Report - www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability

Report Overview

Visitedpublic

2025-07-03 08:57:28

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.zerodayinitiative.com	559796	2005-07-14	2017-01-30	2025-06-29	7.1 kB	376 kB	52.89.240.103
gist.github.com	44251	2007-10-09	2012-06-18	2025-06-30	4.6 kB	137 kB	140.82.121.4
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-07-02	2.2 kB	52 kB	142.250.178.67
static1.squarespace.com	4133	2003-03-25	2015-01-09	2025-06-26	540 B	581 kB	151.101.128.238
assets.squarespace.com	5986	2003-03-25	2019-06-20	2025-07-03	9.2 kB	3.6 MB	151.101.128.237
www.thezdi.com	unknown	2017-02-03	2025-06-22	2025-06-22	2.9 kB	144 kB	198.49.23.145
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-07-02	932 B	5.3 kB	142.250.178.106
www.googletagmanager.com	75	2011-11-11	2012-10-04	2025-07-02	1.1 kB	660 kB	142.250.74.136
images.squarespace-cdn.com	4785	2019-01-24	2019-02-20	2025-06-26	528 B	1.3 kB	151.101.0.238
github.githubassets.com	9355	2018-10-24	2018-12-07	2025-07-03	470 B	111 kB	185.199.111.154

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (85)

	URL	From	Size	First Seen	Last Seen
	gist.github.com/zdi-team/21e87d7e6457dce089c08b08f7ecbe5b.js	ScriptElement	20 kB	2025-07-03	2025-07-03
URL gist.github.com/zdi-team/21e87d7e6457dce089c08b08f7ecbe5b.js IP / ASN 140.82.121.4 #36459 GITHUB Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 20 kB (19528 bytes) MD5 74aad3d10d30f83a19106c36bd064609 SHA1 fbc61dbbf7b989385b8dbff757da2e25c60038da SHA256 b5a79ddd9f4a28bc37b16ffde906671aafda474646d687e1fb09e3b2646469c5 Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/83028-55fff1ade4c91616-min.en-US.js	ScriptElement	13 kB	2025-07-02	2025-07-06
URL assets.squarespace.com/universal/scripts-compressed/83028-55fff1ade4c91616-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-02 Last Seen 2025-07-06 Times Seen 57 Size 13 kB (12706 bytes) MD5 f514a728d0f765dfcf734bb3a41bd895 SHA1 5b9df5ce8fc96feb93c09688b566ae15075ccfce SHA256 a299f7fcbecee48b856e6382f96a993dab0b7e4694339dcb96ac09ec0fd99616 Format Code Loading...

	www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	25 B	2023-03-07	2025-08-02
URL www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 198.49.23.145 #53831 SQUARESPACE Introduced by ScriptElement Embedded true Resource Info First Seen 2023-03-07 Last Seen 2025-08-02 Times Seen 4107 Size 25 B (25 bytes) MD5 672d0394545f391429e65f55351f3def SHA1 19ee8affc3c7b4dad3a3c0565fc5bcd5c21d982c SHA256 1b7e492754babf86a84991d9e4aa1094333c6607dbb57414a964773ccb9dca46 Format Code Loading...

	www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	258 B	2025-07-03	2025-07-04
URL www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 198.49.23.145 #53831 SQUARESPACE Introduced by ScriptElement Embedded true Resource Info First Seen 2025-07-03 Last Seen 2025-07-04 Times Seen 14 Size 258 B (258 bytes) MD5 438eff1453bb8f9844165dc941a6384a SHA1 a7cbd19e808897c5b8a1f473c5c9d2b3fe4bb8a7 SHA256 ba71aa0d95c9504f436ea2b2638d4e4a9e097cbc1db8dcc362ce479f40792060 Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/common-cc69da0a4570b097-min.en-US.js	ScriptElement	1.1 MB	2025-07-02	2025-07-06
URL assets.squarespace.com/universal/scripts-compressed/common-cc69da0a4570b097-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-02 Last Seen 2025-07-06 Times Seen 56 Size 1.1 MB (1102110 bytes) MD5 5fe59bf0b89e004644df3dfd9c62cfc2 SHA1 0aba4e831dace2c49eaf703c2884cd6700b81100 SHA256 3c3f6b99e405609991dd3539b386b27269997d820f72d7e6599e8bda06dd34c9 Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/4611-ff8218ae9d5ad9b5-min.en-US.js	ScriptElement	12 kB	2025-07-02	2025-07-06
URL assets.squarespace.com/universal/scripts-compressed/4611-ff8218ae9d5ad9b5-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-02 Last Seen 2025-07-06 Times Seen 59 Size 12 kB (12000 bytes) MD5 e6a6414ca3422462f25e666c5c829960 SHA1 9f95a78ebd2ffefd3f6906fc1ad9d30b72fbf88b SHA256 bd50ada37b6ee74b311a3e3d7e8381cbd0310bd0575371e121d5bc1eab9e9195 Format Code Loading...

	www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	Function	37 B	2023-04-11	2025-08-02
URL www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 198.49.23.145 #53831 SQUARESPACE Introduced by Function Embedded false Resource Info First Seen 2023-04-11 Last Seen 2025-08-02 Times Seen 322029 Size 37 B (37 bytes) MD5 29d0c84b9d1d8da446a6062c6a840ad9 SHA1 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 SHA256 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/extract-css-runtime-08144866cf3f6748-min.en-US.js	ScriptElement	44 kB	2025-07-03	2025-07-04
URL assets.squarespace.com/universal/scripts-compressed/extract-css-runtime-08144866cf3f6748-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-03 Last Seen 2025-07-04 Times Seen 14 Size 44 kB (44340 bytes) MD5 97fd42c04bb2471096172c841066ecbb SHA1 f4ed7b846a94cb8c26fe8c0e8dbb26f349187013 SHA256 a99b43c2c0782e16e4b1d7680eb79228b05a420ff6bcc3bfa87cf90d54f237ad Format Code Loading...

	www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	25 B	2023-03-07	2025-08-02
URL www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 52.89.240.103 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2023-03-07 Last Seen 2025-08-02 Times Seen 4107 Size 25 B (25 bytes) MD5 672d0394545f391429e65f55351f3def SHA1 19ee8affc3c7b4dad3a3c0565fc5bcd5c21d982c SHA256 1b7e492754babf86a84991d9e4aa1094333c6607dbb57414a964773ccb9dca46 Format Code Loading...

	www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	258 B	2025-07-03	2025-07-04
URL www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 52.89.240.103 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2025-07-03 Last Seen 2025-07-04 Times Seen 14 Size 258 B (258 bytes) MD5 438eff1453bb8f9844165dc941a6384a SHA1 a7cbd19e808897c5b8a1f473c5c9d2b3fe4bb8a7 SHA256 ba71aa0d95c9504f436ea2b2638d4e4a9e097cbc1db8dcc362ce479f40792060 Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/59494-c33bc2b519ece6c2-min.en-US.js	ScriptElement	15 kB	2025-05-27	2025-07-22
URL assets.squarespace.com/universal/scripts-compressed/59494-c33bc2b519ece6c2-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-05-27 Last Seen 2025-07-22 Times Seen 1358 Size 15 kB (15260 bytes) MD5 04d1536c718d4c2228d3a2ff67e97abf SHA1 b5bd001d6ff474417f59afc7bc90225178efa3bb SHA256 f2e96ed8891942b6d917585ed47d9c54f69abbdcc2804a24f9c8921733959442 Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/24535-2f3a58b4c538ce6f-min.en-US.js	ScriptElement	72 kB	2025-06-26	2025-07-12
URL assets.squarespace.com/universal/scripts-compressed/24535-2f3a58b4c538ce6f-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-06-26 Last Seen 2025-07-12 Times Seen 550 Size 72 kB (71589 bytes) MD5 858fef77206a3d98d5c860e76097b765 SHA1 915a3993efc9442c33a74cf1033c2d9c304b10f0 SHA256 f0840976a2cf1b57ad841e0f6d733bd6657d57a733a0cdbe772d0faa96214e75 Format Code Loading...

	www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	276 B	2025-05-14	2025-08-02
URL www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 198.49.23.145 #53831 SQUARESPACE Introduced by ScriptElement Embedded true Resource Info First Seen 2025-05-14 Last Seen 2025-08-02 Times Seen 1276 Size 276 B (276 bytes) MD5 5b7db781742aeebbc55b9fbd156f9844 SHA1 d4cf8ddde922ee398a9bd98b5f0cfb143a0f890b SHA256 dc010c97dc7fd3a4e7264e17660312bbf0b4f51d65646583d442cc67b9d088ff Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/cldr-resource-pack-f88491ffe3410ea1-min.en-US.js	ScriptElement	90 kB	2025-06-16	2025-07-08
URL assets.squarespace.com/universal/scripts-compressed/cldr-resource-pack-f88491ffe3410ea1-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-06-16 Last Seen 2025-07-08 Times Seen 1112 Size 90 kB (89939 bytes) MD5 da31f59bac747ae5beb2e8ba05480a1d SHA1 a152f7ffdb018d8547c889f3adfd2e303057096f SHA256 c0acebaa232deab04d40ad7fbea1e1a2b4995792f0f521b28562a2e0db47091d Format Code Loading...

	www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	276 B	2025-05-14	2025-08-02
URL www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 52.89.240.103 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2025-05-14 Last Seen 2025-08-02 Times Seen 1276 Size 276 B (276 bytes) MD5 5b7db781742aeebbc55b9fbd156f9844 SHA1 d4cf8ddde922ee398a9bd98b5f0cfb143a0f890b SHA256 dc010c97dc7fd3a4e7264e17660312bbf0b4f51d65646583d442cc67b9d088ff Format Code Loading...

	www.googletagmanager.com/gtag/js?id=G-DBFMYZ5KK8&cx=c&gtm=457e5710za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104839054~104839056~104879961~104885889~104885891~104908321~104908323	ScriptElement	372 kB	2025-07-03	2025-07-03
URL www.googletagmanager.com/gtag/js?id=G-DBFMYZ5KK8&cx=c&gtm=457e5710za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104839054~104839056~104879961~104885889~104885891~104908321~104908323 IP / ASN 142.250.74.136 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 372 kB (372069 bytes) MD5 2d7b13dcb6041237925bbd5522e514ff SHA1 62130ee5e1306761824acfbe02d1d1c856a9fcec SHA256 8c4c646e65ab670f51ae8e016f3413c22ee446f79e90626d04477893f28ecd82 Format Code Loading...

	gist.github.com/zdi-team/da6aed7381b7a65422bc2a2e21ec7879.js	ScriptElement	8.1 kB	2025-07-03	2025-07-03
URL gist.github.com/zdi-team/da6aed7381b7a65422bc2a2e21ec7879.js IP / ASN 140.82.121.4 #36459 GITHUB Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 8.1 kB (8109 bytes) MD5 6d3e97dbf472435120e16cfb2b953e6c SHA1 5c35b057ac62b410459550fbf606c514e6d441c2 SHA256 e6d5c489a707ef27d517b66d625d684a52c7caa1ccb25d31c8be325cc03eb42e Format Code Loading...

	www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	Function	37 B	2023-04-11	2025-08-02
URL www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 198.49.23.145 #53831 SQUARESPACE Introduced by Function Embedded false Resource Info First Seen 2023-04-11 Last Seen 2025-08-02 Times Seen 322029 Size 37 B (37 bytes) MD5 29d0c84b9d1d8da446a6062c6a840ad9 SHA1 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 SHA256 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Format Code Loading...

	www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	256 B	2025-06-16	2025-07-08
URL www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 198.49.23.145 #53831 SQUARESPACE Introduced by ScriptElement Embedded true Resource Info First Seen 2025-06-16 Last Seen 2025-07-08 Times Seen 866 Size 256 B (256 bytes) MD5 5f2066c661a34c1ebad727353dd4d3eb SHA1 2d580d2865cefdf62982057a2f793235eb713cc9 SHA256 0923ab3327b42abda71fd2f1246062f69dd10b9280d713a472d0665546b27063 Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/common-cc69da0a4570b097-min.en-US.js	ScriptElement	1.1 MB	2025-07-02	2025-07-06
URL assets.squarespace.com/universal/scripts-compressed/common-cc69da0a4570b097-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-02 Last Seen 2025-07-06 Times Seen 56 Size 1.1 MB (1102110 bytes) MD5 5fe59bf0b89e004644df3dfd9c62cfc2 SHA1 0aba4e831dace2c49eaf703c2884cd6700b81100 SHA256 3c3f6b99e405609991dd3539b386b27269997d820f72d7e6599e8bda06dd34c9 Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/common-vendors-stable-54bab8bb8a15366b-min.en-US.js	ScriptElement	246 kB	2025-05-20	2025-08-02
URL assets.squarespace.com/universal/scripts-compressed/common-vendors-stable-54bab8bb8a15366b-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-05-20 Last Seen 2025-08-02 Times Seen 1474 Size 246 kB (246255 bytes) MD5 7c8a3a52b33a7338d9a751c537edb7f4 SHA1 f386c350d3925e350724ae2eaaa37ab4a38557bb SHA256 e5b671d1a1c6c1e11f07199ae4769339436a51f356a9b8932401db0476a35a06 Format Code Loading...

	www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	256 B	2025-06-16	2025-07-08
URL www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 52.89.240.103 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2025-06-16 Last Seen 2025-07-08 Times Seen 866 Size 256 B (256 bytes) MD5 5f2066c661a34c1ebad727353dd4d3eb SHA1 2d580d2865cefdf62982057a2f793235eb713cc9 SHA256 0923ab3327b42abda71fd2f1246062f69dd10b9280d713a472d0665546b27063 Format Code Loading...

	gist.github.com/zdi-team/70a56c9d2d889e13b1482b8cbb3d3655.js	ScriptElement	8.1 kB	2025-07-03	2025-07-03
URL gist.github.com/zdi-team/70a56c9d2d889e13b1482b8cbb3d3655.js IP / ASN 140.82.121.4 #36459 GITHUB Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 8.1 kB (8118 bytes) MD5 06f8c112b6883bdcce75ae807c0e963a SHA1 2a2e353ada5698f7114c98d0be1916ac17972569 SHA256 501a51215334ec251d24e5dd4874062bd8f86bec60e4492405dfb8e5d47e6052 Format Code Loading...

	gist.github.com/zdi-team/b0aa1b0be866b5a1ac9e83120590478a.js	ScriptElement	5.5 kB	2025-07-03	2025-07-03
URL gist.github.com/zdi-team/b0aa1b0be866b5a1ac9e83120590478a.js IP / ASN 140.82.121.4 #36459 GITHUB Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 5.5 kB (5513 bytes) MD5 a957a7f4202e6eabfa5542dbeec5bf78 SHA1 79f7cfa5afb5d30f1a9787c79a14d4942db5a286 SHA256 a2096076d7973728827ae52f7d70561205dc576649ff8dfe47ad7d1c98780885 Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/extract-css-moment-js-vendor-088ec0120fdbcfed-min.en-US.js	ScriptElement	858 kB	2025-05-13	2025-08-02
URL assets.squarespace.com/universal/scripts-compressed/extract-css-moment-js-vendor-088ec0120fdbcfed-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-05-13 Last Seen 2025-08-02 Times Seen 1628 Size 858 kB (857850 bytes) MD5 ac18c33ff9ca92b2a347303ac22382d6 SHA1 3361cf158a5a3ef68cd1ee69fb419afbf5ccd2a6 SHA256 154e5c0ddaba3d0538d6d468a62e54e6484208bb8a26ef912ecf1027eb87d99e Format Code Loading...

	www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	262 B	2025-05-20	2025-08-02
URL www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 198.49.23.145 #53831 SQUARESPACE Introduced by ScriptElement Embedded true Resource Info First Seen 2025-05-20 Last Seen 2025-08-02 Times Seen 1150 Size 262 B (262 bytes) MD5 43f5d9e0435de7198c0acd7c9fe192cc SHA1 1e3e13627c6728e19e1c21349b93091478fc8402 SHA256 536cf3f42ba6a67ee186b453b8b8b84fe3794c5e9d18ec2d04666973448845a7 Format Code Loading...

	www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	248 B	2025-06-27	2025-07-08
URL www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 198.49.23.145 #53831 SQUARESPACE Introduced by ScriptElement Embedded true Resource Info First Seen 2025-06-27 Last Seen 2025-07-08 Times Seen 339 Size 248 B (248 bytes) MD5 0490e021cbc8253943144821959cdfec SHA1 b6355a6fee3e1cde6272e45e85dea2adf385e776 SHA256 8cd79b692c3447b2b8383687daa44b72934a1db04bfad1052b5b70ae6d91e606 Format Code Loading...

	gist.github.com/zdi-team/bed8f3c842e2bdc4f5795a33d468f479.js	ScriptElement	5.5 kB	2025-07-03	2025-07-03
URL gist.github.com/zdi-team/bed8f3c842e2bdc4f5795a33d468f479.js IP / ASN 140.82.121.4 #36459 GITHUB Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 5.5 kB (5513 bytes) MD5 f5e844d08f3750e167d0fe2874f9394d SHA1 46059db324f272b5394f21e070803b60826b1202 SHA256 f0828520ade112abcc64b9cce1dda9b3d4805cddfc572c2c428a582dbce1c976 Format Code Loading...

	www.zerodayinitiative.com/blog/2024/4/17/sandbox%20eval%20code		147 B	2023-04-11	2025-08-02
URL www.zerodayinitiative.com/blog/2024/4/17/sandbox%20eval%20code IP / ASN 0.0.0.0 #0 Introduced by Embedded false Resource Info First Seen 2023-04-11 Last Seen 2025-08-02 Times Seen 419705 Size 147 B (147 bytes) MD5 92b651082ce234f66bb544e678befda3 SHA1 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 SHA256 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Format Code Loading...

	www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	232 B	2025-07-02	2025-07-06
URL www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 198.49.23.145 #53831 SQUARESPACE Introduced by ScriptElement Embedded true Resource Info First Seen 2025-07-02 Last Seen 2025-07-06 Times Seen 43 Size 232 B (232 bytes) MD5 24e7d8f53184245f7bc6699c76ee49e5 SHA1 337b7b381f8a484b751a11ce9cf13821874b04c9 SHA256 50035c5a960ba367a341c9301911ccddc47e16daa89a540b6e451280ad19b1da Format Code Loading...

