GeneralInformation

Hostnames	www.brla.gov
Domains	brla.gov
Country	United States
City	San Francisco
Organization	Cloudflare, Inc.
ISP	Cloudflare, Inc.
ASN	AS13335

WebTechnologies

Analytics

JavaScript libraries

Tag managers

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-23064	Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0 allows a remote attacker to execute arbitrary code via the <options> element.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

80 443 2082 2083 2086 2087 8080 8443 8880

-618642004 | 2024-05-12T07:25:23.672724

80 / tcp

HTTP/1.1 403 Forbidden
Date: Sun, 12 May 2024 07:25:23 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5895
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8828acae887a66ec-AMS

-1012436494 | 2024-05-11T12:35:46.403601

443 / tcp

HTTP/1.1 200 OK
Date: Sat, 11 May 2024 12:35:46 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: private, s-maxage=600,no-transform
vary: Accept-Encoding
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
set-cookie: CP_IsMobile=false; path=/
set-cookie: CP_IsMobile=false; path=/
set-cookie: ASP.NET_SessionId=unr0rlnzlod2kwlojbj1nkmc; path=/; secure; HttpOnly; SameSite=None
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' https://*.granicus.com https://platform.civicplus.com https://account.civicplus.com https://analytics.civicplus.com; img-src * data: blob:; worker-src * data: blob: 'unsafe-eval' 'unsafe-inline'; script-src * about: 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; media-src * blob:; font-src * data:; default-src *
CF-Cache-Status: MISS
Last-Modified: Sat, 11 May 2024 12:35:46 GMT
Server: cloudflare
CF-RAY: 882235f2aadd7cc7-LAX

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            09:29:ed:ca:b3:e6:26:97:e4:c1:ca:0b:76:59:5b:b3
        Signature Algorithm: ecdsa-with-SHA256
        Issuer: C=US, O=Cloudflare, Inc., CN=Cloudflare Inc ECC CA-3
        Validity
            Not Before: Feb  7 00:00:00 2024 GMT
            Not After : Dec 31 23:59:59 2024 GMT
        Subject: C=US, ST=California, L=San Francisco, O=Cloudflare, Inc., CN=www.brla.gov
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:cd:b4:4e:e9:81:a6:a6:c7:37:00:f2:22:ad:92:
                    47:57:f5:ad:17:ec:ae:4a:78:cf:bd:b7:cc:67:ec:
                    41:db:f4:f4:fc:6a:74:ff:de:ba:7d:e6:ce:ce:42:
                    82:80:04:c8:16:0a:af:f4:07:e2:a5:d4:41:bc:9a:
                    a7:e1:67:55:ac
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                A5:CE:37:EA:EB:B0:75:0E:94:67:88:B4:45:FA:D9:24:10:87:96:1F
            X509v3 Subject Key Identifier: 
                30:99:70:54:16:E9:56:A2:EB:6A:B1:4D:30:B1:97:68:D9:A5:4E:6B
            X509v3 Subject Alternative Name: 
                DNS:www.brla.gov
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.2
                  CPS: http://www.digicert.com/CPS
            X509v3 Key Usage: critical
                Digital Signature, Key Agreement
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl3.digicert.com/CloudflareIncECCCA-3.crl
                Full Name:
                  URI:http://crl4.digicert.com/CloudflareIncECCCA-3.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.digicert.com
                CA Issuers - URI:http://cacerts.digicert.com/CloudflareIncECCCA-3.crt
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Feb  7 00:12:54.414 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:AD:39:89:1D:E2:93:B5:AD:F9:00:02:
                                5E:27:31:9C:77:12:97:B7:B7:F2:44:10:25:EC:41:F4:
                                46:71:3E:2C:FE:02:21:00:87:08:46:30:B6:6F:DF:9C:
                                A7:F8:7F:4D:FA:D0:A5:17:4C:90:2E:B5:AE:34:0F:D3:
                                E4:67:B7:D6:E5:DB:1E:16
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Feb  7 00:12:54.466 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:8A:92:E6:5F:75:A1:4A:60:F4:7B:71:
                                76:DC:27:BD:55:3F:93:5D:18:B9:E6:E3:C7:6E:0D:D8:
                                0A:CD:20:DA:0B:02:21:00:90:D0:DE:CC:FB:89:55:64:
                                F6:C3:E4:F0:E7:BA:AB:0A:93:A7:E2:6D:74:12:30:AB:
                                45:B3:46:F1:DB:4E:87:A6
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Feb  7 00:12:54.523 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:EE:08:91:21:B0:7A:7C:A1:06:CB:E1:
                                A5:AE:CA:9B:39:21:A7:77:28:BA:F9:AE:72:9B:F6:30:
                                3E:48:6E:A1:CA:02:20:72:A4:75:4D:26:DE:70:64:0B:
                                02:58:6B:F3:CA:73:80:EE:1B:A9:2B:1E:33:73:E7:72:
                                12:B2:4D:0A:AB:75:96
    Signature Algorithm: ecdsa-with-SHA256
    Signature Value:
        30:45:02:20:17:64:e1:76:94:53:da:69:df:72:7c:3f:4b:a4:
        b0:c0:fc:aa:cf:73:62:30:c7:c8:53:8e:78:7e:88:0d:36:81:
        02:21:00:ed:e4:a9:fe:0a:64:cf:40:6e:9e:fe:7a:78:ae:65:
        e4:f7:b4:b1:aa:cb:e9:2f:9f:4c:5b:17:72:09:11:da:4c

-568507869 | 2024-05-09T23:42:53.126352

2082 / tcp

HTTP/1.1 403 Forbidden
Date: Thu, 09 May 2024 23:42:53 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5895
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88158c6e09751574-SJC

141477257 | 2024-05-10T01:28:06.133056

2083 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Fri, 10 May 2024 01:28:06 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

-210265042 | 2024-05-09T23:33:45.075172

2086 / tcp

HTTP/1.1 403 Forbidden
Date: Thu, 09 May 2024 23:33:44 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5894
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88157f0c08040bef-DFW

1791458544 | 2024-05-12T18:54:52.907045

2087 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Sun, 12 May 2024 18:54:52 GMT
Content-Type: text/html
Content-Length: 155
Connection: close
CF-RAY: -

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>cloudflare</center>
</body>
</html>

-1633348848 | 2024-05-10T02:04:27.228914

8080 / tcp

HTTP/1.1 403 Forbidden
Date: Fri, 10 May 2024 02:04:27 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5893
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88165bcdcafe0fd0-LAX

141477257 | 2024-05-09T19:00:52.342383

8443 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Thu, 09 May 2024 19:00:52 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

-58061576 | 2024-05-09T21:36:51.235873

8880 / tcp

HTTP/1.1 403 Forbidden
Date: Thu, 09 May 2024 21:36:51 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 16
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Server: cloudflare
CF-RAY: 8814d3d02ebfd039-SJC

error code: 1003

172.64.151.17

Last Seen: 2024-05-12

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-618642004 | 2024-05-12T07:25:23.672724
80 / tcp

CloudFlare

-1012436494 | 2024-05-11T12:35:46.403601
443 / tcp

-568507869 | 2024-05-09T23:42:53.126352
2082 / tcp

141477257 | 2024-05-10T01:28:06.133056
2083 / tcp

-210265042 | 2024-05-09T23:33:45.075172
2086 / tcp

1791458544 | 2024-05-12T18:54:52.907045
2087 / tcp

-1633348848 | 2024-05-10T02:04:27.228914
8080 / tcp

CloudFlare

141477257 | 2024-05-09T19:00:52.342383
8443 / tcp

CloudFlare

-58061576 | 2024-05-09T21:36:51.235873
8880 / tcp

Products

Pricing

Contact Us

172.64.151.17

Last Seen: 2024-05-12

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-618642004 | 2024-05-12T07:25:23.672724 80 / tcp

CloudFlare

-1012436494 | 2024-05-11T12:35:46.403601 443 / tcp

-568507869 | 2024-05-09T23:42:53.126352 2082 / tcp

141477257 | 2024-05-10T01:28:06.133056 2083 / tcp

-210265042 | 2024-05-09T23:33:45.075172 2086 / tcp

1791458544 | 2024-05-12T18:54:52.907045 2087 / tcp

-1633348848 | 2024-05-10T02:04:27.228914 8080 / tcp

CloudFlare

141477257 | 2024-05-09T19:00:52.342383 8443 / tcp

CloudFlare

-58061576 | 2024-05-09T21:36:51.235873 8880 / tcp

Products

Pricing

Contact Us

-618642004 | 2024-05-12T07:25:23.672724
80 / tcp

-1012436494 | 2024-05-11T12:35:46.403601
443 / tcp

-568507869 | 2024-05-09T23:42:53.126352
2082 / tcp

141477257 | 2024-05-10T01:28:06.133056
2083 / tcp

-210265042 | 2024-05-09T23:33:45.075172
2086 / tcp

1791458544 | 2024-05-12T18:54:52.907045
2087 / tcp

-1633348848 | 2024-05-10T02:04:27.228914
8080 / tcp

141477257 | 2024-05-09T19:00:52.342383
8443 / tcp

-58061576 | 2024-05-09T21:36:51.235873
8880 / tcp