From 1cfbc74a6ea6178b576306e4a2dd47722e7c63b5 Mon Sep 17 00:00:00 2001 From: unknown Date: Thu, 9 Oct 2025 16:08:24 +0530 Subject: [PATCH 1/2] Completed updated work --- .../__pycache__/Main_server.cpython-313.pyc | Bin 0 -> 13509 bytes network_log.txt | 330 ++++++++++++++++++ wesng/missingkbs.vbs | 323 ----------------- 3 files changed, 330 insertions(+), 323 deletions(-) create mode 100644 Network core/Python/__pycache__/Main_server.cpython-313.pyc create mode 100644 network_log.txt delete mode 100644 wesng/missingkbs.vbs diff --git a/Network core/Python/__pycache__/Main_server.cpython-313.pyc b/Network core/Python/__pycache__/Main_server.cpython-313.pyc new file mode 100644 index 0000000000000000000000000000000000000000..643d3a16d9bb40eee5548e6ee11545d1b76454ff GIT binary patch literal 13509 zcmeHOeNY@ncJJBQkJ(RHSj0CB2>RE)? z^IeFOi?L%{y4(`?dyWK+I`bF$N#!GlY{v98*OP`Lc1QDwq zPg|1`#oF;!%!#6vvPA^IugyU;rB zA2~15ctw3$5*-W0S{n~G?uMku)V^3`ALfV`Xz3fp=K6GhgK{E)M4?H4A2H88f&ovhieO zY)qsd!|WgpH`MXe1bp)pdw5aU>RugzNm_K%G~VqLHv94)v+E@*@!{4xOHkjYq;m zz5Za>2gP0#sV6!ub3PwTvzX5(=cs-5XaXm+Lc(B%EESa{%02V!?V_ex{mb?h5E5BG z8j4KGMk>Z8X}E7By}U7r7~!Y9r6@?Rk^#o6h&Kk_^&07^-}vz1FN$iwW$3^q4t_pnrs|vlF6}YJk>kG0D6RO*4Dnq-oqn z6DQTCYm=sF8_m2;YVf#8lN->1#5}+%azmyUmI1vYH*Atyx2ehXz?y8CvhA6eBNNNX z#B$ZxV4+sxfYDp5#j|(KAZVk&lL6u_$);;DZ@CuB-Up0XEm&{PzIaiqdhuTI!lWq0 z`1G@7&Dsy>E5-a1(Pnuim+e;5Hog1 zq!`?-LS&MThrHxCm{k^d%~j;%UW@|t($Ka%UWw&AP~gb{2?VX z-yR8%1_MxX5F|lR=bPPpM+9n;#{E>}tN8Px8097ZsA#d=$dRo8{E*u>5($T8lRprk zq9n;y6%G_B#dRyQVOZLn6r-bPtYi~aU!!b^!g7yI`zC2fHclw-2TT~e9a$fRp38

{3c4uXFi~7EG#^D~NqLXHU=*rWql&gE0Pho}W+kG?tcZ>JM zluV$_s~63|l9W`fad~L~Lyfcyr?K=DEbJMwShXuv)tIbmOjSLWgnwMcta-7#Dpg*W zEU!zIA4tMKu4LA9x2SQ}y2#~UEB(=vZw&ol=!Z|IcC{pTwIo_k-`;g5QR7W``xAu& zNp3*RR&Xu$+Ow}do2q;?S@~$9;@~_@6gDThW;M0wdd(ZPuh*uk4LZa9` z_m#Qg`KtMz`LEuD0^5>Y+m|R1^pf1(bP=^lt}Y#|PjU@vw6H13HKn6ZCb=hPt*b_2 zcFdknIVzKm%G-{r1+IFLvt72oU{7(SNv`zTi4V9v6mjWy2H+kr{+$6pv;0sDfCi#q z08}oNu>f=jOje54h!$ahwuqvkp`{pofcY!$<-L_ z#GnR){Se%XR5lfr)W*p98=y)R;{N70#;X0wYW;tXRdq?u^WTeAX{rZroDig;3Ryh_ z5g@B%OR|bNHeDKJ;mH`e!SuOxX@fTsihw}{{zz0NubL`-AQBd3YkJ`E;RxnH=mg`m z9#cQy$`wR)GfIJOE0XlEe?kP3Zt?jhB7w;e#%(^|g-L%Xos#2&O$3!>~Xt21hWVz~=)h6bp{{{4ucD!;>*l^7(EMrFx~=6iu!YU~y72 z1b;+6)iH(x%SM;M4ff0ax_y~IbiQU4Z_BkPcD+&ldbuiYQpCTiWegQ+u}X<(m`C83 zxiVXZRS;c;JvoqiGMGu;iu_l@SP44#V;^I|H=z$R56lmnv`l{81>G2_T3<(I`;e)Y zz^>l|8v)&*S(6C{q}Y$>vXpaB@wH(3RvQKIf2^aYmEc1O>)N1Z^*+jEyacAc_#0Fl z40Q3yp z15!0#e~||gdTClvwt9Sh42Wl!PdLZdL-FW!Xl>ko(9-~ajm?J|4mErgWzuHh=so$M zXvkl(U&GA!Gb3_dk?K+bFThoAs>MVO_N(g>yXpenP{v?S}r zOTn0%mF?hWnSd>|Pf?Z~+M`;E%!m@=0x(i_joVbYnwvfWNuBVMA`r}wWxdtlTGo@| zc6Qdj#N}Ofyy&>{&AE=7`uDk3ke8g$%{nysx90k9y58pw-z_S8!T$M@wIF5PleF$x zAv%L=iL)ni_slux*o32Yfva2Mte3eLxhu}g))%Z_EE^!pnp6OFKDYk>`KhbzAp4HF zrfom_&VB>Lx8`X>kR5!1%m8jEbps5{a6Qa=kgC@<>krl*{OKQK!|VXN)uvrAGbnLRH~%Z7{o(4?3hBV{I{LqeJi#Uwpw!N8=!mec6rzrVge5IH~eUPai ze$qh*0ETx|UEg`V;JP^1Id?GOdSs?|$zFK*=@*~A);sTdJCL-Wm^rp+b*8LkNo(14 zCTXoo=&Mxr3;LNWgJs`?Ze*}5V{;I-G*{7{w2~iqhrlXtADj<>WcUJgROZeEm3UEhL*T(eeomzRTCpy0X#MP61U;v z4u~OeM8fLMzt{eZ_S54qq0?HO3TUs-r%C|ZkHw3#;2sD{iV;xox0$ECP=uRP)@>FX z=xLDBGZ-L*QzURyfB=xftZ4cWFTh={f_b{oG^p>`ELK6BJ`M$JLJ|80O*#rW&SI`M zSRDxP4uk8iYjD=QWaY0H&-JFP%}HzX;_m(PkInA`|3RYWOu|;RWZQAM@5R1EX~RwZ z+a2%QdOq5a`zw#&wmxzAOk$TeVXMyMZoKJwyZ?RL@w-Lkv-V}qZg4IB7ODc{vsy}Q zJ2smi_gvLne!@|=z9qO{b3ina%+54I~nmDH`OJzlQ-q;LSo~maLLmDGj6Z5=kI~S+cEC0~Vi5x#UWi4aQ6Sko5JO%?1bm8(i+uWA#p6*3 zOuSg(l|1aRD6(>1>yHLxR)r(t_72Z~V9$npM>d>R&V}?-{$NaYo)D*pBYqlCC_bHx z##D?$?8yS1Z0@`?B1X|Q46N0ZMl?BBs}P|Md9Dg-8#rr@(mEgJRG^YZq2y`!Nk4-C zP)%2CaDBwNUUDoOiM?>qmY*nSSQj2t;(Hctx!>D!t$*2W%D2p#R&z<&?o{c%_e=N9 zb=@v)N^nKXdXu?q(N>nSRV8gz3$~rBHexS%`PApDR+3w_LRfRrlFgaOJF#FpxnwJT z>C}=f=W_Rp-B-@Ma$?y8sb8#G6ooIAtS-o&=D{0)sNkiXO=x6-d~4D%=*e^YkCu?1 z=CWjucC?VaRmeh~TP2qEGWJ%Dr@fGUx6lA_ z#eu!yL=f>o!JKBmjHdy0`nPrkH4N-Sj=H5&;>(tq*{o`1 zb}{}R5VG#PYzzGA&tM$CUHuvS%64KfLzU3Y;0Jr1#T(ozX!KM^!VKUho-b~?G>i=6 zCkXJTX#fspkj|SysjRX$bHbFB35F*Wd~aY5;26QxPePd%4wkAipx)dzZ+MFyZlZ>n z^QZyR#0X|MPUZ&Db*NnV87pwlsGfs2vr*Tg=<;b*av$B6dvx&=3U09aOXxz|Hr0zC zTyTRm57zZR54st|e@LTg7aR{9&75sUbBpx?+uhu4a&JBMdTk`p?T3F=q?Tyw3O}hC z)$yc~@bK5g^qtc_4cRVF-yf#>S&M-|tBXxX#kd(0>to`jSiIzDC<32m1b9E6J_h6Ad=gL7_zlQ~E8-FO zt>6y$FtZa{jPB2T(hc)6;_TObS~mYwYun z!9XP(J#SXdUA*Rct?bpZRPo+q@!mT*d*7`5^$Gwo`GZ}1n1|PEI2QHC#&5863YtQH z4+A^_-Oy=@#+Jq*z&6fFH*E(K1`Rd73SzWTM?oNK) zn=Su4dSe>KMFfY~_ZcsxKO4uZ2gmDMOt&sUrxQb8PYsPHhsIMw6Um{8J7*@+X=)GS zw)XS_?pGEtuHAZE#qolB7clrawzc-(kBDj@tCZi@ShiD4xDGor$cF9s6RX{=V&FUt5%ZjngHjv zl&wMe4#1)%2BR=B@a4(OsBFW2;r9gySjz1GdfGFmb_5aPD*U9M0J41!q|-<^+w;%< z{{>H&0owdTXa@l-9f{n%b4@>PxzUo^ z*OJ`VlGxjta2#IXzP4m_EI4}Jf^+hol(i>m?fIp!sxIPRsf&0;efkVO285OUiF#Yg z$y>|JDJn{%XUSpM+aIsl@zTW9ccA3J*b7ZbWds)ob~gKn|ji)O;1V_ zxpmo|0GrNBxZHC!Kd!w|o7&r!+}oCLAAQ^Xi;jOf`Hv@4C!b25d@6C`=|rCI1KZb^ zol33C<>aw3<}(i7)*Yv3?Xw*uui*n{{hEYFske4GyPDabwK}_P?9ZDm-DcA-Y?kg4 z(*|J5(B%af>Fw#VW>EdG3CV8Gw<65zY3d-JEh(2m#u$azaGLBsgbK;nMqT*A5J*vm z0^COz$=F6+R?*GS%=_pf8QZ9e_BLGy($Du&>nC(u zlb}%M4LpeK^i`*cjHz$Kfd6(_hGL26Md;tXwpA|GP;Cn?@zfC7Z+-U0D`Q*9tcTSy$(ZV#fN0dUz zRD!^5r7vTA76T;F^c4&)V{iq7?_lsJ7@*;%FG7IM9mR^$@50kYQ>qk(!8|6t2SLV^ ze)IWnDz;JiW~*a?tNLggTh)bD2d9r>b-K{%^g-_wTh*moayS>9U2oOic6Oy4T}emR zFCPJ0h1~}&>>_C46KI`OweWUdTXnalVYcIP?+d*j*s7LIirTW7a0Q=PG~0qedaKsi zUd+B*Y-#_BX#}1#7jk@rm=%0=@IiJa!JCO?Bh~BEx7Z8{U@nnl-R$ZTV zXgUhTXI+E%KMkbdm~0rO@Ck{8MQVqlTuaD5F&yw8mUrNOY#lnLjh- zIhAViz9;?s(ydF0(`VlOMxx299DT;~1kJyxerw?Ic-#ir2$jNjsFVk0SG|@| zY?{)(Zj9w&fDQ$upRggs4bb1gPjW*5pPlP1&-Xsp`@P-Yulr72vdX)l7nbzqgr#CZ zU%8~uU(gpU>7Cy`r4)lsR4l{igCk`ZsQ0-`)f1v0!h`ZUVCyWZpSPN`-cFo93Kym? zU`$zT%CgI@LL4sjI~Zl5J^_z1JK>M2r%+07lztt8|0}7yo8z3ZE!uNtEQ`5SiJa;g+ow8` z-=>?%fxA=G&Dihe7R=Z`(>F2|pAZa28Dh!(^ek z2vY*$L&c1rxl)7gcbQ=PddI4AUw+iWG+t@?e(QHymkC6#_pjpZ(;_`+*@)gY8^6sK zFY643qJQRWFBw1KhpUFZmqUyRCeMFql^GN)GhNQ1rzo@FgkaSd(g?o3~ig f(R^|%-+pu_dyCf{-A!&)GZ^2=VtlvxXg&L%(`%6< literal 0 HcmV?d00001 diff --git a/network_log.txt b/network_log.txt new file mode 100644 index 00000000..181918e3 --- /dev/null +++ b/network_log.txt @@ -0,0 +1,330 @@ +======= Response ======= +Timestamp: 2025-10-09 15:37:20 +URL: http://clientservices.googleapis.com/chrome-variations/seed?osname=win&channel=stable&milestone=141 +Method: GET +Host: clientservices.googleapis.com +Source IP: 127.0.0.1:61232 +Destination IP: clientservices.googleapis.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:38:20 +URL: http://crl3.digicert.com/DigiCertGlobalRootG2.crl +Method: GET +Host: crl3.digicert.com +Source IP: 127.0.0.1:51988 +Destination IP: crl3.digicert.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:38:20 +URL: http://c.pki.goog/r/r1.crl +Method: GET +Host: c.pki.goog +Source IP: 127.0.0.1:51990 +Destination IP: c.pki.goog:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:38:20 +URL: http://c.pki.goog/r/r4.crl +Method: GET +Host: c.pki.goog +Source IP: 127.0.0.1:51990 +Destination IP: c.pki.goog:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:38:20 +URL: http://x1.c.lencr.org/ +Method: GET +Host: x1.c.lencr.org +Source IP: 127.0.0.1:51990 +Destination IP: x1.c.lencr.org:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:38:21 +URL: http://crl.verisign.com/pca3.crl +Method: GET +Host: crl.verisign.com +Source IP: 127.0.0.1:51997 +Destination IP: crl.verisign.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:38:21 +URL: http://crl3.digicert.com/DigiCertGlobalRootG3.crl +Method: GET +Host: crl3.digicert.com +Source IP: 127.0.0.1:52000 +Destination IP: crl3.digicert.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:38:21 +URL: http://crl3.digicert.com/DigiCertHighAssuranceEVRootCA.crl +Method: GET +Host: crl3.digicert.com +Source IP: 127.0.0.1:52003 +Destination IP: crl3.digicert.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:38:21 +URL: http://crl3.digicert.com/DigiCertGlobalRootCA.crl +Method: GET +Host: crl3.digicert.com +Source IP: 127.0.0.1:52005 +Destination IP: crl3.digicert.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:38:21 +URL: http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl +Method: GET +Host: crl3.digicert.com +Source IP: 127.0.0.1:52007 +Destination IP: crl3.digicert.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:45:03 +URL: http://edge-http.microsoft.com/captiveportal/generate_204 +Method: GET +Host: edge-http.microsoft.com +Source IP: 127.0.0.1:57551 +Destination IP: edge-http.microsoft.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:45:09 +URL: http://edge-http.microsoft.com/captiveportal/generate_204 +Method: GET +Host: edge-http.microsoft.com +Source IP: 127.0.0.1:57551 +Destination IP: edge-http.microsoft.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:47:09 +URL: http://edge-http.microsoft.com/captiveportal/generate_204 +Method: GET +Host: edge-http.microsoft.com +Source IP: 127.0.0.1:57551 +Destination IP: edge-http.microsoft.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:52:19 +URL: http://www.msftconnecttest.com/connecttest.txt +Method: GET +Host: www.msftconnecttest.com +Source IP: 127.0.0.1:60312 +Destination IP: www.msftconnecttest.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:52:56 +URL: http://www.msftncsi.com/connecttest.txt +Method: GET +Host: www.msftncsi.com +Source IP: 127.0.0.1:63075 +Destination IP: www.msftncsi.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:53:22 +URL: http://connectivitycheck.gstatic.com/generate_204 +Method: GET +Host: connectivitycheck.gstatic.com +Source IP: 127.0.0.1:64613 +Destination IP: connectivitycheck.gstatic.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:53:22 +URL: http://172.16.44.2:2280/cportal/ip/user_login.php?url=http://connectivitycheck.gstatic.com/generate_204 +Method: GET +Host: 172.16.44.2 +Source IP: 127.0.0.1:53032 +Destination IP: 172.16.44.2:2280 +Port: 2280 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:53:22 +URL: http://connectivitycheck.gstatic.com/generate_204 +Method: GET +Host: connectivitycheck.gstatic.com +Source IP: 127.0.0.1:61991 +Destination IP: connectivitycheck.gstatic.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:53:22 +URL: http://172.16.44.2:2280/cportal/ip/user_login.php?url=http://connectivitycheck.gstatic.com/generate_204 +Method: GET +Host: 172.16.44.2 +Source IP: 127.0.0.1:52974 +Destination IP: 172.16.44.2:2280 +Port: 2280 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:53:22 +URL: http://172.16.44.2:2280/cportal/login.html?h=aa570cd4&url=http://connectivitycheck.gstatic.com/generate_204 +Method: GET +Host: 172.16.44.2 +Source IP: 127.0.0.1:63494 +Destination IP: 172.16.44.2:2280 +Port: 2280 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:53:22 +URL: http://172.16.44.2:2280/cportal/top.gif?v=2 +Method: GET +Host: 172.16.44.2 +Source IP: 127.0.0.1:63494 +Destination IP: 172.16.44.2:2280 +Port: 2280 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:53:22 +URL: http://172.16.44.2:2280/cportal/bg.png?v=2 +Method: GET +Host: 172.16.44.2 +Source IP: 127.0.0.1:54946 +Destination IP: 172.16.44.2:2280 +Port: 2280 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + diff --git a/wesng/missingkbs.vbs b/wesng/missingkbs.vbs deleted file mode 100644 index cc90d95f..00000000 --- a/wesng/missingkbs.vbs +++ /dev/null @@ -1,323 +0,0 @@ -' This software is provided under the BSD 3-Clause License. -' See the accompanying LICENSE file for more information. -' -' Windows Exploit Suggester - Next Generation -' Missing KBs Identifier utility -' -' Author: Arris Huijgen (@bitsadmin) -' Website: https://github.com/bitsadmin - -Option Explicit -On Error Resume Next - -' Application information -Dim version : version = 1.0 -Dim appname : appname = "Windows Exploit Suggester: Missing KBs Identifier v" & Replace(FormatNumber(version, 1), ",", ".") -Dim url : url = "https://github.com/bitsadmin/wesng/" -Dim banner : banner = appname & vbCrLf & _ - url & vbCrLf - -' Initialize -Dim fs: Set fs = CreateObject("Scripting.FileSystemObject") -Dim shell: Set shell = CreateObject("WScript.Shell") - -' Collect arguments -Dim args: Set args = WScript.Arguments.Named - -' Check if script is running in cscript (-1) or wscript (0) -Dim scriptHost: scriptHost = InStrRev(UCase(WScript.FullName), "CSCRIPT") <> 0 - -' Show message if running in GUI mode -If scriptHost = 0 Then - MsgBox banner & vbCrLf & _ - "Please run this script from the commandline using:" & vbCrLf & vbCrLf & _ - "cscript.exe " & Wscript.ScriptName, _ - vbInformation, _ - appname - WScript.Quit -End If - -' Configure outputs -Dim stdOut: Set stdOut = WScript.StdOut -Dim StdErr: Set StdErr = WScript.StdErr - -' Show banner -stdOut.Write banner & vbCrLf - -' Show help if requested -If args.Exists("?") or args.Exists("Help") Then - StdErr.Write "Usage: " & Wscript.ScriptName & " [/F] [/I:[filename]] [/P] [/O:[filename]]" & vbCrLf & vbCrLf - StdErr.Write "Description:" & vbCrLf - StdErr.Write " Compiles a list of missing KBs on the current system." & vbCrLf - StdErr.Write " These missing KBs are determined based either the online" & vbCrLf - StdErr.Write " Microsoft Update service or WSUS if configured, or on an offline" & vbCrLf - StdErr.Write " scanfile (wsusscn2.cab). This scanfile is either provided in the" & vbCrLf - StdErr.Write " commandline or downloaded from the Microsoft Update site." & vbCrLf - StdErr.Write " By default the online Microsoft Update service is used (or WSUS if configured)." & vbCrLf & vbCrLf - StdErr.Write "Parameter List:" & vbCrLf - StdErr.Write " /F or /Offline Perform an offline scan using a scanfile." & vbCrLf - StdErr.Write " /I:[filename] Specify path to the scanfile (wsusscn2.cab). Implies /F and /P." & vbCrLf - StdErr.Write " /P Preserve the scanfile." & vbCrLf - StdErr.Write " /O:[filename] Specify filename to store the results in. By default the" & vbCrLf - StdErr.Write " file missing.txt in the current directory will be used." & vbCrLf - StdErr.Write " /D:[directory] Just download the scanfile (don't check for missing KBs)." & vbCrLf - StdErr.Write " By default the file will be downloaded to the current directory." & vbCrLf - StdErr.Write " /? or /Help Displays this help message." & vbCrLf & vbCrLf - StdErr.Write "Examples:" & vbCrLf - StdErr.Write " Determine missing KBs using online Microsoft Update service (or WSUS if configured)" & vbCrLf - StdErr.Write " cscript.exe " & Wscript.ScriptName & vbCrLf & vbCrLf - StdErr.Write " Determine missing KBs downloading the wsusscn2.cab scanfile and preserving it" & vbCrLf - StdErr.Write " cscript.exe " & Wscript.ScriptName & " /F /P" & vbCrLf & vbCrLf - StdErr.Write " Determine missing KBs using the offline wsusscn2.cab scanfile" & vbCrLf - StdErr.Write " cscript.exe " & Wscript.ScriptName & " /F /I:E:\tmp\wsusscn2.cab" & vbCrLf & vbCrLf - StdErr.Write " Determine missing KBs downloading the wsusscn2.cab scanfile saving results in out.txt" & vbCrLf - StdErr.Write " cscript.exe " & Wscript.ScriptName & " /F /O:E:\tmp\out.txt" & vbCrLf & vbCrLf - StdErr.Write " Download the scanfile to E:\tmp\" & vbCrLf - StdErr.Write " cscript.exe " & Wscript.ScriptName & " /D:E:\tmp" & vbCrLf & vbCrLf - - WScript.Quit -End If - -' Check if running elevated -' Only when just downloading the scanfile, no elevation is required -Dim justDownload: justDownload = args.Exists("D") -If not justDownload Then - shell.RegRead("HKEY_USERS\s-1-5-19\") - If Err.Number <> 0 Then - stdErr.Write "[-] This script needs to be executed as an elevated Administrator" & vbCrLf - WScript.Quit - End If -End If - -' Determine output file -Dim outputFile -If args.Exists("O") Then - outputFile = fs.GetAbsolutePathName(args("O")) -Else - outputFile = fs.BuildPath(shell.CurrentDirectory, "missing.txt") -End If - -' Online or offline scan? -Dim offlineMode: offlineMode = args.Exists("F") Or args.Exists("Offline") Or args.Exists("I") Or args.Exists("D") -Dim specifiedScanfile, foundScanfile, scanFile - -' Only check and download scanfile in case of offline scan -If offlineMode Then - ' Determine scanfile - Dim preserveFile, objScanFile, scanFileAge, targetDirectory - targetDirectory = shell.CurrentDirectory - - ' Only download the scanfile - If justDownload Then - ' Determine destination directory for download - targetDirectory = args("D") - If Len(targetDirectory) = 0 Then - targetDirectory = shell.CurrentDirectory - End If - - If Not fs.FolderExists(targetDirectory) Then - stdErr.Write "[-] Output directory """ & targetDirectory & """ does not exist" & vbCrLf - WScript.Quit - End If - - ' Compile path for scanfile - scanFile = fs.BuildPath(targetDirectory, "wsusscn2.cab") - - ' Download and perform scan - Else - ' If scanfile /I parameter is not specified, check if it already exists - ' In case it doesn't exist, download it - specifiedScanfile = args.Exists("I") - preserveFile = args.Exists("P") - If specifiedScanfile Then - preserveFile = True - scanFile = args("I") - Else - ' Determine if file needs to be preserved - If preserveFile Then - targetDirectory = shell.CurrentDirectory - Else - targetDirectory = fs.GetSpecialFolder(2) ' 2 = %tmp% folder - End If - - ' Compile path for scanfile - scanFile = fs.BuildPath(targetDirectory, "wsusscn2.cab") - End If - - ' Check if scanfile exists - If fs.FileExists(scanFile) Then - scanFile = fs.GetAbsolutePathName(scanFile) - Set objScanFile = fs.GetFile(scanFile) - stdOut.Write "[+] Using scanfile """ & scanFile & """ with modification date " & Split(objScanFile.DateLastModified)(0) & vbCrLf - foundScanfile = True - ElseIf specifiedScanfile Then - stdErr.Write "[-] Scanfile """ & scanFile & """ does not exist" & vbCrLf - WScript.Quit - End If - End If - - ' Only download if file doesn't exist yet - If Not fs.FileExists(scanFile) Then - stdOut.Write "[+] Downloading wsusscn2.cab (+/- 600 MB), depending on your Internet speed this may take a while" & vbCrLf - - ' Initialize HTTP object - Dim stream - Dim http: Set http = CreateObject("WinHttp.WinHttpRequest.5.1") - If http Is Nothing Then Set http = CreateObject("WinHttp.WinHttpRequest") - If http Is Nothing Then Set http = CreateObject("MSXML2.ServerXMLHTTP") - If http Is Nothing Then Set http = CreateObject("Microsoft.XMLHTTP") - - ' Send request and store file - http.Open "GET", "http://download.windowsupdate.com/microsoftupdate/v6/wsusscan/wsusscn2.cab", False - http.Send - Set stream = CreateObject("Adodb.Stream") - With stream - .Type = 1 ' 1 = adTypeBinary - .Open - .Write http.ResponseBody - .SaveToFile scanFile, 2 ' 2 = adSaveCreateOverWrite - End With - stdOut.Write "[+] Download saved to """ & scanFile & """" & vbCrLf - - ' Scanfile already exists - ElseIf Not foundScanfile Then - Set objScanFile = fs.GetFile(scanFile) - stdOut.Write "[+] File wsusscn2.cab already exists: """ & scanFile & """. Skipping download" & vbCrLf - stdOut.Write "[I] Scanfile modification date: " & Split(objScanFile.DateLastModified)(0) & vbCrLf - foundScanfile = True - preserveFile = True - scanFileAge = DateDiff("d", objScanFile.DateLastModified, Now()) - If scanFileAge > 31 Then - stdOut.Write "[!] Scanfile is more than a month old, consider downloading the latest version for more accurate results" & vbCrLf - End If - End If - -' Show Windows Update/WSUS settings -Else - Dim dwUseWUServer: dwUseWUServer = shell.RegRead("HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\WindowsUpdate\AU\UseWUServer") - If err.number <> 0 Or dwUseWUServer = 0 Then - stdOut.Write "[I] Windows Update online is used" & vbCrLf - Err.Clear - Else - Dim strWSUS: strWSUS = shell.RegRead("HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\WindowsUpdate\WUServer") - If err.number <> 0 Then - stdOut.Write "[I] WSUS is used, but the WSUS URL could not be read" & vbCrLf - Err.Clear - Else - stdOut.Write "[I] WSUS with URL """ & strWSUS & """ is used" & vbCrLf - End if - stdOut.Write " Usage of WSUS may cause the missing KB information to be incomplete" & vbCrLf - stdOut.Write " To use Windows Update's online KB information, use the /F parameter" & vbCrLf - End If -End If - -' Skip checking the current system for missing KBs if the /D parameter is provided -If justDownload Then - stdOut.Write "[+] Done!" & vbCrLf - WScript.Quit -End If - -' Validate whether Windows Update (wuauserv) service is not disabled -Dim wmi: Set wmi = GetObject("winmgmts://./ROOT/CIMv2") -Dim wuauserv: Set wuauserv = wmi.Get("Win32_Service.Name='wuauserv'") -If wuauserv.StartMode = "Disabled" Then - stdErr.Write "[-] The ""Windows Update"" service is disabled" & vbCrLf - WScript.Quit -End If - -' Initialize Windows Update and identify missing KBs -stdOut.Write "[+] Identifying missing KBs..." & vbCrLf -Dim UpdateSession: Set UpdateSession = CreateObject("Microsoft.Update.Session") -If Err.Number <> 0 Then - stdErr.Write "[-] Error initializing Microsoft.Update.Session object: 0x" & Hex(Err.Number) & vbCrLf - If Err.Number = 429 Then - stdOut.Write " Windows Update Client API missing. Please install the Windows Update Agent" & vbCrLf - End If - WScript.Quit -End If -Dim UpdateServiceManager: Set UpdateServiceManager = CreateObject("Microsoft.Update.ServiceManager") -If Err.Number <> 0 Then - stdErr.Write "[-] Error initializing Microsoft.Update.ServiceManager object: 0x" & Hex(Err.Number) & vbCrLf - WScript.Quit -End If - -' Only use the scanfile in case of an offline scan -If offlineMode Then - Dim UpdateService: Set UpdateService = UpdateServiceManager.AddScanPackageService("Offline Sync Service", scanFile, 1) ' 1 = usoNonVolatileService - If Err.Number <> 0 Then - stdErr.Write "[-] Error initializing Windows Update service: 0x" & Hex(Err.Number) & vbCrLf - If Err.Number = 70 Then - stdOut.Write " Make sure to run this script as an elevated Administrator" & vbCrLf - End If - WScript.Quit - End If -End If - -Dim UpdateSearcher: Set UpdateSearcher = UpdateSession.CreateUpdateSearcher() - -' In case of online scan the ServerSelection and ServiceID don't need to be set -If offlineMode Then - UpdateSearcher.ServerSelection = 3 ' 3 = ssOthers - UpdateSearcher.ServiceID = UpdateService.ServiceID -End If - -Dim SearchResult: Set SearchResult = UpdateSearcher.Search("IsInstalled=0") -Dim updateCount: updateCount = searchResult.Updates.Count - -' List updates -If updateCount = 0 Then - If specifiedScanfile Then - stdOut.Write "[+] Based on the provided scanfile no missing KBs were found" - Else - If foundScanfile Then - stdOut.Write "[+] Based on the scanfile no missing KBs were found" - Else - stdOut.Write "[+] There are no missing KBs" - End If - End If - WScript.Quit -End If - -' Collect missing updates and show them on the screen -stdOut.Write "[+] List of missing KBs" & vbCrLf -Dim i, j, u, update, articleId -Dim missingUpdates(): Redim missingUpdates(updateCount) -u = 0 -For i = 0 to updateCount-1 - Set update = searchResult.Updates.Item(i) - For j = 0 to update.KBArticleIDs.Count-1 - ' Expand array if needed - If u > UBound(missingUpdates) Then - ReDim Preserve missingUpdates(UBound(missingUpdates) + 1) - End If - - ' Store KB in array - articleId = update.KBArticleIDs.Item(j) - missingUpdates(u) = "KB" & articleId - - ' Output to console - stdOut.Write "- KB" & articleId & ": " & update.Title & vbCrLf - - ' Increase index - u = u + 1 - Next -Next - -' Store list of missing KBs -Dim missingFile: Set missingFile = fs.CreateTextFile(outputFile, True) -missingFile.Write Join(missingUpdates, vbCrLf) -missingFile.Close -stdOut.Write "[+] Saved list of missing updates in """ & outputFile & """" & vbCrLf - -' Cleanup scanfile -If offlineMode Then - If Not preserveFile Then - stdOut.Write "[+] Cleaning up wssuscan.cab" & vbCrLf - fs.DeleteFile scanFile - Else - stdOut.Write "[+] Skipping cleanup of the scanfile" & vbCrLf - End If -End If - -stdOut.Write "[+] Done!" & vbCrLf -WScript.Quit From 7e4d47a085a69f7ed7219bc225bf9cfac16e9bf7 Mon Sep 17 00:00:00 2001 From: unknown Date: Thu, 9 Oct 2025 18:09:10 +0530 Subject: [PATCH 2/2] Updated feature/module description --- network_log.txt | 495 ++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 495 insertions(+) diff --git a/network_log.txt b/network_log.txt index 181918e3..c07f8e36 100644 --- a/network_log.txt +++ b/network_log.txt @@ -328,3 +328,498 @@ Severity Level: Info Additional Info Confidential info :) Dont share ! keep safe +======= Response ======= +Timestamp: 2025-10-09 15:53:23 +URL: http://172.16.44.2:2280/favicon.ico +Method: GET +Host: 172.16.44.2 +Source IP: 127.0.0.1:54946 +Destination IP: 172.16.44.2:2280 +Port: 2280 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:53:37 +URL: http://172.16.44.2:2280/submit/status_login.php +Method: GET +Host: 172.16.44.2 +Source IP: 127.0.0.1:54946 +Destination IP: 172.16.44.2:2280 +Port: 2280 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:53:37 +URL: http://172.16.44.2:2280/submit/user_login.php +Method: POST +Host: 172.16.44.2 +Source IP: 127.0.0.1:63494 +Destination IP: 172.16.44.2:2280 +Port: 2280 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:53:38 +URL: http://172.16.44.2:2280/cportal/cp_style.css?ts=3 +Method: GET +Host: 172.16.44.2 +Source IP: 127.0.0.1:57768 +Destination IP: 172.16.44.2:2280 +Port: 2280 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:53:38 +URL: http://172.16.44.2:2281/submit/direct_me.php?url=http://connectivitycheck.gstatic.com/generate_204 +Method: GET +Host: 172.16.44.2 +Source IP: 127.0.0.1:61393 +Destination IP: 172.16.44.2:2281 +Port: 2281 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Request ======= +Timestamp: 2025-10-09 15:55:35 +URL: http://clientservices.googleapis.com/uma/v2 +Method: POST +Host: clientservices.googleapis.com +Source IP: 127.0.0.1:52309 +Destination IP: clientservices.googleapis.com:80 +Port: 80 +Protocol: HTTP +Event ID: REQUEST +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 15:55:35 +URL: http://clientservices.googleapis.com/uma/v2 +Method: POST +Host: clientservices.googleapis.com +Source IP: 127.0.0.1:52309 +Destination IP: clientservices.googleapis.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:04:35 +URL: http://connectivitycheck.gstatic.com/generate_204 +Method: GET +Host: connectivitycheck.gstatic.com +Source IP: 127.0.0.1:56858 +Destination IP: connectivitycheck.gstatic.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:04:39 +URL: http://connectivitycheck.gstatic.com/generate_204 +Method: GET +Host: connectivitycheck.gstatic.com +Source IP: 127.0.0.1:56858 +Destination IP: connectivitycheck.gstatic.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:04:52 +URL: http://edge-http.microsoft.com/captiveportal/generate_204 +Method: GET +Host: edge-http.microsoft.com +Source IP: 127.0.0.1:50368 +Destination IP: edge-http.microsoft.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:05:30 +URL: http://connectivitycheck.gstatic.com/generate_204 +Method: GET +Host: connectivitycheck.gstatic.com +Source IP: 127.0.0.1:60129 +Destination IP: connectivitycheck.gstatic.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:06:12 +URL: http://connectivitycheck.gstatic.com/generate_204 +Method: GET +Host: connectivitycheck.gstatic.com +Source IP: 127.0.0.1:50299 +Destination IP: connectivitycheck.gstatic.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:06:31 +URL: http://crl3.digicert.com/DigiCertTrustedG4CodeSigningRSA4096SHA3842021CA1.crl +Method: GET +Host: crl3.digicert.com +Source IP: 127.0.0.1:63806 +Destination IP: crl3.digicert.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:08:53 +URL: http://connectivitycheck.gstatic.com/generate_204 +Method: GET +Host: connectivitycheck.gstatic.com +Source IP: 127.0.0.1:53092 +Destination IP: connectivitycheck.gstatic.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:08:55 +URL: http://connectivitycheck.gstatic.com/generate_204 +Method: GET +Host: connectivitycheck.gstatic.com +Source IP: 127.0.0.1:53092 +Destination IP: connectivitycheck.gstatic.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:09:51 +URL: http://connectivitycheck.gstatic.com/generate_204 +Method: GET +Host: connectivitycheck.gstatic.com +Source IP: 127.0.0.1:50609 +Destination IP: connectivitycheck.gstatic.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:09:54 +URL: http://connectivitycheck.gstatic.com/generate_204 +Method: GET +Host: connectivitycheck.gstatic.com +Source IP: 127.0.0.1:50609 +Destination IP: connectivitycheck.gstatic.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Request ======= +Timestamp: 2025-10-09 16:10:45 +URL: http://update.googleapis.com/service/update2/json?cup2key=15:qBeXl6wrmWqaFHXSPHJywlXb6Wyl5ti7BJAMhnUFF_8&cup2hreq=9172a89c043dd01c8761942de8a7691120e471ec4a3025fd0e00a4fbdb013069 +Method: POST +Host: update.googleapis.com +Source IP: 127.0.0.1:57530 +Destination IP: update.googleapis.com:80 +Port: 80 +Protocol: HTTP +Event ID: REQUEST +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:10:45 +URL: http://update.googleapis.com/service/update2/json?cup2key=15:qBeXl6wrmWqaFHXSPHJywlXb6Wyl5ti7BJAMhnUFF_8&cup2hreq=9172a89c043dd01c8761942de8a7691120e471ec4a3025fd0e00a4fbdb013069 +Method: POST +Host: update.googleapis.com +Source IP: 127.0.0.1:57530 +Destination IP: update.googleapis.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:11:47 +URL: http://edge-http.microsoft.com/captiveportal/generate_204 +Method: GET +Host: edge-http.microsoft.com +Source IP: 127.0.0.1:51634 +Destination IP: edge-http.microsoft.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:12:04 +URL: http://connectivitycheck.gstatic.com/generate_204 +Method: GET +Host: connectivitycheck.gstatic.com +Source IP: 127.0.0.1:52679 +Destination IP: connectivitycheck.gstatic.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:44:45 +URL: http://crl3.digicert.com/DigiCertTrustedRootG4.crl +Method: GET +Host: crl3.digicert.com +Source IP: 127.0.0.1:63796 +Destination IP: crl3.digicert.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:44:47 +URL: http://crl3.digicert.com/DigiCertGlobalRootG2.crl +Method: GET +Host: crl3.digicert.com +Source IP: 127.0.0.1:63796 +Destination IP: crl3.digicert.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:44:50 +URL: http://c.pki.goog/r/r1.crl +Method: GET +Host: c.pki.goog +Source IP: 127.0.0.1:63796 +Destination IP: c.pki.goog:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:44:51 +URL: http://c.pki.goog/r/r4.crl +Method: GET +Host: c.pki.goog +Source IP: 127.0.0.1:63796 +Destination IP: c.pki.goog:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:44:53 +URL: http://x1.c.lencr.org/ +Method: GET +Host: x1.c.lencr.org +Source IP: 127.0.0.1:63796 +Destination IP: x1.c.lencr.org:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:44:55 +URL: http://crl.verisign.com/pca3.crl +Method: GET +Host: crl.verisign.com +Source IP: 127.0.0.1:56782 +Destination IP: crl.verisign.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:44:58 +URL: http://crl3.digicert.com/DigiCertGlobalRootG3.crl +Method: GET +Host: crl3.digicert.com +Source IP: 127.0.0.1:56782 +Destination IP: crl3.digicert.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:45:00 +URL: http://crl3.digicert.com/DigiCertHighAssuranceEVRootCA.crl +Method: GET +Host: crl3.digicert.com +Source IP: 127.0.0.1:56782 +Destination IP: crl3.digicert.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:45:01 +URL: http://crl3.digicert.com/DigiCertGlobalRootCA.crl +Method: GET +Host: crl3.digicert.com +Source IP: 127.0.0.1:56782 +Destination IP: crl3.digicert.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:45:03 +URL: http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl +Method: GET +Host: crl3.digicert.com +Source IP: 127.0.0.1:56782 +Destination IP: crl3.digicert.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:45:25 +URL: http://connectivitycheck.gstatic.com/generate_204 +Method: GET +Host: connectivitycheck.gstatic.com +Source IP: 127.0.0.1:51263 +Destination IP: connectivitycheck.gstatic.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe + +======= Response ======= +Timestamp: 2025-10-09 16:45:27 +URL: http://connectivitycheck.gstatic.com/generate_204 +Method: GET +Host: connectivitycheck.gstatic.com +Source IP: 127.0.0.1:51263 +Destination IP: connectivitycheck.gstatic.com:80 +Port: 80 +Protocol: HTTP +Event ID: RESPONSE +Severity Level: Info +======================= + +Additional Info Confidential info :) Dont share ! keep safe +