	www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	254 B	2025-07-03	2025-07-06
URL www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 198.49.23.145 #53831 SQUARESPACE Introduced by ScriptElement Embedded true Resource Info First Seen 2025-07-03 Last Seen 2025-07-06 Times Seen 12 Size 254 B (254 bytes) MD5 9df118059a829a2fc0c50c29f547ec9e SHA1 99a555681c252f5ece887f5effef7262853200b7 SHA256 f69c148d80994837f47428ca1dd1ba6f6b69583f513d62c91f66c6665624357e Format Code Loading...

	www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	262 B	2025-05-20	2025-08-02
URL www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 52.89.240.103 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2025-05-20 Last Seen 2025-08-02 Times Seen 1150 Size 262 B (262 bytes) MD5 43f5d9e0435de7198c0acd7c9fe192cc SHA1 1e3e13627c6728e19e1c21349b93091478fc8402 SHA256 536cf3f42ba6a67ee186b453b8b8b84fe3794c5e9d18ec2d04666973448845a7 Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/user-account-core-b5d50421c99adbc8-min.en-US.js	ScriptElement	227 kB	2025-07-03	2025-07-06
URL assets.squarespace.com/universal/scripts-compressed/user-account-core-b5d50421c99adbc8-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-03 Last Seen 2025-07-06 Times Seen 17 Size 227 kB (226842 bytes) MD5 b1325fca66a2338039c2f075d4ea6593 SHA1 3d89887952fe617ad2ec107b76291ea67640e570 SHA256 a24d0f89faaafb41a87cb96be1e5c9fda1ec81c52b72ab630d1a043a3da572e8 Format Code Loading...

	gist.github.com/zdi-team/53b813672b4cc0cd5deea4ae49484edb.js	ScriptElement	8.0 kB	2025-07-03	2025-07-03
URL gist.github.com/zdi-team/53b813672b4cc0cd5deea4ae49484edb.js IP / ASN 140.82.121.4 #36459 GITHUB Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 8.0 kB (8004 bytes) MD5 ca3659883d93e32b6979b6e9bb47d2a1 SHA1 a367bfa50b7470e658927d5a1cf75b24daedcc67 SHA256 7b316a8da84cf24f13199279b32b92d9ede3f03dd7facf405df55a645157b4cf Format Code Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-08-02
URL www.google-analytics.com/analytics.js IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-04-11 Last Seen 2025-08-02 Times Seen 418966 Size 4.7 kB (4691 bytes) MD5 f24128d0c9cba7be2916c693427a3483 SHA1 1b6397d496ea896ebc2018b01b995cee4f166029 SHA256 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Format Code Loading...

	www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	248 B	2025-06-27	2025-07-08
URL www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 52.89.240.103 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2025-06-27 Last Seen 2025-07-08 Times Seen 339 Size 248 B (248 bytes) MD5 0490e021cbc8253943144821959cdfec SHA1 b6355a6fee3e1cde6272e45e85dea2adf385e776 SHA256 8cd79b692c3447b2b8383687daa44b72934a1db04bfad1052b5b70ae6d91e606 Format Code Loading...

	www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	255 B	2025-07-02	2025-07-06
URL www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 198.49.23.145 #53831 SQUARESPACE Introduced by ScriptElement Embedded true Resource Info First Seen 2025-07-02 Last Seen 2025-07-06 Times Seen 14 Size 255 B (255 bytes) MD5 f99b1bd73844f01392cf744b9e55e58f SHA1 77574056675dcc8a2177057f5a6d4b48d1a5f95d SHA256 60ce8d620827f48e1c26c4cb9d1919988b61dde58b952c5bd2a128643af125c8 Format Code Loading...

	www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	232 B	2025-07-02	2025-07-06
URL www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 52.89.240.103 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2025-07-02 Last Seen 2025-07-06 Times Seen 43 Size 232 B (232 bytes) MD5 24e7d8f53184245f7bc6699c76ee49e5 SHA1 337b7b381f8a484b751a11ce9cf13821874b04c9 SHA256 50035c5a960ba367a341c9301911ccddc47e16daa89a540b6e451280ad19b1da Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/extract-css-moment-js-vendor-088ec0120fdbcfed-min.en-US.js	ScriptElement	858 kB	2025-05-13	2025-08-02
URL assets.squarespace.com/universal/scripts-compressed/extract-css-moment-js-vendor-088ec0120fdbcfed-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-05-13 Last Seen 2025-08-02 Times Seen 1628 Size 858 kB (857850 bytes) MD5 ac18c33ff9ca92b2a347303ac22382d6 SHA1 3361cf158a5a3ef68cd1ee69fb419afbf5ccd2a6 SHA256 154e5c0ddaba3d0538d6d468a62e54e6484208bb8a26ef912ecf1027eb87d99e Format Code Loading...

	www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	242 B	2025-06-27	2025-07-08
URL www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 198.49.23.145 #53831 SQUARESPACE Introduced by ScriptElement Embedded true Resource Info First Seen 2025-06-27 Last Seen 2025-07-08 Times Seen 279 Size 242 B (242 bytes) MD5 0f61a9f4d31b2593748e96784bf99ad2 SHA1 3963bc15ed1e56551f908101c2903c041fd32594 SHA256 2f5a2345dd13747570492bcfaa92d6013ca940b733ea89d221cd703775fa3999 Format Code Loading...

	www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	254 B	2025-07-03	2025-07-06
URL www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 52.89.240.103 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2025-07-03 Last Seen 2025-07-06 Times Seen 12 Size 254 B (254 bytes) MD5 9df118059a829a2fc0c50c29f547ec9e SHA1 99a555681c252f5ece887f5effef7262853200b7 SHA256 f69c148d80994837f47428ca1dd1ba6f6b69583f513d62c91f66c6665624357e Format Code Loading...

	gist.github.com/zdi-team/ce295e8e608f3de50938eb905e596696.js	ScriptElement	9.0 kB	2025-07-03	2025-07-03
URL gist.github.com/zdi-team/ce295e8e608f3de50938eb905e596696.js IP / ASN 140.82.121.4 #36459 GITHUB Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 9.0 kB (8978 bytes) MD5 c47db47b94e2860c6d0124265929fd47 SHA1 41fa1ef06921a454d1c1a18add476e5d591b0ff7 SHA256 87e4b9a16dca4762e7eb2e273614872fb42b0cf3775b08653045c18c587ead0e Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/common-vendors-stable-54bab8bb8a15366b-min.en-US.js	ScriptElement	246 kB	2025-05-20	2025-08-02
URL assets.squarespace.com/universal/scripts-compressed/common-vendors-stable-54bab8bb8a15366b-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-05-20 Last Seen 2025-08-02 Times Seen 1474 Size 246 kB (246255 bytes) MD5 7c8a3a52b33a7338d9a751c537edb7f4 SHA1 f386c350d3925e350724ae2eaaa37ab4a38557bb SHA256 e5b671d1a1c6c1e11f07199ae4769339436a51f356a9b8932401db0476a35a06 Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/common-vendors-9b8bee2d8b8b215b-min.en-US.js	ScriptElement	714 kB	2025-06-26	2025-07-08
URL assets.squarespace.com/universal/scripts-compressed/common-vendors-9b8bee2d8b8b215b-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-06-26 Last Seen 2025-07-08 Times Seen 455 Size 714 kB (714548 bytes) MD5 33bfa0423bea7116e570f5e27d2d1b61 SHA1 0d55fc73e8818c3ac4b4a9ed942669a671fcb3ce SHA256 e7caba5ffedda0ff79d76813c19308387d21b216c56c96f34d7b84765c070120 Format Code Loading...

	www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	Function	37 B	2023-04-11	2025-08-02
URL www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 52.89.240.103 #16509 AMAZON-02 Introduced by Function Embedded false Resource Info First Seen 2023-04-11 Last Seen 2025-08-02 Times Seen 322029 Size 37 B (37 bytes) MD5 29d0c84b9d1d8da446a6062c6a840ad9 SHA1 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 SHA256 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Format Code Loading...

	assets.squarespace.com/@sqs/polyfiller/1.6/modern.js	ScriptElement	118 kB	2023-04-05	2025-08-02
URL assets.squarespace.com/@sqs/polyfiller/1.6/modern.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2023-04-05 Last Seen 2025-08-02 Times Seen 4963 Size 118 kB (117609 bytes) MD5 93a2aea230d421d550375c528b22583e SHA1 e8d88b00db1c30510928a7c6618f0f7cffa9b4c2 SHA256 54e832663426c696b1f603379026e5e15720e8c812bbbc60d63aa2ad8a479f75 Format Code Loading...

	www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	255 B	2025-07-02	2025-07-06
URL www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 52.89.240.103 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2025-07-02 Last Seen 2025-07-06 Times Seen 14 Size 255 B (255 bytes) MD5 f99b1bd73844f01392cf744b9e55e58f SHA1 77574056675dcc8a2177057f5a6d4b48d1a5f95d SHA256 60ce8d620827f48e1c26c4cb9d1919988b61dde58b952c5bd2a128643af125c8 Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/34909-b028e4bf2995b212-min.en-US.js	ScriptElement	12 kB	2025-07-02	2025-07-18
URL assets.squarespace.com/universal/scripts-compressed/34909-b028e4bf2995b212-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-02 Last Seen 2025-07-18 Times Seen 367 Size 12 kB (12330 bytes) MD5 31822b60f14a9ef992a8cd5dbff72cbd SHA1 0ec72889855ba6c9bfeae55a480211b1bd9f056e SHA256 ad8502c040166d22ebb4974bde4a22fa1972a0f5b2cfae45d2a05778449fcdd4 Format Code Loading...

	www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	242 B	2025-06-27	2025-07-08
URL www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 52.89.240.103 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2025-06-27 Last Seen 2025-07-08 Times Seen 279 Size 242 B (242 bytes) MD5 0f61a9f4d31b2593748e96784bf99ad2 SHA1 3963bc15ed1e56551f908101c2903c041fd32594 SHA256 2f5a2345dd13747570492bcfaa92d6013ca940b733ea89d221cd703775fa3999 Format Code Loading...

	www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	13 kB	2025-07-03	2025-07-03
URL www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 52.89.240.103 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 13 kB (13182 bytes) MD5 12ba913f2717d3b602dd3ba6cd6945b7 SHA1 c73d7b2993c37645974f2d0b3f349f2f889df3e8 SHA256 cd4574d3179e51cb9188b7352a9f46ca244eeb43bb47c5e0e5ab00b7d21b3690 Format Code Loading...

	www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	13 kB	2025-07-03	2025-07-03
URL www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 198.49.23.145 #53831 SQUARESPACE Introduced by ScriptElement Embedded true Resource Info First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 13 kB (13182 bytes) MD5 12ba913f2717d3b602dd3ba6cd6945b7 SHA1 c73d7b2993c37645974f2d0b3f349f2f889df3e8 SHA256 cd4574d3179e51cb9188b7352a9f46ca244eeb43bb47c5e0e5ab00b7d21b3690 Format Code Loading...

	www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	25 B	2024-07-09	2025-08-01
URL www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 198.49.23.145 #53831 SQUARESPACE Introduced by ScriptElement Embedded true Resource Info First Seen 2024-07-09 Last Seen 2025-08-01 Times Seen 520 Size 25 B (25 bytes) MD5 c1b0cc854f3a9c5fd5f206cb9e8f7ac6 SHA1 cc2a161623ca4ac873391b512bdbbfad0f70e01b SHA256 3a33232270c8b417f9c1a24a20c34540b33cd4ef83938095c8c08790ce08eddd Format Code Loading...

	www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	25 B	2024-07-09	2025-08-01
URL www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 52.89.240.103 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2024-07-09 Last Seen 2025-08-01 Times Seen 520 Size 25 B (25 bytes) MD5 c1b0cc854f3a9c5fd5f206cb9e8f7ac6 SHA1 cc2a161623ca4ac873391b512bdbbfad0f70e01b SHA256 3a33232270c8b417f9c1a24a20c34540b33cd4ef83938095c8c08790ce08eddd Format Code Loading...

	www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	129 B	2025-06-22	2025-07-10
URL www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 52.89.240.103 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2025-06-22 Last Seen 2025-07-10 Times Seen 5 Size 129 B (129 bytes) MD5 2a06af69903395fda9af7be317b1c74e SHA1 f6fe490ea3ef4a49e7afa4b3b87ccc12334280de SHA256 8db68d4cfa6c6cc34a196d72b4a14edd6e9ca1df407a4f25f77580cea0d2ded3 Format Code Loading...

	www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	36 B	2023-03-07	2025-08-02
URL www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 52.89.240.103 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2023-03-07 Last Seen 2025-08-02 Times Seen 3491 Size 36 B (36 bytes) MD5 601c0c3e24e3606964ca32d91379dce9 SHA1 2c152d5e3710bc557ad3ee0ec7b20f130b94f485 SHA256 20f8600ab480a8bff52bfb40664d6957de6a16cbc27de2fc82fa885f04894d35 Format Code Loading...

	gist.github.com/zdi-team/4de8270fd273655d4a747ba8d1e7f98c.js	ScriptElement	9.4 kB	2025-07-03	2025-07-03
URL gist.github.com/zdi-team/4de8270fd273655d4a747ba8d1e7f98c.js IP / ASN 140.82.121.4 #36459 GITHUB Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 9.4 kB (9391 bytes) MD5 aeeddc86c434306091a3d7325a19c76f SHA1 874c6f60225a6d9fa3c142856d84098f2b742cb0 SHA256 a1cdff1eac943e10c5175872c45211faa2a8956e6c9bbb279bfbd42646afeff7 Format Code Loading...

	www.zerodayinitiative.com/js/main.js	ScriptElement	43 kB	2025-06-22	2025-07-10
URL www.zerodayinitiative.com/js/main.js IP / ASN 52.89.240.103 #16509 AMAZON-02 Introduced by ScriptElement Embedded false Resource Info First Seen 2025-06-22 Last Seen 2025-07-10 Times Seen 6 Size 43 kB (43179 bytes) MD5 d96ee77742cbf3427b6d4ce42480cff7 SHA1 b573321dff702f4bc87f0d816e28701191b9d009 SHA256 de360daa34474ce81acf8a81e3f513dca4a1f62d3c55064ab8b49af69f1c60cc Format Code Loading...

	www.googletagmanager.com/gtag/js?id=UA-93169700-1	ScriptElement	286 kB	2025-07-03	2025-07-03
URL www.googletagmanager.com/gtag/js?id=UA-93169700-1 IP / ASN 142.250.74.136 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 286 kB (285747 bytes) MD5 8b677abac080b30da815b0bc980e34c1 SHA1 819da63fc25b65b8deb4464631624d32cb449b82 SHA256 62990a239d990bc519b691a17c93dc2720530b832b333e49e0bba74a8d4f9491 Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/3413-a388676b07149ff2-min.en-US.js	ScriptElement	9.7 kB	2025-07-02	2025-07-08
URL assets.squarespace.com/universal/scripts-compressed/3413-a388676b07149ff2-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-02 Last Seen 2025-07-08 Times Seen 186 Size 9.7 kB (9712 bytes) MD5 84ab77f0303bc5088b97469061ebc179 SHA1 0d06cca4b6b9d47183a4283bc85aed5afa3bce71 SHA256 ccf3a50eef88fd31a0ebc9d97513d6e3b37648dbaddb54e33623b94ecb17c581 Format Code Loading...

	www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	Function	37 B	2023-04-11	2025-08-02
URL www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 52.89.240.103 #16509 AMAZON-02 Introduced by Function Embedded false Resource Info First Seen 2023-04-11 Last Seen 2025-08-02 Times Seen 322029 Size 37 B (37 bytes) MD5 29d0c84b9d1d8da446a6062c6a840ad9 SHA1 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 SHA256 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Format Code Loading...

	www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	182 B	2025-06-22	2025-07-10
URL www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 52.89.240.103 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2025-06-22 Last Seen 2025-07-10 Times Seen 5 Size 182 B (182 bytes) MD5 cd690ba3eef84af5f9ffec8ee68303f3 SHA1 4f75c5c4294a35ef4c6d6de138e3949cc121d4ae SHA256 fc4b7fea163ba91703a6186fe625b661a6ca33cbd364be6d56f31dd381ea9a58 Format Code Loading...

	www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	16 B	2024-08-20	2025-07-11
URL www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 52.89.240.103 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2024-08-20 Last Seen 2025-07-11 Times Seen 13 Size 16 B (16 bytes) MD5 8a99b81226b65051473e53f07d128eb4 SHA1 22012aea339dccba23b8e65400fd8c5198407826 SHA256 319d1fceed63bfcc49fb79edac0c1e41f9668f3fc5b46bef2b65ee217fb3702c Format Code Loading...

	gist.github.com/zdi-team/4495d426117a2818733d258aed0b6fa5.js	ScriptElement	8.0 kB	2025-07-03	2025-07-03
URL gist.github.com/zdi-team/4495d426117a2818733d258aed0b6fa5.js IP / ASN 140.82.121.4 #36459 GITHUB Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 8.0 kB (8004 bytes) MD5 05bbeb8a54d65dd1fabe71226c794e3f SHA1 73e8ceecee3ed82fcd8da985f8e26795ff271e89 SHA256 1283b5d2bdf0cc967291a37b17e89f66b3c584785c3a11ef3a6f5651d656e3a2 Format Code Loading...

