ba.netlify.app/assets/images/netflix.svg","fqdn":"lambent-cannoli-4f64ba.netlify.app","domain":"lambent-cannoli-4f64ba.netlify.app","tld":"netlify.app"},"ip":{"addr":"35.157.26.135","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lambent-cannoli-4f64ba.netlify.app/","date":"2025-09-07T09:40:26.357Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.netlify.app","organization":"Netlify, Inc"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 31 Jan 2025 00:00:00 GMT","end":"Tue, 03 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"04:28:C9:A3:BC:06:50:9C:6B:0B:67:72:82:27:C6:3D:99:1B:5B:71","sha256":"FA:34:6A:A0:1C:F5:9C:C7:30:CA:55:23:13:A1:3E:0F:21:8C:3A:0B:B5:CC:E5:67:09:FE:64:EC:97:4E:8D:75"}}},"request":{"raw":"GET /assets/images/netflix.svg HTTP/1.1\r\nHost: lambent-cannoli-4f64ba.netlify.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lambent-cannoli-4f64ba.netlify.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 59363\r\ncache-control: public,max-age=0,must-revalidate\r\ncache-status: \"Netlify Edge\"; hit\r\ncontent-encoding: br\r\ncontent-type: image/svg+xml\r\ndate: Sun, 07 Sep 2025 09:40:26 GMT\r\netag: \"53065a59aadf6016dd15aa95da417de4-ssl-df\"\r\nserver: Netlify\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding\r\nx-nf-request-id: 01K4HRRR3S0MRKHFEVDGWPHZ32\r\ncontent-length: 870\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Netlify","description":"Netlify providers hosting and server-less backend services for web applications and static websites.","website":"https://www.netlify.com/","common_platform_enumeration":"","icon":"Netlify.svg","categories":["PaaS","CDN"]}],"data":{"size":2350,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"5355da63cf2c367844cc29a0c1a75152","sha1":"a104f9fc74416e9557151b8ae1792cf8679ecd84","sha256":"7005efbff4c8e612f00c2e89a8b0b850ebd178303c3f683c91f8c5409202bafd","sha512":"4751d3c2f45867fd8afa45bfd7f547c8e7899996a19c8e196a780ef73c45c24d70fcd2af6e3d98686cacfba977145acbae3e5058d865dcf6cdf2453c0353db73","ssdeep":"","tlshash":"bb413f95f3bd17d3ad664b8bb6ca0df33a2747b1f8a0524895bc0e68546a4e0853cc63","first_seen":"2023-11-18T14:36:34Z","last_seen":"2026-06-06T13:32:17.359638Z","times_seen":4552,"resource_available":false,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"openphish","sensor_type":"Blocklist","title":"OpenPhish","description":"OpenPhish","scan_date":"2025-09-07","alert":"Phishing - Netflix Inc.","trigger":"lambent-cannoli-4f64ba.netlify.app","verdict":"phishing","severity":"medium","comment":"Netflix Inc.","link":"https://openphish.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Netflix","verdict":"phishing","severity":"medium","comment":"Associated with Netflix phishing","tags":["netflix","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/mobile-0819.jpg","fqdn":"assets.nflxext.com","domain":"nflxext.com","tld":"com"},"ip":{"addr":"45.57.90.1","port":443,"asn":40027,"as":"NETFLIX-ASN","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lambent-cannoli-4f64ba.netlify.app/","date":"2025-09-07T09:40:26.366Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.1.nflxso.net","organization":"Netflix"},"issuer":{"commonName":"DigiCert Secure Site ECC CA-1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 20 Aug 2025 00:00:00 GMT","end":"Thu, 25 Sep 2025 00:36:34 GMT"},"fingerprint":{"sha1":"02:B1:8D:11:29:6A:9D:88:C1:45:29:A8:77:C2:27:29:0E:1C:AF:55","sha256":"77:63:D5:9E:6B:24:D1:E7:2F:7A:6E:2E:C3:E1:79:B7:FE:6A:D1:69:50:90:4A:EC:1D:9D:0B:1D:83:DD:CD:BE"}}},"request":{"raw":"GET /ffe/siteui/acquisition/ourStory/fuji/desktop/mobile-0819.jpg HTTP/1.1\r\nHost: assets.nflxext.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lambent-cannoli-4f64ba.netlify.