1358202062 | 2024-06-03T05:27:45.359089
80 /
tcp
HTTP/1.1 301 Moved Permanently
Date: Mon, 03 Jun 2024 05:27:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://www1.beyondmenu.com/
x-aspnet-version: 7.13.0.145 (lol fake)
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 88dd4693ca73cf8f-SJC
alt-svc: h3=":443"; ma=86400
2001405997 | 2024-06-02T22:29:20.835005
443 /
tcp
HTTP/1.1 302 Found
Date: Sun, 02 Jun 2024 22:29:20 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: private
location: http://www.beyondmenu.com/
x-aspnet-version: 4.0.30319
x-aspnet-version: 7.13.0.145 (lol fake)
set-cookie: ASP.NET_SessionId=hnvsggpkcwidlkg2el55jvio; domain=.beyondmenu.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: bmuid=21375c5fa04740fe88e86808e698edd9.1717367359946; domain=.beyondmenu.com; expires=Sat, 02-Jun-2029 17:29:19 GMT; path=/; secure; HttpOnly; SameSite=None
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 88dae1ae0e74250d-SJC
alt-svc: h3=":443"; ma=86400
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
bc:28:6d:67:2c:ff:d9:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, ST=Arizona, L=Scottsdale, O=Starfield Technologies, Inc., OU=http:\/\/certs.starfieldtech.com\/repository\/, CN=Starfield Secure Certificate Authority - G2
Validity
Not Before: Aug 15 07:10:27 2023 GMT
Not After : Aug 22 02:26:38 2024 GMT
Subject: CN=*.beyondmenu.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:c4:1d:a9:97:45:eb:3b:3f:b3:a9:a2:e2:1a:3c:
e0:1b:9c:a2:12:da:2a:79:31:c1:b0:64:66:61:2e:
c2:98:c7:47:8b:10:ff:e9:f8:56:b8:04:3e:84:96:
22:1b:1a:1a:cc:51:58:d0:a0:23:82:b8:d3:c1:0e:
69:3a:35:be:2f:a6:82:6d:58:b8:8c:ad:26:7b:31:
bf:eb:dc:50:ef:1e:bb:c6:7e:49:3f:4a:a5:1b:b6:
49:38:31:1e:d3:05:78:82:42:63:df:9c:46:c6:b7:
7f:d4:4c:eb:8b:7c:3f:93:23:fa:8e:2c:20:2b:a6:
f3:9c:ad:d6:2c:d6:6b:0e:06:78:5d:05:db:6f:05:
ab:12:c8:ae:04:02:d9:98:eb:7c:b4:b4:9b:08:b2:
37:88:3a:83:c4:36:73:08:b2:e5:87:89:49:16:b4:
56:d5:92:9f:a1:63:22:c3:d6:58:8b:6c:a2:f5:8e:
7d:42:cc:d6:ac:bc:19:cf:d0:23:71:a0:b6:e1:fd:
8f:2e:49:cb:36:7a:35:36:c7:96:62:e2:f2:54:45:
93:96:22:1c:c9:53:20:1e:6a:9c:bb:57:f5:93:23:
31:43:87:45:02:57:d6:67:94:bd:6b:3a:6d:4f:70:
32:3c:5a:60:c6:a0:1b:f0:8f:71:9a:bc:ac:cc:aa:
51:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl.starfieldtech.com/sfig2s1-611.crl
X509v3 Certificate Policies:
Policy: 2.16.840.1.114414.1.7.23.1
CPS: http://certificates.starfieldtech.com/repository/
Policy: 2.23.140.1.2.1
Authority Information Access:
OCSP - URI:http://ocsp.starfieldtech.com/
CA Issuers - URI:http://certificates.starfieldtech.com/repository/sfig2.crt
X509v3 Authority Key Identifier:
25:45:81:68:50:26:38:3D:3B:2D:2C:BE:CD:6A:D9:B6:3D:B3:66:63
X509v3 Subject Alternative Name:
DNS:*.beyondmenu.com, DNS:beyondmenu.com
X509v3 Subject Key Identifier:
BF:4A:45:A6:CF:8D:A0:ED:E4:D1:04:3D:D7:02:D5:C2:AA:34:F9:A7
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Aug 15 07:10:27.969 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:3A:3C:92:AB:44:13:AE:42:6C:EB:91:CB:
03:6A:B9:D2:F7:8F:0E:8A:43:AF:2F:F9:D9:CF:CC:E3:
29:E7:16:23:02:21:00:83:1C:FC:10:63:A8:60:5E:7B:
E0:63:57:E9:DE:44:57:86:E3:B8:5C:C6:D1:F0:9F:A4:
79:BE:85:E4:F5:AE:B1
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Aug 15 07:10:28.250 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:0B:12:D2:FD:38:8B:9C:4C:D9:E1:E0:22:
17:2E:28:C7:44:7C:98:B6:2F:9F:1F:16:7F:7B:EB:AE:
32:BF:D8:E3:02:20:38:21:A6:A4:5E:87:A3:72:91:0E:
D5:2F:28:CD:83:4D:02:B6:89:93:77:F8:D5:0D:0F:61:
35:93:61:EE:2D:63
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
Timestamp : Aug 15 07:10:28.433 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:A5:A9:13:EE:55:19:DD:9B:29:12:18:
B4:CF:D8:61:03:F2:F4:77:FF:BC:62:7A:E2:E8:F1:20:
B0:BE:6F:3C:17:02:21:00:BB:8D:09:7E:FB:35:3F:88:
15:9B:3B:DE:50:22:97:35:91:2B:26:E4:C2:8C:8A:97:
C3:7F:A7:A8:4E:29:EA:4C
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
0b:28:31:20:e7:6c:4f:46:d7:9c:b1:e3:2e:18:dd:cd:05:d7:
9a:42:15:c9:7b:15:7e:38:60:22:84:f7:9d:42:b0:35:2c:49:
e9:e3:f8:e0:33:b9:05:93:4d:84:21:cf:00:62:e1:d6:65:3c:
06:55:01:1f:dd:16:3f:f0:0b:27:e7:c0:9a:7a:e0:ec:98:77:
18:16:27:66:59:c2:e4:ae:dc:52:44:47:a7:db:32:4a:89:45:
f0:41:00:9e:75:49:c3:e8:f8:ea:da:7f:ee:e1:53:78:59:e4:
d8:6e:50:51:e3:2c:5f:88:c5:0c:35:45:7e:48:22:f4:53:04:
b5:00:3a:bf:42:78:fa:8d:60:ff:43:8b:8d:bb:99:a7:92:e4:
d1:32:5d:94:bd:4d:87:67:20:c8:84:4d:a3:d9:a3:89:46:9f:
4f:e3:e8:7e:f6:4d:3a:77:71:6b:6b:0c:4e:f4:97:19:10:96:
ac:9c:b3:e6:1d:85:e6:37:6a:34:e3:28:12:ce:ec:76:f9:c2:
52:e4:83:76:1a:9d:03:d4:5d:e4:4b:3f:cd:88:df:f2:cf:b6:
92:6b:ba:dc:c6:5d:c9:1e:19:5f:1e:d3:d7:98:ab:b9:82:37:
f8:c7:a2:63:4f:4c:2b:c6:5f:15:c5:45:06:0a:1a:c3:12:9b:
84:47:0b:c6
-1315843159 | 2024-05-29T14:56:27.197228
2082 /
tcp
HTTP/1.1 403 Forbidden
Date: Wed, 29 May 2024 14:56:27 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5894
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b754c9e8cac2d7-VIE
141477257 | 2024-05-28T06:08:32.150120
2083 /
tcp
HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Tue, 28 May 2024 06:08:32 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -
141477257 | 2024-05-31T05:30:16.265632
2087 /
tcp
HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Fri, 31 May 2024 05:30:16 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -
-1579787134 | 2024-05-28T20:51:42.663418
8080 /
tcp
HTTP/1.1 403 Forbidden
Date: Tue, 28 May 2024 20:51:42 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5895
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88b11fcf4c007c97-LAX
141477257 | 2024-05-26T16:50:18.783034
8443 /
tcp
HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Sun, 26 May 2024 16:50:18 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -
-1318974345 | 2024-05-28T15:28:19.763761
8880 /
tcp
HTTP/1.1 403 Forbidden
Date: Tue, 28 May 2024 15:28:19 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 16
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Server: cloudflare
CF-RAY: 88af461b69ab5371-LAX
error code: 1003