	gist.github.com/zdi-team/7777cd879106a6c015db603b3107bb83.js	ScriptElement	8.1 kB	2025-07-03	2025-07-03
URL gist.github.com/zdi-team/7777cd879106a6c015db603b3107bb83.js IP / ASN 140.82.121.4 #36459 GITHUB Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 8.1 kB (8116 bytes) MD5 3161d8d8ce2a4feef288c9f0413da700 SHA1 310e29ea5bc334f9a4e513f789dc1d36ca33dd26 SHA256 8b32e49a30a2ca324b4321b47349102910938bf074c0413f5f9bb1d15127083a Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/async-gdpr-cookie-banner-292ec302d21a04d6-min.en-US.js	ScriptElement	22 kB	2025-07-02	2025-07-06
URL assets.squarespace.com/universal/scripts-compressed/async-gdpr-cookie-banner-292ec302d21a04d6-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-02 Last Seen 2025-07-06 Times Seen 57 Size 22 kB (21967 bytes) MD5 1250cfdba04777db0348f87dbed2e469 SHA1 98548a96ab13d575c20b3c0a2ac771bf5b3fba82 SHA256 8cf2b2396503036c6b8f4c14eb8d3456e0048f89e163ebf52f54e5c553d20907 Format Code Loading...

	www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	66 B	2023-03-08	2025-08-01
URL www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 52.89.240.103 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2023-03-08 Last Seen 2025-08-01 Times Seen 644 Size 66 B (66 bytes) MD5 70f7fff26032498282dcf1adcfaef8d0 SHA1 ba04ef7d640bea4d5e968a667b6b043767320dd9 SHA256 0749a6cc61f598ee49fdeb5f4990b48aef8915cf3bdad118cf2854f8cf0a715f Format Code Loading...

	assets.squarespace.com/@sqs/polyfiller/1.6/modern.js	ScriptElement	118 kB	2023-04-05	2025-08-02
URL assets.squarespace.com/@sqs/polyfiller/1.6/modern.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2023-04-05 Last Seen 2025-08-02 Times Seen 4963 Size 118 kB (117609 bytes) MD5 93a2aea230d421d550375c528b22583e SHA1 e8d88b00db1c30510928a7c6618f0f7cffa9b4c2 SHA256 54e832663426c696b1f603379026e5e15720e8c812bbbc60d63aa2ad8a479f75 Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/user-account-core-b5d50421c99adbc8-min.en-US.js	ScriptElement	227 kB	2025-07-03	2025-07-06
URL assets.squarespace.com/universal/scripts-compressed/user-account-core-b5d50421c99adbc8-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-03 Last Seen 2025-07-06 Times Seen 17 Size 227 kB (226842 bytes) MD5 b1325fca66a2338039c2f075d4ea6593 SHA1 3d89887952fe617ad2ec107b76291ea67640e570 SHA256 a24d0f89faaafb41a87cb96be1e5c9fda1ec81c52b72ab630d1a043a3da572e8 Format Code Loading...

	www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	29 B	2023-03-07	2025-08-01
URL www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 52.89.240.103 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2023-03-07 Last Seen 2025-08-01 Times Seen 597 Size 29 B (29 bytes) MD5 719ee01870b508d0b034b8ed51515f27 SHA1 149d8623595f393195882ccf97c6daedf690bba2 SHA256 a0bedd0351ff7370c92b7a3a26427f1da78e499ac26a32af3ad80a615685246f Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/extract-css-runtime-08144866cf3f6748-min.en-US.js	ScriptElement	44 kB	2025-07-03	2025-07-04
URL assets.squarespace.com/universal/scripts-compressed/extract-css-runtime-08144866cf3f6748-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-03 Last Seen 2025-07-04 Times Seen 14 Size 44 kB (44340 bytes) MD5 97fd42c04bb2471096172c841066ecbb SHA1 f4ed7b846a94cb8c26fe8c0e8dbb26f349187013 SHA256 a99b43c2c0782e16e4b1d7680eb79228b05a420ff6bcc3bfa87cf90d54f237ad Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/performance-4895744c4cbc41d8-min.en-US.js	ScriptElement	31 kB	2025-06-26	2025-07-08
URL assets.squarespace.com/universal/scripts-compressed/performance-4895744c4cbc41d8-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-06-26 Last Seen 2025-07-08 Times Seen 420 Size 31 kB (30869 bytes) MD5 a2c2e03ddf9432b7cc4da07065119885 SHA1 39d73b3ae52309db0b4a0a33aa7eff96245ba96e SHA256 cde778751c339d80ff6a6c29a1832f9055df1902e4a9f4dd27bbbb641f2bb079 Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/cldr-resource-pack-f88491ffe3410ea1-min.en-US.js	ScriptElement	90 kB	2025-06-16	2025-07-08
URL assets.squarespace.com/universal/scripts-compressed/cldr-resource-pack-f88491ffe3410ea1-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-06-16 Last Seen 2025-07-08 Times Seen 1112 Size 90 kB (89939 bytes) MD5 da31f59bac747ae5beb2e8ba05480a1d SHA1 a152f7ffdb018d8547c889f3adfd2e303057096f SHA256 c0acebaa232deab04d40ad7fbea1e1a2b4995792f0f521b28562a2e0db47091d Format Code Loading...

	www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	ScriptElement	129 B	2025-06-22	2025-07-10
URL www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 198.49.23.145 #53831 SQUARESPACE Introduced by ScriptElement Embedded true Resource Info First Seen 2025-06-22 Last Seen 2025-07-10 Times Seen 5 Size 129 B (129 bytes) MD5 2a06af69903395fda9af7be317b1c74e SHA1 f6fe490ea3ef4a49e7afa4b3b87ccc12334280de SHA256 8db68d4cfa6c6cc34a196d72b4a14edd6e9ca1df407a4f25f77580cea0d2ded3 Format Code Loading...

	assets.squarespace.com/universal/scripts-compressed/common-vendors-9b8bee2d8b8b215b-min.en-US.js	ScriptElement	714 kB	2025-06-26	2025-07-08
URL assets.squarespace.com/universal/scripts-compressed/common-vendors-9b8bee2d8b8b215b-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-06-26 Last Seen 2025-07-08 Times Seen 455 Size 714 kB (714548 bytes) MD5 33bfa0423bea7116e570f5e27d2d1b61 SHA1 0d55fc73e8818c3ac4b4a9ed942669a671fcb3ce SHA256 e7caba5ffedda0ff79d76813c19308387d21b216c56c96f34d7b84765c070120 Format Code Loading...

	HASH	FROM	Size	First Seen	Last Seen
	94066c9a515cab66ae17ced045a5dfdd	DocumentWrite	8.8 kB	2025-07-03	2025-07-03
Introduced by DocumentWrite First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 8.8 kB (8751 bytes) MD5 94066c9a515cab66ae17ced045a5dfdd SHA1 0f097a8aaacb1755f20217511edf957e71169ba4 SHA256 abb4d0db5313544f0cfdba47d3b20f5d1237662329fef760b5cb38c326304ae0 Format Code Loading...

	2adc752c99d263918a4efceeeaf086f7	DocumentWrite	7.5 kB	2025-07-03	2025-07-03
Introduced by DocumentWrite First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 7.5 kB (7537 bytes) MD5 2adc752c99d263918a4efceeeaf086f7 SHA1 071051199a28efd5e855c035a4d89aaf22a19068 SHA256 3ef6c9e765ef8d3b046ddcb7d16ad6b845ddeea579557ffc10fc788894865ea4 Format Code Loading...

	f1c932c26bb4d694c40f2ac64da308e7	DocumentWrite	97 B	2025-07-03	2025-07-03
Introduced by DocumentWrite First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 97 B (97 bytes) MD5 f1c932c26bb4d694c40f2ac64da308e7 SHA1 40bb172f8697cb45ceeb5da86ba913c43d5a61e8 SHA256 6d29053cd0b73c8f228b643a5c14cda3e076c6de710ccc7e24f85c10a09e0135 Format Code Loading...

	afea494649d639ab22aeb8d038dfd1d7	DocumentWrite	5.1 kB	2025-07-03	2025-07-03
Introduced by DocumentWrite First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 5.1 kB (5077 bytes) MD5 afea494649d639ab22aeb8d038dfd1d7 SHA1 e34a63a15c023f647949587f7d4dd77f5cf1e3f5 SHA256 69c2703028683c598d1ddf0f54d0409ce49d5e79af82a345e8781e239eec99d6 Format Code Loading...

	f959f71f63becc905570e3e8cfe3eb5d	DocumentWrite	8.4 kB	2025-07-03	2025-07-03
Introduced by DocumentWrite First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 8.4 kB (8355 bytes) MD5 f959f71f63becc905570e3e8cfe3eb5d SHA1 4034c9f41047affe491a11158d398118c1da4199 SHA256 6d9c5d84df8dfde2cb52ddeec7880e212570324a0bcd5733bca81e80bc8637b2 Format Code Loading...

	e896f83c552f2825c456a8f656ef849f	DocumentWrite	18 kB	2025-07-03	2025-07-03
Introduced by DocumentWrite First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 18 kB (18361 bytes) MD5 e896f83c552f2825c456a8f656ef849f SHA1 d5c7a4e1aa8e57548b20a20896e8195a9fcb10f7 SHA256 e5ca9d837b112a73ed4e664acc078a6feef176035f06328ef112fa8ca3765223 Format Code Loading...

	ef677a8c52c056191a57b4e0e981f734	DocumentWrite	7.5 kB	2025-07-03	2025-07-03
Introduced by DocumentWrite First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 7.5 kB (7544 bytes) MD5 ef677a8c52c056191a57b4e0e981f734 SHA1 6100eb5ede676dfe0f980abb0627ca38908e25ff SHA256 5638eba0e05ec95d79caa50eb027008eddf0a8103c11a387e13cb0e7567cf41d Format Code Loading...

	da102a16c09c793ed4852bfbc67c252e	DocumentWrite	7.5 kB	2025-07-03	2025-07-03
Introduced by DocumentWrite First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 7.5 kB (7546 bytes) MD5 da102a16c09c793ed4852bfbc67c252e SHA1 1d7700d996589868a8a4f5b7d75ee3265666c222 SHA256 af40931ab8b39808617ab24e01c096cf99d9906c1840263b5d96f1498e34d0db Format Code Loading...

	d57b146e677ad573d3e1afd46b50e0f4	DocumentWrite	7.4 kB	2025-07-03	2025-07-03
Introduced by DocumentWrite First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 7.4 kB (7449 bytes) MD5 d57b146e677ad573d3e1afd46b50e0f4 SHA1 c1478a385f7e0acddaf041b1bebb3474c49b4a5c SHA256 aad31ccb074c0771588988d088aec44805682b874469c1f8ec7e811bfa061f39 Format Code Loading...

	c4584f6a399de4f153f98ab2a78da143	DocumentWrite	5.1 kB	2025-07-03	2025-07-03
Introduced by DocumentWrite First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 5.1 kB (5077 bytes) MD5 c4584f6a399de4f153f98ab2a78da143 SHA1 108a69d9d9189ed617ab8af1148e114f7c95f52a SHA256 417498710939534ad10f597c264f220baab5bf103abe6d238543a03771b2b9dd Format Code Loading...

	c707243c9c729438f12f751769f1bdb6	DocumentWrite	7.4 kB	2025-07-03	2025-07-03
Introduced by DocumentWrite First Seen 2025-07-03 Last Seen 2025-07-03 Times Seen 1 Size 7.4 kB (7449 bytes) MD5 c707243c9c729438f12f751769f1bdb6 SHA1 124e2ccfe074ece9ec96801d2f66ab60349ae69c SHA256 eb38ccda3b8f6e09c31a0ba19ba2d33802c1214632e673a08878fab2db833c52 Format Code Loading...

HTTP Transactions (55)

	URL	IP	Response	Size
	GET www.zerodayinitiative.com/images/masterhead_home.jpg	52.89.240.103	200 OK	103 kB
URL www.zerodayinitiative.com/images/masterhead_home.jpg IP / ASN 52.89.240.103 #16509 AMAZON-02 Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2880x900, components 3 First Seen2023-11-20 Last Seen2025-07-11 Times Seen8 Size103 kB (103030 bytes) MD55d966a8e50d60ee3825a77524b083b8c SHA1740ab25534cc6548d4652c36915c09e78bc8ea29 SHA2568989b3c8db91f5bb59dde43abd223acbc014aab0d7ea0b1b98c0bb5d56cd2631 Certificate Info IssuerEntrust, Inc. Subject.zerodayinitiative.com Fingerprint96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF ValidityTue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT HTTP Headers GET /images/masterhead_home.jpg HTTP/1.1 Host: www.zerodayinitiative.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/css/main.css Cookie: crumb=BUG3viPUjPBJYjZlZTI0OWE3ZTdmZDMyZjFmOGZlYzQxYTYzNDAy Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 03 Jul 2025 08:57:07 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains Last-Modified: Fri, 05 Jan 2024 18:38:08 GMT ETag: "19276-60e3726404400" Accept-Ranges: bytes Content-Length: 103030 Keep-Alive: timeout=5, max=96 Connection: Keep-Alive Content-Type: image/jpeg`

	GET assets.squarespace.com/universal/styles-compressed/5fc7a936d9b12c49-min.en-US.css	151.101.128.237	200 OK	14 kB
URL assets.squarespace.com/universal/styles-compressed/5fc7a936d9b12c49-min.en-US.css IP / ASN 151.101.128.237 #54113 FASTLY Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeASCII text, with very long lines (13474), with no line terminators First Seen2025-02-28 Last Seen2025-08-02 Times Seen1901 Size14 kB (13474 bytes) MD59a71d6ae470fff6c31c3d2aa6baf7442 SHA1df74821784d0989a3bea7ec96706ccfdc0960fe0 SHA25678b444b351e26e4163232e6c43d28b3f242322e74d32fcfb789748b8a228e9da Certificate Info IssuerDigiCert Inc Subject.squarespace.com Fingerprint03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76 ValidityMon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT HTTP Headers `GET /universal/styles-compressed/5fc7a936d9b12c49-min.en-US.css HTTP/1.1 Host: assets.squarespace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css cache-control: public, max-age=31536000 expires: Mon, 29 Jun 2026 19:04:37 GMT last-modified: Thu, 06 Feb 2025 14:24:27 GMT etag: "dc2c7ced3f47a6282d63a75478de2e78" content-encoding: gzip server: UploadServer fastly-restarts: 1 accept-ranges: bytes date: Thu, 03 Jul 2025 08:57:07 GMT via: 1.1 varnish age: 199018 x-served-by: cache-hel1410024-HEL x-cache: HIT x-cache-hits: 10846 x-timer: S1751533028.889504,VS0,VE0 vary: Accept-Encoding access-control-allow-methods: GET, OPTIONS access-control-allow-origin: content-length: 1905 X-Firefox-Spdy: h2

	GET www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	198.49.23.145	200 OK	59 kB
URL www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 198.49.23.145 #53831 SQUARESPACE Requested byN/A Resource Info File typeHTML document, Unicode text, UTF-8 text, with very long lines (13418) First Seen2025-07-03 Last Seen2025-07-03 Times Seen1 Size59 kB (59261 bytes) MD56d80d42b3cb6377834bd20b6ea8895dc SHA16709bdbf202bf4a238aef7308322d700e134a71d SHA25645a7657fa6ea59800dec13a09ef762c852ab50a4a4c051cdd53fcb298ee00617 Certificate Info IssuerLet's Encrypt Subjectwww.thezdi.com FingerprintF7:B7:CF:A3:E4:09:5B:CF:F7:CC:B9:82:FA:04:08:99:4F:E6:F7:32 ValidityWed, 28 May 2025 03:28:41 GMT - Tue, 26 Aug 2025 03:28:40 GMT HTTP Headers GET /blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability HTTP/1.1 Host: www.thezdi.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK accept-ranges: bytes age: 0 content-encoding: gzip content-type: text/html;charset=utf-8 date: Thu, 03 Jul 2025 08:56:49 GMT etag: W/"4369142a72b5d4ea4545c2b8e35806b9" expires: Thu, 01 Jan 1970 00:00:00 GMT server: Squarespace set-cookie: crumb=BU2lo0nu+TVgNDc5MzJlMjBjOWU0ZmM1MWFiOTc2ZjU0YmU1MWMw;Secure;Path=/ strict-transport-security: max-age=15552000 vary: Accept-Encoding x-content-type-options: nosniff x-contextid: Xuc1T2bI/hYQvNCeM content-length: 14239 X-Firefox-Spdy: h2`

	GET www.thezdi.com/images/logo-trend.svg	198.49.23.145	404 Not Found	28 kB
URL www.thezdi.com/images/logo-trend.svg IP / ASN 198.49.23.145 #53831 SQUARESPACE Requested byhttps://www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeHTML document, ASCII text, with very long lines (12954) First Seen2025-07-03 Last Seen2025-07-03 Times Seen1 Size28 kB (27610 bytes) MD578959c468437f029a20c7a3c632cc77e SHA129b1de13cd003d4ad14a12300432012ba734d5bc SHA256c7f9d341f2efb4a12df3832c07e654f04df9663556f238ff13c97f4b2db0c4b3 Certificate Info IssuerLet's Encrypt Subjectwww.thezdi.com FingerprintF7:B7:CF:A3:E4:09:5B:CF:F7:CC:B9:82:FA:04:08:99:4F:E6:F7:32 ValidityWed, 28 May 2025 03:28:41 GMT - Tue, 26 Aug 2025 03:28:40 GMT HTTP Headers GET /images/logo-trend.svg HTTP/1.1 Host: www.thezdi.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Cookie: crumb=BU2lo0nu+TVgNDc5MzJlMjBjOWU0ZmM1MWFiOTc2ZjU0YmU1MWMw Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 404 Not Found age: 0 content-encoding: gzip content-type: text/html;charset=utf-8 date: Thu, 03 Jul 2025 08:56:49 GMT etag: W/"ff5c10996795cc5784cc551eaa6ecb1d" expires: Thu, 01 Jan 1970 00:00:00 GMT server: Squarespace strict-transport-security: max-age=15552000 vary: Accept-Encoding x-content-type-options: nosniff x-contextid: Xuc1T2bI/XUbmCwWN content-length: 7759 X-Firefox-Spdy: h2`