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: freenginx\r\nDate: Sun, 07 Sep 2025 09:40:26 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 49614\r\nConnection: keep-alive\r\nContent-MD5: pIMz1DwZYS7WGYf6Xb/zxQ==\r\nLast-Modified: Wed, 14 Aug 2019 17:59:05 GMT\r\nCache-Control: max-age=604801\r\nExpires: Sun, 14 Sep 2025 09:40:27 GMT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":49614,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x480, components 3","md5":"a48333d43c19612ed61987fa5dbff3c5","sha1":"8a8781250b96fee7830eb63ee8dda19e5c871881","sha256":"492fdebd363e40cbba153a244bcfe2a7f5f7cf20aff0805fe45d5c7e2180b875","sha512":"ff3cc72bdfb03e8d372d84001c80ecde5a8100f8675d4c427c09bbd464be7c5d430d1e10ddfb7e540262ef2b3914c22594bf4306477391dfd9819e4266de9e98","ssdeep":"1536:F5p+9SA6w1sC4S+KJj3nNfeo2JmunFRfVSF:N+9F6qBTJj3wo2JVf6","tlshash":"4323f2dbac60c267d2d35d797deb4d7c7f834a26d95e998e82c80c4c6d7c84aa3480d4","first_seen":"2023-04-30T21:53:20Z","last_seen":"2026-06-07T06:17:51.05623Z","times_seen":16588,"resource_available":false,"data":null}},"time_used":988,"timings":{"blocked":468,"dns":1,"connect":20,"send":0,"wait":18,"receive":21,"ssl":456},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v23/pxiEyp8kv8JHgFVrJJfecg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://lambent-cannoli-4f64ba.netlify.app/","date":"2025-09-07T09:40:26.658Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 18 Aug 2025 08:41:11 GMT","end":"Mon, 10 Nov 2025 08:41:10 GMT"},"fingerprint":{"sha1":"92:56:50:82:E4:D4:6F:F6:7B:08:95:2A:7C:4B:F5:6F:25:84:83:94","sha256":"A3:71:9C:57:37:7B:05:4E:9A:BB:BF:7C:17:AC:AB:9F:F1:32:11:03:1E:97:2E:B5:1A:B6:60:D5:7D:87:FF:8E"}}},"request":{"raw":"GET /s/poppins/v23/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://lambent-cannoli-4f64ba.netlify.app\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 7884\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 04 Sep 2025 09:43:34 GMT\r\nexpires: Fri, 04 Sep 2026 09:43:34 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 23 Apr 2025 16:05:59 GMT\r\ncontent-type: font/woff2\r\nage: 259012\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7884,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 7884, version 1.0","md5":"9212f6f9860f9fc6c69b02fedf6db8c3","sha1":"ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b","sha256":"7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f","sha512":"67317495f4b53e20a9f31c034e456e6c37f387dffb2c092caa5159bc441cfcadd02749ffe5bbed1d580d5300a59e48a767ef2c6d9978b474f84c1a2cd095c126","ssdeep":"192:xLFDbKO9E3rS3JWBRO/J601FSS5ZUbik3Zy2f0:pd9J5W501otlI","tlshash":"c3f1ae4eb3f2cd1be40982e53a0fc90b1c578272681fd772d067a22517893bc8db2c81","first_seen":"2023-04-05T15:35:34Z","last_seen":"2026-06-08T01:11:10.475001Z","times_seen":353002,"resource_available":false,"data":null}},"time_used":164,"timings":{"blocked":74,"dns":1,"connect":7,"send":0,"wait":8,"receive":1,"ssl":70},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lambent-cannoli-4f64ba.netlify.app/style.css","fqdn":"lambent-cannoli-4f64ba.netlify.app","domain":"lambent-cannoli-4f64ba.netlify.app","tld":"netlify.app"},"ip":{"addr":"35.157.26.135","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lambent-cannoli-4f64ba.netlify.app/","date":"2025-09-07T09:40:26.355Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.netlify.app","organization":"Netlify, Inc"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 31 Jan 2025 00:00:00 GMT","end":"Tue, 03 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"04:28:C9:A3:BC:06:50:9C:6B:0B:67:72:82:27:C6:3D:99:1B:5B:71","sha256":"FA:34:6A:A0:1C:F5:9C:C7:30:CA:55:23:13:A1:3E:0F:21:8C:3A:0B:B5:CC:E5:67:09:FE:64:EC:97:4E:8D:75"}}},"request":{"raw":"GET /style.css HTTP/1.1\r\nHost: lambent-cannoli-4f64ba.netlify.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lambent-cannoli-4f64ba.netlify.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nage: 59363\r\ncache-control: public,max-age=0,must-revalidate\r\ncache-status: \"Netlify Edge\"; hit\r\ncontent-encoding: br\r\ncontent-type: text/css; charset=UTF-8\r\ndate: Sun, 07 Sep 2025 09:40:26 GMT\r\netag: \"32fe9f4067bc1b573dd7979a1308d927-ssl-df\"\r\nserver: Netlify\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: Accept-Encoding\r\nx-nf-request-id: 01K4HRRR3R6ER2B4E294NZDZBH\r\ncontent-length: 1254\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Netlify","description":"Netlify providers hosting and server-less backend services for web applications and static websites.","website":"https://www.netlify.com/","common_platform_enumeration":"","icon":"Netlify.svg","categories":["PaaS","CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5082,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text","md5":"e8c7ea12dab838de5d6a0aede12d0525","sha1":"1118189f9560740c41bad9f8a4f1c3e35eb9256a","sha256":"4b022c677b82404311fcc9aaeb7b59b3d52040c0f09c6ee783213b5eb4e54c78","sha512":"62ec52c7f6d10275483e055fc788d60fc80ed41aaf9410e06774801ae905fe0d0a8ea538b7a787d3f6b9d783ffd3deb52259bb61ba859a07138047919102248f","ssdeep":"96:/EFvbYJEy1xwWvkk7EvgUaA7RnkVDOWH6unXEJXD1fSGz+a:810P1xw+kk7Evta6VgDOWHBXsXDxSGCa","tlshash":"2ea1cf8753a30545790ba85c3bfa874562ad8083d51ecb7c3f8d72989fca0e8a571f8c","first_seen":"2025-09-07T09:40:50.510749Z","last_seen":"2025-09-07T13:33:21.993983Z","times_seen":2,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"openphish","sensor_type":"Blocklist","title":"OpenPhish","description":"OpenPhish","scan_date":"2025-09-07","alert":"Phishing - Netflix Inc.","trigger":"lambent-cannoli-4f64ba.netlify.app","verdict":"phishing","severity":"medium","comment":"Netflix Inc.","link":"https://openphish.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Netflix","verdict":"phishing","severity":"medium","comment":"Associated with Netflix phishing","tags":["netflix","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Martel+Sans:wght@600\u0026family=Poppins:wght@300;400;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lambent-cannoli-4f64ba.netlify.app/","date":"2025-09-07T09:40:26.401Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 18 Aug 2025 08:41:11 GMT","end":"Mon, 10 Nov 2025 08:41:10 GMT"},"fingerprint":{"sha1":"74:C1:9B:D3:5D:65:CE:2E:7C:CC:41:C0:7C:F9:2C:AB:41:A3:EC:AA","sha256":"BC:18:82:63:1D:AE:2A:9D:1A:A3:B1:77:B2:AF:6F:0D:AA:CF:1A:88:5A:51:22:46:A8:66:C8:4F:9C:92:20:32"}}},"request":{"raw":"GET /css2?family=Martel+Sans:wght@600\u0026family=Poppins:wght@300;400;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lambent-cannoli-4f64ba.netlify.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sun, 07 Sep 2025 09:40:26 GMT\r\ndate: Sun, 07 Sep 2025 09:40:26 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4830,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"a149c33b1dc20a82a9f9d3cacd2ad1e5","sha1":"42e90a56e7a114d2fa33affafa95994f35605f11","sha256":"652703917718a22703e861b54d5e44d9edfc0c312d639ab61de39944481d37f5","sha512":"080008ce0b835d45c5b75afaf568843222c07f7808d614c9d227188b503de8e147f85ce160a1d03e2d786627075ec75b53824e352f25f500ff10f77c8fa782ba","ssdeep":"96:/OxMaRBOxMaRoJc+uNOxMaRppN3O1aaO1aiJc+ukO1alN3OEaOOEarJc+ukOEals:yRERMPRnwqdApvQ54uJQ","tlshash":"75a1bdd1097bd504ab831cc123cf7e36ee1ea255b810e5756bfd0c88ad9bc294362b6d","first_seen":"2025-09-06T07:18:23.697301Z","last_seen":"2025-09-16T04:59:18.022601Z","times_seen":28,"resource_available":false,"data":null}},"time_used":254,"timings":{"blocked":117,"dns":2,"connect":10,"send":0,"wait":20,"receive":0,"ssl":101},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}