Scribd Logo
Upload

Welcome to Scribd!

  • 41 views

    Untitled

    Uploaded by

    Laith Mahmoud
    The document contains the results of using various tools to scan and analyze the domain modee.gov.jo. It identifies the IP address, name servers, mail servers, and DNS records for the domain. It also shows the results of tools like nmap, nikto, whatweb, and wafw00f being used to discover open ports, detect web application firewalls, and analyze the web server and services on modee.gov.jo. Many of the scans returned errors or were blocked.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd

    Untitled

    Uploaded by

    Laith Mahmoud
    41 views9 pages
    The document contains the results of using various tools to scan and analyze the domain modee.gov.jo. It identifies the IP address, name servers, mail servers, and DNS records for the domain. It also shows the results of tools like nmap, nikto, whatweb, and wafw00f being used to discover open ports, detect web application firewalls, and analyze the web server and services on modee.gov.jo. Many of the scans returned errors or were blocked.

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    The document contains the results of using various tools to scan and analyze the domain modee.gov.jo. It identifies the IP address, name servers, mail servers, and DNS records for the domain. It also shows the results of tools like nmap, nikto, whatweb, and wafw00f being used to discover open ports, detect web application firewalls, and analyze the web server and services on modee.gov.jo. Many of the scans returned errors or were blocked.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Download as docx, pdf, or txt
    41 views9 pages

    Untitled

    Uploaded by

    Laith Mahmoud
    The document contains the results of using various tools to scan and analyze the domain modee.gov.jo. It identifies the IP address, name servers, mail servers, and DNS records for the domain. It also shows the results of tools like nmap, nikto, whatweb, and wafw00f being used to discover open ports, detect web application firewalls, and analyze the web server and services on modee.gov.jo. Many of the scans returned errors or were blocked.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Download as docx, pdf, or txt
    of 9

    ┌──(mohammad㉿mohammad)-[~]

    └─$ dnsenum modee.gov.jo

    dnsenum VERSION:1.2.6

    ----- modee.gov.jo -----

    Host's addresses:

    __________________

    modee.gov.jo. 5 IN A 193.188.66.79

    Name Servers:

    ______________

    ns1.nitc.gov.jo. 5 IN A 193.188.66.4

    ns2.nitc.gov.jo. 5 IN A 193.188.66.104

    Mail (MX) Servers:

    ___________________

    mx01.gov.jo. 5 IN A 193.188.64.154

    mx02.gov.jo. 5 IN A 193.188.64.155

    Trying Zone Transfers and getting Bind Versions:

    _________________________________________________
    Trying Zone Transfer for modee.gov.jo on ns1.nitc.gov.jo ...

    AXFR record query failed: REFUSED

    Trying Zone Transfer for modee.gov.jo on ns2.nitc.gov.jo ...

    AXFR record query failed: REFUSED

    Brute forcing with /usr/share/dnsenum/dns.txt:

    _______________________________________________

    jobs.modee.gov.jo. 5 IN A 193.188.88.190

    upload.modee.gov.jo. 5 IN A 193.188.64.114

    www.modee.gov.jo. 5 IN A 193.188.66.79

    modee.gov.jo class C netranges:

    ________________________________

    193.188.64.0/24

    193.188.66.0/24

    193.188.88.0/24

    Performing reverse lookup on 768 ip addresses:

    _______________________________________________
    0 results out of 768 IP addresses.

    modee.gov.jo ip blocks:

    ________________________

    done.

    ┌──(mohammad㉿mohammad)-[~]

    └─$ nmap -sV --script=modee.gov.jo

    Starting Nmap 7.93 ( https://nmap.org ) at 2023-03-18 08:22 EDT

    NSE: failed to initialize the script engine:

    /usr/bin/../share/nmap/nse_main.lua:833: 'modee.gov.jo' did not match a category, filename, or


    directory

    stack traceback:

    [C]: in function 'error'

    /usr/bin/../share/nmap/nse_main.lua:833: in local 'get_chosen_scripts'

    /usr/bin/../share/nmap/nse_main.lua:1344: in main chunk

    [C]: in ?

    QUITTING!

    ┌──(mohammad㉿mohammad)-[~]

    └─$ ^[[200~ls /usr/share/nmap/scripts/

    zsh: bad pattern: ^[[200~ls

    ┌──(mohammad㉿mohammad)-[~]

    └─$ ~ls /usr/share/nmap/scripts/


    Could not find command-not-found database. Run 'sudo apt update' to populate it.

    ~ls: command not found

    ┌──(mohammad㉿mohammad)-[~]

    └─$ nmap -sV --script=http-title modee.gov.jo

    Starting Nmap 7.93 ( https://nmap.org ) at 2023-03-18 08:23 EDT

    Nmap scan report for modee.gov.jo (193.188.66.79)

    Host is up (0.12s latency).

    Not shown: 993 filtered tcp ports (no-response), 5 filtered tcp ports (host-unreach)

    PORT STATE SERVICE VERSION

    80/tcp open tcpwrapped

    443/tcp open tcpwrapped

    Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .

    Nmap done: 1 IP address (1 host up) scanned in 68.49 seconds

    ┌──(mohammad㉿mohammad)-[~]

    └─$ nmap -a modee.gov.jo

    nmap: option '-a' is ambiguous; possibilities: '-append-output' '-allports' '-adler32'

    See the output of nmap -h for a summary of options.

    ┌──(mohammad㉿mohammad)-[~]

    └─$ nmap -allports modee.gov.jo

    Starting Nmap 7.93 ( https://nmap.org ) at 2023-03-18 08:29 EDT

    Nmap scan report for modee.gov.jo (193.188.66.79)

    Host is up (0.085s latency).

    Not shown: 994 filtered tcp ports (no-response), 4 filtered tcp ports (host-unreach)

    PORT STATE SERVICE


    80/tcp open http

    443/tcp open https

    Nmap done: 1 IP address (1 host up) scanned in 177.89 seconds

    ┌──(mohammad㉿mohammad)-[~]

    └─$ whatweb modee.gov.jo

    http://modee.gov.jo [302 Found] ASP_NET, Cookies[ASP.NET_SessionId,__AntiXsrfToken],


    Country[JORDAN][JO], HTTPServer[Microsoft-IIS/10.0], HttpOnly[ASP.NET_SessionId,__AntiXsrfToken],
    IP[193.188.66.79], Microsoft-IIS[10.0], RedirectLocation[/Default/Ar], Title[Object moved], X-Frame-
    Options[sameorigin], X-Powered-By[ASP.NET]

    http://modee.gov.jo/Default/Ar [200 OK] ASP_NET, Bootstrap,


    Cookies[ASP.NET_SessionId,__AntiXsrfToken], Country[JORDAN][JO], HTML5, HTTPServer,
    HttpOnly[ASP.NET_SessionId,__AntiXsrfToken], IP[193.188.66.79], JQuery[3.4.1,3.5.1],
    Script[text/javascript], Title[‫ وزارة االقتصاد الرقمي والريادة‬- ‫[]الصفحة الرئيسية‬Title element contains newline(s)!],
    X-Frame-Options[sameorigin], X-Powered-By[ASP.NET]

    ┌──(mohammad㉿mohammad)-[~]

    └─$ sudo apt-get install wafw00f

    [sudo] password for mohammad:

    Reading package lists... Done

    Building dependency tree... Done

    Reading state information... Done

    wafw00f is already the newest version (2.2.0-1).

    wafw00f set to manually installed.

    0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.

    ┌──(mohammad㉿mohammad)-[~]

    └─$ wafw00f modee.gov.jo

    ______
    / \

    ( W00f! )

    \ ____/

    ,, __ 404 Hack Not Found

    |`-.__ / / __ __

    /" _/ /_/ \\ //

    *===* / \ \_/ / 405 Not Allowed

    / )__// \ /

    /| / /---` 403 Forbidden

    \\/` \ | /_\

    `\ /_\\_ 502 Bad Gateway / / \ \ 500 Internal Error

    `_____``-` /_/ \_\

    ~ WAFW00F : v2.2.0 ~

    The Web Application Firewall Fingerprinting Toolkit

    [*] Checking https://modee.gov.jo

    [+] Generic Detection results:

    [-] No WAF detected by the generic detection

    [~] Number of requests: 7

    ┌──(mohammad㉿mohammad)-[~]

    └─$ sudo apt-get install nikt

    Reading package lists... Done

    Building dependency tree... Done

    Reading state information... Done

    E: Unable to locate package nikt

    ┌──(mohammad㉿mohammad)-[~]
    └─$ sudo apt-get install nikt

    Reading package lists... Done

    Building dependency tree... Done

    Reading state information... Done

    E: Unable to locate package nikt

    ┌──(mohammad㉿mohammad)-[~]

    └─$ nikto -h modee.gov.jo

    - Nikto v2.5.0

    ---------------------------------------------------------------------------

    + Target IP: 193.188.66.79

    + Target Hostname: modee.gov.jo

    + Target Port: 80

    + Start Time: 2023-03-18 08:40:26 (GMT-4)

    ---------------------------------------------------------------------------

    + Server: Microsoft-IIS/10.0

    + /: Retrieved x-powered-by header: ASP.NET.

    + /: The X-Content-Type-Options header is not set. This could allow the user agent to render the content
    of the site in a different fashion to the MIME type. See: https://www.netsparker.com/web-vulnerability-
    scanner/vulnerabilities/missing-content-type-header/

    + Root page / redirects to: /Default/Ar

    + : Server banner changed from 'Microsoft-IIS/10.0' to ''.

    + /: Retrieved x-aspnet-version header: 4.0.30319.

    + OPTIONS: Allowed HTTP Methods: OPTIONS, TRACE, GET, HEAD, POST .

    + OPTIONS: Public HTTP Methods: OPTIONS, TRACE, GET, HEAD, POST .

    sudo apt-get update

    + ERROR: Error limit (20) reached for host, giving up. Last error: error reading HTTP response

    + Scan terminated: 20 error(s) and 6 item(s) reported on remote host


    + End Time: 2023-03-18 08:49:21 (GMT-4) (535 seconds)

    ---------------------------------------------------------------------------

    + 1 host(s) tested

    ┌──(mohammad㉿mohammad)-[~]

    └─$

    ┌──(mohammad㉿mohammad)-[~]

    └─$ sudo apt-get update

    Get:1 http://kali.download/kali kali-rolling InRelease [41.2 kB]

    Get:2 http://kali.download/kali kali-rolling/main amd64 Packages [19.4 MB]

    Get:3 http://kali.download/kali kali-rolling/main amd64 Contents (deb) [45.1 MB]

    Get:4 http://kali.download/kali kali-rolling/contrib amd64 Packages [116 kB]

    Get:5 http://kali.download/kali kali-rolling/contrib amd64 Contents (deb) [172 kB]

    Get:6 http://kali.download/kali kali-rolling/non-free amd64 Packages [217 kB]

    Get:7 http://kali.download/kali kali-rolling/non-free amd64 Contents (deb) [927 kB]

    Fetched 66.0 MB in 17s (3,845 kB/s)

    Reading package lists... Done

    ┌──(mohammad㉿mohammad)-[~]

    └─$ sudo apt-get install zap

    Reading package lists... Done

    Building dependency tree... Done

    Reading state information... Done

    E: Unable to locate package zap

    ┌──(mohammad㉿mohammad)-[~]
    └─$ nikto -h modee.gov.jo

    - Nikto v2.5.0

    ---------------------------------------------------------------------------

    + Target IP: 193.188.66.79

    + Target Hostname: modee.gov.jo

    + Target Port: 80

    + Start Time: 2023-03-18 08:52:56 (GMT-4)

    ---------------------------------------------------------------------------

    + Server: Microsoft-IIS/10.0

    + /: Retrieved x-powered-by header: ASP.NET.

    + /: The X-Content-Type-Options header is not set. This could allow the user agent to render the content
    of the site in a different fashion to the MIME type. See: https://www.netsparker.com/web-vulnerability-
    scanner/vulnerabilities/missing-content-type-header/

    + Root page / redirects to: /Default/Ar

    + : Server banner changed from 'Microsoft-IIS/10.0' to ''.

    + /: Retrieved x-aspnet-version header: 4.0.30319.

    + OPTIONS: Allowed HTTP Methods: OPTIONS, TRACE, GET, HEAD, POST .

    + OPTIONS: Public HTTP Methods: OPTIONS, TRACE, GET, HEAD, POST .

    + ERROR: Error limit (20) reached for host, giving up. Last error: error reading HTTP response

    + Scan terminated: 20 error(s) and 6 item(s) reported on remote host

    + End Time: 2023-03-18 09:01:44 (GMT-4) (528 seconds)

    ---------------------------------------------------------------------------

    + 1 host(s) tested

    https://search.censys.io/search?resource=hosts&virtual_hosts=EXCLUDE&q=%28modee.gov.jo
    %29+and+autonomous_system.name%3D%60NITC+Amman+-+Jordan%60

    You might also like