	GET assets.squarespace.com/universal/scripts-compressed/common-cc69da0a4570b097-min.en-US.js	151.101.128.237	200 OK	1.1 MB
URL assets.squarespace.com/universal/scripts-compressed/common-cc69da0a4570b097-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJavaScript source, ASCII text, with very long lines (38557) First Seen2025-07-02 Last Seen2025-07-06 Times Seen56 Size1.1 MB (1102110 bytes) MD55fe59bf0b89e004644df3dfd9c62cfc2 SHA10aba4e831dace2c49eaf703c2884cd6700b81100 SHA2563c3f6b99e405609991dd3539b386b27269997d820f72d7e6599e8bda06dd34c9 Certificate Info IssuerDigiCert Inc Subject.squarespace.com Fingerprint03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76 ValidityMon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT HTTP Headers GET /universal/scripts-compressed/common-cc69da0a4570b097-min.en-US.js HTTP/1.1 Host: assets.squarespace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.zerodayinitiative.com DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/javascript cache-control: public, max-age=31536000 expires: Thu, 02 Jul 2026 19:25:51 GMT last-modified: Wed, 02 Jul 2025 18:40:58 GMT etag: "d4d1a304a2a9fc94851d628db10234ad" content-encoding: br server: UploadServer via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Thu, 03 Jul 2025 08:57:06 GMT age: 48674 x-served-by: cache-iad-kiad7000097-IAD, cache-hel1410031-HEL x-cache: HIT, HIT x-cache-hits: 86, 1133 x-timer: S1751533026.148456,VS0,VE0 vary: Accept-Encoding access-control-allow-methods: GET, OPTIONS access-control-allow-origin: * content-length: 279168 X-Firefox-Spdy: h2

	GET assets.squarespace.com/universal/scripts-compressed/common-vendors-stable-54bab8bb8a15366b-min.en-US.js	151.101.128.237	200 OK	246 kB
URL assets.squarespace.com/universal/scripts-compressed/common-vendors-stable-54bab8bb8a15366b-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJavaScript source, ASCII text, with very long lines (53547) First Seen2025-05-20 Last Seen2025-08-02 Times Seen1474 Size246 kB (246255 bytes) MD57c8a3a52b33a7338d9a751c537edb7f4 SHA1f386c350d3925e350724ae2eaaa37ab4a38557bb SHA256e5b671d1a1c6c1e11f07199ae4769339436a51f356a9b8932401db0476a35a06 Certificate Info IssuerDigiCert Inc Subject.squarespace.com Fingerprint03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76 ValidityMon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT HTTP Headers GET /universal/scripts-compressed/common-vendors-stable-54bab8bb8a15366b-min.en-US.js HTTP/1.1 Host: assets.squarespace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.zerodayinitiative.com DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/javascript cache-control: public, max-age=31536000 expires: Wed, 20 May 2026 17:13:20 GMT last-modified: Mon, 03 Mar 2025 17:42:11 GMT etag: "b5e8bb8840351ba3e9c298877099090e" content-encoding: br server: UploadServer via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Thu, 03 Jul 2025 08:57:06 GMT age: 1385439 x-served-by: cache-iad-kcgs7200034-IAD, cache-hel1410031-HEL x-cache: HIT, HIT x-cache-hits: 25883, 41405 x-timer: S1751533026.152254,VS0,VE0 vary: Accept-Encoding access-control-allow-methods: GET, OPTIONS access-control-allow-origin: * content-length: 70731 X-Firefox-Spdy: h2

	GET assets.squarespace.com/universal/scripts-compressed/4611-ff8218ae9d5ad9b5-min.en-US.js	151.101.128.237	200 OK	12 kB
URL assets.squarespace.com/universal/scripts-compressed/4611-ff8218ae9d5ad9b5-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJavaScript source, ASCII text, with very long lines (9442) First Seen2025-07-02 Last Seen2025-07-06 Times Seen59 Size12 kB (12000 bytes) MD5e6a6414ca3422462f25e666c5c829960 SHA19f95a78ebd2ffefd3f6906fc1ad9d30b72fbf88b SHA256bd50ada37b6ee74b311a3e3d7e8381cbd0310bd0575371e121d5bc1eab9e9195 Certificate Info IssuerDigiCert Inc Subject.squarespace.com Fingerprint03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76 ValidityMon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT HTTP Headers `GET /universal/scripts-compressed/4611-ff8218ae9d5ad9b5-min.en-US.js HTTP/1.1 Host: assets.squarespace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/javascript cache-control: public, max-age=31536000 expires: Thu, 02 Jul 2026 13:59:14 GMT last-modified: Tue, 01 Jul 2025 19:47:18 GMT etag: "8160d8f59755177982acdcb4cfd5683a" content-encoding: br server: UploadServer via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Thu, 03 Jul 2025 08:57:07 GMT age: 68273 x-served-by: cache-iad-kcgs7200170-IAD, cache-hel1410024-HEL x-cache: HIT, HIT x-cache-hits: 36, 1833 x-timer: S1751533028.877624,VS0,VE0 vary: Accept-Encoding access-control-allow-methods: GET, OPTIONS access-control-allow-origin: * content-length: 3570 X-Firefox-Spdy: h2

	POST www.zerodayinitiative.com/api/census/RecordHit	52.89.240.103	200 OK	17 B
URL www.zerodayinitiative.com/api/census/RecordHit IP / ASN 52.89.240.103 #16509 AMAZON-02 Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJSON text data First Seen2023-04-05 Last Seen2025-08-02 Times Seen25547 Size17 B (17 bytes) MD55b64e8b89092b2e3dfd448b10700627f SHA1484b3032619fa1acd135d114565b0a5166281c22 SHA256f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4 Certificate Info IssuerEntrust, Inc. Subject.zerodayinitiative.com Fingerprint96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF ValidityTue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT HTTP Headers POST /api/census/RecordHit HTTP/1.1 Host: www.zerodayinitiative.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded; charset=utf-8 X-CSRF-Token: BUG3viPUjPBJYjZlZTI0OWE3ZTdmZDMyZjFmOGZlYzQxYTYzNDAy Content-Length: 1005 Origin: https://www.zerodayinitiative.com DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Cookie: crumb=BUG3viPUjPBJYjZlZTI0OWE3ZTdmZDMyZjFmOGZlYzQxYTYzNDAy; _ga_DBFMYZ5KK8=GS2.1.s1751533027$o1$g0$t1751533027$j60$l0$h0; _ga=GA1.1.1623553884.1751533028; ss_cvr=7880bf19-799e-4e3f-aec0-b1e30d5b1143\|1751533027822\|1751533027822\|1751533027822\|1; ss_cvt=1751533027822 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 03 Jul 2025 08:57:08 GMT Server: Squarespace Strict-Transport-Security: max-age=31536000; includeSubDomains Accept-Ranges: bytes Age: 0 Content-Type: application/json;charset=utf-8 X-Content-Type-Options: nosniff X-Contextid: hn9ntXhi/RpmXMFCm Content-Length: 17 Keep-Alive: timeout=5, max=95 Connection: Keep-Alive`

	GET gist.github.com/zdi-team/21e87d7e6457dce089c08b08f7ecbe5b.js	140.82.121.4	200 OK	20 kB
URL gist.github.com/zdi-team/21e87d7e6457dce089c08b08f7ecbe5b.js IP / ASN 140.82.121.4 #36459 GITHUB Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeHTML document, ASCII text, with very long lines (19411) First Seen2025-07-03 Last Seen2025-07-03 Times Seen1 Size20 kB (19528 bytes) MD574aad3d10d30f83a19106c36bd064609 SHA1fbc61dbbf7b989385b8dbff757da2e25c60038da SHA256b5a79ddd9f4a28bc37b16ffde906671aafda474646d687e1fb09e3b2646469c5 Certificate Info IssuerSectigo Limited Subject.github.com Fingerprint7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2 ValidityWed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT HTTP Headers `GET /zdi-team/21e87d7e6457dce089c08b08f7ecbe5b.js HTTP/1.1 Host: gist.github.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 03 Jul 2025 08:57:04 GMT content-type: text/javascript; charset=utf-8 vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With etag: W/"b5a79ddd9f4a28bc37b16ffde906671a" cache-control: max-age=0, private, must-revalidate strict-transport-security: max-age=31536000; includeSubdomains; preload x-frame-options: deny x-content-type-options: nosniff x-xss-protection: 0 referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com .rel.tunnels.api.visualstudio.com wss://.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com .actions.githubusercontent.com wss://.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/ server: github.com content-encoding: gzip accept-ranges: bytes set-cookie: _gh_sess=Cd26v6swnOk9NU1GeFmUZ9NztHhpsUX8%2FWNqeCSFLcBcE%2BOtYlHfdUTICihXHR4xZc938xw%2By8iAIQT%2BHIfahpG9Q7ZwJI0RYXRYF8HZLON96mlFP3QXwpY%2Fm32x9WYb5cJF5DgfHlrxc1Pf%2FLHO7fW3%2F5YUd5zGjFtRuhTORSqdB2cNdOXrmjTmjg6GSmfEhdlVbRWZ%2BeqdtONYGRAMXQSKygZcjadnGlk21StRv1snSN75nR3hcLjXduC0JLBB34u144kV6aU00hZTEVb3hg%3D%3D--64gMBeFR%2F8PhelpW--vYpg8tlOk8syV184A%2Bg4YA%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax _octo=GH1.1.1136571659.1751533026; Path=/; Domain=github.com; Expires=Fri, 03 Jul 2026 08:57:06 GMT; Secure; SameSite=Lax logged_in=no; Path=/; Domain=github.com; Expires=Fri, 03 Jul 2026 08:57:06 GMT; HttpOnly; Secure; SameSite=Lax content-length: 2818 x-github-request-id: 9328:7EC2C:4624597:483F3E1:686645E2 X-Firefox-Spdy: h2

	GET www.zerodayinitiative.com/images/logo-scarab.svg	52.89.240.103	200 OK	3.4 kB
URL www.zerodayinitiative.com/images/logo-scarab.svg IP / ASN 52.89.240.103 #16509 AMAZON-02 Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeSVG Scalable Vector Graphics image First Seen2025-06-21 Last Seen2025-07-11 Times Seen13 Size3.4 kB (3439 bytes) MD54059e68c425880461039ac1b8cc72eed SHA1a5dc2c4b614ec6b02315ec4c1711d61832e2f919 SHA2562923568e832eab200a966df39cbb09f45190709da9d83a4f2e27899e082af4cc Certificate Info IssuerEntrust, Inc. Subject.zerodayinitiative.com Fingerprint96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF ValidityTue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT HTTP Headers GET /images/logo-scarab.svg HTTP/1.1 Host: www.zerodayinitiative.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Cookie: crumb=BUG3viPUjPBJYjZlZTI0OWE3ZTdmZDMyZjFmOGZlYzQxYTYzNDAy Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 03 Jul 2025 08:57:06 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains Last-Modified: Mon, 10 Feb 2025 14:50:02 GMT ETag: "d6f-62dcad2b53a80" Accept-Ranges: bytes Content-Length: 3439 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: image/svg+xml`

	GET assets.squarespace.com/universal/scripts-compressed/83028-55fff1ade4c91616-min.en-US.js	151.101.128.237	200 OK	13 kB
URL assets.squarespace.com/universal/scripts-compressed/83028-55fff1ade4c91616-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJavaScript source, ASCII text, with very long lines (12552) First Seen2025-07-02 Last Seen2025-07-06 Times Seen57 Size13 kB (12706 bytes) MD5f514a728d0f765dfcf734bb3a41bd895 SHA15b9df5ce8fc96feb93c09688b566ae15075ccfce SHA256a299f7fcbecee48b856e6382f96a993dab0b7e4694339dcb96ac09ec0fd99616 Certificate Info IssuerDigiCert Inc Subject.squarespace.com Fingerprint03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76 ValidityMon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT HTTP Headers `GET /universal/scripts-compressed/83028-55fff1ade4c91616-min.en-US.js HTTP/1.1 Host: assets.squarespace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/javascript cache-control: public, max-age=31536000 expires: Thu, 02 Jul 2026 16:00:52 GMT last-modified: Wed, 02 Jul 2025 15:57:02 GMT etag: "a789cb6576e4896fa1edeb42b0823f11" content-encoding: br server: UploadServer via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Thu, 03 Jul 2025 08:57:07 GMT age: 60976 x-served-by: cache-iad-kjyo7100050-IAD, cache-hel1410024-HEL x-cache: HIT, HIT x-cache-hits: 296, 1542 x-timer: S1751533028.884171,VS0,VE0 vary: Accept-Encoding access-control-allow-methods: GET, OPTIONS access-control-allow-origin: * content-length: 4271 X-Firefox-Spdy: h2

	GET www.zerodayinitiative.com/images/logo-zdi.svg	52.89.240.103	200 OK	2.8 kB
URL www.zerodayinitiative.com/images/logo-zdi.svg IP / ASN 52.89.240.103 #16509 AMAZON-02 Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeSVG Scalable Vector Graphics image First Seen2025-06-21 Last Seen2025-07-11 Times Seen13 Size2.8 kB (2790 bytes) MD595f54e8040003b1df7490f8c3008b958 SHA18afc85b3d24da74cd27a0c0c1f353893df53d49b SHA2566dcb6fe2cc1261bad2608042e7b33a5bf71b88a6b93dc7bd5d2c4dcb84b2f77b Certificate Info IssuerEntrust, Inc. Subject.zerodayinitiative.com Fingerprint96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF ValidityTue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT HTTP Headers GET /images/logo-zdi.svg HTTP/1.1 Host: www.zerodayinitiative.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Cookie: crumb=BUG3viPUjPBJYjZlZTI0OWE3ZTdmZDMyZjFmOGZlYzQxYTYzNDAy Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 03 Jul 2025 08:57:07 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains Last-Modified: Mon, 10 Feb 2025 14:50:02 GMT ETag: "ae6-62dcad2b53a80" Accept-Ranges: bytes Content-Length: 2790 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: image/svg+xml`

	GET gist.github.com/zdi-team/bed8f3c842e2bdc4f5795a33d468f479.js	140.82.121.4	200 OK	5.5 kB
URL gist.github.com/zdi-team/bed8f3c842e2bdc4f5795a33d468f479.js IP / ASN 140.82.121.4 #36459 GITHUB Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeHTML document, ASCII text, with very long lines (5396) First Seen2025-07-03 Last Seen2025-07-03 Times Seen1 Size5.5 kB (5513 bytes) MD5f5e844d08f3750e167d0fe2874f9394d SHA146059db324f272b5394f21e070803b60826b1202 SHA256f0828520ade112abcc64b9cce1dda9b3d4805cddfc572c2c428a582dbce1c976 Certificate Info IssuerSectigo Limited Subject.github.com Fingerprint7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2 ValidityWed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT HTTP Headers `GET /zdi-team/bed8f3c842e2bdc4f5795a33d468f479.js HTTP/1.1 Host: gist.github.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 03 Jul 2025 08:57:04 GMT content-type: text/javascript; charset=utf-8 vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With etag: W/"f0828520ade112abcc64b9cce1dda9b3" cache-control: max-age=0, private, must-revalidate strict-transport-security: max-age=31536000; includeSubdomains; preload x-frame-options: deny x-content-type-options: nosniff x-xss-protection: 0 referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com .rel.tunnels.api.visualstudio.com wss://.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com .actions.githubusercontent.com wss://.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/ server: github.com content-encoding: gzip accept-ranges: bytes set-cookie: _gh_sess=JyosmRfTqXvvQYqAduEY4sbh3k7pITEm%2F3r6i8UHNX4Gb%2BsVziYIFvBlrvXjmpd%2Bk65MUoAuUz7HrAZyC8fuTP8zEwv%2B9mbGA3KKSAvaAJBzZLCOIvtK1eM11yEPF%2Biwm93%2B1%2FDmY9dt3FYLymcm3R7Z03pP5XWd%2FOzLmndC%2FYg63Ut4jG7hfEZvfcphka9u4so33DHOPvjQcUc3G95V3N4PmK8xJo2c%2BMJ9ayFPQyGi%2BvMYPw2tyWWTuU0Mu%2Fu8qAFhnKpdw79HAPq%2Ba1rIvA%3D%3D--buS6B%2FTovsMyRPh%2B--vup98Z6NYiDiX6z%2BrEXizw%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax _octo=GH1.1.445385959.1751533026; Path=/; Domain=github.com; Expires=Fri, 03 Jul 2026 08:57:06 GMT; Secure; SameSite=Lax logged_in=no; Path=/; Domain=github.com; Expires=Fri, 03 Jul 2026 08:57:06 GMT; HttpOnly; Secure; SameSite=Lax content-length: 1580 x-github-request-id: 9328:7EC2C:4624597:483F3E0:686645E2 X-Firefox-Spdy: h2

	GET gist.github.com/zdi-team/da6aed7381b7a65422bc2a2e21ec7879.js	140.82.121.4	200 OK	8.1 kB
URL gist.github.com/zdi-team/da6aed7381b7a65422bc2a2e21ec7879.js IP / ASN 140.82.121.4 #36459 GITHUB Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeHTML document, ASCII text, with very long lines (7992) First Seen2025-07-03 Last Seen2025-07-03 Times Seen1 Size8.1 kB (8109 bytes) MD56d3e97dbf472435120e16cfb2b953e6c SHA15c35b057ac62b410459550fbf606c514e6d441c2 SHA256e6d5c489a707ef27d517b66d625d684a52c7caa1ccb25d31c8be325cc03eb42e Certificate Info IssuerSectigo Limited Subject.github.com Fingerprint7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2 ValidityWed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT HTTP Headers `GET /zdi-team/da6aed7381b7a65422bc2a2e21ec7879.js HTTP/1.1 Host: gist.github.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 03 Jul 2025 08:57:04 GMT content-type: text/javascript; charset=utf-8 vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With etag: W/"e6d5c489a707ef27d517b66d625d684a" cache-control: max-age=0, private, must-revalidate strict-transport-security: max-age=31536000; includeSubdomains; preload x-frame-options: deny x-content-type-options: nosniff x-xss-protection: 0 referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com .rel.tunnels.api.visualstudio.com wss://.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com .actions.githubusercontent.com wss://.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/ server: github.com content-encoding: gzip accept-ranges: bytes set-cookie: _gh_sess=OFd877xEKyPjg8MwsXp0OL2ld3OWH6v1GOMEquurv4yqVrLn0msTnn8s47SxBnrPWGxIrZM0d7tcgtFAzcKLWLByelRIdMY1gLwVrsK3S6M4D3oPD0WBdJuYLDQ%2F5nzoXMKz6ImYZJFe1IYVXU%2BINXBXm2IkC7%2B8MANUepcoXTnw1ruQSL4Mt1fLFO0Oy3P11KEhMm72GdjNUJanzqNythVgXvQE4uFTvvfBMwknW%2Be5Al2oK5k8mTTWXqRNPMo0E2THiFNWbV54ld8n5thpJw%3D%3D--N7YulsN1mqAVKXyU--EUudQ%2FJRMUH4GlNYGAeKBg%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax _octo=GH1.1.1778879626.1751533026; Path=/; Domain=github.com; Expires=Fri, 03 Jul 2026 08:57:06 GMT; Secure; SameSite=Lax logged_in=no; Path=/; Domain=github.com; Expires=Fri, 03 Jul 2026 08:57:06 GMT; HttpOnly; Secure; SameSite=Lax content-length: 1812 x-github-request-id: 9328:7EC2C:462455E:483F396:686645E2 X-Firefox-Spdy: h2

