GET gist.github.com/cd1a0c7b1a16bd2f1b894514f29a56fe.js
302 Found 5.2 kB URL
gist.github.com/cd1a0c7b1a16bd2f1b894514f29a56fe.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606145
Size 5.2 kB (5184 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /cd1a0c7b1a16bd2f1b894514f29a56fe.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 22 Jun 2025 23:35:36 GMT
content-type: text/html; charset=utf-8
content-length: 0
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
location: https://gist.github.com/zdi-team/cd1a0c7b1a16bd2f1b894514f29a56fe.js
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
set-cookie: _gh_sess=%2FQ1K6imHE4Z8aF2PDzRebQyZsxw0y94UGD6ZSG14BfrjJDGUes3vKN87IoEyobfkKuCR1AIPybyoSZmY4eTRxjA64yiYR1WywdbDmvDdyJFwzARgqdsOYvETUx4u1pfEyN%2F02mAGzRQ0nt16%2Bqsq50klf4Ny21cQbZzXz8MdgJG3hXZPIJJxb3b%2FB7AOtpI8X0C9utsCjQbd4X8l4NHAsCkhprtTPqaqcjGJyXtbsRba9ANAfM%2Br2Kio9%2BctTl5XmfAkJUeHB24MutX1O8%2BkOA%3D%3D--TnYHXsnNlVX1Pxgu--pr7zamn8AtUNc46iy4jmdQ%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.258781528.1750635339; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; HttpOnly; Secure; SameSite=Lax
x-github-request-id: E77F:EE8EF:3FE7D6:425560:6858934B
X-Firefox-Spdy: h2
GET www.zerodayinitiative.com/images/logo-zdi.svg
200 OK 2.8 kB URL
www.zerodayinitiative.com/images/logo-zdi.svg
IP / ASN
52.89.240.103
#16509 AMAZON-02
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type SVG Scalable Vector Graphics image
First Seen 2025-06-21
Last Seen 2025-07-11
Times Seen 13
Size 2.8 kB (2790 bytes)
MD5 95f54e8040003b1df7490f8c3008b958
SHA1 8afc85b3d24da74cd27a0c0c1f353893df53d49b
SHA256 6dcb6fe2cc1261bad2608042e7b33a5bf71b88a6b93dc7bd5d2c4dcb84b2f77b
Certificate Info
Issuer Entrust, Inc.
Subject *.zerodayinitiative.com
Fingerprint 96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF
Validity Tue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT
GET /images/logo-zdi.svg HTTP/1.1
Host: www.zerodayinitiative.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Cookie: crumb=BQPz8DN43zbUMWU1MzFmOWRiY2I4ZGE1YzhhMGEzZWVjYTIxMjQw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jun 2025 23:35:39 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Last-Modified: Mon, 10 Feb 2025 14:50:02 GMT
ETag: "ae6-62dcad2b53a80"
Accept-Ranges: bytes
Content-Length: 2790
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml
GET www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
200 OK 61 kB URL
www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
IP / ASN
52.89.240.103
#16509 AMAZON-02
Resource Info
File type HTML document, Unicode text, UTF-8 text, with very long lines (13408)
First Seen 2025-06-22
Last Seen 2025-06-22
Times Seen 1
Size 61 kB (61335 bytes)
MD5 0db386d38b0a0f9828923909187daae8
SHA1 bebdac857204c335065ccf2570f5520b0d1b90b7
SHA256 e23d95460ea4d8885137848d9c671b2579f4f1bbc916903b9424119d1f82cd45
Certificate Info
Issuer Entrust, Inc.
Subject *.zerodayinitiative.com
Fingerprint 96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF
Validity Tue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT
GET /blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability HTTP/1.1
Host: www.zerodayinitiative.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.thezdi.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jun 2025 19:36:35 GMT
Server: Squarespace
Strict-Transport-Security: max-age=31536000; includeSubDomains
Accept-Ranges: bytes
Age: 6668
Content-Encoding: gzip
Content-Length: 13224
Content-Type: text/html;charset=utf-8
Etag: W/"df6fd77ebb6dcaebb12449bed24105d6--gzip"
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Contextid: yILUib09/gxQIMwNm
Set-Cookie: crumb=BQPz8DN43zbUMWU1MzFmOWRiY2I4ZGE1YzhhMGEzZWVjYTIxMjQw;Secure;Path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
GET gist.github.com/53e847de72f143e100520ebb48c9fe24.js
302 Found 6.0 kB URL
gist.github.com/53e847de72f143e100520ebb48c9fe24.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606145
Size 6.0 kB (6031 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /53e847de72f143e100520ebb48c9fe24.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 22 Jun 2025 23:35:36 GMT
content-type: text/html; charset=utf-8
content-length: 0
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
location: https://gist.github.com/zdi-team/53e847de72f143e100520ebb48c9fe24.js
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
set-cookie: _gh_sess=3DiXf9iE4UWFhazmcx5GT%2FF5ffoQXS8IOAI2matizr9dPyjcmA7sQlyVw0Dmgx4VIBaTrAn7%2BB1uGqjrQtnpMYfOggG2DgJaM1ec2Otw02u%2BwjNYcbYTMmoTAKKEpPeHjBoxXSc%2BL8tecmKSUlP5yFxZUPiIT7o5ZtVh0y0WazqMkarrkJCo9PiBzTr13CRxBEU9tzSXJLwykUnpBTTpOSiG02lpJR5GMmb1%2BU1jui%2Bt3THYO3oFgs4G49FtNkOV2r50FNPApusJU%2Bs2YqPeVw%3D%3D--svAV8N4yjjgUWdas--4NIj3akfr9FwK1ubwo2xQw%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.874958758.1750635339; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; HttpOnly; Secure; SameSite=Lax
x-github-request-id: E77F:EE8EF:3FE7D6:425561:6858934B
X-Firefox-Spdy: h2
GET fonts.googleapis.com/icon?family=Material+Icons
200 OK 565 B URL
fonts.googleapis.com/icon?family=Material+Icons
IP / ASN
142.250.74.10
#15169 GOOGLE
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type ASCII text
First Seen 2025-01-17
Last Seen 2025-08-02
Times Seen 10238
Size 565 B (565 bytes)
MD5 736c83e15fc300de505f6ce9762a9396
SHA1 31c0f11ada78e92970ff42d990116d77c169c6d7
SHA256 c31266310101d0b1607937a7baf07f1601b7637bd2373176696488a07d7b4302
Certificate Info
Issuer Google Trust Services
Subject upload.video.google.com
Fingerprint 58:09:05:96:27:31:E2:3D:AB:89:AD:1C:2E:C3:03:82:B0:27:3D:86
Validity Mon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 22 Jun 2025 23:35:39 GMT
date: Sun, 22 Jun 2025 23:35:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET assets.squarespace.com/universal/scripts-compressed/83028-27950c199aa90a32-min.en-US.js
200 OK 12 kB URL
assets.squarespace.com/universal/scripts-compressed/83028-27950c199aa90a32-min.en-US.js
IP / ASN
151.101.64.237
#54113 FASTLY
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JavaScript source, ASCII text, with very long lines (11492)
First Seen 2025-06-20
Last Seen 2025-06-28
Times Seen 390
Size 12 kB (11646 bytes)
MD5 69743569454de7d65ad3df9d3b7dab9f
SHA1 593baab2bd19d500aa2d71bafe7ba2650fb50b6f
SHA256 3060be3969ef3f6508ee078d096386452dbef0a0ab77717e392e1269a3a340fe
Certificate Info
Issuer DigiCert Inc
Subject *.squarespace.com
Fingerprint 03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76
Validity Mon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
GET /universal/scripts-compressed/83028-27950c199aa90a32-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
cache-control: public, max-age=31536000
expires: Thu, 18 Jun 2026 16:13:01 GMT
last-modified: Wed, 18 Jun 2025 16:10:09 GMT
etag: "f61c9ff4ac8f4621e7ad4d5bb371176c"
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 22 Jun 2025 23:35:41 GMT
age: 372160
x-served-by: cache-iad-kjyo7100179-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 49, 9571
x-timer: S1750635341.309610,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 3985
X-Firefox-Spdy: h2
GET fonts.googleapis.com/css2?family=Lato:ital,wght@0,100;0,300;0,400;0,700;1,100;1,300;1,700
200 OK 5.5 kB URL
fonts.googleapis.com/css2?family=Lato:ital,wght@0,100;0,300;0,400;0,700;1,100;1,300;1,700
IP / ASN
142.250.74.10
#15169 GOOGLE
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type ASCII text
First Seen 2025-06-22
Last Seen 2025-06-27
Times Seen 2
Size 5.5 kB (5476 bytes)
MD5 b2a5ea35ac6591480ee3e026926b2712
SHA1 5d096c1c608a12cb3d12cfec695cf0caecf4dac1
SHA256 a53e55ffd0b0511a26a457d3411b1f852ecfe66811690999e7a0f935f654683e
Certificate Info
Issuer Google Trust Services
Subject upload.video.google.com
Fingerprint 58:09:05:96:27:31:E2:3D:AB:89:AD:1C:2E:C3:03:82:B0:27:3D:86
Validity Mon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
GET /css2?family=Lato:ital,wght@0,100;0,300;0,400;0,700;1,100;1,300;1,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 22 Jun 2025 23:35:39 GMT
date: Sun, 22 Jun 2025 23:35:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET gist.github.com/zdi-team/99bf449c418456a136f600ee20884d39.js
200 OK 4.8 kB URL
gist.github.com/zdi-team/99bf449c418456a136f600ee20884d39.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type HTML document, ASCII text, with very long lines (4678)
First Seen 2025-06-22
Last Seen 2025-06-22
Times Seen 1
Size 4.8 kB (4795 bytes)
MD5 50b87f85f551623048b3d41e63efe1f5
SHA1 ea88408eff66d1fd80b93193a4ed56a3371ffe0b
SHA256 584f0f130c3130a23f20d8e280bfca4437c58ae9ef9b9469d803ecec0d969fa2
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /zdi-team/99bf449c418456a136f600ee20884d39.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zerodayinitiative.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 23:35:37 GMT
content-type: text/javascript; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
etag: W/"584f0f130c3130a23f20d8e280bfca44"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
content-encoding: gzip
accept-ranges: bytes
set-cookie: _gh_sess=0vWJD5M877tQz4gT5gGl%2FlVqbVBNt6praQSEaNaqyTVIKf7KXZb99ojHhwpyghGaHzPI3CH7qk8H6n6RIcscPuCbqHhWBAXs4sTKisXtSwMCOIBp02iUbxLRxp6mZphBYJtR75FZyHJOFqCiy6cXntJUd2clZ%2BK%2Bzk2iUdJqYAdiPjroh8u8tCL0%2FWBLoSh15DNalJKT2STnbCimc3VYP3WzdfV9o5iyOLj9Mq3Mv5DW1D%2FXgTr5PY2LTRveYDPwlpIW4%2FfHghwSn9IQQoY%2B6g%3D%3D--b8fu9bydnnn1eSY1--vFpmPk4x%2BWg7YT%2BE1QBmFw%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.1888951428.1750635340; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; HttpOnly; Secure; SameSite=Lax
content-length: 1485
x-github-request-id: E77F:EE8EF:3FE998:425746:6858934C
X-Firefox-Spdy: h2
GET assets.squarespace.com/universal/styles-compressed/5fc7a936d9b12c49-min.en-US.css
200 OK 14 kB URL
assets.squarespace.com/universal/styles-compressed/5fc7a936d9b12c49-min.en-US.css
IP / ASN
151.101.64.237
#54113 FASTLY
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type ASCII text, with very long lines (13474), with no line terminators
First Seen 2025-02-28
Last Seen 2025-08-02
Times Seen 1901
Size 14 kB (13474 bytes)
MD5 9a71d6ae470fff6c31c3d2aa6baf7442
SHA1 df74821784d0989a3bea7ec96706ccfdc0960fe0
SHA256 78b444b351e26e4163232e6c43d28b3f242322e74d32fcfb789748b8a228e9da
Certificate Info
Issuer DigiCert Inc
Subject *.squarespace.com
Fingerprint 03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76
Validity Mon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
GET /universal/styles-compressed/5fc7a936d9b12c49-min.en-US.css HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
cache-control: public, max-age=31536000
expires: Mon, 11 May 2026 15:25:36 GMT
last-modified: Thu, 06 Feb 2025 14:24:27 GMT
etag: "dc2c7ced3f47a6282d63a75478de2e78"
content-encoding: gzip
server: UploadServer
fastly-restarts: 1
accept-ranges: bytes
date: Sun, 22 Jun 2025 23:35:41 GMT
via: 1.1 varnish
age: 2327844
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 158091
x-timer: S1750635341.316756,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 1905
X-Firefox-Spdy: h2
GET assets.squarespace.com/universal/scripts-compressed/common-8b3e7c34cacf8077-min.en-US.js
200 OK 1.1 MB URL
assets.squarespace.com/universal/scripts-compressed/common-8b3e7c34cacf8077-min.en-US.js
IP / ASN
151.101.64.237
#54113 FASTLY
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JavaScript source, ASCII text, with very long lines (38561)
First Seen 2025-06-20
Last Seen 2025-06-25
Times Seen 203
Size 1.1 MB (1101955 bytes)
MD5 24510feb170a1805bc769e8c44e3f1fc
SHA1 e938e95ad5cb29423a54343b1a7afce696f77de3
SHA256 976db7d1179424d865e1746595a6c66ca357f96e6b72bebef10d1694075777e4
Certificate Info
Issuer DigiCert Inc
Subject *.squarespace.com
Fingerprint 03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76
Validity Mon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
GET /universal/scripts-compressed/common-8b3e7c34cacf8077-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.zerodayinitiative.com
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
cache-control: public, max-age=31536000
expires: Sat, 20 Jun 2026 16:03:50 GMT
last-modified: Fri, 20 Jun 2025 15:36:26 GMT
etag: "acb17399b318c617a4aacd55a3fe40d6"
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 22 Jun 2025 23:35:39 GMT
age: 199909
x-served-by: cache-iad-kcgs7200087-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 45, 2532
x-timer: S1750635339.281456,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 279332
X-Firefox-Spdy: h2
GET assets.squarespace.com/universal/scripts-compressed/common-vendors-stable-54bab8bb8a15366b-min.en-US.js
200 OK 246 kB URL
assets.squarespace.com/universal/scripts-compressed/common-vendors-stable-54bab8bb8a15366b-min.en-US.js
IP / ASN
151.101.64.237
#54113 FASTLY
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JavaScript source, ASCII text, with very long lines (53547)
First Seen 2025-05-20
Last Seen 2025-08-02
Times Seen 1474
Size 246 kB (246255 bytes)
MD5 7c8a3a52b33a7338d9a751c537edb7f4
SHA1 f386c350d3925e350724ae2eaaa37ab4a38557bb
SHA256 e5b671d1a1c6c1e11f07199ae4769339436a51f356a9b8932401db0476a35a06
Certificate Info
Issuer DigiCert Inc
Subject *.squarespace.com
Fingerprint 03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76
Validity Mon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
GET /universal/scripts-compressed/common-vendors-stable-54bab8bb8a15366b-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.zerodayinitiative.com
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
cache-control: public, max-age=31536000
expires: Wed, 20 May 2026 17:13:20 GMT
last-modified: Mon, 03 Mar 2025 17:42:11 GMT
etag: "b5e8bb8840351ba3e9c298877099090e"
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 22 Jun 2025 23:35:39 GMT
age: 2828379
x-served-by: cache-iad-kcgs7200034-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 123047, 29260
x-timer: S1750635339.360504,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 70731
X-Firefox-Spdy: h2
GET assets.squarespace.com/universal/scripts-compressed/user-account-core-477388a25a366850-min.en-US.js
200 OK 227 kB URL
assets.squarespace.com/universal/scripts-compressed/user-account-core-477388a25a366850-min.en-US.js
IP / ASN
151.101.64.237
#54113 FASTLY
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
First Seen 2025-06-20
Last Seen 2025-06-25
Times Seen 67
Size 227 kB (226865 bytes)
MD5 8de3a8abb23138773eff92d54aef7ed9
SHA1 b7a61cb0542b442eafa74406e1fc90d59b36897f
SHA256 43507d7c2497299c7aa41d55236a94326ab116cfba02be5bf983991ee9a32c25
Certificate Info
Issuer DigiCert Inc
Subject *.squarespace.com
Fingerprint 03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76
Validity Mon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
GET /universal/scripts-compressed/user-account-core-477388a25a366850-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.zerodayinitiative.com
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
cache-control: public, max-age=31536000
expires: Sat, 20 Jun 2026 16:48:14 GMT
last-modified: Fri, 20 Jun 2025 16:40:21 GMT
etag: "391de8a003d14305bfb307181271676d"
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 22 Jun 2025 23:35:39 GMT
age: 197244
x-served-by: cache-iad-kcgs7200154-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 300, 3409
x-timer: S1750635339.282381,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 62473
X-Firefox-Spdy: h2
GET gist.github.com/zdi-team/3667e6f0a6c6eed5813276e46c426b6e.js
200 OK 6.0 kB URL
gist.github.com/zdi-team/3667e6f0a6c6eed5813276e46c426b6e.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type HTML document, ASCII text, with very long lines (5930)
First Seen 2025-06-22
Last Seen 2025-06-22
Times Seen 1
Size 6.0 kB (6047 bytes)
MD5 6f5d6f963aa6073b9f648e907a5e7db5
SHA1 100e5f99603998346a0694f3bcf738f49d07d95d
SHA256 fab83e1d4082a6dba6d7301747e60d2eed16b5fc517554f9885d5baea16e4054
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /zdi-team/3667e6f0a6c6eed5813276e46c426b6e.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zerodayinitiative.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 23:35:37 GMT
content-type: text/javascript; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
etag: W/"fab83e1d4082a6dba6d7301747e60d2e"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
content-encoding: gzip
accept-ranges: bytes
set-cookie: _gh_sess=Mqei4SOOdgwBrAQvRB454pgYnykjB8ymuYU5CO4uSVE1kpha2IAc4m5BONJqXgkpDiGBHGTHo5V%2FHg5%2B7Zcp2G0RpLS3TUfv5UdF5j2tLr4Eli%2BUnCMYwTRlB8USzhD0fDmXdSHovxUEQor4XoNx5ApfHnO8Y5azZevuhowQkV67WALsT0NzEkCP0w5wb4nV3gFPJ%2BhsUU1BivgUTCZg1bxNPi91FoTEcunILcnQ46troGhgxOEZIGYYJ%2Fq772wiO7jqba8G9gwjjuIzgTiL9g%3D%3D--m0msJ%2FrNfACjUH6v--2agZl3k%2FHiwm7acvmDjLPw%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.1418739111.1750635340; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; HttpOnly; Secure; SameSite=Lax
content-length: 1620
x-github-request-id: E77F:EE8EF:3FE9B2:425763:6858934C
X-Firefox-Spdy: h2
GET images.squarespace-cdn.com/content/v1/5894c269e4fcb5e65a1ed623/1487670157237-HOXHMI54TA0SZP21OY7C/favicon.ico
200 OK 604 B URL
images.squarespace-cdn.com/content/v1/5894c269e4fcb5e65a1ed623/1487670157237-HOXHMI54TA0SZP21OY7C/favicon.ico
IP / ASN
151.101.0.238
#54113 FASTLY
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced
First Seen 2025-06-22
Last Seen 2025-07-10
Times Seen 6
Size 604 B (604 bytes)
MD5 eaac5a023bd7dbb944ad12048138ab28
SHA1 7a671b9263d8d16e89bc103edcff3ea8a76b3425
SHA256 ed3f64e42bd5105f8e2ca81152c9eaf53ce5cdb92405f8ce455d3b2901472725
Certificate Info
Issuer Let's Encrypt
Subject *.squarespace-cdn.com
Fingerprint 43:D5:19:9D:E5:A1:4C:47:E5:79:6F:CA:01:BF:F6:AB:D6:56:F6:A8
Validity Sun, 25 May 2025 13:08:36 GMT - Sat, 23 Aug 2025 13:08:35 GMT
GET /content/v1/5894c269e4fcb5e65a1ed623/1487670157237-HOXHMI54TA0SZP21OY7C/favicon.ico HTTP/1.1
Host: images.squarespace-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
timing-allow-origin: *
access-control-expose-headers: Content-Length, Timing-Allow-Origin
x-sqsp-is-public: true
content-type: image/png
access-control-allow-origin: *
etag: CKOwjvzFiusCEAE=
cache-control: max-age=31536000,s-maxage=31536000
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 2224700
date: Sun, 22 Jun 2025 23:35:41 GMT
x-served-by: cache-iad-kcgs7200059-IAD, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 1476, 0
x-timer: S1750635342.972107,VS0,VE1
vary: Accept-Encoding
server-timing: time-elapsed;dur=1;desc=png
tracepoint: Fastly
content-length: 604
X-Firefox-Spdy: h2
POST region1.google-analytics.com/g/collect?v=2&tid=G-DBFMYZ5KK8>m=45je56g0v9114518688za200&_p=1750635340236&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104791498~104791500&cid=2007008949.1750635341&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAI&_s=1&sid=1750635340&sct=1&seg=0&dl=https%3A%2F%2Fwww.zerodayinitiative.com%2Fblog%2F2022%2F7%2F13%2Fcve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability&dr=https%3A%2F%2Fwww.thezdi.com%2F&dt=Zero%20Day%20Initiative%20%E2%80%94%20CVE-2022-30136%3A%20Microsoft%20Windows%20Network%20File%20System%20v4%20Remote%20Code%20Execution%20Vulnerability&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=3459
204 No Content 0 B URL
region1.google-analytics.com/g/collect?v=2&tid=G-DBFMYZ5KK8>m=45je56g0v9114518688za200&_p=1750635340236&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104791498~104791500&cid=2007008949.1750635341&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAI&_s=1&sid=1750635340&sct=1&seg=0&dl=https%3A%2F%2Fwww.zerodayinitiative.com%2Fblog%2F2022%2F7%2F13%2Fcve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability&dr=https%3A%2F%2Fwww.thezdi.com%2F&dt=Zero%20Day%20Initiative%20%E2%80%94%20CVE-2022-30136%3A%20Microsoft%20Windows%20Network%20File%20System%20v4%20Remote%20Code%20Execution%20Vulnerability&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=3459
IP / ASN
216.239.34.36
#15169 GOOGLE
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606145
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject *.google-analytics.com
Fingerprint 79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA
Validity Mon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
POST /g/collect?v=2&tid=G-DBFMYZ5KK8>m=45je56g0v9114518688za200&_p=1750635340236&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104684208~104684211~104718208~104791498~104791500&cid=2007008949.1750635341&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAI&_s=1&sid=1750635340&sct=1&seg=0&dl=https%3A%2F%2Fwww.zerodayinitiative.com%2Fblog%2F2022%2F7%2F13%2Fcve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability&dr=https%3A%2F%2Fwww.thezdi.com%2F&dt=Zero%20Day%20Initiative%20%E2%80%94%20CVE-2022-30136%3A%20Microsoft%20Windows%20Network%20File%20System%20v4%20Remote%20Code%20Execution%20Vulnerability&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=3459 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zerodayinitiative.com/
Origin: https://www.zerodayinitiative.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.zerodayinitiative.com
date: Sun, 22 Jun 2025 23:35:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:102:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:102:0
report-to: {"group":"ascnsrsggc:102:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:102:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET gist.github.com/2a4c9d9681ed2e6efe71d89190f85d86.js
302 Found 5.3 kB URL
gist.github.com/2a4c9d9681ed2e6efe71d89190f85d86.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606145
Size 5.3 kB (5278 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /2a4c9d9681ed2e6efe71d89190f85d86.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 22 Jun 2025 23:35:36 GMT
content-type: text/html; charset=utf-8
content-length: 0
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
location: https://gist.github.com/zdi-team/2a4c9d9681ed2e6efe71d89190f85d86.js
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
set-cookie: _gh_sess=0%2FrZdixTsD04XPH2m%2FNZsVTqWJmiD8XkkcWIYyZge58yEPXkSiqhn8Shu7yRwfkhYnilYw2qWZvt9t4Z3hGZsfvgCDGbU%2BmG0qW3PRY1tNLBoamiS5%2Fh8rgRfhjP%2BWgW6AjE%2F6wI7CwnSZLEO4C59hgzEEDtVIctR15vDAJ6vsFf3Z%2BRX92mT2j27N6LMKRq9r3VsSPj4ZFm4S%2FfcXqoVzqe4MeOsOjXiz2MCVMuuyX35%2FSKTe5RCAqQoo5Oj%2BPlFkhrX%2FNcZOobOPcxd499lg%3D%3D--uS0TJ4LmxBr%2BwdvN--wNR0AYGKSMF3jWCgATvA8g%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.473979021.1750635339; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; HttpOnly; Secure; SameSite=Lax
x-github-request-id: E77F:EE8EF:3FE7D5:42555F:6858934B
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/titilliumweb/v18/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2
200 OK 12 kB URL
fonts.gstatic.com/s/titilliumweb/v18/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2
IP / ASN
142.250.178.35
#15169 GOOGLE
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 12344, version 1.0
First Seen 2025-06-03
Last Seen 2025-08-01
Times Seen 457
Size 12 kB (12344 bytes)
MD5 cfb5bec034d29df6c0f56c2c1a0e8340
SHA1 05f51cc85c5fe3b64b2203b363cb48c31f84ce44
SHA256 861b80b49d2a634d8746e2e45c672309d9ba69a2fdd95da2af034d7a1d09b3f9
Certificate Info
Issuer Google Trust Services
Subject *.gstatic.com
Fingerprint 6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
Validity Mon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
GET /s/titilliumweb/v18/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.zerodayinitiative.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 16 Jun 2025 21:29:26 GMT
expires: Tue, 16 Jun 2026 21:29:26 GMT
cache-control: public, max-age=31536000
age: 525974
last-modified: Mon, 02 Jun 2025 16:41:37 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET assets.squarespace.com/universal/scripts-compressed/cldr-resource-pack-f88491ffe3410ea1-min.en-US.js
200 OK 90 kB URL
assets.squarespace.com/universal/scripts-compressed/cldr-resource-pack-f88491ffe3410ea1-min.en-US.js
IP / ASN
151.101.64.237
#54113 FASTLY
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
First Seen 2025-06-16
Last Seen 2025-07-08
Times Seen 1112
Size 90 kB (89939 bytes)
MD5 da31f59bac747ae5beb2e8ba05480a1d
SHA1 a152f7ffdb018d8547c889f3adfd2e303057096f
SHA256 c0acebaa232deab04d40ad7fbea1e1a2b4995792f0f521b28562a2e0db47091d
Certificate Info
Issuer DigiCert Inc
Subject *.squarespace.com
Fingerprint 03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76
Validity Mon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
GET /universal/scripts-compressed/cldr-resource-pack-f88491ffe3410ea1-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.zerodayinitiative.com
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
cache-control: public, max-age=31536000
expires: Tue, 16 Jun 2026 14:31:16 GMT
last-modified: Fri, 06 Jun 2025 14:42:56 GMT
etag: "bf7833b70f812335f8378bee259065d9"
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 22 Jun 2025 23:35:39 GMT
age: 551062
x-served-by: cache-iad-kiad7000161-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 60, 40323
x-timer: S1750635339.385020,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 15004
X-Firefox-Spdy: h2
GET www.zerodayinitiative.com/css/main.css
200 OK 114 kB URL
www.zerodayinitiative.com/css/main.css
IP / ASN
52.89.240.103
#16509 AMAZON-02
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type troff or preprocessor input, Unicode text, UTF-8 text
First Seen 2025-06-21
Last Seen 2025-07-11
Times Seen 13
Size 114 kB (114152 bytes)
MD5 c0cb8178b116cf35087d8b5575120a15
SHA1 125cce18586de2019bf2b414dd1e6ad56f19217b
SHA256 b75f469171f770fafcb237bb6bd58cd7faa02d7a241654dd731426302bb78cd8
Certificate Info
Issuer Entrust, Inc.
Subject *.zerodayinitiative.com
Fingerprint 96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF
Validity Tue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT
GET /css/main.css HTTP/1.1
Host: www.zerodayinitiative.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Cookie: crumb=BQPz8DN43zbUMWU1MzFmOWRiY2I4ZGE1YzhhMGEzZWVjYTIxMjQw
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jun 2025 23:35:39 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Last-Modified: Mon, 24 Feb 2025 15:47:13 GMT
ETag: "1bde8-62ee540fd6240-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 17539
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
GET assets.squarespace.com/universal/styles-compressed/user-account-core-f5a00a1f8fff3c55-min.en-US.css
200 OK 2.3 kB URL
assets.squarespace.com/universal/styles-compressed/user-account-core-f5a00a1f8fff3c55-min.en-US.css
IP / ASN
151.101.64.237
#54113 FASTLY
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type ASCII text, with very long lines (2301), with no line terminators
First Seen 2025-06-12
Last Seen 2025-06-25
Times Seen 162
Size 2.3 kB (2301 bytes)
MD5 a7cd1ac39e0b1db9c23c96df2959b268
SHA1 e43bb2f6feede4ffba1916a61c91a35ee50ef5b6
SHA256 26a8976ea81bb3d80514ed407992b5243c233a1fdf91b7fa94414f1894c5e206
Certificate Info
Issuer DigiCert Inc
Subject *.squarespace.com
Fingerprint 03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76
Validity Mon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
GET /universal/styles-compressed/user-account-core-f5a00a1f8fff3c55-min.en-US.css HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
cache-control: public, max-age=31536000
expires: Thu, 11 Jun 2026 20:32:37 GMT
last-modified: Fri, 06 Jun 2025 17:19:12 GMT
etag: "775e575f03d339e1a8da10a1fa265717"
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 22 Jun 2025 23:35:39 GMT
age: 961382
x-served-by: cache-iad-kiad7000094-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 46, 17272
x-timer: S1750635340.505580,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 727
X-Firefox-Spdy: h2
GET gist.github.com/zdi-team/2a4c9d9681ed2e6efe71d89190f85d86.js
200 OK 5.3 kB URL
gist.github.com/zdi-team/2a4c9d9681ed2e6efe71d89190f85d86.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type HTML document, ASCII text, with very long lines (5161)
First Seen 2025-06-22
Last Seen 2025-06-22
Times Seen 1
Size 5.3 kB (5278 bytes)
MD5 49034ca60328ccb294179c96344b1c8c
SHA1 d502a4e4400d7ef84ae5f1825d68e4cbbe835f77
SHA256 d24e69d0f92759142b12d7fb41a94ce4ea5834484e27b8cc13f4b6a2f72da1da
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /zdi-team/2a4c9d9681ed2e6efe71d89190f85d86.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zerodayinitiative.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 23:35:37 GMT
content-type: text/javascript; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
etag: W/"d24e69d0f92759142b12d7fb41a94ce4"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
content-encoding: gzip
accept-ranges: bytes
set-cookie: _gh_sess=8d4i4nwyP1nZhWRBYlEgB17tWNNFFuT65wxgvC8Wv5gacUs9nrowLZbYUCebpRhTOySfk8x0HRh9AdhRkbooO3I7N2hCVWkysCVI%2BOIYbhsa4iczHhImK2puaHeuWoW5%2FvIgD%2BweGZN%2BcAg3guzSNXomCF06lnTKrWYniaYtmDjCZRXygZBbdQfKpgyj5TwlnICmSLy6zhB0BeT4fXH6fjU%2FAEbm3gsnps1fE50OfOC2gd%2F4Oc%2FWtXKOiHEqLAaCq%2B5I92ExU3MJQ%2FdkQUqitA%3D%3D--E%2B7kpQt%2F4S5bU6kl--z6tZr9X3trTL0z%2FCrfA9lg%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.1974918028.1750635340; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; HttpOnly; Secure; SameSite=Lax
content-length: 1545
x-github-request-id: E77F:EE8EF:3FE96E:42571E:6858934C
X-Firefox-Spdy: h2
GET www.zerodayinitiative.com/images/masterhead_home.jpg
200 OK 103 kB URL
www.zerodayinitiative.com/images/masterhead_home.jpg
IP / ASN
52.89.240.103
#16509 AMAZON-02
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2880x900, components 3
First Seen 2023-11-20
Last Seen 2025-07-11
Times Seen 8
Size 103 kB (103030 bytes)
MD5 5d966a8e50d60ee3825a77524b083b8c
SHA1 740ab25534cc6548d4652c36915c09e78bc8ea29
SHA256 8989b3c8db91f5bb59dde43abd223acbc014aab0d7ea0b1b98c0bb5d56cd2631
Certificate Info
Issuer Entrust, Inc.
Subject *.zerodayinitiative.com
Fingerprint 96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF
Validity Tue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT
GET /images/masterhead_home.jpg HTTP/1.1
Host: www.zerodayinitiative.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/css/main.css
Cookie: crumb=BQPz8DN43zbUMWU1MzFmOWRiY2I4ZGE1YzhhMGEzZWVjYTIxMjQw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jun 2025 23:35:40 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Last-Modified: Fri, 05 Jan 2024 18:38:08 GMT
ETag: "19276-60e3726404400"
Accept-Ranges: bytes
Content-Length: 103030
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
GET assets.squarespace.com/universal/scripts-compressed/extract-css-runtime-4e49e54d7bae714f-min.en-US.js
200 OK 44 kB URL
assets.squarespace.com/universal/scripts-compressed/extract-css-runtime-4e49e54d7bae714f-min.en-US.js
IP / ASN
151.101.64.237
#54113 FASTLY
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JavaScript source, ASCII text, with very long lines (43533)
First Seen 2025-06-21
Last Seen 2025-06-25
Times Seen 150
Size 44 kB (44170 bytes)
MD5 a0566d43df94544f85bbdcb25b4e52ee
SHA1 8a31b4a1efe30975a28ef94f7dad5e21ca398297
SHA256 26b90b74b19dea82bec6518e44432df75a1f95a8feb622cffc722706babb31b7
Certificate Info
Issuer DigiCert Inc
Subject *.squarespace.com
Fingerprint 03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76
Validity Mon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
GET /universal/scripts-compressed/extract-css-runtime-4e49e54d7bae714f-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.zerodayinitiative.com
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
cache-control: public, max-age=31536000
expires: Sat, 20 Jun 2026 23:10:46 GMT
last-modified: Fri, 20 Jun 2025 22:43:11 GMT
etag: "c3b9308942df44e229b71b5626cb9669"
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 22 Jun 2025 23:35:39 GMT
age: 174292
x-served-by: cache-iad-kjyo7100157-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 107, 11477
x-timer: S1750635339.264502,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 15700
X-Firefox-Spdy: h2
GET fonts.googleapis.com/css?family=Titillium+Web:300,400,600,700
200 OK 3.4 kB URL
fonts.googleapis.com/css?family=Titillium+Web:300,400,600,700
IP / ASN
142.250.74.10
#15169 GOOGLE
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type ASCII text
First Seen 2025-06-05
Last Seen 2025-07-24
Times Seen 51
Size 3.4 kB (3352 bytes)
MD5 1a551a05a8f167b0da20d1d1b8312d7c
SHA1 cd7f2f748eca0a5a03d45a91d33f2b3c3351526b
SHA256 e8b848361a581e70b1e06a07124735ea78b8a56257cfa8c0ed0b81fdbaf9c7f0
Certificate Info
Issuer Google Trust Services
Subject upload.video.google.com
Fingerprint 58:09:05:96:27:31:E2:3D:AB:89:AD:1C:2E:C3:03:82:B0:27:3D:86
Validity Mon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
GET /css?family=Titillium+Web:300,400,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 22 Jun 2025 23:35:39 GMT
date: Sun, 22 Jun 2025 23:35:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET gist.github.com/zdi-team/63d218f7c02f50da4476660dda47ac96.js
200 OK 4.8 kB URL
gist.github.com/zdi-team/63d218f7c02f50da4476660dda47ac96.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type HTML document, ASCII text, with very long lines (4678)
First Seen 2025-06-22
Last Seen 2025-06-22
Times Seen 1
Size 4.8 kB (4795 bytes)
MD5 a7ef44aa41614b5b1b21646560b8cd30
SHA1 71736b861a8118ea51dafd9fa235ba66b33d9608
SHA256 51614a9f7e4c35f130612eabf127c135902a04aa105f7660d59a6cc6633a5fe3
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /zdi-team/63d218f7c02f50da4476660dda47ac96.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zerodayinitiative.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 23:35:37 GMT
content-type: text/javascript; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
etag: W/"51614a9f7e4c35f130612eabf127c135"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
content-encoding: gzip
accept-ranges: bytes
set-cookie: _gh_sess=%2F1klOSKIUDXShz2borWjvhqrPUAyd%2BVIiUx99j9ObFS6zyzcCEULIq0sElAq2rPOO6lrkX%2F%2BtCy%2BKJ5j14NgxgfvE6dbvTQOSxE10MTlC9qH%2FKcVf3wbFTDIuPvgAzz8uRsneoTH2GZCOsAPYuMPN4nqLQjl75Kn0OS3b0e56IzOXnDtL1hA5qdy4EgU36bvxAA%2FmQugtWslZU6ntlfQhpRj90d5yT02MUdIvFhb6PWu9pmva8Xzy89c1k0Dayhr%2BZHTbIb2UA%2FzIL%2F%2BH1Z2sA%3D%3D--fg61SFT0UXKxUsQ%2B--Vz6QjznTv3ZFgZu%2B5MNz7Q%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.2019480193.1750635340; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; HttpOnly; Secure; SameSite=Lax
content-length: 1484
x-github-request-id: E77F:EE8EF:3FE9AB:42575D:6858934C
X-Firefox-Spdy: h2
GET www.google-analytics.com/analytics.js
200 OK 53 kB URL
www.google-analytics.com/analytics.js
IP / ASN
142.250.74.14
#15169 GOOGLE
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JavaScript source, ASCII text, with very long lines (2343)
First Seen 2023-06-16
Last Seen 2025-07-29
Times Seen 5233
Size 53 kB (52916 bytes)
MD5 575b5480531da4d14e7453e2016fe0bc
SHA1 e5c5f3134fe29e60b591c87ea85951f0aea36ee1
SHA256 de36e50194320a7d3ef1ace9bd34a875a8bd458b253c061979dd628e9bf49afd
Certificate Info
Issuer Google Trust Services
Subject *.google-analytics.com
Fingerprint 79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA
Validity Mon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsgac:225:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsgac:225:0
report-to: {"group":"ascnsrsgac:225:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsgac:225:0"}],}
server: Golfe2
content-length: 20994
date: Sun, 22 Jun 2025 22:59:22 GMT
expires: Mon, 23 Jun 2025 00:59:22 GMT
cache-control: public, max-age=7200
age: 2178
last-modified: Tue, 12 Dec 2023 18:09:08 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/titilliumweb/v18/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2
200 OK 12 kB URL
fonts.gstatic.com/s/titilliumweb/v18/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2
IP / ASN
142.250.178.35
#15169 GOOGLE
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 12116, version 1.0
First Seen 2025-06-03
Last Seen 2025-08-01
Times Seen 298
Size 12 kB (12116 bytes)
MD5 b65bd9e79f1dd93eb8e0cd83e3fe62f9
SHA1 3bb357672e2c3942ca0f67d8861aea3cb80284b9
SHA256 f356ff5613e1b6789a47ae3bd6b72fa6fb61d44493811bcb758fb4229b7a8bcb
Certificate Info
Issuer Google Trust Services
Subject *.gstatic.com
Fingerprint 6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
Validity Mon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
GET /s/titilliumweb/v18/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.zerodayinitiative.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12116
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 16 Jun 2025 21:30:33 GMT
expires: Tue, 16 Jun 2026 21:30:33 GMT
cache-control: public, max-age=31536000
age: 525908
last-modified: Mon, 02 Jun 2025 16:41:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.thezdi.com/images/logo-combo.svg
404 Not Found 28 kB URL
www.thezdi.com/images/logo-combo.svg
IP / ASN
198.185.159.144
#53831 SQUARESPACE
Requested by https://www.thezdi.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type HTML document, ASCII text, with very long lines (12878)
First Seen 2025-06-22
Last Seen 2025-06-22
Times Seen 1
Size 28 kB (27731 bytes)
MD5 64bde99e4e4b65566ce75128f36ae1e7
SHA1 dc0b365e6b02dc50ed225e0019b4b05d286a9691
SHA256 b25f4b30175106f0671ccde3c6e18c48f47c8aae1395d6039f603d5d320668f1
Certificate Info
Issuer Let's Encrypt
Subject www.thezdi.com
Fingerprint F7:B7:CF:A3:E4:09:5B:CF:F7:CC:B9:82:FA:04:08:99:4F:E6:F7:32
Validity Wed, 28 May 2025 03:28:41 GMT - Tue, 26 Aug 2025 03:28:40 GMT
GET /images/logo-combo.svg HTTP/1.1
Host: www.thezdi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.thezdi.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Cookie: crumb=BZEn5kMNMHgLZDAxMTFhMTEzYTYxYjA4ZGI3Y2JmYzBkM2JjZGYz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
age: 0
content-encoding: gzip
content-type: text/html;charset=utf-8
date: Sun, 22 Jun 2025 23:35:36 GMT
etag: W/"ed7d6b3d2783c6ca49b6dd77d7caba70"
expires: Thu, 01 Jan 1970 00:00:00 GMT
server: Squarespace
strict-transport-security: max-age=15552000
vary: Accept-Encoding
x-content-type-options: nosniff
x-contextid: pzrnqdYP/L1nsjYew
content-length: 7804
X-Firefox-Spdy: h2
GET www.zerodayinitiative.com/images/rss.svg
200 OK 3.0 kB URL
www.zerodayinitiative.com/images/rss.svg
IP / ASN
52.89.240.103
#16509 AMAZON-02
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type SVG Scalable Vector Graphics image
First Seen 2025-06-22
Last Seen 2025-07-10
Times Seen 6
Size 3.0 kB (3034 bytes)
MD5 c2bce27724ace8f9aad4ceed66e1d28d
SHA1 02ba23a1da8580e3560bbb6d41a8532cda8621c1
SHA256 2b738eaa6e989133f722a1b80bce6b85b95cef69682fd010f78ae93ec15195cb
Certificate Info
Issuer Entrust, Inc.
Subject *.zerodayinitiative.com
Fingerprint 96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF
Validity Tue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT
GET /images/rss.svg HTTP/1.1
Host: www.zerodayinitiative.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/css/main.css
Cookie: crumb=BQPz8DN43zbUMWU1MzFmOWRiY2I4ZGE1YzhhMGEzZWVjYTIxMjQw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jun 2025 23:35:40 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Last-Modified: Fri, 05 Jan 2024 18:38:08 GMT
ETag: "bda-60e3726404400"
Accept-Ranges: bytes
Content-Length: 3034
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml
GET assets.squarespace.com/universal/scripts-compressed/59494-c33bc2b519ece6c2-min.en-US.js
200 OK 15 kB URL
assets.squarespace.com/universal/scripts-compressed/59494-c33bc2b519ece6c2-min.en-US.js
IP / ASN
151.101.64.237
#54113 FASTLY
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JavaScript source, ASCII text, with very long lines (15106)
First Seen 2025-05-27
Last Seen 2025-07-22
Times Seen 1358
Size 15 kB (15260 bytes)
MD5 04d1536c718d4c2228d3a2ff67e97abf
SHA1 b5bd001d6ff474417f59afc7bc90225178efa3bb
SHA256 f2e96ed8891942b6d917585ed47d9c54f69abbdcc2804a24f9c8921733959442
Certificate Info
Issuer DigiCert Inc
Subject *.squarespace.com
Fingerprint 03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76
Validity Mon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
GET /universal/scripts-compressed/59494-c33bc2b519ece6c2-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
cache-control: public, max-age=31536000
expires: Wed, 27 May 2026 14:59:53 GMT
last-modified: Tue, 27 May 2025 14:57:04 GMT
etag: "ba192441853d47fbaa14fb484bfa84dc"
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 22 Jun 2025 23:35:41 GMT
age: 2277348
x-served-by: cache-iad-kcgs7200136-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 87, 160536
x-timer: S1750635341.293256,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 4131
X-Firefox-Spdy: h2
GET assets.squarespace.com/universal/scripts-compressed/3413-e27698d75e5db647-min.en-US.js
200 OK 9.7 kB URL
assets.squarespace.com/universal/scripts-compressed/3413-e27698d75e5db647-min.en-US.js
IP / ASN
151.101.64.237
#54113 FASTLY
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JavaScript source, ASCII text, with very long lines (9560)
First Seen 2025-06-18
Last Seen 2025-06-28
Times Seen 545
Size 9.7 kB (9713 bytes)
MD5 76021c9797b81a888ac59b3f59890337
SHA1 4c0bb0f625c194ec0db426b7671eb4c2cd7059ea
SHA256 c288ffde4e17690e73bd3e07641c80145091291b214b5d70f2c4b10c8b572695
Certificate Info
Issuer DigiCert Inc
Subject *.squarespace.com
Fingerprint 03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76
Validity Mon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
GET /universal/scripts-compressed/3413-e27698d75e5db647-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
cache-control: public, max-age=31536000
expires: Thu, 18 Jun 2026 15:45:13 GMT
last-modified: Tue, 17 Jun 2025 21:43:09 GMT
etag: "a1560a744b62d318a9c76a77b2ebddec"
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 22 Jun 2025 23:35:41 GMT
age: 373828
x-served-by: cache-iad-kiad7000102-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 70, 19612
x-timer: S1750635341.314612,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 3170
X-Firefox-Spdy: h2
POST www.google-analytics.com/j/collect?v=1&_v=j101&a=1913991831&t=pageview&_s=1&dl=https%3A%2F%2Fwww.zerodayinitiative.com%2Fblog%2F2022%2F7%2F13%2Fcve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability&dr=https%3A%2F%2Fwww.thezdi.com%2F&ul=en-us&de=UTF-8&dt=Zero%20Day%20Initiative%20%E2%80%94%20CVE-2022-30136%3A%20Microsoft%20Windows%20Network%20File%20System%20v4%20Remote%20Code%20Execution%20Vulnerability&sd=24-bit&sr=1280x1024&vp=1280x1024&je=0&_u=YADAAUABAAAAACAAI~&jid=1858893278&gjid=1402278734&cid=2007008949.1750635341&tid=UA-93169700-1&_gid=339151533.1750635341&_r=1>m=457e56g0za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104573694~104684208~104684211~104718208~104791498~104791500&did=dZjQwMz&gdid=dZjQwMz&jsscut=1&npa=1&z=1226158572
200 OK 1 B URL
www.google-analytics.com/j/collect?v=1&_v=j101&a=1913991831&t=pageview&_s=1&dl=https%3A%2F%2Fwww.zerodayinitiative.com%2Fblog%2F2022%2F7%2F13%2Fcve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability&dr=https%3A%2F%2Fwww.thezdi.com%2F&ul=en-us&de=UTF-8&dt=Zero%20Day%20Initiative%20%E2%80%94%20CVE-2022-30136%3A%20Microsoft%20Windows%20Network%20File%20System%20v4%20Remote%20Code%20Execution%20Vulnerability&sd=24-bit&sr=1280x1024&vp=1280x1024&je=0&_u=YADAAUABAAAAACAAI~&jid=1858893278&gjid=1402278734&cid=2007008949.1750635341&tid=UA-93169700-1&_gid=339151533.1750635341&_r=1>m=457e56g0za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104573694~104684208~104684211~104718208~104791498~104791500&did=dZjQwMz&gdid=dZjQwMz&jsscut=1&npa=1&z=1226158572
IP / ASN
142.250.74.14
#15169 GOOGLE
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type very short file (no magic)
First Seen 2023-03-07
Last Seen 2025-08-02
Times Seen 64855
Size 1 B (1 bytes)
MD5 c4ca4238a0b923820dcc509a6f75849b
SHA1 356a192b7913b04c54574d18c28d46e6395428ab
SHA256 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
Certificate Info
Issuer Google Trust Services
Subject *.google-analytics.com
Fingerprint 79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA
Validity Mon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
POST /j/collect?v=1&_v=j101&a=1913991831&t=pageview&_s=1&dl=https%3A%2F%2Fwww.zerodayinitiative.com%2Fblog%2F2022%2F7%2F13%2Fcve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability&dr=https%3A%2F%2Fwww.thezdi.com%2F&ul=en-us&de=UTF-8&dt=Zero%20Day%20Initiative%20%E2%80%94%20CVE-2022-30136%3A%20Microsoft%20Windows%20Network%20File%20System%20v4%20Remote%20Code%20Execution%20Vulnerability&sd=24-bit&sr=1280x1024&vp=1280x1024&je=0&_u=YADAAUABAAAAACAAI~&jid=1858893278&gjid=1402278734&cid=2007008949.1750635341&tid=UA-93169700-1&_gid=339151533.1750635341&_r=1>m=457e56g0za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104573694~104684208~104684211~104718208~104791498~104791500&did=dZjQwMz&gdid=dZjQwMz&jsscut=1&npa=1&z=1226158572 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.zerodayinitiative.com
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
access-control-allow-origin: https://www.zerodayinitiative.com
date: Sun, 22 Jun 2025 23:35:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsgac:175:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsgac:175:0
report-to: {"group":"ascnsrsgac:175:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsgac:175:0"}],}
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET assets.squarespace.com/@sqs/polyfiller/1.6/modern.js
200 OK 118 kB URL
assets.squarespace.com/@sqs/polyfiller/1.6/modern.js
IP / ASN
151.101.64.237
#54113 FASTLY
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (43878), with NEL line terminators
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 4963
Size 118 kB (117609 bytes)
MD5 93a2aea230d421d550375c528b22583e
SHA1 e8d88b00db1c30510928a7c6618f0f7cffa9b4c2
SHA256 54e832663426c696b1f603379026e5e15720e8c812bbbc60d63aa2ad8a479f75
Certificate Info
Issuer DigiCert Inc
Subject *.squarespace.com
Fingerprint 03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76
Validity Mon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
GET /@sqs/polyfiller/1.6/modern.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.zerodayinitiative.com
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Wed, 02 Oct 2024 02:39:38 GMT
last-modified: Mon, 31 Oct 2022 21:19:57 GMT
etag: "fe0d53a94823df972dbf107bf190771a"
content-type: text/javascript
content-encoding: gzip
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 22 Jun 2025 23:35:39 GMT
age: 2820939
x-served-by: cache-iad-kcgs7200042-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 79, 132710
x-timer: S1750635339.299436,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 42447
X-Firefox-Spdy: h2
GET gist.github.com/8a4e0451372ba02c148d78ef693ae2cd.js
302 Found 5.2 kB URL
gist.github.com/8a4e0451372ba02c148d78ef693ae2cd.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606145
Size 5.2 kB (5178 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /8a4e0451372ba02c148d78ef693ae2cd.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 22 Jun 2025 23:35:37 GMT
content-type: text/html; charset=utf-8
content-length: 0
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
location: https://gist.github.com/zdi-team/8a4e0451372ba02c148d78ef693ae2cd.js
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
set-cookie: _gh_sess=f7Fat6D%2F5Sc3fMk10gSAw8Dthf59IUrilHDfNpWIpIxOI4nv4prIWQtK5v1%2Bm5u7a4lbcWoQ2i5QS5pLQbfY%2BZG%2B83seLkYdvRRlh47VytQ5uV2TQ5ES03U7DqEyJcIrSNMvWR8HTq%2FL%2Fkjjk9hNORWfyd6y%2FGonU95GdLnNeq4w7aTT7rgf6OYsfOLCP5qhiURhFeehgu5tkLGBm6Tv%2BbzfTlgGAzMETOUnTDk3Vd9vrFqNhwxkfY4NeLu4A9d%2F85amNlU5LlrF%2B%2BKyOC1AUw%3D%3D--271jOiwP4VFQgY9u--L78887AA9HmrsQYVtm%2FUBw%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.1631416072.1750635339; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; HttpOnly; Secure; SameSite=Lax
x-github-request-id: E77F:EE8EF:3FE80D:425583:6858934B
X-Firefox-Spdy: h2
GET gist.github.com/zdi-team/53e847de72f143e100520ebb48c9fe24.js
200 OK 6.0 kB URL
gist.github.com/zdi-team/53e847de72f143e100520ebb48c9fe24.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type HTML document, ASCII text, with very long lines (5914)
First Seen 2025-06-22
Last Seen 2025-06-22
Times Seen 1
Size 6.0 kB (6031 bytes)
MD5 bac8eb435f5dbcab1430fcd9f7824bda
SHA1 fdc3c0fde180ef29e0704ee6f7042c0f76693b55
SHA256 3873965445145e3232d1633d7ebececec9f270e6bddd655714a56ee52b98e665
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /zdi-team/53e847de72f143e100520ebb48c9fe24.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zerodayinitiative.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 23:35:37 GMT
content-type: text/javascript; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
etag: W/"3873965445145e3232d1633d7ebecece"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
content-encoding: gzip
accept-ranges: bytes
set-cookie: _gh_sess=4pUR9NNZd7IP7IPRHVS2QG8u8AAei3xBgboa6WmdK1RjTqRUhRnrMtwM2QfOSrm9IQIp6jP8htyYxP%2BvE3%2BujWHftVICo9R2OvJEhN%2FYEPZY6rjJ%2FQhg0Jy%2BLaAHTZvKJj6ZWZAK6BAqPKBe7iDVO9WuPVy8%2FDB%2BQe8JEHKxueKEKb%2FSvDcHvPjBWAU7EGmA8MWQF9tu8fx9OTwXSqvuK95Ii83dZ6GPN3kTaHWoih2xgLD0u2cau%2BTF%2FBs8PzERFfIZsSKs3P%2BdeVqMDaQ91g%3D%3D--2bobDLxu%2B2Nzhk3B--oPuqwjQymMb3W0G4aN68KA%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.516477150.1750635340; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; HttpOnly; Secure; SameSite=Lax
content-length: 1618
x-github-request-id: E77F:EE8EF:3FE990:42573F:6858934C
X-Firefox-Spdy: h2
GET gist.github.com/zdi-team/c87fc7da38fb8c8e6174aa19862f080d.js
200 OK 5.4 kB URL
gist.github.com/zdi-team/c87fc7da38fb8c8e6174aa19862f080d.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type HTML document, ASCII text, with very long lines (5302)
First Seen 2025-06-22
Last Seen 2025-06-22
Times Seen 1
Size 5.4 kB (5419 bytes)
MD5 c49872ac9c7eb06bcd4a1adda6d24f58
SHA1 39be27d513b86f7b2dccfc3457749c2605192c21
SHA256 26a4bf10b4c871b2e6416da0369f5e38b750fc668718c2f7e3280d7513d72907
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /zdi-team/c87fc7da38fb8c8e6174aa19862f080d.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zerodayinitiative.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 23:35:37 GMT
content-type: text/javascript; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
etag: W/"26a4bf10b4c871b2e6416da0369f5e38"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
content-encoding: gzip
accept-ranges: bytes
set-cookie: _gh_sess=BJCKWDzb%2BNyr2gg3Z0W0yHGx9J2na9IvSe%2FbvwwlF%2FCozODxVgAkHN%2BlTUZOoM1Ibb5L9D79ZLYzJ0V%2BrQMKuqCLe3HD5smz6tgogd%2Bwzab4zP7YulqKFGWVHqrW5qivjNekC1Y18X%2FIDAUo2BjdT4x45C8NQdFAiU3Qjdcn%2FQxwOd2g1%2FuiLhS5pCqn1sRlnrJOXi264htxT1VY1aUUPmDfELgMni2SD7rGwtc6e1f6KqBSpBh7pcTXaNQ%2FaXs%2FUJBjqOVJYCCB%2BkIgGCHKcw%3D%3D--i16g4br4YCGHc%2F1H--CAQSo7WKSKTEkCqO11m%2BTQ%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.2036541208.1750635340; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; HttpOnly; Secure; SameSite=Lax
content-length: 1555
x-github-request-id: E77F:EE8EF:3FE9AB:42575E:6858934C
X-Firefox-Spdy: h2
GET gist.github.com/zdi-team/f82ff017846020b1385a22beaaea5c42.js
200 OK 5.7 kB URL
gist.github.com/zdi-team/f82ff017846020b1385a22beaaea5c42.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type HTML document, ASCII text, with very long lines (5596)
First Seen 2025-06-22
Last Seen 2025-06-22
Times Seen 1
Size 5.7 kB (5713 bytes)
MD5 3aa9cf98d016c979f4dbba830aca5aad
SHA1 d4711ad2163fdc841584a9dd32aebcbc522f3bbd
SHA256 f9bc59fc286f868c4b2db1fe22803dcffe138392cc452378a2b51588c42dd7d9
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /zdi-team/f82ff017846020b1385a22beaaea5c42.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zerodayinitiative.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 23:35:37 GMT
content-type: text/javascript; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
etag: W/"f9bc59fc286f868c4b2db1fe22803dcf"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
content-encoding: gzip
accept-ranges: bytes
set-cookie: _gh_sess=OpqRTDQc0SIHS7vf4TSGO0YpBTyg%2BdrTjXop9vONOr0xN4%2BCMsgXvtz7F%2BWcPz97m4PUOSfhd35jk7c%2FpK1hPlLrDFZOr5B2oHwxzTfG4P0EGufyImixKq5TMU8VCZ29Qr%2F9XkAM%2FAGVZ9Bu2aGv1WKO7LKcoF7y22yN0y2fqwfNda4dJoEn%2Byz%2B1JMNvXUotGMcGmpXWvdZrpSL%2Fyka2rGcjCNTycgH6w51SS0%2FZV0EGzhPVj7xkP%2F%2FoLfo%2Fy415e1UWOYG0Ad0MzMdudHlZQ%3D%3D--vBYYBFCx3lxnHhSq--TpkujSjzRDPkJ1Yej3weCQ%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.1601843591.1750635340; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; HttpOnly; Secure; SameSite=Lax
content-length: 1576
x-github-request-id: E77F:EE8EF:3FE9A1:425753:6858934C
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/titilliumweb/v18/NaPDcZTIAOhVxoMyOr9n_E7ffGjEGItzYw.woff2
200 OK 12 kB URL
fonts.gstatic.com/s/titilliumweb/v18/NaPDcZTIAOhVxoMyOr9n_E7ffGjEGItzYw.woff2
IP / ASN
142.250.178.35
#15169 GOOGLE
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 12408, version 1.0
First Seen 2025-06-04
Last Seen 2025-08-01
Times Seen 170
Size 12 kB (12408 bytes)
MD5 a8d0c227ccfc9e66a8aab6e6f047ea4e
SHA1 7a11c1f251225c92f63915bd20f42274ae1f3ad9
SHA256 b6287de6fc5553c57520eedd963a16b66f3c192a2c65916243a0a92a8e0e8a8f
Certificate Info
Issuer Google Trust Services
Subject *.gstatic.com
Fingerprint 6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
Validity Mon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
GET /s/titilliumweb/v18/NaPDcZTIAOhVxoMyOr9n_E7ffGjEGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.zerodayinitiative.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12408
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 16 Jun 2025 22:01:51 GMT
expires: Tue, 16 Jun 2026 22:01:51 GMT
cache-control: public, max-age=31536000
age: 524029
last-modified: Mon, 02 Jun 2025 16:41:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
POST www.zerodayinitiative.com/api/census/RecordHit
200 OK 17 B URL
www.zerodayinitiative.com/api/census/RecordHit
IP / ASN
52.89.240.103
#16509 AMAZON-02
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JSON text data
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 25547
Size 17 B (17 bytes)
MD5 5b64e8b89092b2e3dfd448b10700627f
SHA1 484b3032619fa1acd135d114565b0a5166281c22
SHA256 f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4
Certificate Info
Issuer Entrust, Inc.
Subject *.zerodayinitiative.com
Fingerprint 96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF
Validity Tue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT
POST /api/census/RecordHit HTTP/1.1
Host: www.zerodayinitiative.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=utf-8
X-CSRF-Token: BQPz8DN43zbUMWU1MzFmOWRiY2I4ZGE1YzhhMGEzZWVjYTIxMjQw
Content-Length: 1057
Origin: https://www.zerodayinitiative.com
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Cookie: crumb=BQPz8DN43zbUMWU1MzFmOWRiY2I4ZGE1YzhhMGEzZWVjYTIxMjQw; _ga_DBFMYZ5KK8=GS2.1.s1750635340$o1$g0$t1750635340$j60$l0$h0; _ga=GA1.2.2007008949.1750635341; _gid=GA1.2.339151533.1750635341; _gat_gtag_UA_93169700_1=1; ss_cvr=54c87982-1920-464c-b663-f9ba40b8e01d|1750635341189|1750635341189|1750635341189|1; ss_cvt=1750635341189
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jun 2025 23:35:41 GMT
Server: Squarespace
Strict-Transport-Security: max-age=31536000; includeSubDomains
Accept-Ranges: bytes
Age: 0
Content-Length: 17
Content-Type: application/json;charset=utf-8
X-Content-Type-Options: nosniff
X-Contextid: QcF1CzXd/BErq4GJq
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
GET assets.squarespace.com/universal/scripts-compressed/performance-c365699e027517d0-min.en-US.js
200 OK 31 kB URL
assets.squarespace.com/universal/scripts-compressed/performance-c365699e027517d0-min.en-US.js
IP / ASN
151.101.64.237
#54113 FASTLY
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JavaScript source, ASCII text, with very long lines (30747)
First Seen 2025-06-18
Last Seen 2025-06-27
Times Seen 390
Size 31 kB (30913 bytes)
MD5 5cb64bf95cf6ac5862fcf388790cfbb0
SHA1 8595cb9f512f1dc77e88248b74bc13dffd926935
SHA256 2c4f40721e4028406b1f8f0dc5f19c66ee21f824165672a9d6e0069ee844184c
Certificate Info
Issuer DigiCert Inc
Subject *.squarespace.com
Fingerprint 03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76
Validity Mon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
GET /universal/scripts-compressed/performance-c365699e027517d0-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.zerodayinitiative.com
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
cache-control: public, max-age=31536000
expires: Thu, 18 Jun 2026 18:20:38 GMT
last-modified: Wed, 18 Jun 2025 17:15:24 GMT
etag: "e45cf3580cb7810713be1cbaf4c6ffed"
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 22 Jun 2025 23:35:39 GMT
age: 364501
x-served-by: cache-iad-kcgs7200107-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 100, 25519
x-timer: S1750635339.292480,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 9868
X-Firefox-Spdy: h2
GET www.zerodayinitiative.com/js/main.js
200 OK 43 kB URL
www.zerodayinitiative.com/js/main.js
IP / ASN
52.89.240.103
#16509 AMAZON-02
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (22932)
First Seen 2025-06-22
Last Seen 2025-07-10
Times Seen 6
Size 43 kB (43179 bytes)
MD5 d96ee77742cbf3427b6d4ce42480cff7
SHA1 b573321dff702f4bc87f0d816e28701191b9d009
SHA256 de360daa34474ce81acf8a81e3f513dca4a1f62d3c55064ab8b49af69f1c60cc
Certificate Info
Issuer Entrust, Inc.
Subject *.zerodayinitiative.com
Fingerprint 96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF
Validity Tue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT
GET /js/main.js HTTP/1.1
Host: www.zerodayinitiative.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Cookie: crumb=BQPz8DN43zbUMWU1MzFmOWRiY2I4ZGE1YzhhMGEzZWVjYTIxMjQw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jun 2025 23:35:39 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Last-Modified: Fri, 05 Jan 2024 18:38:08 GMT
ETag: "a8ab-60e3726404400-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11900
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/javascript
GET gist.github.com/f82ff017846020b1385a22beaaea5c42.js
302 Found 5.7 kB URL
gist.github.com/f82ff017846020b1385a22beaaea5c42.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606145
Size 5.7 kB (5713 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /f82ff017846020b1385a22beaaea5c42.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 22 Jun 2025 23:35:36 GMT
content-type: text/html; charset=utf-8
content-length: 0
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
location: https://gist.github.com/zdi-team/f82ff017846020b1385a22beaaea5c42.js
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
set-cookie: _gh_sess=57Vsqs9Lj8gv2uqDn2kLMp%2BbmppknqEqcE8mewOGLo9kpMj2uJAxuyBW2O23cjtOyZDbxINS5prAIvj7QvMTNgLa57ms%2FZynB1pPPSubr3xHkZPjUUKyiwoGWhRAQGzG0jnyLmE3umPEWZDqi2Igw04K0RtLbc1NE16yzFEBe2GJXbetShr9pjG0ASpKyH7mzcDy%2BQm4COBYz38nIpdEkjdbGpqFJMc6WQhdrYEyXa%2F4YtwkUbFTCEiZtQAgpJgly3LGMxbz0dtwRgYs8M2Y3w%3D%3D--HamQ6%2FzuYe%2BHxMah--5NjzhC5SbXiG8RKQDDropg%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.549567428.1750635339; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; HttpOnly; Secure; SameSite=Lax
x-github-request-id: E77F:EE8EF:3FE7D6:425564:6858934B
X-Firefox-Spdy: h2
GET gist.github.com/zdi-team/8a4e0451372ba02c148d78ef693ae2cd.js
200 OK 5.2 kB URL
gist.github.com/zdi-team/8a4e0451372ba02c148d78ef693ae2cd.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type HTML document, ASCII text, with very long lines (5061)
First Seen 2025-06-22
Last Seen 2025-06-22
Times Seen 1
Size 5.2 kB (5178 bytes)
MD5 10b6bcf52145b07b7cc90652996294a0
SHA1 d66d1e4787e298beddfe170f096283604cb247a7
SHA256 4ca8f5cea53eb84980c529d0ca61045fb008e98e4a2fb7193a0321e9f6dd9a8b
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /zdi-team/8a4e0451372ba02c148d78ef693ae2cd.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zerodayinitiative.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 23:35:37 GMT
content-type: text/javascript; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
etag: W/"4ca8f5cea53eb84980c529d0ca61045f"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
content-encoding: gzip
accept-ranges: bytes
set-cookie: _gh_sess=25gGJwzkCpFlmKi8QGon7JVKFLF5%2Bt0mG3i3Q3gusJ370bSQm7qYdhiZguLeF85vRhWHjSrNr5Vv%2B%2FNTtKOkAJ8IBTJHQhdcNeElJmG%2FLRF2%2BVV6jN03vFbT0bI5Y2WZo7D7Yu21Jr%2BVgM9SdJgjudbLuHSA9L1TbLVxaAW62GOwlcX88qZPCKdVkek0ZNOwMe%2BsgLmpuMqPjjcl62w2SgFZsAfNf2LCT6Zhg9MQj0OCKRoHKgcAivy3%2BuWGpFBtiSQtAJy4wwW0LDzqA9nadw%3D%3D--9A6sJe38Yllf44S3--BBUkPSsEFbmkzJvy41O%2FiA%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.1752986365.1750635340; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; HttpOnly; Secure; SameSite=Lax
content-length: 1556
x-github-request-id: E77F:EE8EF:3FE9A6:425759:6858934C
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=G-DBFMYZ5KK8&cx=c>m=457e56g0za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104573694~104684208~104684211~104718208~104791498~104791500
200 OK 375 kB URL
www.googletagmanager.com/gtag/js?id=G-DBFMYZ5KK8&cx=c>m=457e56g0za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104573694~104684208~104684211~104718208~104791498~104791500
IP / ASN
142.250.74.168
#15169 GOOGLE
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JavaScript source, ASCII text, with very long lines (6004)
First Seen 2025-06-22
Last Seen 2025-06-22
Times Seen 1
Size 375 kB (374984 bytes)
MD5 39a0cff9c9886c1f98fc79359985c935
SHA1 5c1a6e7484faf6a8ef655aedfb52d363ca276b7b
SHA256 01c1e21a9b46e1848137a7ee93aa2d7ada00983bbf93f09415d30f8758016739
Certificate Info
Issuer Google Trust Services
Subject *.google-analytics.com
Fingerprint 79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA
Validity Mon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
GET /gtag/js?id=G-DBFMYZ5KK8&cx=c>m=457e56g0za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104573694~104684208~104684211~104718208~104791498~104791500 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 22 Jun 2025 23:35:40 GMT
expires: Sun, 22 Jun 2025 23:35:40 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 128843
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET assets.squarespace.com/universal/scripts-compressed/87025-6233eec5acf3c473-min.en-US.js
200 OK 12 kB URL
assets.squarespace.com/universal/scripts-compressed/87025-6233eec5acf3c473-min.en-US.js
IP / ASN
151.101.64.237
#54113 FASTLY
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JavaScript source, ASCII text, with very long lines (9141)
First Seen 2025-06-18
Last Seen 2025-06-25
Times Seen 322
Size 12 kB (11700 bytes)
MD5 82dd75f0fb937e4a15534f95d408b15f
SHA1 f0a66347210ab7597e9e5c968d91724ec1a5e75b
SHA256 61ab9015bbdc2fa1a31fa892a70fa5fc250217e20ae7615ca10900ece86f6d9f
Certificate Info
Issuer DigiCert Inc
Subject *.squarespace.com
Fingerprint 03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76
Validity Mon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
GET /universal/scripts-compressed/87025-6233eec5acf3c473-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
cache-control: public, max-age=31536000
expires: Thu, 18 Jun 2026 15:45:13 GMT
last-modified: Tue, 17 Jun 2025 21:43:08 GMT
etag: "8eaeabc7a98ec39dfdbd9d70bf1b5c98"
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 22 Jun 2025 23:35:41 GMT
age: 373828
x-served-by: cache-iad-kjyo7100174-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 70, 19638
x-timer: S1750635341.302621,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 3512
X-Firefox-Spdy: h2
GET static1.squarespace.com/static/sitecss/5894c269e4fcb5e65a1ed623/52/67aa61355065f439ea56543f/67aa61375065f439ea565441/33/site.css
200 OK 580 kB URL
static1.squarespace.com/static/sitecss/5894c269e4fcb5e65a1ed623/52/67aa61355065f439ea56543f/67aa61375065f439ea565441/33/site.css
IP / ASN
151.101.128.238
#54113 FASTLY
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type Unicode text, UTF-8 text, with very long lines (32094)
First Seen 2025-06-22
Last Seen 2025-06-22
Times Seen 1
Size 580 kB (580277 bytes)
MD5 8e526031e59524b2cbec83e6bca662bb
SHA1 38de0b0f5a2cdd30047a7cd6ae1bd43dd49dbf0c
SHA256 3dca6e2976ac8f0bd06f946a93351dffd81502559a4ab8c6a06c90361b026755
Certificate Info
Issuer DigiCert Inc
Subject *.squarespace.com
Fingerprint 03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76
Validity Mon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
GET /static/sitecss/5894c269e4fcb5e65a1ed623/52/67aa61355065f439ea56543f/67aa61375065f439ea565441/33/site.css HTTP/1.1
Host: static1.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=94608000
content-encoding: gzip
content-type: text/css; charset=UTF-8
pragma: cache
server: Squarespace
timing-allow-origin: *
x-content-type-options: nosniff
x-contextid: i5gfyX1E/iaBbQviY
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 22 Jun 2025 23:35:39 GMT
age: 539783
x-served-by: cache-dfw-kdal2120076-DFW, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 299, 1
x-timer: S1750635340.506237,VS0,VE1
vary: Accept-Encoding
tracepoint: Fastly
content-length: 62246
X-Firefox-Spdy: h2
GET www.zerodayinitiative.com/images/logo-trend.svg
200 OK 5.5 kB URL
www.zerodayinitiative.com/images/logo-trend.svg
IP / ASN
52.89.240.103
#16509 AMAZON-02
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type SVG Scalable Vector Graphics image
First Seen 2023-07-25
Last Seen 2025-07-25
Times Seen 27
Size 5.5 kB (5454 bytes)
MD5 1afde55671dc9db365db8cf613f87688
SHA1 d6aeeea804f4d7981390b024bb0d93c605648b1d
SHA256 4c38452d4117e2bb77829601aca27ac6584ebdf4d42ce505c0f7b1ae0f933147
Certificate Info
Issuer Entrust, Inc.
Subject *.zerodayinitiative.com
Fingerprint 96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF
Validity Tue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT
GET /images/logo-trend.svg HTTP/1.1
Host: www.zerodayinitiative.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Cookie: crumb=BQPz8DN43zbUMWU1MzFmOWRiY2I4ZGE1YzhhMGEzZWVjYTIxMjQw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jun 2025 23:35:39 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Last-Modified: Mon, 10 Feb 2025 14:50:02 GMT
ETag: "154e-62dcad2b53a80"
Accept-Ranges: bytes
Content-Length: 5454
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
GET gist.github.com/86ca85ec4f88cbbc9318d91d64879ea1.js
302 Found 5.7 kB URL
gist.github.com/86ca85ec4f88cbbc9318d91d64879ea1.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606145
Size 5.7 kB (5693 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /86ca85ec4f88cbbc9318d91d64879ea1.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 22 Jun 2025 23:35:36 GMT
content-type: text/html; charset=utf-8
content-length: 0
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
location: https://gist.github.com/zdi-team/86ca85ec4f88cbbc9318d91d64879ea1.js
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
set-cookie: _gh_sess=BMjY%2FpwgRKc6HYcB8r8%2BonLMU0NwDi2l3eVqgGXXdwOsZsgOHKf0zkYA%2B6rW1WwW0Djjz2ZSFnFFbeYhZt1Kn8EU%2BAOWopZll4RNnxU8IcMJawmzPK%2BsuKj8wTbbWMs%2Fug1BRMWlORscPXv61WvogtMJ%2BNx4aOtiggGeZlCWTzlJJSVTt4GkpUGli%2BrDrgSyNh9MYs58yzzUyS72ePct8CNauRN37tXlUfic%2BnhM49HbCnaQLRLmNur6fZdd5H8ETBb2Fa%2FJLhJUW4WWmoVcaQ%3D%3D--XYa82XYMZMihthIl--BKASvmzRVCiqkgyNgsQxUg%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.540408095.1750635339; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; HttpOnly; Secure; SameSite=Lax
x-github-request-id: E77F:EE8EF:3FE80E:425588:6858934B
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=UA-93169700-1
200 OK 288 kB URL
www.googletagmanager.com/gtag/js?id=UA-93169700-1
IP / ASN
142.250.74.168
#15169 GOOGLE
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JavaScript source, ASCII text, with very long lines (5913)
First Seen 2025-06-22
Last Seen 2025-06-22
Times Seen 1
Size 288 kB (288335 bytes)
MD5 caa5353d726ebffbb58ffb922a351b2d
SHA1 c977a55526b8a602674ca1e66dc9ee60e0aa726c
SHA256 1e6ada723dba55575597f8f8bad88b5f6aa5b5e9f850a1c3eb0230dce94bbdfb
Certificate Info
Issuer Google Trust Services
Subject *.google-analytics.com
Fingerprint 79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA
Validity Mon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
GET /gtag/js?id=UA-93169700-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 22 Jun 2025 23:35:39 GMT
expires: Sun, 22 Jun 2025 23:35:39 GMT
cache-control: private, max-age=900
last-modified: Sun, 22 Jun 2025 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 101566
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET gist.github.com/3667e6f0a6c6eed5813276e46c426b6e.js
302 Found 6.0 kB URL
gist.github.com/3667e6f0a6c6eed5813276e46c426b6e.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606145
Size 6.0 kB (6047 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /3667e6f0a6c6eed5813276e46c426b6e.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 22 Jun 2025 23:35:37 GMT
content-type: text/html; charset=utf-8
content-length: 0
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
location: https://gist.github.com/zdi-team/3667e6f0a6c6eed5813276e46c426b6e.js
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
set-cookie: _gh_sess=f2RZ2HOcA6krn8Kt6r1s8z7ETzOUxvIsL3REw3iBJwy3SJ%2BhZRyD%2Bv02BO7BqCtY6LCZoKEoVpKH69bOGtrkqOQ%2Bz%2B2pAsekrQtUGBOrFvRT2%2Fqq%2FMKGz07bj%2B7ynO25w2Db%2FzmPaazG32AH45ZOwN3%2FWPu4%2BQ%2B8hcdI7ogkDJX0AE4ehRIDNmOWddL%2FnXT9%2F2Ruy%2FfV0Ze%2Ff6Olh%2FDGqp6az1SVmK%2BEefmBezi0vPCR8qqh%2FjZi4J4xcAcuH4DxhcmZYrTg7kUGIggYXjpoLw%3D%3D--YFYuHeDY5CpAlwSE--2E6rfrRD%2Fjv%2B3KZruQ%2B7tA%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.871901027.1750635339; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; HttpOnly; Secure; SameSite=Lax
x-github-request-id: E77F:EE8EF:3FE80E:425589:6858934B
X-Firefox-Spdy: h2
GET gist.github.com/zdi-team/31ac34e0a04ec572a2240cb7c72be402.js
200 OK 6.9 kB URL
gist.github.com/zdi-team/31ac34e0a04ec572a2240cb7c72be402.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type HTML document, ASCII text, with very long lines (6767)
First Seen 2025-06-22
Last Seen 2025-06-22
Times Seen 1
Size 6.9 kB (6884 bytes)
MD5 e9a72edf54c1581a42bb35f28ad74c75
SHA1 4f26c706890c4da019c77d2ccbc5cc25cde5b2c4
SHA256 d109000201939d53a24bba341ef6a7668c4d42ed9c0722651cae5299c843e92d
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /zdi-team/31ac34e0a04ec572a2240cb7c72be402.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zerodayinitiative.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 23:35:37 GMT
content-type: text/javascript; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
etag: W/"d109000201939d53a24bba341ef6a766"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
content-encoding: gzip
accept-ranges: bytes
set-cookie: _gh_sess=5NHWh2C1qB8%2BhxlQXXTCTA6lb44S8ZEWct89lug13F1KUt4aRpPNl5ERwvTAO3PnLU2zyHMsyS4Z3BhnzsaemsuPeRaV7hp%2BG%2Fhdm7N%2FjcQ4g0Fa7AQyptDe1e4DDtiJtAGn8mwbEJdyFpOvZ0gROtaSIdJ6fUaHhw2Ap%2Fk6bI8kBwidVm1fRkgN4VXa9t44rVnXj5%2Fq1A%2FT9ANqHeDW120Zz0SH60O43%2BDB%2FKqkVTvlvmgjiSMsU%2B8cj9tWMQzJWHWxk8acfp%2FrvGarusK%2FIQ%3D%3D--pEE9Cw4xQNO4%2BYoD--IPA61s7fKmzZyQ9LqQQkWA%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.1697570115.1750635340; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; HttpOnly; Secure; SameSite=Lax
content-length: 1664
x-github-request-id: E77F:EE8EF:3FE96B:42571C:6858934B
X-Firefox-Spdy: h2
GET www.zerodayinitiative.com/images/logo-combo.svg
200 OK 7.1 kB URL
www.zerodayinitiative.com/images/logo-combo.svg
IP / ASN
52.89.240.103
#16509 AMAZON-02
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type SVG Scalable Vector Graphics image
First Seen 2025-06-21
Last Seen 2025-07-11
Times Seen 13
Size 7.1 kB (7141 bytes)
MD5 882fe247cb59d8543f6462ff353d61c4
SHA1 b051b02b59012700dac228a79618eca5818ea0b6
SHA256 45204ae91c0663056ada37848f2a086b5ab10ef732f267afafdc03015db7458b
Certificate Info
Issuer Entrust, Inc.
Subject *.zerodayinitiative.com
Fingerprint 96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF
Validity Tue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT
GET /images/logo-combo.svg HTTP/1.1
Host: www.zerodayinitiative.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Cookie: crumb=BQPz8DN43zbUMWU1MzFmOWRiY2I4ZGE1YzhhMGEzZWVjYTIxMjQw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jun 2025 23:35:40 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Last-Modified: Mon, 10 Feb 2025 14:50:02 GMT
ETag: "1be5-62dcad2b53a80"
Accept-Ranges: bytes
Content-Length: 7141
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
GET gist.github.com/31ac34e0a04ec572a2240cb7c72be402.js
302 Found 6.9 kB URL
gist.github.com/31ac34e0a04ec572a2240cb7c72be402.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606145
Size 6.9 kB (6884 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /31ac34e0a04ec572a2240cb7c72be402.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 22 Jun 2025 23:35:37 GMT
content-type: text/html; charset=utf-8
content-length: 0
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
location: https://gist.github.com/zdi-team/31ac34e0a04ec572a2240cb7c72be402.js
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
set-cookie: _gh_sess=KTzB9YWi2Q%2FEfAdRzoh4oKlNkNzUQ8ldev%2B%2BGKJPZeHbxHaPkk8NtRlywnM7%2BpbAbsaukaMVjlDPGlNieNuxkg2D59ABjSJKi3wxAQfKo1SDurVJDIq%2FxnwdHnu1zC65ravBhPP3R4GMImTa1IXOF7uKBRe5b5r69rW46asnIZD%2BnclLspONq0LdxNGtCNTQeJaWxZnyNzGOR6dW4SbhsJ2dKTWmTV4SIEVpm4ZzYjXD3rQ6DtYwQLFPTTJimC6Y%2Bon7cISOCHZuE1kQJdKHTA%3D%3D--HX85iadZLGjPVOoc--ww%2FtATBNfa7UwBXI4Eb%2Fpw%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.1615784615.1750635339; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; HttpOnly; Secure; SameSite=Lax
x-github-request-id: E77F:EE8EF:3FE7D5:42555E:6858934B
X-Firefox-Spdy: h2
GET www.thezdi.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
200 OK 61 kB URL
www.thezdi.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
IP / ASN
198.185.159.144
#53831 SQUARESPACE
Resource Info
File type HTML document, Unicode text, UTF-8 text, with very long lines (13408)
First Seen 2025-06-22
Last Seen 2025-06-22
Times Seen 1
Size 61 kB (61335 bytes)
MD5 0db386d38b0a0f9828923909187daae8
SHA1 bebdac857204c335065ccf2570f5520b0d1b90b7
SHA256 e23d95460ea4d8885137848d9c671b2579f4f1bbc916903b9424119d1f82cd45
Certificate Info
Issuer Let's Encrypt
Subject www.thezdi.com
Fingerprint F7:B7:CF:A3:E4:09:5B:CF:F7:CC:B9:82:FA:04:08:99:4F:E6:F7:32
Validity Wed, 28 May 2025 03:28:41 GMT - Tue, 26 Aug 2025 03:28:40 GMT
GET /blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability HTTP/1.1
Host: www.thezdi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 0
content-encoding: gzip
content-type: text/html;charset=utf-8
date: Sun, 22 Jun 2025 19:48:19 GMT
etag: W/"df6fd77ebb6dcaebb12449bed24105d6"
expires: Thu, 01 Jan 1970 00:00:00 GMT
server: Squarespace
set-cookie: crumb=BZEn5kMNMHgLZDAxMTFhMTEzYTYxYjA4ZGI3Y2JmYzBkM2JjZGYz;Secure;Path=/
strict-transport-security: max-age=15552000
vary: Accept-Encoding
x-content-type-options: nosniff
x-contextid: pzrnqdYP/1iVgh6Jk
content-length: 13224
X-Firefox-Spdy: h2
GET gist.github.com/c87fc7da38fb8c8e6174aa19862f080d.js
302 Found 5.4 kB URL
gist.github.com/c87fc7da38fb8c8e6174aa19862f080d.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606145
Size 5.4 kB (5419 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /c87fc7da38fb8c8e6174aa19862f080d.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 22 Jun 2025 23:35:37 GMT
content-type: text/html; charset=utf-8
content-length: 0
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
location: https://gist.github.com/zdi-team/c87fc7da38fb8c8e6174aa19862f080d.js
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
set-cookie: _gh_sess=9DyzGVhN1DQECniHGQ%2BfZziGbatTlwF3gjNQJRVk%2BAAI2hEpgo2uKeX748DwqtJYlMZoHP6L8TJaK%2BdXxTVhfoHfFvpvfEsK0kVibCFzthLvFkjPP%2FHRPPU8JsGn6tqNU5t9Sf10NP8Z22IpRABAcRvd%2FljcX%2FoSSJikHj1ASyMc96BJI8z%2FszBAOtuO5PRnb0NC5OjdnyFwHRgQOnZx3TT1DGW0Po%2FLNt20%2FsDZIavodtwjg6moONK0amMEiI6QY%2F75XcTl7N%2FhsgfeL%2FyRbg%3D%3D--Q%2BU%2FRMfQsvg2mb%2BE--57JPl6SgBopoz2hqMsDLLw%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.1957315694.1750635339; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; HttpOnly; Secure; SameSite=Lax
x-github-request-id: E77F:EE8EF:3FE80D:425587:6858934B
X-Firefox-Spdy: h2
GET www.zerodayinitiative.com/images/logo-scarab.svg
200 OK 3.4 kB URL
www.zerodayinitiative.com/images/logo-scarab.svg
IP / ASN
52.89.240.103
#16509 AMAZON-02
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type SVG Scalable Vector Graphics image
First Seen 2025-06-21
Last Seen 2025-07-11
Times Seen 13
Size 3.4 kB (3439 bytes)
MD5 4059e68c425880461039ac1b8cc72eed
SHA1 a5dc2c4b614ec6b02315ec4c1711d61832e2f919
SHA256 2923568e832eab200a966df39cbb09f45190709da9d83a4f2e27899e082af4cc
Certificate Info
Issuer Entrust, Inc.
Subject *.zerodayinitiative.com
Fingerprint 96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF
Validity Tue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT
GET /images/logo-scarab.svg HTTP/1.1
Host: www.zerodayinitiative.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Cookie: crumb=BQPz8DN43zbUMWU1MzFmOWRiY2I4ZGE1YzhhMGEzZWVjYTIxMjQw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jun 2025 23:35:40 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Last-Modified: Mon, 10 Feb 2025 14:50:02 GMT
ETag: "d6f-62dcad2b53a80"
Accept-Ranges: bytes
Content-Length: 3439
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
GET assets.squarespace.com/universal/scripts-compressed/51134-dc6009fe23e7a3c1-min.en-US.js
200 OK 9.3 kB URL
assets.squarespace.com/universal/scripts-compressed/51134-dc6009fe23e7a3c1-min.en-US.js
IP / ASN
151.101.64.237
#54113 FASTLY
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JavaScript source, ASCII text, with very long lines (6322)
First Seen 2025-06-17
Last Seen 2025-07-04
Times Seen 881
Size 9.3 kB (9254 bytes)
MD5 298f1ff82033c66e8270e06d61138203
SHA1 412e944c1666b8cf1372096791998e601a611707
SHA256 8cffe1489f44a38d8efb336819738fdcf0504b9350ea8965e145ec4749f80927
Certificate Info
Issuer DigiCert Inc
Subject *.squarespace.com
Fingerprint 03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76
Validity Mon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
GET /universal/scripts-compressed/51134-dc6009fe23e7a3c1-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
cache-control: public, max-age=31536000
expires: Tue, 16 Jun 2026 15:58:58 GMT
last-modified: Mon, 16 Jun 2025 15:56:41 GMT
etag: "79a0b4b7484e27094163912de85c4309"
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 22 Jun 2025 23:35:41 GMT
age: 545803
x-served-by: cache-iad-kiad7000061-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 64, 26161
x-timer: S1750635341.292846,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 3400
X-Firefox-Spdy: h2
GET www.thezdi.com/js/main.js
404 Not Found 0 B URL
www.thezdi.com/js/main.js
IP / ASN
198.185.159.144
#53831 SQUARESPACE
Requested by https://www.thezdi.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606145
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject www.thezdi.com
Fingerprint F7:B7:CF:A3:E4:09:5B:CF:F7:CC:B9:82:FA:04:08:99:4F:E6:F7:32
Validity Wed, 28 May 2025 03:28:41 GMT - Tue, 26 Aug 2025 03:28:40 GMT
GET /js/main.js HTTP/1.1
Host: www.thezdi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.thezdi.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Cookie: crumb=BZEn5kMNMHgLZDAxMTFhMTEzYTYxYjA4ZGI3Y2JmYzBkM2JjZGYz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
age: 0
content-encoding: gzip
content-type: text/html;charset=utf-8
date: Sun, 22 Jun 2025 23:35:36 GMT
etag: W/"ed7d6b3d2783c6ca49b6dd77d7caba70"
expires: Thu, 01 Jan 1970 00:00:00 GMT
server: Squarespace
strict-transport-security: max-age=15552000
vary: Accept-Encoding
x-content-type-options: nosniff
x-contextid: pzrnqdYP/po9SNyrU
content-length: 7804
X-Firefox-Spdy: h2
GET gist.github.com/zdi-team/cd1a0c7b1a16bd2f1b894514f29a56fe.js
200 OK 5.2 kB URL
gist.github.com/zdi-team/cd1a0c7b1a16bd2f1b894514f29a56fe.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type HTML document, ASCII text, with very long lines (5067)
First Seen 2025-06-22
Last Seen 2025-06-22
Times Seen 1
Size 5.2 kB (5184 bytes)
MD5 db9c11d05fa7678fe37a922a2306e5ee
SHA1 a681721ee9cd0c9fedb2073726dcffbcd6fb6dee
SHA256 a017e938ea193d1bf678b000c4a22be3f6eb85ab471343147fcef5591b86f719
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /zdi-team/cd1a0c7b1a16bd2f1b894514f29a56fe.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zerodayinitiative.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 23:35:37 GMT
content-type: text/javascript; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
etag: W/"a017e938ea193d1bf678b000c4a22be3"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
content-encoding: gzip
accept-ranges: bytes
set-cookie: _gh_sess=iyB6yuKFRFh52yBagxO7Xhx2IU23pIQx%2FWEPlaHh7VNe9jwbvtJJUOeYJEPduFgiN7FroBUh5RmUVn0QCkpqK2YLg5TF0Qt1Sv471rIv%2BhL%2BB99xrKF3uqu3qTdwmI8inV%2FvUi0eU41PRoXImzdgVhct%2FKDPuaTISnsgyFaa2gXOpH4SHcjMKlujSEHYx0QxgHPS%2BMav%2Fw1gjrORev48N7W53klIsIVB%2FplTSNqN6NVgpzJ%2FyJfwL%2Bn4gTSXgHrqXfKxgeaEP3M%2FGtw8G%2BJ1WA%3D%3D--dT%2B%2FqEHTyLoEYYw3--dRXBrNT%2BjTuxMTE6de61dA%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.1107389905.1750635340; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; HttpOnly; Secure; SameSite=Lax
content-length: 1557
x-github-request-id: E77F:EE8EF:3FE98A:42573A:6858934C
X-Firefox-Spdy: h2
GET gist.github.com/99bf449c418456a136f600ee20884d39.js
302 Found 4.8 kB URL
gist.github.com/99bf449c418456a136f600ee20884d39.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606145
Size 4.8 kB (4795 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /99bf449c418456a136f600ee20884d39.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 22 Jun 2025 23:35:36 GMT
content-type: text/html; charset=utf-8
content-length: 0
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
location: https://gist.github.com/zdi-team/99bf449c418456a136f600ee20884d39.js
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
set-cookie: _gh_sess=Rqpol7E%2B4qBxVgYsL5ty2rDKf2LF9Pps%2BDxBG1pmFVJWSGT%2BjIA5ePC3xL%2FbITvBFd1VNCMAg8YV%2B9ITXjw%2F%2BFLkM3f%2BlsfxEDo9FaGkN9mM8I%2BFxYsrKJ2xCAlbh6E74FBAY0izKUcCKl3cQQtDnWqbpFY8jqIztW2OTmxJ8p3JB0Q1ktk%2Fde%2FZadGO%2B9mpO6CdWDnsQrqaFz1OQ3TkU%2FiLVaHol7ngQH8gqHcbX0%2FaZk1lmyqaD%2B4Eavag6THxSR5nPdgjIMEZD2E6ZFH2fQ%3D%3D--sOdZ77kmBn3rqOCT--6x08tQsMq2Lw91Vo%2F1T9%2Bw%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.794561074.1750635339; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; HttpOnly; Secure; SameSite=Lax
x-github-request-id: E77F:EE8EF:3FE7D6:425563:6858934B
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/titilliumweb/v18/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2
200 OK 12 kB URL
fonts.gstatic.com/s/titilliumweb/v18/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2
IP / ASN
142.250.178.35
#15169 GOOGLE
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 11732, version 1.0
First Seen 2025-06-03
Last Seen 2025-08-01
Times Seen 388
Size 12 kB (11732 bytes)
MD5 6a025e37840087fc773a919e805d677c
SHA1 4f716b1a077ece2131283eb0eb033595baa0dd97
SHA256 9e3162d81ed6681322ab34791660f1b45c79945197e7a7dbb217005b2926caf4
Certificate Info
Issuer Google Trust Services
Subject *.gstatic.com
Fingerprint 6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
Validity Mon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
GET /s/titilliumweb/v18/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.zerodayinitiative.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11732
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 16 Jun 2025 21:28:52 GMT
expires: Tue, 16 Jun 2026 21:28:52 GMT
cache-control: public, max-age=31536000
age: 526008
last-modified: Mon, 02 Jun 2025 16:41:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET gist.github.com/63d218f7c02f50da4476660dda47ac96.js
302 Found 4.8 kB URL
gist.github.com/63d218f7c02f50da4476660dda47ac96.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606145
Size 4.8 kB (4795 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /63d218f7c02f50da4476660dda47ac96.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 22 Jun 2025 23:35:37 GMT
content-type: text/html; charset=utf-8
content-length: 0
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
location: https://gist.github.com/zdi-team/63d218f7c02f50da4476660dda47ac96.js
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
set-cookie: _gh_sess=2Nko4%2FuRtGmZtw7CqaluoPJbrgaVmIRUFZNWw%2B%2FpbCuigbt35%2FgXuI2c0B5638ByrhE%2FagcySf006ij2kY142jdDNFH%2BY2WHlHhXgMT7oT4R%2FmkWDn4zOvi3dPCgms8OJ3u5KJByZvYVTw2fXderyo%2FBuRwR1pgKe7g%2FnxdAvbPfPpg%2BPWqrVd%2FRvkhuRMA%2BhsWsFgZFxhsqNPDrx32jb2UW5BFD0dzpP6QAEmmksjrgc4VkNI4bSB83TdVoUDwIWzJKA45UD1yanKnHFMEg%2Bg%3D%3D--TOLbTjFMv30OAYlL--TD1TDCrG7M9q8hWmveg6KA%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.263771740.1750635339; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:39 GMT; HttpOnly; Secure; SameSite=Lax
x-github-request-id: E77F:EE8EF:3FE80D:425586:6858934B
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2
200 OK 23 kB URL
fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP / ASN
142.250.178.35
#15169 GOOGLE
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 43556
Size 23 kB (23040 bytes)
MD5 de69cf9e514df447d1b0bb16f49d2457
SHA1 2ac78601179c3a63ba3f3f3081556b12ddcaf655
SHA256 c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
Certificate Info
Issuer Google Trust Services
Subject *.gstatic.com
Fingerprint 6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
Validity Mon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT
GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.zerodayinitiative.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jun 2025 17:59:41 GMT
expires: Fri, 19 Jun 2026 17:59:41 GMT
cache-control: public, max-age=31536000
age: 279360
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET assets.squarespace.com/universal/scripts-compressed/common-vendors-4b2deb998c9fde94-min.en-US.js
200 OK 714 kB URL
assets.squarespace.com/universal/scripts-compressed/common-vendors-4b2deb998c9fde94-min.en-US.js
IP / ASN
151.101.64.237
#54113 FASTLY
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
First Seen 2025-06-18
Last Seen 2025-06-28
Times Seen 548
Size 714 kB (714360 bytes)
MD5 af6e5a435c4355c47dd6e669af091499
SHA1 0faa5919c2321d1b3e5cac6af4c895f59158c883
SHA256 862da23e4f09bb7b6ab6f59f9339af2db039d49753e705d2e4d6739f3b70ece6
Certificate Info
Issuer DigiCert Inc
Subject *.squarespace.com
Fingerprint 03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76
Validity Mon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
GET /universal/scripts-compressed/common-vendors-4b2deb998c9fde94-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.zerodayinitiative.com
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
cache-control: public, max-age=31536000
expires: Thu, 18 Jun 2026 15:45:12 GMT
last-modified: Tue, 17 Jun 2025 21:43:46 GMT
etag: "f621832234a5f3ec7e8ae49141a651a1"
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 22 Jun 2025 23:35:39 GMT
age: 373826
x-served-by: cache-iad-kiad7000170-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 68, 28877
x-timer: S1750635339.445914,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 175584
X-Firefox-Spdy: h2
GET gist.github.com/zdi-team/86ca85ec4f88cbbc9318d91d64879ea1.js
200 OK 5.7 kB URL
gist.github.com/zdi-team/86ca85ec4f88cbbc9318d91d64879ea1.js
IP / ASN
140.82.121.4
#36459 GITHUB
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type HTML document, ASCII text, with very long lines (5576)
First Seen 2025-06-22
Last Seen 2025-06-22
Times Seen 1
Size 5.7 kB (5693 bytes)
MD5 40577c491d582a6bcfa8c04b09b29804
SHA1 3bed52f4dcea29b70a76339b3c6403b500f0f80b
SHA256 ebf8a7a0d5816cdc9615bc5b2a9c5539af7408ec579dbc5a8e9326ae34922cec
Certificate Info
Issuer Sectigo Limited
Subject *.github.com
Fingerprint 7A:96:66:B4:C7:AA:A7:7E:A1:CD:48:AF:0B:3D:0F:BF:60:60:4F:B2
Validity Wed, 05 Feb 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT
GET /zdi-team/86ca85ec4f88cbbc9318d91d64879ea1.js HTTP/1.1
Host: gist.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.zerodayinitiative.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 22 Jun 2025 23:35:37 GMT
content-type: text/javascript; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
etag: W/"ebf8a7a0d5816cdc9615bc5b2a9c5539"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
content-encoding: gzip
accept-ranges: bytes
set-cookie: _gh_sess=1vZZgo0DWTR2b8eRS5c1LXyZrsrf1ZnYMULkp%2BjXZ3HkDbonT1na9EuFOt8%2BmgNL2xWHD8JtAZi9ZC3cb0dXFZ3OkJ%2F76i7AD8cLdhHxVC9BT0MjdND%2FG6NsMUPF5GIkqgve87Fz5pVwFR8fSKrl2t06frPlhGcZTTnVH98u43FaJUxgnBgw91Gh%2BnmZs5dnV990llbWuxe3%2BQIgUHG1WXaG8cK4hK4Vpjeaoyp2omRUG4py%2BKmzsbpYRrO3Aen2oVb2mSuJbQ22lcuzjsm2sw%3D%3D--xjas4AZyxDC7HT3D--qNwCWeTmESEVlPkK7CQ8uQ%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.182797433.1750635340; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Mon, 22 Jun 2026 23:35:40 GMT; HttpOnly; Secure; SameSite=Lax
content-length: 1575
x-github-request-id: E77F:EE8EF:3FE9B0:42575F:6858934C
X-Firefox-Spdy: h2
GET github.githubassets.com/assets/gist-embed-05ac2616078a.css
200 OK 110 kB URL
github.githubassets.com/assets/gist-embed-05ac2616078a.css
IP / ASN
185.199.111.154
#54113 FASTLY
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type ASCII text
First Seen 2025-06-22
Last Seen 2025-06-27
Times Seen 3
Size 110 kB (110352 bytes)
MD5 b27193fdc0bab49526a814e81ded0479
SHA1 6a710aa29b1c2dc20a63bc491b9b18f66c84a450
SHA256 64e75623b95b01f0f5a2d96da433e1533c3e7116c246e43f8b9a88efe99a1d93
Certificate Info
Issuer Sectigo Limited
Subject *.githubassets.com
Fingerprint 6C:B6:81:2C:6B:92:0E:0E:48:03:F3:EA:CA:73:0D:97:43:02:11:B2
Validity Tue, 24 Sep 2024 00:00:00 GMT - Wed, 24 Sep 2025 23:59:59 GMT
GET /assets/gist-embed-05ac2616078a.css HTTP/1.1
Host: github.githubassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Thu, 22 May 2025 19:55:00 GMT
etag: "0x8DD996A88FF6671"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 22 Jun 2025 23:35:40 GMT
age: 1018445
x-served-by: cache-iad-kcgs7200029-IAD, cache-hel1410031-HEL
x-cache: HIT, HIT
x-cache-hits: 42, 815
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f228bed907f6240b78470f80e6967f4af21ee0e4
content-length: 15719
X-Firefox-Spdy: h2
GET assets.squarespace.com/universal/scripts-compressed/async-gdpr-cookie-banner-d37873ef25fe31b4-min.en-US.js
200 OK 22 kB URL
assets.squarespace.com/universal/scripts-compressed/async-gdpr-cookie-banner-d37873ef25fe31b4-min.en-US.js
IP / ASN
151.101.64.237
#54113 FASTLY
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JavaScript source, ASCII text, with very long lines (21702)
First Seen 2025-06-20
Last Seen 2025-06-25
Times Seen 203
Size 22 kB (21875 bytes)
MD5 96f1ab24706b85e6786f9cb1234e4fca
SHA1 d62c9c4eebc6089e0b1dcf7cac99c82afd71c5c4
SHA256 28e0925a1f6113e3ac38ec3036abe4411abb966acc2f227ec1abbab92026a69e
Certificate Info
Issuer DigiCert Inc
Subject *.squarespace.com
Fingerprint 03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76
Validity Mon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
GET /universal/scripts-compressed/async-gdpr-cookie-banner-d37873ef25fe31b4-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
cache-control: public, max-age=31536000
expires: Thu, 18 Jun 2026 16:15:16 GMT
last-modified: Wed, 18 Jun 2025 16:10:27 GMT
etag: "1441d115e68e7d535003ff833d1fbbcf"
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 22 Jun 2025 23:35:41 GMT
age: 372025
x-served-by: cache-iad-kcgs7200101-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 48, 9363
x-timer: S1750635341.321509,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 6961
X-Firefox-Spdy: h2
GET assets.squarespace.com/universal/scripts-compressed/extract-css-moment-js-vendor-088ec0120fdbcfed-min.en-US.js
200 OK 858 kB URL
assets.squarespace.com/universal/scripts-compressed/extract-css-moment-js-vendor-088ec0120fdbcfed-min.en-US.js
IP / ASN
151.101.64.237
#54113 FASTLY
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JavaScript source, ASCII text, with very long lines (43684)
First Seen 2025-05-13
Last Seen 2025-08-02
Times Seen 1628
Size 858 kB (857850 bytes)
MD5 ac18c33ff9ca92b2a347303ac22382d6
SHA1 3361cf158a5a3ef68cd1ee69fb419afbf5ccd2a6
SHA256 154e5c0ddaba3d0538d6d468a62e54e6484208bb8a26ef912ecf1027eb87d99e
Certificate Info
Issuer DigiCert Inc
Subject *.squarespace.com
Fingerprint 03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76
Validity Mon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
GET /universal/scripts-compressed/extract-css-moment-js-vendor-088ec0120fdbcfed-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.zerodayinitiative.com
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
cache-control: public, max-age=31536000
expires: Wed, 13 May 2026 17:14:38 GMT
last-modified: Mon, 12 May 2025 19:41:53 GMT
etag: "26d1235e5f963cac08ef23d92721328c"
content-encoding: gzip
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 22 Jun 2025 23:35:39 GMT
age: 1117619
x-served-by: cache-iad-kjyo7100040-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 31, 87489
x-timer: S1750635339.321030,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 61092
X-Firefox-Spdy: h2
GET assets.squarespace.com/@sqs/polyfiller/1.6/modern.js
200 OK 118 kB URL
assets.squarespace.com/@sqs/polyfiller/1.6/modern.js
IP / ASN
151.101.64.237
#54113 FASTLY
Requested by https://www.thezdi.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (43878), with NEL line terminators
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 4963
Size 118 kB (117609 bytes)
MD5 93a2aea230d421d550375c528b22583e
SHA1 e8d88b00db1c30510928a7c6618f0f7cffa9b4c2
SHA256 54e832663426c696b1f603379026e5e15720e8c812bbbc60d63aa2ad8a479f75
Certificate Info
Issuer DigiCert Inc
Subject *.squarespace.com
Fingerprint 03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76
Validity Mon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
GET /@sqs/polyfiller/1.6/modern.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.thezdi.com
DNT: 1
Connection: keep-alive
Referer: https://www.thezdi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Wed, 02 Oct 2024 02:39:38 GMT
last-modified: Mon, 31 Oct 2022 21:19:57 GMT
etag: "fe0d53a94823df972dbf107bf190771a"
content-type: text/javascript
content-encoding: gzip
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 22 Jun 2025 23:35:36 GMT
age: 2820936
x-served-by: cache-iad-kcgs7200042-IAD, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 79, 92585
x-timer: S1750635336.154914,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 42447
X-Firefox-Spdy: h2
GET www.thezdi.com/images/logo-zdi.svg
404 Not Found 28 kB URL
www.thezdi.com/images/logo-zdi.svg
IP / ASN
198.185.159.144
#53831 SQUARESPACE
Requested by https://www.thezdi.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type HTML document, ASCII text, with very long lines (12878)
First Seen 2025-06-22
Last Seen 2025-06-22
Times Seen 1
Size 28 kB (27731 bytes)
MD5 64bde99e4e4b65566ce75128f36ae1e7
SHA1 dc0b365e6b02dc50ed225e0019b4b05d286a9691
SHA256 b25f4b30175106f0671ccde3c6e18c48f47c8aae1395d6039f603d5d320668f1
Certificate Info
Issuer Let's Encrypt
Subject www.thezdi.com
Fingerprint F7:B7:CF:A3:E4:09:5B:CF:F7:CC:B9:82:FA:04:08:99:4F:E6:F7:32
Validity Wed, 28 May 2025 03:28:41 GMT - Tue, 26 Aug 2025 03:28:40 GMT
GET /images/logo-zdi.svg HTTP/1.1
Host: www.thezdi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.thezdi.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Cookie: crumb=BZEn5kMNMHgLZDAxMTFhMTEzYTYxYjA4ZGI3Y2JmYzBkM2JjZGYz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
age: 0
content-encoding: gzip
content-type: text/html;charset=utf-8
date: Sun, 22 Jun 2025 23:35:36 GMT
etag: W/"ed7d6b3d2783c6ca49b6dd77d7caba70"
expires: Thu, 01 Jan 1970 00:00:00 GMT
server: Squarespace
strict-transport-security: max-age=15552000
vary: Accept-Encoding
x-content-type-options: nosniff
x-contextid: pzrnqdYP/BTXHviIA
content-length: 7804
X-Firefox-Spdy: h2
GET assets.squarespace.com/universal/scripts-compressed/13849-55e1130b81462f7c-min.en-US.js
200 OK 72 kB URL
assets.squarespace.com/universal/scripts-compressed/13849-55e1130b81462f7c-min.en-US.js
IP / ASN
151.101.64.237
#54113 FASTLY
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
First Seen 2025-06-18
Last Seen 2025-06-28
Times Seen 545
Size 72 kB (71589 bytes)
MD5 8c155a8b57e88fd0e73c76390466f8e1
SHA1 8b421708bf26783b58aa694eb6c2f2e525a931e2
SHA256 ca5fa931dcf14bae88786e5449338cfbc60fc8c9cf290946324cc69d1a37739c
Certificate Info
Issuer DigiCert Inc
Subject *.squarespace.com
Fingerprint 03:03:22:F2:2E:D6:85:04:20:8F:6C:B5:75:A2:17:54:E7:AF:B2:76
Validity Mon, 10 Feb 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
GET /universal/scripts-compressed/13849-55e1130b81462f7c-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
cache-control: public, max-age=31536000
expires: Thu, 18 Jun 2026 15:45:14 GMT
last-modified: Tue, 17 Jun 2025 21:44:05 GMT
etag: "0fe332285c8da28d9aa1923a78d044ca"
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 22 Jun 2025 23:35:41 GMT
age: 373828
x-served-by: cache-iad-kcgs7200135-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 69, 19650
x-timer: S1750635341.299499,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 19029
X-Firefox-Spdy: h2
GET www.zerodayinitiative.com/images/footer-bg.jpg
200 OK 30 kB URL
www.zerodayinitiative.com/images/footer-bg.jpg
IP / ASN
52.89.240.103
#16509 AMAZON-02
Requested by https://www.zerodayinitiative.com/blog/2022/7/13/cve-2022-30136-microsoft-windows-network-file-system-v4-remote-code-execution-vulnerability
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 1440x350, components 3
First Seen 2023-11-20
Last Seen 2025-07-11
Times Seen 14
Size 30 kB (30244 bytes)
MD5 2b71b1e273b9d231c40f2b0636145e47
SHA1 7430dd9042868a9011a1d14e99c6e641c8b3e12e
SHA256 6b3ceecfe5907be684db9982878b9601c2368157df925712efe8ee769bb14eea
Certificate Info
Issuer Entrust, Inc.
Subject *.zerodayinitiative.com
Fingerprint 96:BD:7A:7D:19:3F:F9:9D:87:A2:71:67:B1:B8:27:CA:58:C5:2F:AF
Validity Tue, 01 Oct 2024 06:08:03 GMT - Fri, 31 Oct 2025 06:08:02 GMT
GET /images/footer-bg.jpg HTTP/1.1
Host: www.zerodayinitiative.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zerodayinitiative.com/css/main.css
Cookie: crumb=BQPz8DN43zbUMWU1MzFmOWRiY2I4ZGE1YzhhMGEzZWVjYTIxMjQw; _ga_DBFMYZ5KK8=GS2.1.s1750635340$o1$g0$t1750635340$j60$l0$h0; _ga=GA1.2.2007008949.1750635341; _gid=GA1.2.339151533.1750635341; _gat_gtag_UA_93169700_1=1; ss_cvr=54c87982-1920-464c-b663-f9ba40b8e01d|1750635341189|1750635341189|1750635341189|1; ss_cvt=1750635341189
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jun 2025 23:35:41 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Last-Modified: Fri, 05 Jan 2024 18:38:08 GMT
ETag: "7624-60e3726404400"
Accept-Ranges: bytes
Content-Length: 30244
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
