Network Analysis
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| fbcdn.net | 157.240.215.35 | |
| facebook.com | 157.240.215.35 | |
| static.xx.fbcdn.net |
CNAME
scontent.xx.fbcdn.net
|
157.240.215.14 |
| fbsbx.com | 157.240.215.35 | |
| www.facebook.com | 157.240.215.35 | |
| connect.facebook.net |
CNAME
scontent.xx.fbcdn.net
|
157.240.215.14 |
- TCP Requests
-
-
192.168.56.101:49231 117.18.232.200:80
-
192.168.56.101:49171 157.240.215.14:443connect.facebook.net
-
192.168.56.101:49172 157.240.215.14:443connect.facebook.net
-
192.168.56.101:49173 157.240.215.14:443connect.facebook.net
-
192.168.56.101:49174 157.240.215.14:443connect.facebook.net
-
192.168.56.101:49175 157.240.215.14:443connect.facebook.net
-
192.168.56.101:49176 157.240.215.14:443connect.facebook.net
-
192.168.56.101:49177 157.240.215.14:443connect.facebook.net
-
192.168.56.101:49182 157.240.215.14:443connect.facebook.net
-
192.168.56.101:49186 157.240.215.14:443connect.facebook.net
-
192.168.56.101:49187 157.240.215.14:443connect.facebook.net
-
192.168.56.101:49168 157.240.215.35:443www.facebook.com
-
192.168.56.101:49169 157.240.215.35:443www.facebook.com
-
192.168.56.101:49178 157.240.215.35:443www.facebook.com
-
192.168.56.101:49179 157.240.215.35:443www.facebook.com
-
192.168.56.101:49180 157.240.215.35:443www.facebook.com
-
192.168.56.101:49181 157.240.215.35:443www.facebook.com
-
192.168.56.101:49184 157.240.215.35:443www.facebook.com
-
192.168.56.101:49185 157.240.215.35:443www.facebook.com
-
192.168.56.101:49188 157.240.215.35:443www.facebook.com
-
192.168.56.101:49189 157.240.215.35:443www.facebook.com
-
- UDP Requests
-
-
192.168.56.101:53004 164.124.101.2:53
-
192.168.56.101:53850 164.124.101.2:53
-
192.168.56.101:54148 164.124.101.2:53
-
192.168.56.101:54883 164.124.101.2:53
-
192.168.56.101:55146 164.124.101.2:53
-
192.168.56.101:59002 164.124.101.2:53
-
192.168.56.101:61950 164.124.101.2:53
-
192.168.56.101:137 192.168.56.103:137
-
192.168.56.101:137 192.168.56.255:137
-
192.168.56.101:138 192.168.56.255:138
-
192.168.56.101:54886 239.255.255.250:1900
-
GET
200
https://www.facebook.com/login
REQUEST
RESPONSE
BODY
GET /login HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: www.facebook.com
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
p3p: CP="Facebook has no P3P policy fb.me/p3p"
Set-Cookie: fr=0Udar91Qc1AXw6qZW..Blpbfl.6Y.AAA.0.0.Blpbfl.AWW3d-Wh-zs; expires=Sun, 14-Apr-2024 22:55:33 GMT; Max-Age=7776000; path=/; domain=.facebook.com; secure; httponly
Set-Cookie: sb=5belZQnBm_Hu5L4oktl0FklM; expires=Tue, 18-Feb-2025 22:55:33 GMT; Max-Age=34560000; path=/; domain=.facebook.com; secure; httponly
reporting-endpoints: default="https://www.facebook.com/ajax/browser_error_reports/?device_level=unknown"
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com *.fbcdn.net 'unsafe-eval';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' blob: data: 'self' connect.facebook.net 'unsafe-eval';style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), encrypted-media=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(self), display-capture=(self), encrypted-media=(self), fullscreen=(self), gamepad=*, geolocation=(self), gyroscope=(), hid=(), idle-detection=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(self), midi=(), otp-credentials=(), payment=(), picture-in-picture=(self), publickey-credentials-get=(self), screen-wake-lock=(), serial=(), usb=(), window-management=(), xr-spatial-tracking=(self)
cross-origin-resource-policy: same-origin
cross-origin-opener-policy: unsafe-none
Pragma: no-cache
Cache-Control: private, no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 00:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
X-Frame-Options: DENY
x-ua-compatible: IE=edge
Strict-Transport-Security: max-age=15552000; preload
Content-Type: text/html; charset="utf-8"
X-FB-Debug: Wu0+JLDjlwhKRwL8+KcmsKePsY484EFvTukc6qdPCoIfZTZFbwWczkNH4zFRQuunyQeAbGyOJgOKu8rB6wVusw==
Date: Mon, 15 Jan 2024 22:55:33 GMT
Alt-Svc: h3=":443"; ma=86400
Transfer-Encoding: chunked