	GET fonts.googleapis.com/icon?family=Material+Icons	142.250.178.106	200 OK	565 B
URL fonts.googleapis.com/icon?family=Material+Icons IP / ASN 142.250.178.106 #15169 GOOGLE Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeASCII text First Seen2025-01-17 Last Seen2025-08-02 Times Seen10238 Size565 B (565 bytes) MD5736c83e15fc300de505f6ce9762a9396 SHA131c0f11ada78e92970ff42d990116d77c169c6d7 SHA256c31266310101d0b1607937a7baf07f1601b7637bd2373176696488a07d7b4302 Certificate Info IssuerGoogle Trust Services Subjectupload.video.google.com Fingerprint58:09:05:96:27:31:E2:3D:AB:89:AD:1C:2E:C3:03:82:B0:27:3D:86 ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT HTTP Headers `GET /icon?family=Material+Icons HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Thu, 03 Jul 2025 08:57:06 GMT date: Thu, 03 Jul 2025 08:57:06 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET www.googletagmanager.com/gtag/js?id=UA-93169700-1	142.250.74.136	200 OK	286 kB
URL www.googletagmanager.com/gtag/js?id=UA-93169700-1 IP / ASN 142.250.74.136 #15169 GOOGLE Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJavaScript source, ASCII text, with very long lines (5913) First Seen2025-07-03 Last Seen2025-07-03 Times Seen1 Size286 kB (285747 bytes) MD58b677abac080b30da815b0bc980e34c1 SHA1819da63fc25b65b8deb4464631624d32cb449b82 SHA25662990a239d990bc519b691a17c93dc2720530b832b333e49e0bba74a8d4f9491 Certificate Info IssuerGoogle Trust Services Subject.google-analytics.com Fingerprint79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT HTTP Headers `GET /gtag/js?id=UA-93169700-1 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Thu, 03 Jul 2025 08:57:06 GMT expires: Thu, 03 Jul 2025 08:57:06 GMT cache-control: private, max-age=900 last-modified: Thu, 03 Jul 2025 06:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0 cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0 report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],} server: Google Tag Manager content-length: 100390 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET www.zerodayinitiative.com/images/logo-combo.svg	52.89.240.103	200 OK	7.1 kB
URL www.zerodayinitiative.com/images/logo-combo.svg IP / ASN 52.89.240.103 #16509 AMAZON-02 Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeSVG Scalable Vector Graphics image First Seen2025-06-21 Last Seen2025-07-11 Times Seen13 Size7.1 kB (7141 bytes) MD5882fe247cb59d8543f6462ff353d61c4 SHA1b051b02b59012700dac228a79618eca5818ea0b6 SHA25645204ae91c0663056ada37848f2a086b5ab10ef732f267afafdc03015db7458b Certificate Info IssuerEntrust, Inc. Subject.zerodayinitiative.com Fingerprint96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF ValidityTue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT HTTP Headers GET /images/logo-combo.svg HTTP/1.1 Host: www.zerodayinitiative.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Cookie: crumb=BUG3viPUjPBJYjZlZTI0OWE3ZTdmZDMyZjFmOGZlYzQxYTYzNDAy Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 03 Jul 2025 08:57:06 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains Last-Modified: Mon, 10 Feb 2025 14:50:02 GMT ETag: "1be5-62dcad2b53a80" Accept-Ranges: bytes Content-Length: 7141 Keep-Alive: timeout=5, max=97 Connection: Keep-Alive Content-Type: image/svg+xml`

	GET fonts.googleapis.com/css?family=Titillium+Web:300,400,600,700	142.250.178.106	200 OK	3.4 kB
URL fonts.googleapis.com/css?family=Titillium+Web:300,400,600,700 IP / ASN 142.250.178.106 #15169 GOOGLE Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeASCII text First Seen2025-06-05 Last Seen2025-07-24 Times Seen51 Size3.4 kB (3352 bytes) MD51a551a05a8f167b0da20d1d1b8312d7c SHA1cd7f2f748eca0a5a03d45a91d33f2b3c3351526b SHA256e8b848361a581e70b1e06a07124735ea78b8a56257cfa8c0ed0b81fdbaf9c7f0 Certificate Info IssuerGoogle Trust Services Subjectupload.video.google.com Fingerprint58:09:05:96:27:31:E2:3D:AB:89:AD:1C:2E:C3:03:82:B0:27:3D:86 ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT HTTP Headers `GET /css?family=Titillium+Web:300,400,600,700 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Thu, 03 Jul 2025 08:57:06 GMT date: Thu, 03 Jul 2025 08:57:06 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET gist.github.com/zdi-team/b0aa1b0be866b5a1ac9e83120590478a.js	140.82.121.4	200 OK	5.5 kB
URL gist.github.com/zdi-team/b0aa1b0be866b5a1ac9e83120590478a.js IP / ASN 140.82.121.4 #36459 GITHUB Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeHTML document, ASCII text, with very long lines (5396) First Seen2025-07-03 Last Seen2025-07-03 Times Seen1 Size5.5 kB (5513 bytes) MD5a957a7f4202e6eabfa5542dbeec5bf78 SHA179f7cfa5afb5d30f1a9787c79a14d4942db5a286 SHA256a2096076d7973728827ae52f7d70561205dc576649ff8dfe47ad7d1c98780885 Certificate Info IssuerSectigo Limited Subject.github.com Fingerprint7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2 ValidityWed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT HTTP Headers `GET /zdi-team/b0aa1b0be866b5a1ac9e83120590478a.js HTTP/1.1 Host: gist.github.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 03 Jul 2025 08:57:04 GMT content-type: text/javascript; charset=utf-8 vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With etag: W/"a2096076d7973728827ae52f7d705612" cache-control: max-age=0, private, must-revalidate strict-transport-security: max-age=31536000; includeSubdomains; preload x-frame-options: deny x-content-type-options: nosniff x-xss-protection: 0 referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com .rel.tunnels.api.visualstudio.com wss://.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com .actions.githubusercontent.com wss://.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/ server: github.com content-encoding: gzip accept-ranges: bytes set-cookie: _gh_sess=J5pQpRl5vyn6m05ntOlRD5KIXzTBRaIdkq%2BHjj%2FN7OqnC8gxIDJcEcZKitfk9iow9rT9pA0WP7q56GWqakEaXfFrcfiJz1DbWVyzKXGdBXFYbwyblvsQMGjhrGCj03G001jQj4D4jXCwqfZQFmlBAfidOEJkkvngh50cy3%2B0qKsWN2kBrPUj73SepgQAfG8F8to%2FPlPPaO6dbJp3si12QX2lwlpvl2aYPxxpjU7cAJ9ci%2BBRgkNIwb1Jz5xp0cTPj%2FC5kxmQMEYlJiBs2Fs0ZQ%3D%3D--hMZjsdGXe6A1b5e9--Y0LCTigF86fC0dhwAbyHXQ%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax _octo=GH1.1.56814943.1751533026; Path=/; Domain=github.com; Expires=Fri, 03 Jul 2026 08:57:06 GMT; Secure; SameSite=Lax logged_in=no; Path=/; Domain=github.com; Expires=Fri, 03 Jul 2026 08:57:06 GMT; HttpOnly; Secure; SameSite=Lax content-length: 1581 x-github-request-id: 9328:7EC2C:462455D:483F394:686645E2 X-Firefox-Spdy: h2

	GET fonts.gstatic.com/s/titilliumweb/v18/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2	142.250.178.67	200 OK	12 kB
URL fonts.gstatic.com/s/titilliumweb/v18/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2 IP / ASN 142.250.178.67 #15169 GOOGLE Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeWeb Open Font Format (Version 2), TrueType, length 12344, version 1.0 First Seen2025-06-03 Last Seen2025-08-01 Times Seen457 Size12 kB (12344 bytes) MD5cfb5bec034d29df6c0f56c2c1a0e8340 SHA105f51cc85c5fe3b64b2203b363cb48c31f84ce44 SHA256861b80b49d2a634d8746e2e45c672309d9ba69a2fdd95da2af034d7a1d09b3f9 Certificate Info IssuerGoogle Trust Services Subject.gstatic.com Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7 ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT HTTP Headers GET /s/titilliumweb/v18/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.zerodayinitiative.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 12344 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 30 Jun 2025 21:31:05 GMT expires: Tue, 30 Jun 2026 21:31:05 GMT cache-control: public, max-age=31536000 age: 213962 last-modified: Mon, 02 Jun 2025 16:41:37 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET gist.github.com/zdi-team/4495d426117a2818733d258aed0b6fa5.js	140.82.121.4	200 OK	8.0 kB
URL gist.github.com/zdi-team/4495d426117a2818733d258aed0b6fa5.js IP / ASN 140.82.121.4 #36459 GITHUB Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeHTML document, ASCII text, with very long lines (7887) First Seen2025-07-03 Last Seen2025-07-03 Times Seen1 Size8.0 kB (8004 bytes) MD505bbeb8a54d65dd1fabe71226c794e3f SHA173e8ceecee3ed82fcd8da985f8e26795ff271e89 SHA2561283b5d2bdf0cc967291a37b17e89f66b3c584785c3a11ef3a6f5651d656e3a2 Certificate Info IssuerSectigo Limited Subject.github.com Fingerprint7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2 ValidityWed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT HTTP Headers `GET /zdi-team/4495d426117a2818733d258aed0b6fa5.js HTTP/1.1 Host: gist.github.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 03 Jul 2025 08:57:04 GMT content-type: text/javascript; charset=utf-8 vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With etag: W/"1283b5d2bdf0cc967291a37b17e89f66" cache-control: max-age=0, private, must-revalidate strict-transport-security: max-age=31536000; includeSubdomains; preload x-frame-options: deny x-content-type-options: nosniff x-xss-protection: 0 referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com .rel.tunnels.api.visualstudio.com wss://.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com .actions.githubusercontent.com wss://.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/ server: github.com content-encoding: gzip accept-ranges: bytes set-cookie: _gh_sess=WkEQQyMz0DRiwv8QoCP0jxQXtrer45tWG0QhopezoHMhT5taNfhvnYvN%2B3xSW2JXKD2%2BDdTYZeLWSXXL1s1tTNXVUXdDTs0QrbD86YsETjVoOVwvHvABDNR2vKZ2lizb4laAwwSg8rQY9FTZhSkW0S3r5UwFPWMes%2FXlxccKXN6FNxFbui1ETxDhnrxYXMVPHgLPRVtr23106gZRYvQECn1DbmIK6EaprQ2F75qPvh7DcB2VUYmxRlH8lhLELUcvYKoaGpUf%2Fs5I4hWKCdvg6Q%3D%3D--TdsRTdKGL5%2Fi60Jz--97rPbGjflRAfMyBrvDEr%2Fw%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax _octo=GH1.1.2067221310.1751533026; Path=/; Domain=github.com; Expires=Fri, 03 Jul 2026 08:57:06 GMT; Secure; SameSite=Lax logged_in=no; Path=/; Domain=github.com; Expires=Fri, 03 Jul 2026 08:57:06 GMT; HttpOnly; Secure; SameSite=Lax content-length: 1871 x-github-request-id: 9328:7EC2C:462455D:483F393:686645E2 X-Firefox-Spdy: h2

	GET assets.squarespace.com/universal/scripts-compressed/24535-2f3a58b4c538ce6f-min.en-US.js	151.101.128.237	200 OK	72 kB
URL assets.squarespace.com/universal/scripts-compressed/24535-2f3a58b4c538ce6f-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators First Seen2025-06-26 Last Seen2025-07-12 Times Seen550 Size72 kB (71589 bytes) MD5858fef77206a3d98d5c860e76097b765 SHA1915a3993efc9442c33a74cf1033c2d9c304b10f0 SHA256f0840976a2cf1b57ad841e0f6d733bd6657d57a733a0cdbe772d0faa96214e75 Certificate Info IssuerDigiCert Inc Subject.squarespace.com Fingerprint03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76 ValidityMon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT HTTP Headers `GET /universal/scripts-compressed/24535-2f3a58b4c538ce6f-min.en-US.js HTTP/1.1 Host: assets.squarespace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/javascript cache-control: public, max-age=31536000 expires: Fri, 26 Jun 2026 20:33:29 GMT last-modified: Thu, 26 Jun 2025 20:04:26 GMT etag: "c6761a50fffbf0f208dda8dfde687f79" content-encoding: br server: UploadServer via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Thu, 03 Jul 2025 08:57:07 GMT age: 563019 x-served-by: cache-iad-kcgs7200106-IAD, cache-hel1410024-HEL x-cache: HIT, HIT x-cache-hits: 239, 10450 x-timer: S1751533028.872814,VS0,VE0 vary: Accept-Encoding access-control-allow-methods: GET, OPTIONS access-control-allow-origin: * content-length: 19028 X-Firefox-Spdy: h2

	GET assets.squarespace.com/universal/scripts-compressed/extract-css-runtime-08144866cf3f6748-min.en-US.js	151.101.128.237	200 OK	44 kB
URL assets.squarespace.com/universal/scripts-compressed/extract-css-runtime-08144866cf3f6748-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJavaScript source, ASCII text, with very long lines (43703) First Seen2025-07-03 Last Seen2025-07-04 Times Seen14 Size44 kB (44340 bytes) MD597fd42c04bb2471096172c841066ecbb SHA1f4ed7b846a94cb8c26fe8c0e8dbb26f349187013 SHA256a99b43c2c0782e16e4b1d7680eb79228b05a420ff6bcc3bfa87cf90d54f237ad Certificate Info IssuerDigiCert Inc Subject.squarespace.com Fingerprint03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76 ValidityMon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT HTTP Headers GET /universal/scripts-compressed/extract-css-runtime-08144866cf3f6748-min.en-US.js HTTP/1.1 Host: assets.squarespace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.zerodayinitiative.com DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/javascript cache-control: public, max-age=31536000 expires: Thu, 02 Jul 2026 21:19:44 GMT last-modified: Wed, 02 Jul 2025 21:18:41 GMT etag: "1043ccb0cc2fc4333ed027dba346dc67" content-encoding: br server: UploadServer via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Thu, 03 Jul 2025 08:57:06 GMT age: 41842 x-served-by: cache-iad-kiad7000075-IAD, cache-hel1410031-HEL x-cache: HIT, HIT x-cache-hits: 203, 371 x-timer: S1751533026.181188,VS0,VE0 vary: Accept-Encoding access-control-allow-methods: GET, OPTIONS access-control-allow-origin: * content-length: 15831 X-Firefox-Spdy: h2

	GET assets.squarespace.com/universal/scripts-compressed/cldr-resource-pack-f88491ffe3410ea1-min.en-US.js	151.101.128.237	200 OK	90 kB
URL assets.squarespace.com/universal/scripts-compressed/cldr-resource-pack-f88491ffe3410ea1-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators First Seen2025-06-16 Last Seen2025-07-08 Times Seen1112 Size90 kB (89939 bytes) MD5da31f59bac747ae5beb2e8ba05480a1d SHA1a152f7ffdb018d8547c889f3adfd2e303057096f SHA256c0acebaa232deab04d40ad7fbea1e1a2b4995792f0f521b28562a2e0db47091d Certificate Info IssuerDigiCert Inc Subject.squarespace.com Fingerprint03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76 ValidityMon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT HTTP Headers GET /universal/scripts-compressed/cldr-resource-pack-f88491ffe3410ea1-min.en-US.js HTTP/1.1 Host: assets.squarespace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.zerodayinitiative.com DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/javascript cache-control: public, max-age=31536000 expires: Tue, 16 Jun 2026 14:31:16 GMT last-modified: Fri, 06 Jun 2025 14:42:56 GMT etag: "bf7833b70f812335f8378bee259065d9" content-encoding: br server: UploadServer via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Thu, 03 Jul 2025 08:57:06 GMT age: 1448749 x-served-by: cache-iad-kiad7000161-IAD, cache-hel1410031-HEL x-cache: HIT, HIT x-cache-hits: 60, 46879 x-timer: S1751533026.194322,VS0,VE0 vary: Accept-Encoding access-control-allow-methods: GET, OPTIONS access-control-allow-origin: * content-length: 15004 X-Firefox-Spdy: h2

	GET assets.squarespace.com/universal/scripts-compressed/common-vendors-9b8bee2d8b8b215b-min.en-US.js	151.101.128.237	200 OK	714 kB
URL assets.squarespace.com/universal/scripts-compressed/common-vendors-9b8bee2d8b8b215b-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators First Seen2025-06-26 Last Seen2025-07-08 Times Seen455 Size714 kB (714548 bytes) MD533bfa0423bea7116e570f5e27d2d1b61 SHA10d55fc73e8818c3ac4b4a9ed942669a671fcb3ce SHA256e7caba5ffedda0ff79d76813c19308387d21b216c56c96f34d7b84765c070120 Certificate Info IssuerDigiCert Inc Subject.squarespace.com Fingerprint03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76 ValidityMon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT HTTP Headers GET /universal/scripts-compressed/common-vendors-9b8bee2d8b8b215b-min.en-US.js HTTP/1.1 Host: assets.squarespace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.zerodayinitiative.com DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/javascript cache-control: public, max-age=31536000 expires: Fri, 26 Jun 2026 20:33:28 GMT last-modified: Thu, 26 Jun 2025 20:04:53 GMT etag: "15e3672d45d010726c55e7f141d265b6" content-encoding: br server: UploadServer via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Thu, 03 Jul 2025 08:57:06 GMT age: 563017 x-served-by: cache-iad-kjyo7100080-IAD, cache-hel1410031-HEL x-cache: HIT, HIT x-cache-hits: 262, 29236 x-timer: S1751533026.159661,VS0,VE0 vary: Accept-Encoding access-control-allow-methods: GET, OPTIONS access-control-allow-origin: * content-length: 175696 X-Firefox-Spdy: h2

	GET www.zerodayinitiative.com/css/main.css	52.89.240.103	200 OK	114 kB
URL www.zerodayinitiative.com/css/main.css IP / ASN 52.89.240.103 #16509 AMAZON-02 Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typetroff or preprocessor input, Unicode text, UTF-8 text First Seen2025-06-21 Last Seen2025-07-11 Times Seen13 Size114 kB (114152 bytes) MD5c0cb8178b116cf35087d8b5575120a15 SHA1125cce18586de2019bf2b414dd1e6ad56f19217b SHA256b75f469171f770fafcb237bb6bd58cd7faa02d7a241654dd731426302bb78cd8 Certificate Info IssuerEntrust, Inc. Subject.zerodayinitiative.com Fingerprint96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF ValidityTue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT HTTP Headers GET /css/main.css HTTP/1.1 Host: www.zerodayinitiative.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Cookie: crumb=BUG3viPUjPBJYjZlZTI0OWE3ZTdmZDMyZjFmOGZlYzQxYTYzNDAy Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 03 Jul 2025 08:57:06 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains Last-Modified: Mon, 24 Feb 2025 15:47:13 GMT ETag: "1bde8-62ee540fd6240-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 17539 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: text/css`

	GET www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability	52.89.240.103	200 OK	59 kB
URL www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability IP / ASN 52.89.240.103 #16509 AMAZON-02 Requested byN/A Resource Info File typeHTML document, Unicode text, UTF-8 text, with very long lines (13418) First Seen2025-07-03 Last Seen2025-07-03 Times Seen1 Size59 kB (59261 bytes) MD56d80d42b3cb6377834bd20b6ea8895dc SHA16709bdbf202bf4a238aef7308322d700e134a71d SHA25645a7657fa6ea59800dec13a09ef762c852ab50a4a4c051cdd53fcb298ee00617 Certificate Info IssuerEntrust, Inc. Subject.zerodayinitiative.com Fingerprint96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF ValidityTue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT HTTP Headers GET /blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability HTTP/1.1 Host: www.zerodayinitiative.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.thezdi.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Date: Wed, 02 Jul 2025 22:02:41 GMT Server: Squarespace Strict-Transport-Security: max-age=31536000; includeSubDomains Accept-Ranges: bytes Age: 15623 Content-Encoding: gzip Content-Length: 14239 Content-Type: text/html;charset=utf-8 Etag: W/"4369142a72b5d4ea4545c2b8e35806b9--gzip" Expires: Thu, 01 Jan 1970 00:00:00 GMT Vary: Accept-Encoding X-Content-Type-Options: nosniff X-Contextid: sJMiZPOB/pyh5dZ76 Set-Cookie: crumb=BUG3viPUjPBJYjZlZTI0OWE3ZTdmZDMyZjFmOGZlYzQxYTYzNDAy;Secure;Path=/ Keep-Alive: timeout=5, max=100 Connection: Keep-Alive

	GET assets.squarespace.com/universal/scripts-compressed/3413-a388676b07149ff2-min.en-US.js	151.101.128.237	200 OK	9.7 kB
URL assets.squarespace.com/universal/scripts-compressed/3413-a388676b07149ff2-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJavaScript source, ASCII text, with very long lines (9559) First Seen2025-07-02 Last Seen2025-07-08 Times Seen186 Size9.7 kB (9712 bytes) MD584ab77f0303bc5088b97469061ebc179 SHA10d06cca4b6b9d47183a4283bc85aed5afa3bce71 SHA256ccf3a50eef88fd31a0ebc9d97513d6e3b37648dbaddb54e33623b94ecb17c581 Certificate Info IssuerDigiCert Inc Subject.squarespace.com Fingerprint03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76 ValidityMon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT HTTP Headers `GET /universal/scripts-compressed/3413-a388676b07149ff2-min.en-US.js HTTP/1.1 Host: assets.squarespace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/javascript cache-control: public, max-age=31536000 expires: Thu, 02 Jul 2026 16:35:45 GMT last-modified: Wed, 02 Jul 2025 11:41:44 GMT etag: "6c08551740fc0fbee5e170406df90165" content-encoding: br server: UploadServer via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Thu, 03 Jul 2025 08:57:07 GMT age: 58882 x-served-by: cache-iad-kjyo7100179-IAD, cache-hel1410024-HEL x-cache: HIT, HIT x-cache-hits: 52, 1443 x-timer: S1751533028.886108,VS0,VE0 vary: Accept-Encoding access-control-allow-methods: GET, OPTIONS access-control-allow-origin: * content-length: 3175 X-Firefox-Spdy: h2

	GET images.squarespace-cdn.com/content/v1/5894c269e4fcb5e65a1ed623/1487670157237-HOXHMI54TA0SZP21OY7C/favicon.ico	151.101.0.238	200 OK	604 B
URL images.squarespace-cdn.com/content/v1/5894c269e4fcb5e65a1ed623/1487670157237-HOXHMI54TA0SZP21OY7C/favicon.ico IP / ASN 151.101.0.238 #54113 FASTLY Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced First Seen2025-06-22 Last Seen2025-07-10 Times Seen6 Size604 B (604 bytes) MD5eaac5a023bd7dbb944ad12048138ab28 SHA17a671b9263d8d16e89bc103edcff3ea8a76b3425 SHA256ed3f64e42bd5105f8e2ca81152c9eaf53ce5cdb92405f8ce455d3b2901472725 Certificate Info IssuerLet's Encrypt Subject.squarespace-cdn.com Fingerprint43:D5:19:9D:E5:A1:4C:47:E5:79:6F:CA:01:BF:F6:AB:D6:56:F6:A8 ValiditySun, 25 May 2025 13:08:36 GMT - Sat, 23 Aug 2025 13:08:35 GMT HTTP Headers GET /content/v1/5894c269e4fcb5e65a1ed623/1487670157237-HOXHMI54TA0SZP21OY7C/favicon.ico HTTP/1.1 Host: images.squarespace-cdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK timing-allow-origin: * access-control-expose-headers: Content-Length, Timing-Allow-Origin x-sqsp-is-public: true content-type: image/png access-control-allow-origin: * etag: CKOwjvzFiusCEAE= cache-control: max-age=31536000,s-maxage=31536000 via: 1.1 google, 1.1 varnish, 1.1 varnish accept-ranges: bytes age: 850239 date: Thu, 03 Jul 2025 08:57:08 GMT x-served-by: cache-iad-kcgs7200059-IAD, cache-hel1410024-HEL x-cache: HIT, HIT x-cache-hits: 201, 0 x-timer: S1751533028.361271,VS0,VE1 vary: Accept-Encoding server-timing: time-elapsed;dur=1;desc=png tracepoint: Fastly content-length: 604 X-Firefox-Spdy: h2

	GET gist.github.com/zdi-team/70a56c9d2d889e13b1482b8cbb3d3655.js	140.82.121.4	200 OK	8.1 kB
URL gist.github.com/zdi-team/70a56c9d2d889e13b1482b8cbb3d3655.js IP / ASN 140.82.121.4 #36459 GITHUB Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeHTML document, ASCII text, with very long lines (8001) First Seen2025-07-03 Last Seen2025-07-03 Times Seen1 Size8.1 kB (8118 bytes) MD506f8c112b6883bdcce75ae807c0e963a SHA12a2e353ada5698f7114c98d0be1916ac17972569 SHA256501a51215334ec251d24e5dd4874062bd8f86bec60e4492405dfb8e5d47e6052 Certificate Info IssuerSectigo Limited Subject.github.com Fingerprint7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2 ValidityWed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT HTTP Headers `GET /zdi-team/70a56c9d2d889e13b1482b8cbb3d3655.js HTTP/1.1 Host: gist.github.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 03 Jul 2025 08:57:04 GMT content-type: text/javascript; charset=utf-8 vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With etag: W/"501a51215334ec251d24e5dd4874062b" cache-control: max-age=0, private, must-revalidate strict-transport-security: max-age=31536000; includeSubdomains; preload x-frame-options: deny x-content-type-options: nosniff x-xss-protection: 0 referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com .rel.tunnels.api.visualstudio.com wss://.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com .actions.githubusercontent.com wss://.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/ server: github.com content-encoding: gzip accept-ranges: bytes set-cookie: _gh_sess=iOB8qE91hiX%2Bz9vCey%2Ba1WLN6i77WQBbmsQy01JBjWEovd%2BRn3PwDXDLrqCgSg4scmF4AMs51N5D7QasViTdPYMAF8Z0ImxDbE2M6GphzfMYzKh40w37y%2BS%2FYoa3Hs0%2F261CkmHagL%2BOCIX6csyDYzRoeNtZ5CG4VEsmKGW%2BzIZm%2BEmWBo1z%2Fvgh0U9EngjZIqifNcFHGUstT5PqcNSAWH6b8N0dL2ParqdXTOTLCCp9jCFTTVcXHojYQJcVSTl%2Ft%2Bc57vWUi6lR2H5z9v%2Bw0A%3D%3D--O3HeeyKGewqatXxO--uIQe5UtyYCrDtKj3iSBVVA%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax _octo=GH1.1.550209919.1751533026; Path=/; Domain=github.com; Expires=Fri, 03 Jul 2026 08:57:06 GMT; Secure; SameSite=Lax logged_in=no; Path=/; Domain=github.com; Expires=Fri, 03 Jul 2026 08:57:06 GMT; HttpOnly; Secure; SameSite=Lax content-length: 1809 x-github-request-id: 9328:7EC2C:46245AB:483F3FC:686645E2 X-Firefox-Spdy: h2

	GET assets.squarespace.com/universal/scripts-compressed/34909-b028e4bf2995b212-min.en-US.js	151.101.128.237	200 OK	12 kB
URL assets.squarespace.com/universal/scripts-compressed/34909-b028e4bf2995b212-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJavaScript source, ASCII text, with very long lines (9320) First Seen2025-07-02 Last Seen2025-07-18 Times Seen367 Size12 kB (12330 bytes) MD531822b60f14a9ef992a8cd5dbff72cbd SHA10ec72889855ba6c9bfeae55a480211b1bd9f056e SHA256ad8502c040166d22ebb4974bde4a22fa1972a0f5b2cfae45d2a05778449fcdd4 Certificate Info IssuerDigiCert Inc Subject.squarespace.com Fingerprint03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76 ValidityMon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT HTTP Headers `GET /universal/scripts-compressed/34909-b028e4bf2995b212-min.en-US.js HTTP/1.1 Host: assets.squarespace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/javascript cache-control: public, max-age=31536000 expires: Thu, 02 Jul 2026 11:43:24 GMT last-modified: Wed, 02 Jul 2025 11:41:52 GMT etag: "11f9603076491902516969e5a8f4956e" content-encoding: br server: UploadServer via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Thu, 03 Jul 2025 08:57:07 GMT age: 76423 x-served-by: cache-iad-kcgs7200081-IAD, cache-hel1410024-HEL x-cache: HIT, HIT x-cache-hits: 52, 1451 x-timer: S1751533028.855365,VS0,VE0 vary: Accept-Encoding access-control-allow-methods: GET, OPTIONS access-control-allow-origin: * content-length: 4323 X-Firefox-Spdy: h2

	GET fonts.gstatic.com/s/titilliumweb/v18/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2	142.250.178.67	200 OK	12 kB
URL fonts.gstatic.com/s/titilliumweb/v18/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2 IP / ASN 142.250.178.67 #15169 GOOGLE Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeWeb Open Font Format (Version 2), TrueType, length 12116, version 1.0 First Seen2025-06-03 Last Seen2025-08-01 Times Seen298 Size12 kB (12116 bytes) MD5b65bd9e79f1dd93eb8e0cd83e3fe62f9 SHA13bb357672e2c3942ca0f67d8861aea3cb80284b9 SHA256f356ff5613e1b6789a47ae3bd6b72fa6fb61d44493811bcb758fb4229b7a8bcb Certificate Info IssuerGoogle Trust Services Subject.gstatic.com Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7 ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT HTTP Headers GET /s/titilliumweb/v18/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.zerodayinitiative.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 12116 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 30 Jun 2025 21:31:39 GMT expires: Tue, 30 Jun 2026 21:31:39 GMT cache-control: public, max-age=31536000 age: 213929 last-modified: Mon, 02 Jun 2025 16:41:40 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET www.thezdi.com/images/logo-combo.svg	198.49.23.145	404 Not Found	28 kB
URL www.thezdi.com/images/logo-combo.svg IP / ASN 198.49.23.145 #53831 SQUARESPACE Requested byhttps://www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeHTML document, ASCII text, with very long lines (12954) First Seen2025-07-03 Last Seen2025-07-03 Times Seen1 Size28 kB (27610 bytes) MD578959c468437f029a20c7a3c632cc77e SHA129b1de13cd003d4ad14a12300432012ba734d5bc SHA256c7f9d341f2efb4a12df3832c07e654f04df9663556f238ff13c97f4b2db0c4b3 Certificate Info IssuerLet's Encrypt Subjectwww.thezdi.com FingerprintF7:B7:CF:A3:E4:09:5B:CF:F7:CC:B9:82:FA:04:08:99:4F:E6:F7:32 ValidityWed, 28 May 2025 03:28:41 GMT - Tue, 26 Aug 2025 03:28:40 GMT HTTP Headers GET /images/logo-combo.svg HTTP/1.1 Host: www.thezdi.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Cookie: crumb=BU2lo0nu+TVgNDc5MzJlMjBjOWU0ZmM1MWFiOTc2ZjU0YmU1MWMw Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 404 Not Found age: 0 content-encoding: gzip content-type: text/html;charset=utf-8 date: Thu, 03 Jul 2025 08:56:49 GMT etag: W/"ff5c10996795cc5784cc551eaa6ecb1d" expires: Thu, 01 Jan 1970 00:00:00 GMT server: Squarespace strict-transport-security: max-age=15552000 vary: Accept-Encoding x-content-type-options: nosniff x-contextid: Xuc1T2bI/EdKSeSQ1 content-length: 7759 X-Firefox-Spdy: h2`

	GET assets.squarespace.com/universal/styles-compressed/user-account-core-64e5cd7e3ebdde0b-min.en-US.css	151.101.128.237	200 OK	2.3 kB
URL assets.squarespace.com/universal/styles-compressed/user-account-core-64e5cd7e3ebdde0b-min.en-US.css IP / ASN 151.101.128.237 #54113 FASTLY Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeASCII text, with very long lines (2301), with no line terminators First Seen2025-07-02 Last Seen2025-07-06 Times Seen20 Size2.3 kB (2301 bytes) MD55241530ea3b535839a2789e099377921 SHA1939b8e6768f8d3d6e0af7d0670c8e1a7604cd9b2 SHA25684514247d93bdd953059247cdba17c9858825b82b182d73d2984acb7527a25aa Certificate Info IssuerDigiCert Inc Subject.squarespace.com Fingerprint03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76 ValidityMon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT HTTP Headers `GET /universal/styles-compressed/user-account-core-64e5cd7e3ebdde0b-min.en-US.css HTTP/1.1 Host: assets.squarespace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css cache-control: public, max-age=31536000 expires: Thu, 02 Jul 2026 13:59:13 GMT last-modified: Tue, 01 Jul 2025 19:47:00 GMT etag: "620dc6ad050673da7dc0d3161a0f8232" content-encoding: br server: UploadServer via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Thu, 03 Jul 2025 08:57:06 GMT age: 68272 x-served-by: cache-iad-kiad7000148-IAD, cache-hel1410024-HEL x-cache: HIT, HIT x-cache-hits: 102, 764 x-timer: S1751533026.145105,VS0,VE0 vary: Accept-Encoding access-control-allow-methods: GET, OPTIONS access-control-allow-origin: content-length: 729 X-Firefox-Spdy: h2

	GET assets.squarespace.com/universal/scripts-compressed/performance-4895744c4cbc41d8-min.en-US.js	151.101.128.237	200 OK	31 kB
URL assets.squarespace.com/universal/scripts-compressed/performance-4895744c4cbc41d8-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJavaScript source, ASCII text, with very long lines (30703) First Seen2025-06-26 Last Seen2025-07-08 Times Seen420 Size31 kB (30869 bytes) MD5a2c2e03ddf9432b7cc4da07065119885 SHA139d73b3ae52309db0b4a0a33aa7eff96245ba96e SHA256cde778751c339d80ff6a6c29a1832f9055df1902e4a9f4dd27bbbb641f2bb079 Certificate Info IssuerDigiCert Inc Subject.squarespace.com Fingerprint03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76 ValidityMon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT HTTP Headers GET /universal/scripts-compressed/performance-4895744c4cbc41d8-min.en-US.js HTTP/1.1 Host: assets.squarespace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.zerodayinitiative.com DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/javascript cache-control: public, max-age=31536000 expires: Fri, 26 Jun 2026 20:33:28 GMT last-modified: Thu, 26 Jun 2025 20:04:23 GMT etag: "fc44ce08b566358531a1709b6b121f55" content-encoding: br server: UploadServer via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Thu, 03 Jul 2025 08:57:06 GMT age: 563017 x-served-by: cache-iad-kcgs7200021-IAD, cache-hel1410031-HEL x-cache: HIT, HIT x-cache-hits: 188, 25974 x-timer: S1751533026.149281,VS0,VE0 vary: Accept-Encoding access-control-allow-methods: GET, OPTIONS access-control-allow-origin: * content-length: 9851 X-Firefox-Spdy: h2

	GET static1.squarespace.com/static/sitecss/5894c269e4fcb5e65a1ed623/52/67aa61355065f439ea56543f/67aa61375065f439ea565441/33/site.css	151.101.128.238	200 OK	580 kB
URL static1.squarespace.com/static/sitecss/5894c269e4fcb5e65a1ed623/52/67aa61355065f439ea56543f/67aa61375065f439ea565441/33/site.css IP / ASN 151.101.128.238 #54113 FASTLY Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeUnicode text, UTF-8 text, with very long lines (32094) First Seen2025-06-27 Last Seen2025-07-10 Times Seen5 Size580 kB (580331 bytes) MD56e151973e834b05be79f1a4eb23b38ef SHA1752f1f1a0c6e7059a69756aad5f284c65af820ca SHA2568a5e63f2847014f2be2e1516a92255dbe21fcccd670cd74ef656b3426e1b8989 Certificate Info IssuerDigiCert Inc Subject.squarespace.com Fingerprint03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76 ValidityMon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT HTTP Headers GET /static/sitecss/5894c269e4fcb5e65a1ed623/52/67aa61355065f439ea56543f/67aa61375065f439ea565441/33/site.css HTTP/1.1 Host: static1.squarespace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK cache-control: public, max-age=94608000 content-encoding: gzip content-type: text/css; charset=UTF-8 pragma: cache server: Squarespace timing-allow-origin: x-content-type-options: nosniff x-contextid: Fy0c7ood/pitfsAi5 via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Thu, 03 Jul 2025 08:57:06 GMT age: 831239 x-served-by: cache-dfw-kdal2120076-DFW, cache-hel1410026-HEL x-cache: HIT, HIT x-cache-hits: 194, 1 x-timer: S1751533026.226338,VS0,VE1 vary: Accept-Encoding tracepoint: Fastly content-length: 62287 X-Firefox-Spdy: h2

	GET fonts.gstatic.com/s/titilliumweb/v18/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2	142.250.178.67	200 OK	12 kB
URL fonts.gstatic.com/s/titilliumweb/v18/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2 IP / ASN 142.250.178.67 #15169 GOOGLE Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeWeb Open Font Format (Version 2), TrueType, length 11732, version 1.0 First Seen2025-06-03 Last Seen2025-08-01 Times Seen388 Size12 kB (11732 bytes) MD56a025e37840087fc773a919e805d677c SHA14f716b1a077ece2131283eb0eb033595baa0dd97 SHA2569e3162d81ed6681322ab34791660f1b45c79945197e7a7dbb217005b2926caf4 Certificate Info IssuerGoogle Trust Services Subject.gstatic.com Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7 ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT HTTP Headers GET /s/titilliumweb/v18/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.zerodayinitiative.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 11732 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 30 Jun 2025 21:29:15 GMT expires: Tue, 30 Jun 2026 21:29:15 GMT cache-control: public, max-age=31536000 age: 214072 last-modified: Mon, 02 Jun 2025 16:41:40 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET assets.squarespace.com/universal/scripts-compressed/user-account-core-b5d50421c99adbc8-min.en-US.js	151.101.128.237	200 OK	227 kB
URL assets.squarespace.com/universal/scripts-compressed/user-account-core-b5d50421c99adbc8-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJavaScript source, ASCII text, with very long lines (62241) First Seen2025-07-03 Last Seen2025-07-06 Times Seen17 Size227 kB (226842 bytes) MD5b1325fca66a2338039c2f075d4ea6593 SHA13d89887952fe617ad2ec107b76291ea67640e570 SHA256a24d0f89faaafb41a87cb96be1e5c9fda1ec81c52b72ab630d1a043a3da572e8 Certificate Info IssuerDigiCert Inc Subject.squarespace.com Fingerprint03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76 ValidityMon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT HTTP Headers GET /universal/scripts-compressed/user-account-core-b5d50421c99adbc8-min.en-US.js HTTP/1.1 Host: assets.squarespace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.zerodayinitiative.com DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/javascript cache-control: public, max-age=31536000 expires: Thu, 02 Jul 2026 19:25:51 GMT last-modified: Wed, 02 Jul 2025 18:40:41 GMT etag: "6e45e1d45a94249428a875ff72846e0e" content-encoding: br server: UploadServer via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Thu, 03 Jul 2025 08:57:06 GMT age: 48675 x-served-by: cache-iad-kjyo7100110-IAD, cache-hel1410031-HEL x-cache: HIT, HIT x-cache-hits: 93, 419 x-timer: S1751533026.148400,VS0,VE0 vary: Accept-Encoding access-control-allow-methods: GET, OPTIONS access-control-allow-origin: * content-length: 65787 X-Firefox-Spdy: h2

	GET www.zerodayinitiative.com/images/logo-trend.svg	52.89.240.103	200 OK	5.5 kB
URL www.zerodayinitiative.com/images/logo-trend.svg IP / ASN 52.89.240.103 #16509 AMAZON-02 Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeSVG Scalable Vector Graphics image First Seen2023-07-25 Last Seen2025-07-25 Times Seen27 Size5.5 kB (5454 bytes) MD51afde55671dc9db365db8cf613f87688 SHA1d6aeeea804f4d7981390b024bb0d93c605648b1d SHA2564c38452d4117e2bb77829601aca27ac6584ebdf4d42ce505c0f7b1ae0f933147 Certificate Info IssuerEntrust, Inc. Subject.zerodayinitiative.com Fingerprint96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF ValidityTue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT HTTP Headers GET /images/logo-trend.svg HTTP/1.1 Host: www.zerodayinitiative.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Cookie: crumb=BUG3viPUjPBJYjZlZTI0OWE3ZTdmZDMyZjFmOGZlYzQxYTYzNDAy Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 03 Jul 2025 08:57:06 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains Last-Modified: Mon, 10 Feb 2025 14:50:02 GMT ETag: "154e-62dcad2b53a80" Accept-Ranges: bytes Content-Length: 5454 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive Content-Type: image/svg+xml`

	GET assets.squarespace.com/universal/scripts-compressed/59494-c33bc2b519ece6c2-min.en-US.js	151.101.128.237	200 OK	15 kB
URL assets.squarespace.com/universal/scripts-compressed/59494-c33bc2b519ece6c2-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJavaScript source, ASCII text, with very long lines (15106) First Seen2025-05-27 Last Seen2025-07-22 Times Seen1358 Size15 kB (15260 bytes) MD504d1536c718d4c2228d3a2ff67e97abf SHA1b5bd001d6ff474417f59afc7bc90225178efa3bb SHA256f2e96ed8891942b6d917585ed47d9c54f69abbdcc2804a24f9c8921733959442 Certificate Info IssuerDigiCert Inc Subject.squarespace.com Fingerprint03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76 ValidityMon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT HTTP Headers `GET /universal/scripts-compressed/59494-c33bc2b519ece6c2-min.en-US.js HTTP/1.1 Host: assets.squarespace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/javascript cache-control: public, max-age=31536000 expires: Wed, 27 May 2026 14:59:53 GMT last-modified: Tue, 27 May 2025 14:57:04 GMT etag: "ba192441853d47fbaa14fb484bfa84dc" content-encoding: br server: UploadServer via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Thu, 03 Jul 2025 08:57:07 GMT age: 1993307 x-served-by: cache-iad-kcgs7200136-IAD, cache-hel1410024-HEL x-cache: HIT, HIT x-cache-hits: 26497, 10141 x-timer: S1751533028.869984,VS0,VE0 vary: Accept-Encoding access-control-allow-methods: GET, OPTIONS access-control-allow-origin: * content-length: 4131 X-Firefox-Spdy: h2

	GET gist.github.com/zdi-team/4de8270fd273655d4a747ba8d1e7f98c.js	140.82.121.4	200 OK	9.4 kB
URL gist.github.com/zdi-team/4de8270fd273655d4a747ba8d1e7f98c.js IP / ASN 140.82.121.4 #36459 GITHUB Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeHTML document, ASCII text, with very long lines (9274) First Seen2025-07-03 Last Seen2025-07-03 Times Seen1 Size9.4 kB (9391 bytes) MD5aeeddc86c434306091a3d7325a19c76f SHA1874c6f60225a6d9fa3c142856d84098f2b742cb0 SHA256a1cdff1eac943e10c5175872c45211faa2a8956e6c9bbb279bfbd42646afeff7 Certificate Info IssuerSectigo Limited Subject.github.com Fingerprint7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2 ValidityWed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT HTTP Headers `GET /zdi-team/4de8270fd273655d4a747ba8d1e7f98c.js HTTP/1.1 Host: gist.github.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 03 Jul 2025 08:57:04 GMT content-type: text/javascript; charset=utf-8 vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With etag: W/"a1cdff1eac943e10c5175872c45211fa" cache-control: max-age=0, private, must-revalidate strict-transport-security: max-age=31536000; includeSubdomains; preload x-frame-options: deny x-content-type-options: nosniff x-xss-protection: 0 referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com .rel.tunnels.api.visualstudio.com wss://.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com .actions.githubusercontent.com wss://.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/ server: github.com content-encoding: gzip accept-ranges: bytes set-cookie: _gh_sess=zS5yRRVmopaDlGwIZwgf6IkXcLTj5d%2BtHOflqHvDqnDg3zUB816B443%2FJT133bVJs9TNc67PqK%2BD%2BJvRBd4PvhbsQ93a2S3EsdIFCmp9hvQZ5bZ6orxAoiFn55IHmUB99Ql3EufchgjSuZkf5uzuwGajGicDHEjbdHWacsTmMpaBeFhfNRtNxs%2Fp5J0gShfK7ERqwdhV46dXbw6nSUKje5R2hvD%2FhwAyOiKuwDaNkUx%2BGNyjfpn1%2FXIcePkqSUNLLivNPZv2j%2FPfCB2eAFE9Uw%3D%3D--WHrP1aSbh82NWqBA--3avTk9aDsZsAoJFhiNHj7g%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax _octo=GH1.1.1108296366.1751533026; Path=/; Domain=github.com; Expires=Fri, 03 Jul 2026 08:57:06 GMT; Secure; SameSite=Lax logged_in=no; Path=/; Domain=github.com; Expires=Fri, 03 Jul 2026 08:57:06 GMT; HttpOnly; Secure; SameSite=Lax content-length: 1881 x-github-request-id: 9328:7EC2C:462455C:483F391:686645E2 X-Firefox-Spdy: h2

	GET gist.github.com/zdi-team/7777cd879106a6c015db603b3107bb83.js	140.82.121.4	200 OK	8.1 kB
URL gist.github.com/zdi-team/7777cd879106a6c015db603b3107bb83.js IP / ASN 140.82.121.4 #36459 GITHUB Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeHTML document, ASCII text, with very long lines (7999) First Seen2025-07-03 Last Seen2025-07-03 Times Seen1 Size8.1 kB (8116 bytes) MD53161d8d8ce2a4feef288c9f0413da700 SHA1310e29ea5bc334f9a4e513f789dc1d36ca33dd26 SHA2568b32e49a30a2ca324b4321b47349102910938bf074c0413f5f9bb1d15127083a Certificate Info IssuerSectigo Limited Subject.github.com Fingerprint7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2 ValidityWed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT HTTP Headers `GET /zdi-team/7777cd879106a6c015db603b3107bb83.js HTTP/1.1 Host: gist.github.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 03 Jul 2025 08:57:04 GMT content-type: text/javascript; charset=utf-8 vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With etag: W/"8b32e49a30a2ca324b4321b473491029" cache-control: max-age=0, private, must-revalidate strict-transport-security: max-age=31536000; includeSubdomains; preload x-frame-options: deny x-content-type-options: nosniff x-xss-protection: 0 referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com .rel.tunnels.api.visualstudio.com wss://.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com .actions.githubusercontent.com wss://.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/ server: github.com content-encoding: gzip accept-ranges: bytes set-cookie: _gh_sess=FRP%2BsCZkqv942uY3me3EV9Fo5FAxm4IZyfkGtY43if2R%2FuHhOBek5xTYF6uqRndtY0tXiEoOzKZDcRLVFLrYmGMfrT3aRg%2FDgKiCssrb4GFrtfT%2FpIan3f%2FarrXjr5S1an1NWpou4NwBw6JgfhbZR%2FegWum%2FtCAmG%2FYgAXXHxr63A%2Faic5rMghG8WLLjxfWG4%2FynOK%2FceZyHEZoy8QWRylUC%2FsvSejmjadPSmx85TlaNQi7NWvu1sXPACsoxzJghOkhop%2BNZkY7T2ZIA5LRmpA%3D%3D--nYIAeTIhXWqqZUyf--tZNv1y4WCriuwpvt5nxMLg%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax _octo=GH1.1.25968467.1751533026; Path=/; Domain=github.com; Expires=Fri, 03 Jul 2026 08:57:06 GMT; Secure; SameSite=Lax logged_in=no; Path=/; Domain=github.com; Expires=Fri, 03 Jul 2026 08:57:06 GMT; HttpOnly; Secure; SameSite=Lax content-length: 1830 x-github-request-id: 9328:7EC2C:462459E:483F3EA:686645E2 X-Firefox-Spdy: h2

	GET www.zerodayinitiative.com/js/main.js	52.89.240.103	200 OK	43 kB
URL www.zerodayinitiative.com/js/main.js IP / ASN 52.89.240.103 #16509 AMAZON-02 Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (22932) First Seen2025-06-22 Last Seen2025-07-10 Times Seen6 Size43 kB (43179 bytes) MD5d96ee77742cbf3427b6d4ce42480cff7 SHA1b573321dff702f4bc87f0d816e28701191b9d009 SHA256de360daa34474ce81acf8a81e3f513dca4a1f62d3c55064ab8b49af69f1c60cc Certificate Info IssuerEntrust, Inc. Subject.zerodayinitiative.com Fingerprint96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF ValidityTue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT HTTP Headers GET /js/main.js HTTP/1.1 Host: www.zerodayinitiative.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Cookie: crumb=BUG3viPUjPBJYjZlZTI0OWE3ZTdmZDMyZjFmOGZlYzQxYTYzNDAy Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 03 Jul 2025 08:57:06 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains Last-Modified: Fri, 05 Jan 2024 18:38:08 GMT ETag: "a8ab-60e3726404400-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 11900 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/javascript`

	GET fonts.gstatic.com/s/titilliumweb/v18/NaPDcZTIAOhVxoMyOr9n_E7ffGjEGItzYw.woff2	142.250.178.67	200 OK	12 kB
URL fonts.gstatic.com/s/titilliumweb/v18/NaPDcZTIAOhVxoMyOr9n_E7ffGjEGItzYw.woff2 IP / ASN 142.250.178.67 #15169 GOOGLE Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeWeb Open Font Format (Version 2), TrueType, length 12408, version 1.0 First Seen2025-06-04 Last Seen2025-08-01 Times Seen170 Size12 kB (12408 bytes) MD5a8d0c227ccfc9e66a8aab6e6f047ea4e SHA17a11c1f251225c92f63915bd20f42274ae1f3ad9 SHA256b6287de6fc5553c57520eedd963a16b66f3c192a2c65916243a0a92a8e0e8a8f Certificate Info IssuerGoogle Trust Services Subject.gstatic.com Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7 ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT HTTP Headers GET /s/titilliumweb/v18/NaPDcZTIAOhVxoMyOr9n_E7ffGjEGItzYw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.zerodayinitiative.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 12408 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 30 Jun 2025 22:04:00 GMT expires: Tue, 30 Jun 2026 22:04:00 GMT cache-control: public, max-age=31536000 age: 211987 last-modified: Mon, 02 Jun 2025 16:41:36 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET www.thezdi.com/images/logo-zdi.svg	198.49.23.145	404 Not Found	28 kB
URL www.thezdi.com/images/logo-zdi.svg IP / ASN 198.49.23.145 #53831 SQUARESPACE Requested byhttps://www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeHTML document, ASCII text, with very long lines (12954) First Seen2025-07-03 Last Seen2025-07-03 Times Seen1 Size28 kB (27610 bytes) MD578959c468437f029a20c7a3c632cc77e SHA129b1de13cd003d4ad14a12300432012ba734d5bc SHA256c7f9d341f2efb4a12df3832c07e654f04df9663556f238ff13c97f4b2db0c4b3 Certificate Info IssuerLet's Encrypt Subjectwww.thezdi.com FingerprintF7:B7:CF:A3:E4:09:5B:CF:F7:CC:B9:82:FA:04:08:99:4F:E6:F7:32 ValidityWed, 28 May 2025 03:28:41 GMT - Tue, 26 Aug 2025 03:28:40 GMT HTTP Headers GET /images/logo-zdi.svg HTTP/1.1 Host: www.thezdi.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Cookie: crumb=BU2lo0nu+TVgNDc5MzJlMjBjOWU0ZmM1MWFiOTc2ZjU0YmU1MWMw Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 404 Not Found age: 0 content-encoding: gzip content-type: text/html;charset=utf-8 date: Thu, 03 Jul 2025 08:56:49 GMT etag: W/"ff5c10996795cc5784cc551eaa6ecb1d" expires: Thu, 01 Jan 1970 00:00:00 GMT server: Squarespace strict-transport-security: max-age=15552000 vary: Accept-Encoding x-content-type-options: nosniff x-contextid: Xuc1T2bI/9nscdxU7 content-length: 7759 X-Firefox-Spdy: h2`

	GET assets.squarespace.com/universal/scripts-compressed/extract-css-moment-js-vendor-088ec0120fdbcfed-min.en-US.js	151.101.128.237	200 OK	858 kB
URL assets.squarespace.com/universal/scripts-compressed/extract-css-moment-js-vendor-088ec0120fdbcfed-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJavaScript source, ASCII text, with very long lines (43684) First Seen2025-05-13 Last Seen2025-08-02 Times Seen1628 Size858 kB (857850 bytes) MD5ac18c33ff9ca92b2a347303ac22382d6 SHA13361cf158a5a3ef68cd1ee69fb419afbf5ccd2a6 SHA256154e5c0ddaba3d0538d6d468a62e54e6484208bb8a26ef912ecf1027eb87d99e Certificate Info IssuerDigiCert Inc Subject.squarespace.com Fingerprint03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76 ValidityMon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT HTTP Headers GET /universal/scripts-compressed/extract-css-moment-js-vendor-088ec0120fdbcfed-min.en-US.js HTTP/1.1 Host: assets.squarespace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.zerodayinitiative.com DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/javascript cache-control: public, max-age=31536000 expires: Wed, 13 May 2026 13:34:13 GMT last-modified: Mon, 12 May 2025 19:42:19 GMT etag: "3eaf541d78138352e55b9843a5f78c7c" content-encoding: br server: UploadServer via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Thu, 03 Jul 2025 08:57:06 GMT age: 852131 x-served-by: cache-iad-kjyo7100155-IAD, cache-hel1410031-HEL x-cache: HIT, HIT x-cache-hits: 53039, 6318 x-timer: S1751533026.183731,VS0,VE0 vary: Accept-Encoding access-control-allow-methods: GET, OPTIONS access-control-allow-origin: * content-length: 45015 X-Firefox-Spdy: h2

	GET www.googletagmanager.com/gtag/js?id=G-DBFMYZ5KK8&cx=c&gtm=457e5710za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104839054~104839056~104879961~104885889~104885891~104908321~104908323	142.250.74.136	200 OK	372 kB
URL www.googletagmanager.com/gtag/js?id=G-DBFMYZ5KK8&cx=c&gtm=457e5710za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104839054~104839056~104879961~104885889~104885891~104908321~104908323 IP / ASN 142.250.74.136 #15169 GOOGLE Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJavaScript source, ASCII text, with very long lines (6004) First Seen2025-07-03 Last Seen2025-07-03 Times Seen1 Size372 kB (372069 bytes) MD52d7b13dcb6041237925bbd5522e514ff SHA162130ee5e1306761824acfbe02d1d1c856a9fcec SHA2568c4c646e65ab670f51ae8e016f3413c22ee446f79e90626d04477893f28ecd82 Certificate Info IssuerGoogle Trust Services Subject.google-analytics.com Fingerprint79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT HTTP Headers GET /gtag/js?id=G-DBFMYZ5KK8&cx=c&gtm=457e5710za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104839054~104839056~104879961~104885889~104885891~104908321~104908323 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Thu, 03 Jul 2025 08:57:07 GMT expires: Thu, 03 Jul 2025 08:57:07 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0 cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0 report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],} server: Google Tag Manager content-length: 127640 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	GET www.zerodayinitiative.com/images/footer-bg.jpg	52.89.240.103	200 OK	30 kB
URL www.zerodayinitiative.com/images/footer-bg.jpg IP / ASN 52.89.240.103 #16509 AMAZON-02 Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 1440x350, components 3 First Seen2023-11-20 Last Seen2025-07-11 Times Seen14 Size30 kB (30244 bytes) MD52b71b1e273b9d231c40f2b0636145e47 SHA17430dd9042868a9011a1d14e99c6e641c8b3e12e SHA2566b3ceecfe5907be684db9982878b9601c2368157df925712efe8ee769bb14eea Certificate Info IssuerEntrust, Inc. Subject.zerodayinitiative.com Fingerprint96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF ValidityTue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT HTTP Headers GET /images/footer-bg.jpg HTTP/1.1 Host: www.zerodayinitiative.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/css/main.css Cookie: crumb=BUG3viPUjPBJYjZlZTI0OWE3ZTdmZDMyZjFmOGZlYzQxYTYzNDAy; _ga_DBFMYZ5KK8=GS2.1.s1751533027$o1$g0$t1751533027$j60$l0$h0; _ga=GA1.1.1623553884.1751533028; ss_cvr=7880bf19-799e-4e3f-aec0-b1e30d5b1143\|1751533027822\|1751533027822\|1751533027822\|1; ss_cvt=1751533027822 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 03 Jul 2025 08:57:08 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains Last-Modified: Fri, 05 Jan 2024 18:38:08 GMT ETag: "7624-60e3726404400" Accept-Ranges: bytes Content-Length: 30244 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive Content-Type: image/jpeg`

	GET gist.github.com/zdi-team/53b813672b4cc0cd5deea4ae49484edb.js	140.82.121.4	200 OK	8.0 kB
URL gist.github.com/zdi-team/53b813672b4cc0cd5deea4ae49484edb.js IP / ASN 140.82.121.4 #36459 GITHUB Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeHTML document, ASCII text, with very long lines (7887) First Seen2025-07-03 Last Seen2025-07-03 Times Seen1 Size8.0 kB (8004 bytes) MD5ca3659883d93e32b6979b6e9bb47d2a1 SHA1a367bfa50b7470e658927d5a1cf75b24daedcc67 SHA2567b316a8da84cf24f13199279b32b92d9ede3f03dd7facf405df55a645157b4cf Certificate Info IssuerSectigo Limited Subject.github.com Fingerprint7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2 ValidityWed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT HTTP Headers `GET /zdi-team/53b813672b4cc0cd5deea4ae49484edb.js HTTP/1.1 Host: gist.github.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 03 Jul 2025 08:57:04 GMT content-type: text/javascript; charset=utf-8 vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With etag: W/"7b316a8da84cf24f13199279b32b92d9" cache-control: max-age=0, private, must-revalidate strict-transport-security: max-age=31536000; includeSubdomains; preload x-frame-options: deny x-content-type-options: nosniff x-xss-protection: 0 referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com .rel.tunnels.api.visualstudio.com wss://.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com .actions.githubusercontent.com wss://.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/ server: github.com content-encoding: gzip accept-ranges: bytes set-cookie: _gh_sess=HDyw8FHt5D0ZR9D4NJG2KPWLU3rVP1zkf40n4wZVOGCgiJFY6KPP%2BrshIJQCUJ0w%2BZrjG7tMWjZi23Pj2djbXusqRWryifmR0UtBwt8HJ98ZYOs3FrnknM3HAfb7JCG95R%2B1viAIQ%2Fbj%2BCKa0q1WotEVdgx5pwsuN549hv%2FjdBcV%2BzWVjBpNwfWLu1xTjozqC%2BdQkSOnzKomLTL%2Fs76unaEINgmlkrNTMEnfOW1JbaYI8zMtckuk3Oe4loody3xAt0Yh581wLci7Ii55Z7yqiw%3D%3D--pfHQFmjE3B9VaowL--T1%2B%2FHv0dUAAhJP8bM3ALBQ%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax _octo=GH1.1.408704911.1751533026; Path=/; Domain=github.com; Expires=Fri, 03 Jul 2026 08:57:06 GMT; Secure; SameSite=Lax logged_in=no; Path=/; Domain=github.com; Expires=Fri, 03 Jul 2026 08:57:06 GMT; HttpOnly; Secure; SameSite=Lax content-length: 1870 x-github-request-id: 9328:7EC2C:462455E:483F397:686645E2 X-Firefox-Spdy: h2

	GET github.githubassets.com/assets/gist-embed-cc0d5b835138.css	185.199.111.154	200 OK	110 kB
URL github.githubassets.com/assets/gist-embed-cc0d5b835138.css IP / ASN 185.199.111.154 #54113 FASTLY Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeASCII text First Seen2025-07-03 Last Seen2025-07-03 Times Seen1 Size110 kB (110407 bytes) MD5f96b1df90bcf91269e442ff8b546e500 SHA1570853eec3608ee744727a210e3a2aa6f455b535 SHA256bcf094f5597cda6c3393b42d6c517930212d5a14a03e7845b684acad552af371 Certificate Info IssuerSectigo Limited Subject.githubassets.com Fingerprint6C:B6:81:2C:6B:92:0E:0E:48:03:F3:EA:CA:73:0D:97:43:02:11:B2 ValidityTue, 24 Sep 2024 00:00:00 GMT - Wed, 24 Sep 2025 23:59:59 GMT HTTP Headers `GET /assets/gist-embed-cc0d5b835138.css HTTP/1.1 Host: github.githubassets.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK cache-control: public, max-age=31536000, immutable content-type: text/css last-modified: Tue, 01 Jul 2025 16:33:54 GMT etag: "0x8DDB8BD11F14E7C" server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0 content-encoding: br via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Thu, 03 Jul 2025 08:57:07 GMT age: 54510 x-served-by: cache-iad-kcgs7200107-IAD, cache-hel1410030-HEL x-cache: HIT, HIT x-cache-hits: 103, 39 vary: Accept-Encoding cross-origin-resource-policy: cross-origin access-control-allow-origin: strict-transport-security: max-age=31536000 x-fastly-request-id: 3a795fb9aedbd6812de5d79ac14df8424cec911c content-length: 15747 X-Firefox-Spdy: h2

	GET assets.squarespace.com/@sqs/polyfiller/1.6/modern.js	151.101.128.237	200 OK	118 kB
URL assets.squarespace.com/@sqs/polyfiller/1.6/modern.js IP / ASN 151.101.128.237 #54113 FASTLY Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (43878), with NEL line terminators First Seen2023-04-05 Last Seen2025-08-02 Times Seen4963 Size118 kB (117609 bytes) MD593a2aea230d421d550375c528b22583e SHA1e8d88b00db1c30510928a7c6618f0f7cffa9b4c2 SHA25654e832663426c696b1f603379026e5e15720e8c812bbbc60d63aa2ad8a479f75 Certificate Info IssuerDigiCert Inc Subject.squarespace.com Fingerprint03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76 ValidityMon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT HTTP Headers `GET /@sqs/polyfiller/1.6/modern.js HTTP/1.1 Host: assets.squarespace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.zerodayinitiative.com DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK cache-control: public, max-age=31536000 expires: Wed, 02 Oct 2024 02:39:38 GMT last-modified: Mon, 31 Oct 2022 21:19:57 GMT etag: "fe0d53a94823df972dbf107bf190771a" content-type: text/javascript content-encoding: gzip server: UploadServer via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Thu, 03 Jul 2025 08:57:06 GMT age: 1448950 x-served-by: cache-iad-kcgs7200042-IAD, cache-hel1410031-HEL x-cache: HIT, HIT x-cache-hits: 79, 80297 x-timer: S1751533026.144663,VS0,VE0 vary: Accept-Encoding access-control-allow-methods: GET, OPTIONS access-control-allow-origin: * content-length: 42447 X-Firefox-Spdy: h2

	GET www.zerodayinitiative.com/images/rss.svg	52.89.240.103	200 OK	3.0 kB
URL www.zerodayinitiative.com/images/rss.svg IP / ASN 52.89.240.103 #16509 AMAZON-02 Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeSVG Scalable Vector Graphics image First Seen2025-06-22 Last Seen2025-07-10 Times Seen6 Size3.0 kB (3034 bytes) MD5c2bce27724ace8f9aad4ceed66e1d28d SHA102ba23a1da8580e3560bbb6d41a8532cda8621c1 SHA2562b738eaa6e989133f722a1b80bce6b85b95cef69682fd010f78ae93ec15195cb Certificate Info IssuerEntrust, Inc. Subject.zerodayinitiative.com Fingerprint96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF ValidityTue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT HTTP Headers GET /images/rss.svg HTTP/1.1 Host: www.zerodayinitiative.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/css/main.css Cookie: crumb=BUG3viPUjPBJYjZlZTI0OWE3ZTdmZDMyZjFmOGZlYzQxYTYzNDAy Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Date: Thu, 03 Jul 2025 08:57:07 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains Last-Modified: Fri, 05 Jan 2024 18:38:08 GMT ETag: "bda-60e3726404400" Accept-Ranges: bytes Content-Length: 3034 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: image/svg+xml`

	GET assets.squarespace.com/universal/scripts-compressed/async-gdpr-cookie-banner-292ec302d21a04d6-min.en-US.js	151.101.128.237	200 OK	22 kB
URL assets.squarespace.com/universal/scripts-compressed/async-gdpr-cookie-banner-292ec302d21a04d6-min.en-US.js IP / ASN 151.101.128.237 #54113 FASTLY Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeJavaScript source, ASCII text, with very long lines (21794) First Seen2025-07-02 Last Seen2025-07-06 Times Seen57 Size22 kB (21967 bytes) MD51250cfdba04777db0348f87dbed2e469 SHA198548a96ab13d575c20b3c0a2ac771bf5b3fba82 SHA2568cf2b2396503036c6b8f4c14eb8d3456e0048f89e163ebf52f54e5c553d20907 Certificate Info IssuerDigiCert Inc Subject.squarespace.com Fingerprint03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76 ValidityMon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT HTTP Headers `GET /universal/scripts-compressed/async-gdpr-cookie-banner-292ec302d21a04d6-min.en-US.js HTTP/1.1 Host: assets.squarespace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/javascript cache-control: public, max-age=31536000 expires: Thu, 02 Jul 2026 16:35:45 GMT last-modified: Wed, 02 Jul 2025 13:45:18 GMT etag: "f127b0529f4aa2ab4dc4c5014ff3f5eb" content-encoding: br server: UploadServer via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Thu, 03 Jul 2025 08:57:07 GMT age: 58882 x-served-by: cache-iad-kiad7000066-IAD, cache-hel1410024-HEL x-cache: HIT, HIT x-cache-hits: 49, 1417 x-timer: S1751533028.890772,VS0,VE0 vary: Accept-Encoding access-control-allow-methods: GET, OPTIONS access-control-allow-origin: * content-length: 7001 X-Firefox-Spdy: h2

	GET www.thezdi.com/js/main.js	198.49.23.145	404 Not Found	0 B
URL www.thezdi.com/js/main.js IP / ASN 198.49.23.145 #53831 SQUARESPACE Requested byhttps://www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5606078 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerLet's Encrypt Subjectwww.thezdi.com FingerprintF7:B7:CF:A3:E4:09:5B:CF:F7:CC:B9:82:FA:04:08:99:4F:E6:F7:32 ValidityWed, 28 May 2025 03:28:41 GMT - Tue, 26 Aug 2025 03:28:40 GMT HTTP Headers GET /js/main.js HTTP/1.1 Host: www.thezdi.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.thezdi.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Cookie: crumb=BU2lo0nu+TVgNDc5MzJlMjBjOWU0ZmM1MWFiOTc2ZjU0YmU1MWMw Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 404 Not Found age: 0 content-encoding: gzip content-type: text/html;charset=utf-8 date: Thu, 03 Jul 2025 08:56:50 GMT etag: W/"ff5c10996795cc5784cc551eaa6ecb1d" expires: Thu, 01 Jan 1970 00:00:00 GMT server: Squarespace strict-transport-security: max-age=15552000 vary: Accept-Encoding x-content-type-options: nosniff x-contextid: Xuc1T2bI/Fvpqmccl content-length: 7759 X-Firefox-Spdy: h2`

	GET gist.github.com/zdi-team/ce295e8e608f3de50938eb905e596696.js	140.82.121.4	200 OK	9.0 kB
URL gist.github.com/zdi-team/ce295e8e608f3de50938eb905e596696.js IP / ASN 140.82.121.4 #36459 GITHUB Requested byhttps://www.zerodayinitiative.com/blog/2024/4/17/cve-2024-20697-windows-libarchive-remote-code-execution-vulnerability Resource Info File typeHTML document, ASCII text, with very long lines (8861) First Seen2025-07-03 Last Seen2025-07-03 Times Seen1 Size9.0 kB (8978 bytes) MD5c47db47b94e2860c6d0124265929fd47 SHA141fa1ef06921a454d1c1a18add476e5d591b0ff7 SHA25687e4b9a16dca4762e7eb2e273614872fb42b0cf3775b08653045c18c587ead0e Certificate Info IssuerSectigo Limited Subject.github.com Fingerprint7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2 ValidityWed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT HTTP Headers `GET /zdi-team/ce295e8e608f3de50938eb905e596696.js HTTP/1.1 Host: gist.github.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.zerodayinitiative.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 03 Jul 2025 08:57:04 GMT content-type: text/javascript; charset=utf-8 vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With etag: W/"87e4b9a16dca4762e7eb2e273614872f" cache-control: max-age=0, private, must-revalidate strict-transport-security: max-age=31536000; includeSubdomains; preload x-frame-options: deny x-content-type-options: nosniff x-xss-protection: 0 referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com .rel.tunnels.api.visualstudio.com wss://.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com .actions.githubusercontent.com wss://.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/ server: github.com content-encoding: gzip accept-ranges: bytes set-cookie: _gh_sess=aHoYPAS263J34IdAn8Voo3cBnRhnEDfQz7gLlr1PwN8qa2Twm6ghPnZSVMXJRt8QfldgtHv2SyasBz35u7FOnobG2AMfmS1vZsSoEUHnmV86xb5MUYwVXwheLieHBfZtie1%2FGLHz1aW0t7pzSAZJ4pU4gDLa8j4JRtDyhDtVrLRy4sr3%2B8r7IGbxNbdqbHcYi%2BTzFcubORHZD1g5Z%2FEDmsTQOiQzXZhKvNZiTZ310s9SpZPyqWvq7%2B47ZI9a3zN5NPGfHWeJIG1kUesEXOC3ng%3D%3D--JqqR2iq9kxrqt8HV--tr%2FEf22bnh%2BpPwQ%2Fv1vGUQ%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax _octo=GH1.1.1527810109.1751533026; Path=/; Domain=github.com; Expires=Fri, 03 Jul 2026 08:57:06 GMT; Secure; SameSite=Lax logged_in=no; Path=/; Domain=github.com; Expires=Fri, 03 Jul 2026 08:57:06 GMT; HttpOnly; Secure; SameSite=Lax content-length: 1854 x-github-request-id: 9328:7EC2C:4624599:483F3E5:686645E2 X-Firefox-Spdy: h2

Detections

Host Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (85)

HTTP Transactions (55)

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers