Smart Scanner 2

Scan Report
Target: https://www.hackthissite.org/
Date: Thu Feb 23 2023
Found Issues: 60
scan stopped within 2′ 33″ after 729 requests.
3.7
Risk Issue Severity
Executive Summary
SmartScanner conducted a scan on www.hackthissite.org to find security weaknesses and
vulnerabilities. The scan took 2 minutes and 33 seconds. After performing 729 requests, SmartScanner
found 60 issues in which 17 of them have medium severity. The overall security risk of
www.hackthissite.org is 3.7 out of 5. To reduce the security risk, please fix the found issues as soon as
possible. Technical details, as well as remediation of results, can be found in the following. *
* DISCLAIMER: This report is only limited to the results of SmartScanner findings.
SmartScanner Scan Report TheSmartScanner.com

Scan Report
List of Issues
1– Medium Impact Issue

1.1– https://www.hackthissite.org/
2– Session Cookie without SameSite Flag
2.1– https://legal.hackthissite.org/privacy
2.2– https://mirror.hackthissite.org/hackthiszine/
3– Session Cookie without Secure Flag
4– Session Cookie without HttpOnly Flag
5– No Redirection from HTTP to HTTPS
5.2– https://qdb.hackthissite.org
6– Session Cookie Accessible for Subdomains
7– X-Frame-Options Header is Missing
8– Content-Security-Policy Header is Missing
9– Auto Complete Enabled Password Input
9.2– https://www.hackthissite.org/user/login
10– Subresource Integrity is Missing
11– Hidden Resource in Robots.txt
11.1– https://www.hackthissite.org/robots.txt

Scan Report
12– Cookie without HttpOnly Flag

13– Cookie without SameSite Flag
14– Cookie without Secure Flag
15– Passive Mixed Content
15.1– https://www.hackthissite.org/pages/info/linktous.php
16– BREACH attack
17– Target Information
17.1– http://www.irc.hackthissite.org
17.2– http://www.researchchemslab.com
17.3– https://legal.hackthissite.org
17.4– https://mirror.hackthissite.org
17.6– https://www.hackthissite.org
18– Email Address Disclosure
18.1– http://www.irc.hackthissite.org/idlerpg/index.php
18.2– https://www.hackthissite.org/advertise
18.3– https://www.hackthissite.org/donate/
18.4– https://www.hackthissite.org/news/view/718
18.5– https://www.hackthissite.org/pages/irc/reference.php
19– X-Content-Type-Options Header is Missing
20– Referrer-Policy Header is Missing
21– Content Character Encoding is not Defined
21.1– https://www.hackthissite.org/hp.php
21.2– https://www.hackthissite.org/pages/hts.rss.php
22– Missing or Insecure Cache-Control Header
23– Cross-Origin Resource Sharing Allowed
24– Path Disclosure in Robots.txt

Scan Report
25– Directory Listing
26– Robots.txt Found
27– Broken Link
27.1– https://www.hackthissite.org/ebooks
28– Profanity
28.1– https://mirror.hackthissite.org/_h5ai/public/js/scripts.js

Scan Report
1.1 Medium Impact Issue

S E V E RIT Y Medium
URL https://www.hackthissite.org/
This type of issue is only available in the Professional version

Scan Report


Scan Report


Scan Report


Scan Report


Scan Report


Scan Report
2.1 Session Cookie without SameSite Flag

URL https://legal.hackthissite.org/privacy
CO O KIE htslegal-115be41=b7ba7c4ed2847b8fe0c6f26114c75696
REQUEST / RESPONSE
#1
GET /privacy HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 6.3; rv:36.0) Gecko/20100101 Firefox/36.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Content-Length: 0
Referer: aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
Cookie: htslegal-115be41=b7ba7c4ed2847b8fe0c6f26114c75696;
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:59:51 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Pragma: no-cache
Set-Cookie: htslegal-115be41=b7ba7c4ed2847b8fe0c6f26114c75696; expires=Thu, 23-Feb-2023 15:29:51 GM
T; Max-Age=1800; path=/; domain=legal.hackthissite.org; HttpOnly
Cache-Control: max-age=604800
Expires: Thu, 02 Mar 2023 14:59:51 GMT
Last-Modified: Sat, 26 May 2018 17:59:06 GMT
Content-Encoding: gzip
Server: HackThisSite Load Balancer v2
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
<!DOCTYPE html><html lang="en"><head><meta charset="utf-8" /><title>Privacy Policy | HackThisSite L

egal</title><meta name="generator" content="HackThisSite" /><
...[truncated]...
DESCRIPTION
The SameSite cookie flag with the right value prevents the browser from sending the cookie in
cross-origin requests. It provides some protection against cross-site request forgery attacks (CSRF).
RECOMMENDATION
Set SameSite flag for the cookie.

Scan Report

URL https://mirror.hackthissite.org/hackthiszine/
CO O KIE PHPSESSID=909jm9ftp8uidi79d16q6c09l6
REQUEST / RESPONSE
#1
GET /hackthiszine/ HTTP/1.1
Referer: https://www.hackthissite.org/
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 15:00:05 GMT
Content-Type: text/html;charset=utf-8
Vary: Accept-Encoding
Set-Cookie: PHPSESSID=909jm9ftp8uidi79d16q6c09l6; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
<!DOCTYPE html><html class="no-js" lang="en"><head><meta charset="utf-8"><meta http-equiv="x-ua-com

patible" content="ie=edge"><title>index - powered by h5ai v0.
...[truncated]...
DESCRIPTION
RECOMMENDATION

Scan Report

CO O KIE HackThisSite=3btkf543n4bjfjpo67gcd841t6
REQUEST / RESPONSE
#1
GET / HTTP/1.1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:57:57 GMT
Upgrade: h2,h2c
Connection: Upgrade
Set-Cookie: HackThisSite=3btkf543n4bjfjpo67gcd841t6; expires=Fri, 24-Feb-2023 14:57:57 GMT; path=/
Pragma: no-cache
Onion-Location: http://hackthisjogneh42n5o7gbzrewxee3vyu6ex37ukyvdw6jm66npakiyd.onion/
Content-Type: text/html
Content-Language: en
Server: HackThisSite
Access-Control-Allow-Origin: *
Content-Security-Policy: child-src 'self' hackthissite.org *.hackthissite.org htscdn.org *.htscdn.o
rg discord.com; form-action 'self' hackthissite.org *.hackthissite.org htscdn.org *.htscdn.org; upg
rade-insecure-requests; report-uri https://hackthissite.report-uri.com/r/d/csp/enforce
Referrer-Policy: origin-when-cross-origin
X-XSS-Protection: 0
Feature-Policy: fullscreen *
Public-Key-Pins-Report-Only: pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; pin-sha256
="Vjs8r4z+80wjNcr1YKepWQboSIRi63WsWXhIMN+eWys="; max-age=2592000; includeSubDomains; report-uri="ht
tps://hackthissite.report-uri.com/r/d/hpkp/reportOnly"
Report-To: {"group":"default","max_age":31536000,"endpoints":[{"url":"https://hackthissite.report-u
ri.com/a/d/g"}],"include_subdomains":true}
NEL: {"report_to":"default","max_age":31536000,"include_subdomains":true,"success_fraction":0.0,"fa
ilure_fraction":0.1}
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xht

ml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xh
...[truncated]...
DESCRIPTION
RECOMMENDATION

Scan Report
3.1 Session Cookie without Secure Flag

REQUEST / RESPONSE
#1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:59:51 GMT
Pragma: no-cache

...[truncated]...
DESCRIPTION
The Secure cookie flag prevents the browser from sending the cookie over an unencrypted
connection. A cookie with a Secure flag is sent to the server only with an encrypted request over the
HTTPS protocol. Therefore it can’t easily be accessed by a man-in-the-middle attacker.
RECOMMENDATION
Set Secure flag for the cookie.

Scan Report

REQUEST / RESPONSE
#1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 15:00:05 GMT
Pragma: no-cache

...[truncated]...
DESCRIPTION
RECOMMENDATION

Scan Report

REQUEST / RESPONSE
#1
GET / HTTP/1.1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:57:57 GMT
Upgrade: h2,h2c
Connection: Upgrade
Pragma: no-cache
X-XSS-Protection: 0

...[truncated]...
DESCRIPTION
RECOMMENDATION

Scan Report

Scan Report
4.1 Session Cookie without HttpOnly Flag

REQUEST / RESPONSE
#1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 15:00:05 GMT
Pragma: no-cache

...[truncated]...
DESCRIPTION
The HttpOnly cookie flag prevents JavaScript Document.cookie API from accessing the cookie.
When this flag is set, the cookie is only sent to the server. In many cases, cookies are not needed on
the client-side. Session cookies are a good example of cookies that don’t need to be available to
JavaScript. Using the HttpOnly flag can help to mitigate Cross-Site-Scripting(XSS) attacks.
RECOMMENDATION
Set HttpOnly flag for the cookie.

Scan Report
4.2 Session Cookie without HttpOnly Flag

REQUEST / RESPONSE
#1
GET / HTTP/1.1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:57:57 GMT
Upgrade: h2,h2c
Connection: Upgrade
Pragma: no-cache
X-XSS-Protection: 0

...[truncated]...
DESCRIPTION
RECOMMENDATION

Scan Report

Scan Report
5.1 No Redirection from HTTP to HTTPS

DESCRIPTION
When HTTPS is enabled but, HTTP requests are not redirected to HTTPS automatically, users have to
open the HTTPS URL explicitly. Otherwise, communication is not encrypted and can be captured by an
attacker who has access to a network interface.
RECOMMENDATION
Enforce using HTTPS. You can do it by redirecting any HTTP request to HTTPS using your application
or web server configuration. You can also use the Strict-Transport-Security HTTP response header as
an extra security defense.

Scan Report
5.2 No Redirection from HTTP to HTTPS

URL https://qdb.hackthissite.org
DESCRIPTION
When HTTPS is enabled but, HTTP requests are not redirected to HTTPS automatically, users have to
open the HTTPS URL explicitly. Otherwise, communication is not encrypted and can be captured by an
attacker who has access to a network interface.
RECOMMENDATION
Enforce using HTTPS. You can do it by redirecting any HTTP request to HTTPS using your application
or web server configuration. You can also use the Strict-Transport-Security HTTP response header as
an extra security defense.

Scan Report
6.1 Session Cookie Accessible for Subdomains

DETAILS
The legal.hackthissite.org domain was set for the cookie htslegal-115be41 . So the cookie
is accessible to any subdomain.The current URL does not have the www subdomain and, it has the
potential to have other subdomains.
REQUEST / RESPONSE
#1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:59:51 GMT
Pragma: no-cache

...[truncated]...
DESCRIPTION
If the Set-Cookie header contains the Domain attribute, browsers automatically send the cookie to
any subdomains of the specified domain. This allows subdomains to access data in cookies.
RECOMMENDATION
Remove the Domain attribute from Set-Cookie attribute.

Scan Report
7.1 X-Frame-Options Header is Missing

S E V E RIT Y Low
REQUEST / RESPONSE
#1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:59:44 GMT
Pragma: no-cache

...[truncated]...
DESCRIPTION
The X-Frame-Options HTTP response header can be used to indicate whether or not a browser
should be allowed to render a page in a <frame> , <iframe> , <embed> or <object> . Sites can
use this to avoid click-jacking attacks, by ensuring that their content is not embedded into other sites.
Mozilla
RECOMMENDATION
Configure your server to send this header for all pages. You can see references for possible values.

Scan Report

S E V E RIT Y Low
REQUEST / RESPONSE
#1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 15:00:05 GMT
Pragma: no-cache

...[truncated]...
DESCRIPTION
Mozilla
RECOMMENDATION

Scan Report

S E V E RIT Y Low
REQUEST / RESPONSE
#1
GET / HTTP/1.1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:59:35 GMT
Content-Type: text/html; charset=UTF-8
Server: HackThisSite IRC

...[truncated]...
DESCRIPTION
Mozilla
RECOMMENDATION

Scan Report

S E V E RIT Y Low
A F F E CTED URLS ( 3 0 ) hackthissite.org/submit/article

hackthissite.org/missions/
hackthissite.org
hackthissite.org/news/view/723
hackthissite.org/user/login
hackthissite.org/pages/programs/insert.php
hackthissite.org/register
hackthissite.org/user/online
hackthissite.org/pages/irc/stats.php
hackthissite.org/pages/bugManagement/
hackthissite.org/pages/info/linktous.php
hackthissite.org/pages/irc/reference.php
hackthissite.org/advertise
hackthissite.org/donate/
hackthissite.org/hof
hackthissite.org/missions/forensic/
hackthissite.org/ipv6
…
REQUEST / RESPONSE
#1
GET / HTTP/1.1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:57:57 GMT
Upgrade: h2,h2c
Connection: Upgrade
Pragma: no-cache
X-XSS-Protection: 0

Scan Report

...[truncated]...
DESCRIPTION
Mozilla
RECOMMENDATION

Scan Report
8.1 Content-Security-Policy Header is Missing

S E V E RIT Y Low
REQUEST / RESPONSE
#1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:59:44 GMT
Pragma: no-cache

...[truncated]...
DESCRIPTION
Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain
types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used
for everything from data theft to site defacement to distribution of malware. Mozilla
RECOMMENDATION

Scan Report

S E V E RIT Y Low
REQUEST / RESPONSE
#1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 15:00:05 GMT
Pragma: no-cache

...[truncated]...
DESCRIPTION
RECOMMENDATION

Scan Report

S E V E RIT Y Low
REQUEST / RESPONSE
#1
GET / HTTP/1.1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:59:35 GMT

...[truncated]...
DESCRIPTION
RECOMMENDATION

Scan Report
9.1 Auto Complete Enabled Password Input

S E V E RIT Y Low
REQUEST / RESPONSE
#1
GET / HTTP/1.1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:57:57 GMT
Upgrade: h2,h2c
Connection: Upgrade
Pragma: no-cache
X-XSS-Protection: 0

...[truncated]...
DESCRIPTION
The user browser can save and remember the entered values for user input fields with autocomplete
enabled attributes. This might reveal sensitive information like passwords, especially in public and
multi-user computers.
RECOMMENDATION
Add the attribute autocomplete="off" for sensitive form inputs.

Scan Report
9.2 Auto Complete Enabled Password Input

S E V E RIT Y Low
URL https://www.hackthissite.org/user/login
REQUEST / RESPONSE
#1
POST /user/login HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Content-Length: 53
Cookie: HackThisSite=3btkf543n4bjfjpo67gcd841t6;
Content-Length: 53
username=Test&password=DJrLcmno321@!&btn_submit=Login
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:57:58 GMT
Upgrade: h2,h2c
Connection: Upgrade
Pragma: no-cache
Onion-Location: http://hackthisjogneh42n5o7gbzrewxee3vyu6ex37ukyvdw6jm66npakiyd.onion/user/login
Set-Cookie: HackThisSite=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT
Set-Cookie: strHackHash=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT
X-XSS-Protection: 0

...[truncated]...
DESCRIPTION
The user browser can save and remember the entered values for user input fields with autocomplete
enabled attributes. This might reveal sensitive information like passwords, especially in public and
multi-user computers.

Scan Report
RECOMMENDATION
Add the attribute autocomplete="off" for sensitive form inputs.

Scan Report
10.1 Subresource Integrity is Missing

S E V E RIT Y Low
A F F E CTED URLS ( 5 6 ) hackthissite.org/news/view/aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa

aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
hackthissite.org/news/view/718 and 1%3E0
hackthissite.org/news/view/%24%7B722755-1%7D
hackthissite.org/news/view/727/
hackthissite.org/news
hackthissite.org/$%7B273*485%7D/actionChain1.action
hackthissite.org/news/view/718%27 rlike %28case when 1 then BENCHM
ARK%28592200000%2CMD5%280x41%29%29 else 0 end%29 -- a
hackthissite.org/news/view/99999 or 1%3E0-- a
hackthissite.org/news/view/722/
hackthissite.org/forums
hackthissite.org/missions/realistic/
hackthissite.org/user/rankings/
hackthissite.org/news/view/smta%25EF%25BC%259Cb%25CA%25BAc%2
5CA%25B9d%25ef%25bb%25bfetms769
hackthissite.org
hackthissite.org/ebooks
hackthissite.org/missions/programming/
hackthissite.org/news/view/a%26ping 2130706433%26%23%27%26ping
2130706434%26a%26%23%22%26ping 2130706435%26a%5C
…
E X T E RNAL https://data.htscdn.org/js/jquery-1.8.1.min.js
R E S O URCES https://data.htscdn.org/themes/Dark/Dark.css
REQUEST / RESPONSE
#1
GET / HTTP/1.1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:57:57 GMT
Upgrade: h2,h2c
Connection: Upgrade

Scan Report

Pragma: no-cache
X-XSS-Protection: 0
...[truncated]...
" type="image/png" sizes="16x16" href="https://data.htscdn.org/favicon/favicon-16x16.png" />
<link rel="manifest" href="https://www.hackthissite.org/manifest.webmanifest" />
<link href="https://data.htscdn.org/themes/Dark/Dark.css" rel="stylesheet" type="text/css" />
<link href="https://www.hackthissite.org/pages/hts.rss.php" rel="alternate" type="
...[truncated]...
DESCRIPTION
Subresource Integrity (SRI) is a security feature that enables browsers to verify that resources they
fetch (for example, from a CDN) are delivered without unexpected manipulation. It works by allowing
you to provide a cryptographic hash that a fetched resource must match. Moilla
RECOMMENDATION
Add a base64-encoded hash of the resource in the value of the integrity attribute of the
<script> or <link> element. You can ask the resource provider for the hash of the file or calculate
it on your own. Please references for details.

Scan Report
11.1 Hidden Resource in Robots.txt

S E V E RIT Y Low
URL https://www.hackthissite.org/robots.txt
DETAILS
The below URLs are listed in robots.txt but not linked in the top 3 URLs of the website.
https://www.hackthissite.org/killing/all/humans/
https://www.hackthissite.org/missions/
REQUEST / RESPONSE
#1
GET /robots.txt HTTP/1.1
Content-Length: 0
Cookie: HackThisSite=jaafln8h2dbk4q61aarh0q4j61;
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:58:07 GMT
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Fri, 07 Jun 2013 23:03:21 GMT
ETag: "42-4de986fec6040"
Accept-Ranges: bytes
Content-Type: text/plain; charset=utf-8
X-XSS-Protection: 0
User-agent: *
Disallow: /missions/
Disallow: /killing/all/humans/
DESCRIPTION

Scan Report
The robots.txt file specifies how to inform the web robot about which areas of the website should not
be processed or scanned. Robots are often used by search engines to categorize websites. Not all
robots cooperate with the standard; email harvesters, spambots, malware, and robots that scan for
security vulnerabilities may even start with the portions of the website where they have been told to
stay out. Wikipedia
RECOMMENDATION
Do not reveal paths in robots.txt file.

Scan Report
12.1 Cookie without HttpOnly Flag

S E V E RIT Y Low
CO O KIE strHackHash=deleted
REQUEST / RESPONSE
#1
Content-Length: 53
Content-Length: 53
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:57:58 GMT
Upgrade: h2,h2c
Connection: Upgrade
Pragma: no-cache
X-XSS-Protection: 0

...[truncated]...
DESCRIPTION

Scan Report
RECOMMENDATION

Scan Report
13.1 Cookie without SameSite Flag

S E V E RIT Y Low
REQUEST / RESPONSE
#1
Content-Length: 53
Content-Length: 53
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:57:58 GMT
Upgrade: h2,h2c
Connection: Upgrade
Pragma: no-cache
X-XSS-Protection: 0

...[truncated]...
DESCRIPTION

Scan Report
RECOMMENDATION

Scan Report
14.1 Cookie without Secure Flag

S E V E RIT Y Low
REQUEST / RESPONSE
#1
Content-Length: 53
Content-Length: 53
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:57:58 GMT
Upgrade: h2,h2c
Connection: Upgrade
Pragma: no-cache
X-XSS-Protection: 0

...[truncated]...
DESCRIPTION

Scan Report
RECOMMENDATION

Scan Report
15.1 Passive Mixed Content

S E V E RIT Y Low
URL https://www.hackthissite.org/pages/info/linktous.php
H T T P CONTENTS <img src='http://www.hackthissite.org/images/hts_80x15.gif

<img src='http://www.hackthissite.org/images/hts_80x15_2.gif
REQUEST / RESPONSE
#1
GET /pages/info/linktous.php HTTP/1.1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 15:00:20 GMT
Pragma: no-cache
Onion-Location: http://hackthisjogneh42n5o7gbzrewxee3vyu6ex37ukyvdw6jm66npakiyd.onion/pages/info/li
nktous.php
X-XSS-Protection: 0
...[truncated]...
<img src='http://www.hackthissite.org/images/hts_80x15.gif' alt='Hack This Site!'/>
</a>
</p>
<p>
Code:
<input readonly="readonly" value = "<a href='http://www.hackthissite.org'><img src='htt
p://www.hackthissite.org/images/hts_80x15.gif' al
...[truncated]...
DESCRIPTION
When a user visits a page served over HTTPS, their connection with the web server is encrypted with
TLS and is therefore safeguarded from most sniffers and man-in-the-middle attacks. An HTTPS page

Scan Report
that includes content fetched using cleartext HTTP is called a mixed content page. Pages like this are
only partially encrypted, leaving the unencrypted content accessible to sniffers and man-in-the-middle
attackers. That leaves the pages unsafe. Moilla
Passive contents are like images, audio, or videos. This type of content controls the appearance of the
web page. That’s why they are also called display content.
RECOMMENDATION
Make sure all resources are loaded using HTTPS protocol.

Scan Report
16.1 BREACH attack

S E V E RIT Y Low
DETAILS
The value of post parameter btn_submit is reflected in the response when HTTP compression was
used. This can be used in a BREACH attack to find secrets in the response.
REQUEST / RESPONSE
#1
Content-Length: 53
Content-Length: 53
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:57:58 GMT
Upgrade: h2,h2c
Connection: Upgrade
Pragma: no-cache
X-XSS-Protection: 0

...[truncated]...
DESCRIPTION

Scan Report
BREACH is an instance of the CRIME attack against HTTP compression—the use of gzip or DEFLATE
data compression algorithms via the content-encoding option within HTTP by many web browsers
and servers. Given this compression oracle, the rest of the BREACH attack follows the same general
lines as the CRIME exploit, by performing an initial blind brute-force search to guess a few bytes,
followed by divide-and-conquer search to expand a correct guess to an arbitrarily large amount of
content. Wikipedia
RECOMMENDATION
Disable HTTP compression completely or at least on pages where a secret (like a session cookie) is
being transferred. Disabling compression whenever the referrer header indicates a cross-site request,
or when the header is not present is another suggested approach.
Generally, CSRF protection methods can be used as mitigation.

Scan Report
17.1 Target Information

S E V E RIT Y Informational
URL http://www.irc.hackthissite.org
E M A ILS irc@hackthissite.org
S E R V ER BANNE R hackthissite irc

Scan Report

URL http://www.researchchemslab.com
JO O ML A http://www.researchchemslab.com/product/buy-adderall-online/%22%3E
;Buy Adderall 30mg online%3C/a%3E, %3Ca href=%22https://www.resear
chchemslab.com/product/buy-xanax-online-2mg/%22& gt;buy Xanax 2m
g online, buy Xanax online%3C/a%3E, buy rohypnol 2mg online, b%3Ca
href=%22https://www.researchchemslab.com/product/buy-oxycodone-o
nline-2/%22 ;%3Euy Roxicodone 30mg online, buy Roxicodone 30mg%3
C/a%3E, %3Ca href=%22https://www.researchchemslab.com/product/bu
y-oxycodone-online/%22& gt;buy oxycontin online without prescriptio
n%3C/a%3E, %3Ca href=%22https://www.researchchemslab.com/produc
t/buy-hydrocodone-online/%22 ;%3EBuy Hydrocodone Online%3C/a%3
E, %3Ca href=%22https://www.researchchemslab.com/product/buy-klon
opin-online/%22&g t;Buy Klonopin Online%3C/a%3E, %3Ca href=%22htt
ps://www.researchchemslab.com/product/buy-xanax-online-2mg/%22&
gt;Xanax For Sale On The Internet, Xanax For Sale%3C/a%3E, %3Ca href
=%22https://refinedresearchchemstore.com/

Scan Report

URL https://legal.hackthissite.org
CO O KIES htslegal-115be41
H T T PS TLS 1.2
Heartbeat Extention
S E R V ER BANNE R hackthissite load balancer v2
S E R V ICES HTTPS

Scan Report

URL https://mirror.hackthissite.org
CO O KIES PHPSESSID
S E R V ER BANNE R hackthissite load balancer v2
S E R V ICES HTTPS

Scan Report

H T T PS TLS 1.2
Heartbeat Extention
S E R V ER BANNE R hackthissite irc
S E R V ICES HTTPS

Scan Report

URL https://www.hackthissite.org
A P I ENDPOINTS https://www.hackthissite.org/pages/hts.rss.php
CO O KIES HackThisSite
strHackHash
E M A ILS donate@hackthissite.org
mirc@dds.nl
info@maxcounterfeit.com
advertising@hackthissite.org
F O R MS WITH https://www.hackthissite.org/
PA S S WORD https://www.hackthissite.org/user/login
H T T PS TLS 1.2
Heartbeat Extention
S E R V ER BANNE R hackthissite
S E R V ICES HTTPS

Scan Report
18.1 Email Address Disclosure

URL http://www.irc.hackthissite.org/idlerpg/index.php
F O U ND EMAILS irc@hackthissite.org
REQUEST / RESPONSE
#1
GET /idlerpg/index.php HTTP/1.1
Content-Length: 0
User-Agent: "'/<jxqz11468>=()
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:59:32 GMT
...[truncated]...
irc@hackthissite.org</a> or ScrAm@IRC.
...[truncated]...
DESCRIPTION
Spambots can harvest email addresses from webpages and use them for sending spam emails.
RECOMMENDATION
Do not show personal email addresses. Use submission forms with CAPTCHA for receiving messages.

Scan Report

URL https://www.hackthissite.org/advertise
F O U ND EMAILS advertising@hackthissite.org
REQUEST / RESPONSE
#1
GET /advertise HTTP/1.1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:59:37 GMT
Pragma: no-cache
Onion-Location: http://hackthisjogneh42n5o7gbzrewxee3vyu6ex37ukyvdw6jm66npakiyd.onion/advertise
X-XSS-Protection: 0
...[truncated]...
advertising@hackthissite.org">advertising@hackthissite.org</a>
and we can get back to you as soon as possible. Payments can be made easily and instantly via our b
illing portal (which utilizes the <strong>PayPal</strong> payment gateway) and account s
...[truncated]...
DESCRIPTION
RECOMMENDATION

Scan Report

URL https://www.hackthissite.org/donate/
F O U ND EMAILS donate@hackthissite.org
REQUEST / RESPONSE
#1
GET /donate/ HTTP/1.1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:58:22 GMT
Pragma: no-cache
Onion-Location: http://hackthisjogneh42n5o7gbzrewxee3vyu6ex37ukyvdw6jm66npakiyd.onion/donate/
X-XSS-Protection: 0
...[truncated]...
donate@hackthissite.org">donate<i>@</i>hackthissit
...[truncated]...
DESCRIPTION
RECOMMENDATION

Scan Report

URL https://www.hackthissite.org/news/view/718
F O U ND EMAILS info@maxcounterfeit.com
REQUEST / RESPONSE
#1
GET /news/view/718 HTTP/1.1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:58:23 GMT
Upgrade: h2,h2c
Connection: Upgrade
Pragma: no-cache
Onion-Location: http://hackthisjogneh42n5o7gbzrewxee3vyu6ex37ukyvdw6jm66npakiyd.onion/news/view/718
X-XSS-Protection: 0
...[truncated]...
info@maxcounterfeit.com<br />
https://www.allcountrybills.com<br />
WhatsApp Number: +19038336575<br />
website:.... https://maxcounterfeit.com<br />
product link:...... https://maxcounterfeit.com/product/buy-gbp-10-bills-online/</p></div>
...[truncated]...
DESCRIPTION
RECOMMENDATION

Scan Report

Scan Report

URL https://www.hackthissite.org/pages/irc/reference.php
F O U ND EMAILS mirc@dds.nl
REQUEST / RESPONSE
#1
GET /pages/irc/reference.php HTTP/1.1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:58:23 GMT
Pragma: no-cache
Onion-Location: http://hackthisjogneh42n5o7gbzrewxee3vyu6ex37ukyvdw6jm66npakiyd.onion/pages/irc/ref
erence.php
X-XSS-Protection: 0
...[truncated]...
mirc@dds.nl). Select
<i>Ircintro.hlp</i> from the
...[truncated]...
DESCRIPTION
RECOMMENDATION

Scan Report
19.1 X-Content-Type-Options Header is Missing

REQUEST / RESPONSE
#1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:59:44 GMT
Pragma: no-cache

...[truncated]...
DESCRIPTION
The X-Content-Type-Options response HTTP header is used by the server to prevent browsers
from guessing the media type ( MIME type).
This is known as MIME sniffing in which the browser guesses the correct MIME type by looking at the
contents of the resource.
The absence of this header might cause browsers to transform non-executable content into
executable content.
RECOMMENDATION
Configure your server to send this header with the value set to nosniff .

Scan Report

REQUEST / RESPONSE
#1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 15:00:05 GMT
Pragma: no-cache

...[truncated]...
DESCRIPTION
executable content.
RECOMMENDATION

Scan Report

REQUEST / RESPONSE
#1
GET / HTTP/1.1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:59:35 GMT

...[truncated]...
DESCRIPTION
executable content.
RECOMMENDATION

Scan Report


hackthissite.org
hackthissite.org/manifest.webmanifest
…
REQUEST / RESPONSE
#1
GET / HTTP/1.1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:57:57 GMT
Upgrade: h2,h2c
Connection: Upgrade
Pragma: no-cache
X-XSS-Protection: 0

Scan Report

...[truncated]...
DESCRIPTION
executable content.
RECOMMENDATION

Scan Report
20.1 Referrer-Policy Header is Missing

REQUEST / RESPONSE
#1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:59:44 GMT
Pragma: no-cache

...[truncated]...
DESCRIPTION
The Referrer-Policy HTTP header controls how much referrer information (sent via the Referer
header) should be included with requests. Mozilla
The Referer (sic) header contains the address of the previous web page from which a link to the
currently requested page was followed, which has lots of fairly innocent uses including analytics,
logging, or optimized caching. However, there are more problematic uses such as tracking or stealing
information, or even just side effects such as inadvertently leaking sensitive information. Mozilla
RECOMMENDATION
Configure your server to send the Referrer-Policy header for all pages with the value set to
strict-origin-when-cross-origin . You can see references for other possible values.

Scan Report

REQUEST / RESPONSE
#1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 15:00:05 GMT
Pragma: no-cache

...[truncated]...
DESCRIPTION
RECOMMENDATION

Scan Report

REQUEST / RESPONSE
#1
GET / HTTP/1.1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:59:35 GMT

...[truncated]...
DESCRIPTION
RECOMMENDATION

Scan Report
21.1 Content Character Encoding is not Defined

URL https://www.hackthissite.org/hp.php
REQUEST / RESPONSE
#1
GET /hp.php HTTP/1.1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:59:34 GMT
Cache-Control: no-store, no-cache
Pragma: no-cache
X-XSS-Protection: 0
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dt

d">
<html>
<head>
<meta name="robots" content="follow,noindex
...[truncated]...
DESCRIPTION
Web browsers need to be aware of the encoding of characters to display it right. When the character
encoding is not explicitly defined, the browser has to either guess the encoding or use a default
encoding. This will allow attackers to use different encodings like UTF-7 to exploit vulnerabilities like
XSS.
RECOMMENDATION
Send character encoding in HTTP header as shown below:

Scan Report
or use HTML Meta tags like below:
< META http-equiv="Content-Type" content = "text/html; charset=UTF-8" >

Scan Report
21.2 Content Character Encoding is not Defined

URL https://www.hackthissite.org/pages/hts.rss.php
REQUEST / RESPONSE
#1
GET /pages/hts.rss.php HTTP/1.1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 15:00:19 GMT
Upgrade: h2,h2c
Connection: Upgrade
Pragma: no-cache
Onion-Location: http://hackthisjogneh42n5o7gbzrewxee3vyu6ex37ukyvdw6jm66npakiyd.onion/pages/hts.rs
s.php
Content-Type: text/xml
X-XSS-Protection: 0
<?xml version="1.0" encoding="iso-8859-1" ?>

<rss version="2.0">
<channel>
<title>HackThisSite - News Articles RSS</title>
<description>Hack This Site is a fr
...[truncated]...
DESCRIPTION
Web browsers need to be aware of the encoding of characters to display it right. When the character
encoding is not explicitly defined, the browser has to either guess the encoding or use a default
encoding. This will allow attackers to use different encodings like UTF-7 to exploit vulnerabilities like
XSS.

Scan Report
RECOMMENDATION
Send character encoding in HTTP header as shown below:
or use HTML Meta tags like below:
< META http-equiv="Content-Type" content = "text/html; charset=UTF-8" >

Scan Report
22.1 Missing or Insecure Cache-Control Header

DETAILS
The Cache-Control header does not have any of ( no-store , no-cache , private , max-age=0,
must-revalidate ) directives
REQUEST / RESPONSE
#1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:59:44 GMT
Pragma: no-cache

...[truncated]...
DESCRIPTION
Web cache or HTTP cache is a system for optimizing the web. Browsers cache contents of a resource
once and reuse it on consequent requests. Caching images on the web can boost page load time. But
clients should not be allowed to cache pages that display sensitive, dynamic, or user specific contents.
RECOMMENDATION
Set any of following headers to prevent clients from caching the page.
Cache-Control: no-cache, no-store

Scan Report
Cache-Control: max-age=0, must-revalidate
Cache-Control: private

Scan Report
23.1 Cross-Origin Resource Sharing Allowed


hackthissite.org
hackthissite.org/manifest.webmanifest
…
REQUEST / RESPONSE
#1
GET / HTTP/1.1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:57:57 GMT
Upgrade: h2,h2c
Connection: Upgrade
Pragma: no-cache
X-XSS-Protection: 0

Scan Report

...[truncated]...
DESCRIPTION
Cross-Origin Resource Sharing (CORS) is a mechanism that uses additional HTTP headers to tell
browsers to give a web application running at one origin, access to selected resources from a different
origin. A web application executes a cross-origin HTTP request when it requests a resource that has a
different origin (domain, protocol, or port) from its own. Mozilla
Cross-origin resource sharing should not be allowed unless specifically needed to minimize disclosure
of sensitive information to foreign origins.
RECOMMENDATION
Consider removing the Access-Control-Allow-Origin header or use specific origins as value.

Scan Report
24.1 Path Disclosure in Robots.txt

DETAILS
The path in Disallow directives like Disallow: /missions/ may not be honored by malicious web
robots.
REQUEST / RESPONSE
#1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:58:07 GMT
Upgrade: h2,h2c
Connection: Upgrade
ETag: "42-4de986fec6040"
X-XSS-Protection: 0
User-agent: *
DESCRIPTION

Scan Report
stay out. Wikipedia
RECOMMENDATION

Scan Report
25.1 Directory Listing

REQUEST / RESPONSE
#1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 15:00:05 GMT
Pragma: no-cache

...[truncated]...
DESCRIPTION
A directory listing provides an attacker with the complete index of all the resources located inside of
the directory. The specific risks and consequences vary depending on which files are listed and
accessible. MITRE
RECOMMENDATION
Create a default index file or disable directory listing in web server configurations.

Scan Report
26.1 Robots.txt Found

REQUEST / RESPONSE
#1
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 14:58:07 GMT
Upgrade: h2,h2c
Connection: Upgrade
ETag: "42-4de986fec6040"
X-XSS-Protection: 0
User-agent: *
DESCRIPTION
stay out. Wikipedia
RECOMMENDATION

Scan Report

Scan Report
27.1 Broken Link

URL https://www.hackthissite.org/ebooks
R E F E RER https://www.hackthissite.org/
REQUEST / RESPONSE
#1
GET /ebooks HTTP/1.1
Content-Length: 0
HTTP/1.1 404 Not Found

Date: Thu, 23 Feb 2023 14:59:33 GMT
Pragma: no-cache
Onion-Location: http://hackthisjogneh42n5o7gbzrewxee3vyu6ex37ukyvdw6jm66npakiyd.onion/ebooks
X-XSS-Protection: 0

...[truncated]...
DESCRIPTION
Broken hyperlinks in web pages can create a bad experience for the users. It can also affect the web
page ranking in web search results.
RECOMMENDATION
Consider removing or fixing the link.

Scan Report
28.1 Profanity
URL https://mirror.hackthissite.org/_h5ai/public/js/scripts.js
P RO FANS bugger
REQUEST / RESPONSE
#1
GET /_h5ai/public/js/scripts.js HTTP/1.1
Content-Length: 0
Cookie: PHPSESSID=909jm9ftp8uidi79d16q6c09l6;
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 15:00:06 GMT
Content-Type: application/javascript
Content-Length: 104980
Last-Modified: Fri, 22 Mar 2019 02:35:08 GMT
ETag: "5c9449dc-19a14"
...[truncated]...
t|ontinue)|de(bugger|cimal|clare|f(ault|er)?|init|
...[truncated]...
DESCRIPTION
Profanity in web pages can create a bad experience for the users. It can also affect the web page
ranking in web search results.
RECOMMENDATION
Create a policy in this regard and act accordingly.

Scan Report

Smart Scanner 2

Uploaded by

Copyright:

Available Formats

Smart Scanner 2

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Smart Scanner 2

Uploaded by

Copyright:

Available Formats

Scan Report

scan stopped within 2′ 33″ after 729 requests.

Risk Issue Severity

* DISCLAIMER: This report is only limited to the results of SmartScanner findings.

SmartScanner Scan Report TheSmartScanner.com

1– Medium Impact Issue

SmartScanner Scan Report TheSmartScanner.com

12– Cookie without HttpOnly Flag

SmartScanner Scan Report TheSmartScanner.com

SmartScanner Scan Report TheSmartScanner.com

1.1 Medium Impact Issue

This type of issue is only available in the Professional version

SmartScanner Scan Report TheSmartScanner.com

1.2 Medium Impact Issue

This type of issue is only available in the Professional version

SmartScanner Scan Report TheSmartScanner.com

1.3 Medium Impact Issue

This type of issue is only available in the Professional version

SmartScanner Scan Report TheSmartScanner.com

1.4 Medium Impact Issue

This type of issue is only available in the Professional version

SmartScanner Scan Report TheSmartScanner.com

1.5 Medium Impact Issue

This type of issue is only available in the Professional version

SmartScanner Scan Report TheSmartScanner.com

1.6 Medium Impact Issue

This type of issue is only available in the Professional version

SmartScanner Scan Report TheSmartScanner.com

2.1 Session Cookie without SameSite Flag

<!DOCTYPE html><html lang="en"><head><meta charset="utf-8" /><title>Privacy Policy | HackThisSite L

SmartScanner Scan Report TheSmartScanner.com

2.2 Session Cookie without SameSite Flag

<!DOCTYPE html><html class="no-js" lang="en"><head><meta charset="utf-8"><meta http-equiv="x-ua-com

SmartScanner Scan Report TheSmartScanner.com

2.3 Session Cookie without SameSite Flag

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xht

SmartScanner Scan Report TheSmartScanner.com

3.1 Session Cookie without Secure Flag

<!DOCTYPE html><html lang="en"><head><meta charset="utf-8" /><title>Privacy Policy | HackThisSite L

SmartScanner Scan Report TheSmartScanner.com

3.2 Session Cookie without Secure Flag

<!DOCTYPE html><html class="no-js" lang="en"><head><meta charset="utf-8"><meta http-equiv="x-ua-com

SmartScanner Scan Report TheSmartScanner.com

3.3 Session Cookie without Secure Flag

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xht

SmartScanner Scan Report TheSmartScanner.com

Set Secure flag for the cookie.

SmartScanner Scan Report TheSmartScanner.com

4.1 Session Cookie without HttpOnly Flag

<!DOCTYPE html><html class="no-js" lang="en"><head><meta charset="utf-8"><meta http-equiv="x-ua-com

SmartScanner Scan Report TheSmartScanner.com

4.2 Session Cookie without HttpOnly Flag

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xht

SmartScanner Scan Report TheSmartScanner.com

Set HttpOnly flag for the cookie.

SmartScanner Scan Report TheSmartScanner.com

5.1 No Redirection from HTTP to HTTPS

SmartScanner Scan Report TheSmartScanner.com

5.2 No Redirection from HTTP to HTTPS

SmartScanner Scan Report TheSmartScanner.com