Connection: keep-alive
GET
200
https://static.xx.fbcdn.net/rsrc.php/v3/ya/l/0,cross/EQ0cyse2DGv.css?_nc_x=Ij3Wp8lg5Kz
REQUEST
RESPONSE
BODY
GET /rsrc.php/v3/ya/l/0,cross/EQ0cyse2DGv.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Accept: text/css
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Tue, 14 Jan 2025 19:44:42 GMT
Cache-Control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), encrypted-media=(), fullscreen=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
reporting-endpoints:
x-ua-compatible: IE=edge
content-md5: 1k610vZM2O1qk446Qj0h/g==
X-FB-Debug: AJdkzDxpVhmDKGhEIGNE8fgIH3rwZqKvgOkbXGuOAMeW7KIA0yJOd4D35WwKKfJmJzQtd4IzAmsnEqjgMT7d4g==
Date: Mon, 15 Jan 2024 22:55:34 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 724
GET
200
https://static.xx.fbcdn.net/rsrc.php/v3/yV/l/0,cross/om552iOCRxJ.css?_nc_x=Ij3Wp8lg5Kz
REQUEST
RESPONSE
BODY
GET /rsrc.php/v3/yV/l/0,cross/om552iOCRxJ.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Accept: text/css
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Tue, 14 Jan 2025 19:44:42 GMT
Cache-Control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), encrypted-media=(), fullscreen=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
reporting-endpoints:
x-ua-compatible: IE=edge
content-md5: CIkNYdsVNZ48/nDP6gnVQQ==
X-FB-Debug: Qr9tr+gCPugOaX62kjKH4tLrbs0uW9mgoAMOL3Zzl/u/7HWANbhsCL5+DxoyM2kA9JW3oM//8MfElcfQPwSzNg==
Date: Mon, 15 Jan 2024 22:55:34 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 1410
GET
200
https://static.xx.fbcdn.net/rsrc.php/v3/yJ/l/0,cross/JtVgZ46o85N.css?_nc_x=Ij3Wp8lg5Kz
REQUEST
RESPONSE
BODY
GET /rsrc.php/v3/yJ/l/0,cross/JtVgZ46o85N.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Accept: text/css
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Tue, 14 Jan 2025 19:44:42 GMT
Cache-Control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), encrypted-media=(), fullscreen=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
reporting-endpoints:
x-ua-compatible: IE=edge
content-md5: 0R3RX5qZYCNklUEPRmQyKw==
X-FB-Debug: LGfSJAh6wFNIrNh/kXPSe6VjyeQaOQ/sPTMD2xb558aBpOf4XacktxYjbqLGwFrEBVhFNtLHUGusdppEHSjlXQ==
Date: Mon, 15 Jan 2024 22:55:34 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 7922
GET
200
https://static.xx.fbcdn.net/rsrc.php/v3/yr/l/0,cross/wMc7fNlPdnA.css?_nc_x=Ij3Wp8lg5Kz
REQUEST
RESPONSE
BODY
GET /rsrc.php/v3/yr/l/0,cross/wMc7fNlPdnA.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Accept: text/css
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Tue, 14 Jan 2025 19:44:42 GMT
Cache-Control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), encrypted-media=(), fullscreen=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
reporting-endpoints:
x-ua-compatible: IE=edge
content-md5: tneKaXEhuIA2Wnsy+xdr1w==
X-FB-Debug: RsdMBOjeBQY4JHkiroexUCQ10mzaLhCFh11ybZGKsOT2GRL2wi1heuSkuDg/Hg/GRcnlbgAs5IJNxsP+SkuktA==
Date: Mon, 15 Jan 2024 22:55:34 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 1740
GET
200
https://static.xx.fbcdn.net/rsrc.php/v3/y1/r/0_HoU29ShlI.js?_nc_x=Ij3Wp8lg5Kz
REQUEST
RESPONSE
BODY
GET /rsrc.php/v3/y1/r/0_HoU29ShlI.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: application/x-javascript; charset=utf-8
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Sun, 12 Jan 2025 00:34:44 GMT
Cache-Control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), encrypted-media=(), fullscreen=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
reporting-endpoints:
content-md5: UZQWhwNP37915cCbPq96PQ==
X-FB-Debug: zKnuda4aCsm5M5TT3ES/Q7dclITj7VFPNurkWxeKoFGe158yQ7japUS8dQPUPi40ASqOa7stozXXqMXu0sKKiQ==
Date: Mon, 15 Jan 2024 22:55:34 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 120915
GET
200
https://static.xx.fbcdn.net/rsrc.php/y1/r/4lCu2zih0ca.svg
REQUEST
RESPONSE
BODY
GET /rsrc.php/y1/r/4lCu2zih0ca.svg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: image/svg+xml
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Fri, 03 Jan 2025 20:36:57 GMT
Cache-Control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), encrypted-media=(), fullscreen=(), keyboard-map=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
reporting-endpoints:
content-md5: 7LTAFoD2FIsnNV1/7L5XgQ==
X-FB-Debug: iRQdJhzOlG448/Ix4wiKIwVhQGBAZ86MwkMeaArr4yhFn9LuxNp88oeSqG0v9F24QahiuLCvMuVW0o3ub+dYTg==
Date: Mon, 15 Jan 2024 22:55:34 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 986
GET
302
https://facebook.com/security/hsts-pixel.gif?c=3.2.5
REQUEST
RESPONSE
BODY
GET /security/hsts-pixel.gif?c=3.2.5 HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: facebook.com
Connection: Keep-Alive
Cookie: fr=0Udar91Qc1AXw6qZW..Blpbfl.6Y.AAA.0.0.Blpbfl.AWW3d-Wh-zs; sb=5belZQnBm_Hu5L4oktl0FklM
HTTP/1.1 302 Found
Location: https://fbcdn.net/security/hsts-pixel.gif?c=2.5
reporting-endpoints:
cross-origin-opener-policy: same-origin-allow-popups
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=15552000; preload
Content-Type: text/html; charset="utf-8"
X-FB-Debug: petnlJIAD9F6n8SI1wKDdRKg7lc6OFa5P4HrWT78nHUiU5OBq6cc+JjkY22VTTRiczOgBSvJUVttEpIAribQ/w==
Date: Mon, 15 Jan 2024 22:55:34 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 0
GET
200
https://static.xx.fbcdn.net/rsrc.php/v3/yE/r/xGzxHIbkRpC.js?_nc_x=Ij3Wp8lg5Kz
REQUEST
RESPONSE
BODY
GET /rsrc.php/v3/yE/r/xGzxHIbkRpC.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: application/x-javascript; charset=utf-8
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Mon, 06 Jan 2025 17:19:23 GMT
Cache-Control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), encrypted-media=(), fullscreen=(), keyboard-map=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
reporting-endpoints:
origin-agent-cluster: ?0
content-md5: SuC4dEyNSovkR3//+/oX2A==
X-FB-Debug: ajaMXvwSeBfJNBM9zLJWAQWik/sTfJrEOLm1ZK/9SuMfnyUup6Qnoul7TYbJ8k16EfSGFq5HylcuPgy9Rbwyeg==
Date: Mon, 15 Jan 2024 22:55:34 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 17310
GET
200
https://static.xx.fbcdn.net/rsrc.php/v3/yB/r/Y0L6f5sxdIV.png
REQUEST
RESPONSE
BODY
GET /rsrc.php/v3/yB/r/Y0L6f5sxdIV.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Content-Type: image/png
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: hFRfTj3CmfIMC+ZxDLCYWA==
Expires: Thu, 02 Jan 2025 20:40:50 GMT
Cache-Control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), encrypted-media=(), fullscreen=(), keyboard-map=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
reporting-endpoints:
origin-agent-cluster: ?0
X-FB-Debug: OrnVFF9YkCmrxBpc2NaVTvoyrj79kXf1tAHnmtMs+gOO5zH2u0bQfjs18SpYj7GzTe3vBQ8I8FVUZws0UKxb8A==
Date: Mon, 15 Jan 2024 22:55:34 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 6739
GET
200
https://static.xx.fbcdn.net/rsrc.php/v3/yK/r/Lzd-U--zeLf.js?_nc_x=Ij3Wp8lg5Kz
REQUEST
RESPONSE
BODY
GET /rsrc.php/v3/yK/r/Lzd-U--zeLf.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: application/x-javascript; charset=utf-8
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Sun, 05 Jan 2025 17:22:39 GMT
Cache-Control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), encrypted-media=(), fullscreen=(), keyboard-map=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
reporting-endpoints:
origin-agent-cluster: ?0
content-md5: MAB2EIgCOabl+Ok0mHhJDQ==
X-FB-Debug: LeFh9CqEdHcbnbIiKWD19p5fnUUPX/36PQsacNy0k4r/SvJkWwzCgn0oGjTal0cT5+kIZB4ebos0BdlOZ9rLDg==
Date: Mon, 15 Jan 2024 22:55:34 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 1952
GET
302
https://fbcdn.net/security/hsts-pixel.gif?c=2.5
REQUEST
RESPONSE
BODY
GET /security/hsts-pixel.gif?c=2.5 HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: fbcdn.net
Connection: Keep-Alive
HTTP/1.1 302 Found
Location: https://fbsbx.com/security/hsts-pixel.gif?c=5
reporting-endpoints:
cross-origin-opener-policy: same-origin-allow-popups
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-Type: text/html; charset="utf-8"
X-FB-Debug: qcfGMi62CRjm3Bu0WgDwlEM0y23Iy0b8FoDuJNPXJRyuWycYeiIXdaj66Zi9M4gzK/Jhcez0BoCSOvqKVJjRGQ==
Date: Mon, 15 Jan 2024 22:55:34 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 0
GET
302
https://fbsbx.com/security/hsts-pixel.gif?c=5
REQUEST
RESPONSE
BODY
GET /security/hsts-pixel.gif?c=5 HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: fbsbx.com
Connection: Keep-Alive
HTTP/1.1 302 Found
Location: https://connect.facebook.net/security/hsts-pixel.gif
reporting-endpoints:
cross-origin-opener-policy: same-origin-allow-popups
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-Type: text/html; charset="utf-8"
X-FB-Debug: 9EUWCHnHnnAb4B3AbLnzOZDN5fPwFhjoivs5B5DIZgmmGDwIMRj6T+YsvKdsCk+36xD+pSbChEkWYa1RV5hGBw==
Date: Mon, 15 Jan 2024 22:55:35 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 0
GET
200
https://connect.facebook.net/security/hsts-pixel.gif
REQUEST
RESPONSE
BODY
GET /security/hsts-pixel.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: connect.facebook.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: image/gif
reporting-endpoints:
content-security-policy: default-src 'self' data: blob: *;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests;require-trusted-types-for 'script';
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), encrypted-media=(), fullscreen=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
Pragma: no-cache
Cache-Control: private, no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 00:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
X-Frame-Options: DENY
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
X-FB-Debug: V1Cg8O/xHrpskBCTnIZrZ0Jrfhiz4EV4V5gECtWlfRjjGCIEC64BgkwiMHH+b6G9bwq4baGRZXe24GmE2UhiIA==
Date: Mon, 15 Jan 2024 22:55:35 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 57
GET
200
https://www.facebook.com/favicon.ico
REQUEST
RESPONSE
BODY
GET /favicon.ico HTTP/1.1
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Host: www.facebook.com
Connection: Keep-Alive
Cookie: fr=0Udar91Qc1AXw6qZW..Blpbfl.6Y.AAA.0.0.Blpbfl.AWW3d-Wh-zs; sb=5belZQnBm_Hu5L4oktl0FklM
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: image/png
reporting-endpoints: default="https://www.facebook.com/ajax/browser_error_reports/?device_level=unknown"
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com *.fbcdn.net 'unsafe-eval';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' blob: data: 'self' connect.facebook.net 'unsafe-eval';style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), encrypted-media=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(self), display-capture=(self), encrypted-media=(self), fullscreen=(self), gamepad=*, geolocation=(self), gyroscope=(), hid=(), idle-detection=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(self), midi=(), otp-credentials=(), payment=(), picture-in-picture=(self), publickey-credentials-get=(self), screen-wake-lock=(), serial=(), usb=(), window-management=(), xr-spatial-tracking=(self)
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
Pragma: private
Cache-Control: private
Expires: Sat, 01 Jan 2000 00:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
X-Frame-Options: DENY
x-ua-compatible: IE=edge
Strict-Transport-Security: max-age=15552000; preload
X-FB-Debug: YGx8cxhwnLGzbXtwOreH8qJ3+9+xUgrgidxPEhwSorSbOMbAXUmkLjMqYjlc7lzqzdBnUH71Ly8nYMmZzbocaA==
Date: Mon, 15 Jan 2024 22:55:35 GMT
Connection: keep-alive
Content-Length: 830
GET
200
http://ie9cvlist.ie.microsoft.com/IE9CompatViewList.xml
REQUEST
RESPONSE
BODY
GET /IE9CompatViewList.xml HTTP/1.1
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Host: ie9cvlist.ie.microsoft.com
If-Modified-Since: Thu, 21 Nov 2019 19:37:08 GMT
If-None-Match: 0x8D76EBA32AF0BC3
Connection: Keep-Alive
HTTP/1.1 200 OK
Content-Encoding: gzip
Age: 20601
Cache-Control: max-age=21600
Content-MD5: p9g4jsuZO6TaLMVAI9ujVg==
Content-Type: text/xml
Date: Mon, 15 Jan 2024 22:56:36 GMT
Etag: 0x8D9521D2D2DF1EC
Last-Modified: Wed, 28 Jul 2021 23:12:31 GMT
Server: ECAcc (tka/897A)
Vary: Accept-Encoding
X-Cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: a03ba37b-f01e-003f-6bd6-475ade000000
x-ms-version: 2009-09-19
Content-Length: 13702
ICMP traffic
No ICMP traffic performed.
IRC traffic
No IRC requests performed.
Suricata Alerts
Suricata TLS
| Flow | Issuer | Subject | Fingerprint |
|---|---|---|---|
|
TLSv1 192.168.56.101:49176 157.240.215.14:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 45:04:8e:02:29:a1:f1:8b:1f:22:0f:34:50:09:8b:3b:b4:94:a3:0a |
|
TLSv1 192.168.56.101:49174 157.240.215.14:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 45:04:8e:02:29:a1:f1:8b:1f:22:0f:34:50:09:8b:3b:b4:94:a3:0a |
|
TLSv1 192.168.56.101:49171 157.240.215.14:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 45:04:8e:02:29:a1:f1:8b:1f:22:0f:34:50:09:8b:3b:b4:94:a3:0a |
|
TLSv1 192.168.56.101:49175 157.240.215.14:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 45:04:8e:02:29:a1:f1:8b:1f:22:0f:34:50:09:8b:3b:b4:94:a3:0a |
|
TLSv1 192.168.56.101:49168 157.240.215.35:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 45:04:8e:02:29:a1:f1:8b:1f:22:0f:34:50:09:8b:3b:b4:94:a3:0a |
|
TLSv1 192.168.56.101:49169 157.240.215.35:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 45:04:8e:02:29:a1:f1:8b:1f:22:0f:34:50:09:8b:3b:b4:94:a3:0a |
|
TLSv1 192.168.56.101:49172 157.240.215.14:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 45:04:8e:02:29:a1:f1:8b:1f:22:0f:34:50:09:8b:3b:b4:94:a3:0a |
|
TLSv1 192.168.56.101:49178 157.240.215.35:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 45:04:8e:02:29:a1:f1:8b:1f:22:0f:34:50:09:8b:3b:b4:94:a3:0a |
|
TLSv1 192.168.56.101:49177 157.240.215.14:443 |
None | None | None |
|
TLSv1 192.168.56.101:49173 157.240.215.14:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 45:04:8e:02:29:a1:f1:8b:1f:22:0f:34:50:09:8b:3b:b4:94:a3:0a |
|
TLSv1 192.168.56.101:49180 157.240.215.35:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=fbcdn.net | d6:6a:95:05:2c:a4:41:0f:81:1a:10:70:ba:4f:59:d8:f3:de:8a:51 |
|
TLSv1 192.168.56.101:49179 157.240.215.35:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 45:04:8e:02:29:a1:f1:8b:1f:22:0f:34:50:09:8b:3b:b4:94:a3:0a |
|
TLSv1 192.168.56.101:49187 157.240.215.14:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 45:04:8e:02:29:a1:f1:8b:1f:22:0f:34:50:09:8b:3b:b4:94:a3:0a |
|
TLSv1 192.168.56.101:49181 157.240.215.35:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=fbcdn.net | d6:6a:95:05:2c:a4:41:0f:81:1a:10:70:ba:4f:59:d8:f3:de:8a:51 |
|
TLSv1 192.168.56.101:49188 157.240.215.35:443 |
None | None | None |
|
TLSv1 192.168.56.101:49184 157.240.215.35:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=fbcdn.net | d6:6a:95:05:2c:a4:41:0f:81:1a:10:70:ba:4f:59:d8:f3:de:8a:51 |
|
TLSv1 192.168.56.101:49182 157.240.215.14:443 |
None | None | None |
|
TLSv1 192.168.56.101:49185 157.240.215.35:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=fbcdn.net | d6:6a:95:05:2c:a4:41:0f:81:1a:10:70:ba:4f:59:d8:f3:de:8a:51 |
|
TLSv1 192.168.56.101:49186 157.240.215.14:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 45:04:8e:02:29:a1:f1:8b:1f:22:0f:34:50:09:8b:3b:b4:94:a3:0a |
|
TLSv1 192.168.56.101:49189 157.240.215.35:443 |
None | None | None |
Snort Alerts
No Snort Alerts