Report - github.com/sense-of-security/ADRecon/archive/master.zip

Report Overview

Submitted URL
github.com/sense-of-security/ADRecon/archive/master.zip
IP
140.82.121.3
ASN
#36459 GITHUB
Submitted
2024-03-29 07:41:28
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
1

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
github.com	1423	2007-10-09	2016-07-13	2024-03-24	509 B	3.5 kB	140.82.121.4
codeload.github.com	62359	2007-10-09	2013-04-18	2024-03-28	521 B	630 kB	140.82.121.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
codeload.github.com/sense-of-security/ADRecon/zip/refs/heads/master
IP
140.82.121.10
ASN
#36459 GITHUB

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
629 kB (629279 bytes)
Hash
db13ce921919327c7b30376ae72179c9
a81d37ccf7c91cd0810d5303fad5ee73632c146a
9ff908e71fa0ee8d4a9576aa27451c85f8db306d51cf73c8317c6ec0fed9dcb0

Archive (95)

Modified	Filename	Size	Md5	File type
2020-06-14 22:23	ADRecon.ps1	627 kB	6008e6c3deaa08fb420d5efd469590c6	Unicode text, UTF-8 (with BOM) text, with very long lines (504)
2020-06-14 22:23	LICENSE.md	34 kB	3e00ca6129dc8358315015204ab9fe15	ASCII text
2020-06-14 22:23	README.md	9.0 kB	7a407cb90a282d103794e836abaed88c	ASCII text, with very long lines (462)
2020-06-14 22:23	ACLs.csv	190 kB	337b72dcd3cc6b73811f800c35ff9f9f	CSV text
2020-06-14 22:23	AboutADRecon.csv	252 B	0ef840dc45e9178b150667bf441f9edf	CSV text
2020-06-14 22:23	BitLockerRecoveryKeys.csv	1.8 kB	8a7479de5a36bd482b0434925283f615	CSV text
2020-06-14 22:23	ComputerSPNs.csv	1.2 kB	419b719197f25540d0a915060c756e05	CSV text
2020-06-14 22:23	Computers.csv	3.2 kB	fc5e27a0132b3cfd7efcbee3d174df86	CSV text
2020-06-14 22:23	DNSNodes.csv	17 kB	e8d51a4d41d3755b0770ed44f63038b6	CSV text
2020-06-14 22:23	DNSZones.csv	855 B	b653dde8e3387e6655bd9728e7fd68e2	CSV text
2020-06-14 22:23	DefaultPasswordPolicy.csv	401 B	c4a5edfc8473a562044330fe43e9a7af	CSV text
2020-06-14 22:23	Domain.csv	274 B	a8d935396201850b234521ce7dc719d2	CSV text
2020-06-14 22:23	DomainControllers.csv	451 B	153335006aa29c211a04d063b21ca1e8	ASCII text
2020-06-14 22:23	FineGrainedPasswordPolicy.csv	484 B	3f6450000479b294085b672d5f9a1b66	CSV text
2020-06-14 22:23	Forest.csv	627 B	114b9eecfabb184b6d7dfe275f715098	CSV text
2020-06-14 22:23	GPOs.csv	2.0 kB	14437cec900c51d47d06479a1f4e7c16	CSV text
2020-06-14 22:23	GroupMembers.csv	2.1 kB	70e7565059831dc0471d3fddcf01a902	CSV text
2020-06-14 22:23	Groups.csv	18 kB	dc9b66becfa44db2f419f5e761a7dbe8	CSV text
2020-06-14 22:23	LAPS.csv	461 B	db93696723ab97f43d884dfdd4ea0dba	CSV text
2020-06-14 22:23	OUs.csv	1.1 kB	c1e95d72c657d80fa63d120854542094	CSV text
2020-06-14 22:23	Sites.csv	124 B	f74d5871ad7bcd7e3595c875f0a21337	ASCII text
2020-06-14 22:23	Subnets.csv	156 B	9616187cc2b5c9c3fca6eb20fdbb8611	ASCII text
2020-06-14 22:23	Trusts.csv	247 B	3889008e3c1862a25277e7c4d24f349d	ASCII text
2020-06-14 22:23	UserSPNs.csv	337 B	26c5829788ccdff4a624d6d07d236b35	CSV text
2020-06-14 22:23	Users.csv	8.5 kB	5ca05f0d364f30848eb033894926821f	CSV text
2020-06-14 22:23	GPO-Report.html	1.1 MB	e26dadacf466ad9526528f4c27d8cf6e	HTML document, Unicode text, UTF-16, little-endian text, with very long lines (367), with CRLF line terminators
2020-06-14 22:23	GPO-Report.xml	286 kB	bf27cd7ab73936f47fd916f218c3cbd1	XML 1.0 document, Unicode text, UTF-16, little-endian text, with very long lines (2349), with CRLF, LF line terminators
2020-06-14 22:23	ACLs.html	501 kB	cc99833f84e5b74e61935230a41fb07e	HTML document, Unicode text, UTF-16, little-endian text, with very long lines (607), with CRLF line terminators
2020-06-14 22:23	AboutADRecon.html	2.1 kB	2c7a74f081924cf11098e389ca3e462b	HTML document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	BitLockerRecoveryKeys.html	6.0 kB	d33d256d102b8aca9ddf64a7ced0d33f	HTML document, Unicode text, UTF-16, little-endian text, with very long lines (344), with CRLF line terminators
2020-06-14 22:23	ComputerSPNs.html	5.0 kB	aa230d041e19517254b6e53c15fb64ce	HTML document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	Computers.html	10 kB	2e5ac1231f595a5dfd2d2b353fbf421b	HTML document, Unicode text, UTF-16, little-endian text, with very long lines (765), with CRLF line terminators
2020-06-14 22:23	DNSNodes.html	46 kB	05ce5ca71cbcc6e99c39d1a68075e16a	HTML document, Unicode text, UTF-16, little-endian text, with very long lines (422), with CRLF line terminators
2020-06-14 22:23	DNSZones.html	3.7 kB	b526cc5bae13abe2a8df6de68e46b978	HTML document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	DefaultPasswordPolicy.html	2.5 kB	f5b3f733b8fc74963a7e2df8c4381f56	HTML document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	Domain.html	2.2 kB	b1969d8abc35ddc005ceb640e6994237	HTML document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	DomainControllers.html	2.9 kB	80b00b1959b1b2b8b3917675c2c7e0a9	HTML document, Unicode text, UTF-16, little-endian text, with very long lines (352), with CRLF line terminators
2020-06-14 22:23	FineGrainedPasswordPolicy.html	2.8 kB	ccca0810c2f22779323dbe75677eb623	HTML document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	Forest.html	3.3 kB	ea1132dd6afdd35400f207511e5295fc	HTML document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	GPOs.html	6.1 kB	b629c1e435eb74883f4249cd62bc8294	HTML document, Unicode text, UTF-16, little-endian text, with very long lines (338), with CRLF line terminators
2020-06-14 22:23	GroupMembers.html	8.3 kB	1a3c4c2ce80202898c4b4a5cd2189796	HTML document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	Groups.html	47 kB	f7555a8b8026ec7e824ddcdd72f261ad	HTML document, Unicode text, UTF-16, little-endian text, with very long lines (681), with CRLF line terminators
2020-06-14 22:23	LAPS.html	2.9 kB	df6e50c8b34e2ba573c59d9b2f83de47	HTML document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	OUs.html	4.2 kB	55a173701ce3c61861f276336c3e8755	HTML document, Unicode text, UTF-16, little-endian text, with very long lines (574), with CRLF line terminators
2020-06-14 22:23	Sites.html	1.7 kB	d4cea99adf8c95816635c510be8d23f1	HTML document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	Subnets.html	1.8 kB	3d203abe47ef229de671447ce29e6e17	HTML document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	Trusts.html	2.0 kB	17c29db96a875daf9c058f33c947d525	HTML document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	UserSPNs.html	2.4 kB	6f0454634db6d965e5a8fe1729eb2547	HTML document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	Users.html	30 kB	d969dbaabac53cf0d17062fdd2291a7c	HTML document, Unicode text, UTF-16, little-endian text, with very long lines (1092), with CRLF line terminators
2020-06-14 22:23	ACLs.json	1.2 MB	37fe17731abc389ab662b5abfd63681d	Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	AboutADRecon.json	1.9 kB	4372310c8cc60371723a14d71508c13f	Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	BitLockerRecoveryKeys.json	8.8 kB	3beac78e8a11180d1c1411f09ca7ff80	Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	ComputerSPNs.json	8.8 kB	bc688b6bcf604a7ffe39645b894b1565	Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	Computers.json	20 kB	a3c2bea834353a8023104a2e000a11e4	Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	DNSNodes.json	100 kB	a87fd944b99b04f94155f2b1de12c807	Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	DNSZones.json	4.8 kB	20724248d26bc82b3b460b53c4ce7d27	Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	DefaultPasswordPolicy.json	2.9 kB	7ad93b0f36f981f331ed0ca2814bd42a	Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	Domain.json	2.4 kB	6adb64ea93629dc1e045c263bc426bcf	Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	DomainControllers.json	1.2 kB	44254f95e1f582c203f05eff4080e99f	Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	FineGrainedPasswordPolicy.json	3.7 kB	4bcf41729c78e1f1f563cc1504f31689	Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	Forest.json	5.0 kB	5cdb5a2529fb97d4b287791a91c64c04	Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	GPOs.json	7.9 kB	139c42d2c4cb90c0b916b2990703f503	Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	GroupMembers.json	20 kB	95c5f0eb0d4775e9c20e84934b0e4a99	Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	Groups.json	94 kB	d847145263b3b7170ec42991a29d7301	Unicode text, UTF-16, little-endian text, with very long lines (411), with CRLF line terminators
2020-06-14 22:23	LAPS.json	4.1 kB	675afc76fee9314646c7bc67b7cf9107	Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	OUs.json	4.9 kB	cd1b229b350568088efdf62ad9441a53	Unicode text, UTF-16, little-endian text, with very long lines (392), with CRLF line terminators
2020-06-14 22:23	Sites.json	328 B	86a033151aa5a9fc53d598c39fd4c836	Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	Subnets.json	404 B	823b4daaec53904b6c916c34ec6e4771	Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	Trusts.json	618 B	e5da2203965d76869336efd2dc34e0b0	Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	UserSPNs.json	2.0 kB	549d89cb1796c592d5ebe929c2064ed5	Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	Users.json	92 kB	9c89add85c15cbdb0c9d2f520e07c195	Unicode text, UTF-16, little-endian text, with CRLF line terminators
2020-06-14 22:23	ACLs.xml	631 kB	adbde841f3f235e7863c6e20bc230f7e	XML 1.0 document, Unicode text, UTF-8 (with BOM) text
2020-06-14 22:23	AboutADRecon.xml	978 B	19eb5c5ef3761c1ea16efdab4b4901d2	XML 1.0 document, Unicode text, UTF-8 (with BOM) text
2020-06-14 22:23	BitLockerRecoveryKeys.xml	4.4 kB	ad061db2ca2b7e1c2299cffffb9f1a51	XML 1.0 document, Unicode text, UTF-8 (with BOM) text
2020-06-14 22:23	ComputerSPNs.xml	4.4 kB	4d60eef3a5e8a5a11acba12bda4a3a68	XML 1.0 document, Unicode text, UTF-8 (with BOM) text
2020-06-14 22:23	Computers.xml	10 kB	8682d6c19959b0336d9a0f3834e09386	XML 1.0 document, Unicode text, UTF-8 (with BOM) text
2020-06-14 22:23	DNSNodes.xml	52 kB	40c0987b81374dc8b25bdabd30058b57	XML 1.0 document, Unicode text, UTF-8 (with BOM) text
2020-06-14 22:23	DNSZones.xml	2.5 kB	97718f1d49971c13e068a2a155d8fccd	XML 1.0 document, Unicode text, UTF-8 (with BOM) text
2020-06-14 22:23	DefaultPasswordPolicy.xml	1.4 kB	33dfebb815f741cabc805a54801a002a	XML 1.0 document, Unicode text, UTF-8 (with BOM) text
2020-06-14 22:23	Domain.xml	1.2 kB	b34f00c1a57907baf89cee8875983fa3	XML 1.0 document, Unicode text, UTF-8 (with BOM) text
2020-06-14 22:23	DomainControllers.xml	1.1 kB	f829611b9bfea773a0d502fcb73d64f4	XML 1.0 document, Unicode text, UTF-8 (with BOM) text
2020-06-14 22:23	FineGrainedPasswordPolicy.xml	1.8 kB	fcde9a58d48e81f2808b8ee6a528645e	XML 1.0 document, Unicode text, UTF-8 (with BOM) text
2020-06-14 22:23	Forest.xml	2.5 kB	9ced38975dc7a1ff264e8fe8b6b8e511	XML 1.0 document, Unicode text, UTF-8 (with BOM) text
2020-06-14 22:23	GPOs.xml	4.0 kB	0eecc4be1b3212bbdb1313ea8b379ffc	XML 1.0 document, Unicode text, UTF-8 (with BOM) text
2020-06-14 22:23	GroupMembers.xml	10 kB	9108170aa5bd02b2662539ae0cb657bd	XML 1.0 document, Unicode text, UTF-8 (with BOM) text
2020-06-14 22:23	Groups.xml	49 kB	1fc7878cec9cdb722a4748e9abd16a37	XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with very long lines (416)
2020-06-14 22:23	LAPS.xml	2.1 kB	04fa3649c6307d47fc3301b96072d8ec	XML 1.0 document, Unicode text, UTF-8 (with BOM) text
2020-06-14 22:23	OUs.xml	2.5 kB	634da756e67ce6d76449454cbd1fd854	XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with very long lines (397)
2020-06-14 22:23	Sites.xml	314 B	a27aaf5b6024519a894156a8f20bd369	XML 1.0 document, Unicode text, UTF-8 (with BOM) text
2020-06-14 22:23	Subnets.xml	381 B	e36476423fb9de79e6e05c7328425e85	XML 1.0 document, Unicode text, UTF-8 (with BOM) text
2020-06-14 22:23	Trusts.xml	528 B	e8a50e110a4e5e3745f89c0cb2b00c11	XML 1.0 document, Unicode text, UTF-8 (with BOM) text
2020-06-14 22:23	UserSPNs.xml	1.0 kB	9e8a06d7d75e4410bd9431757175f15a	XML 1.0 document, Unicode text, UTF-8 (with BOM) text
2020-06-14 22:23	Users.xml	47 kB	db10285d48137889e47dab0c7f07f4a1	XML 1.0 document, Unicode text, UTF-8 (with BOM) text
2020-06-14 22:23	sos.labs-ADRecon-Report.xlsx	197 kB	1188f866b69da9dad5943c553ada9cf7	Microsoft Excel 2007+
2020-06-14 22:23	Console-Output.txt	2.5 kB	66f092e48112c6f9556d44d0c29d3864	Hewlett-Packard Graphics Language, starting with "PS C:\ADRecon> .\ADRecon.ps1 -OutputType All -Verbose" with "[*] ADReco"

Detections

Analyzer	Verdict	Alert
VirusTotal	malicious	VirusTotal - Scan result 24/65

JavaScript (0)

HTTP Transactions (2)

URL IP Response Size

github.com/sense-of-security/ADRecon/archive/master.zip

140.82.121.4

302 Found

0 B

URL User Request GET HTTP/2
github.com/sense-of-security/ADRecon/archive/master.zip
IP
140.82.121.4:443
ASN
#36459 GITHUB

Certificate
IssuerSectigo Limited
Subjectgithub.com
FingerprintE7:03:5B:CC:1C:18:77:1F:79:2F:90:86:6B:6C:1D:F8:DF:AA:BD:C0
ValidityThu, 07 Mar 2024 00:00:00 GMT - Fri, 07 Mar 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sense-of-security/ADRecon/archive/master.zip HTTP/1.1
Host: github.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: GitHub.com
date: Fri, 29 Mar 2024 07:41:01 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
location: https://codeload.github.com/sense-of-security/ADRecon/zip/refs/heads/master
cache-control: max-age=0, private
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com api.githubcopilot.com objects-origin.githubusercontent.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: A115:1C1C6F:19B58F6:1A22637:6606708D
X-Firefox-Spdy: h2

codeload.github.com/sense-of-security/ADRecon/zip/refs/heads/master

140.82.121.10

200 OK

629 kB

URL User Request GET HTTP/2
codeload.github.com/sense-of-security/ADRecon/zip/refs/heads/master
IP
140.82.121.10:443
ASN
#36459 GITHUB

Certificate
IssuerSectigo Limited
Subject*.github.com
Fingerprint0D:F6:EC:50:FA:ED:AE:6E:13:AF:82:94:52:F7:11:1B:0A:CF:7C:20
ValidityThu, 07 Mar 2024 00:00:00 GMT - Fri, 07 Mar 2025 23:59:59 GMT

File type
Zip archive data, at least v1.0 to extract, compression method=store
Size
629 kB (629279 bytes)
Hash
db13ce921919327c7b30376ae72179c9
a81d37ccf7c91cd0810d5303fad5ee73632c146a
9ff908e71fa0ee8d4a9576aa27451c85f8db306d51cf73c8317c6ec0fed9dcb0

Detections

Analyzer	Verdict	Alert
VirusTotal	malicious	VirusTotal - Scan result 24/65

HTTP Headers

GET /sense-of-security/ADRecon/zip/refs/heads/master HTTP/1.1
Host: codeload.github.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: https://render.githubusercontent.com
content-disposition: attachment; filename=ADRecon-master.zip
content-length: 629279
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: application/zip
cross-origin-resource-policy: cross-origin
etag: W/"047f4e42d77539602425ea1226a2db3c322a35b5d8d7b259d4344f3a88025b4e"
strict-transport-security: max-age=31536000
vary: Authorization,Accept-Encoding,Origin
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
date: Fri, 29 Mar 2024 07:41:01 GMT
x-github-request-id: 87D3:0E91:E28368:10F359B:6606708D
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (95)

Detections

JavaScript (0)

HTTP Transactions (2)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers