|
|
来吧分析帖子来了
测试站点:ay6008.com
A记录 45.153.40.105
CNAME ddos2.cdn.ispcdn.com
MX 无此类型解析记录
NS jm2.dns.com
jm1.dns.com
TXT 无此类型解析记录
跳转方式解析
www.ddos4.com:3601 端口
textview解析
A SSLv3-compatible ClientHello handshake was found. Fiddler extracted the parameters below.
Version: 3.3 (TLS/1.2)
Random: 1B 89 9B 6C 1F 85 A7 DB 0F 31 ED 28 5C ED 79 98 03 A3 B5 80 C2 1F 2D CE 1E 3B 77 9D FA 2B 8C 2E
"Time": 2027/9/28 19:55:07
SessionID: 39 E5 FA FC 3F CE 8F 87 E6 02 C2 61 FC A6 DD 88 E3 17 A2 58 4B 30 76 23 4E C0 FC E5 DB EB 85 2A
Extensions:
grease (0x7a7a) empty
server_name www.ddos4.com
extended_master_secret empty
renegotiation_info 00
supported_groups grease [0x4a4a], x25519 [0x1d], secp256r1 [0x17], secp384r1 [0x18]
ec_point_formats uncompressed [0x0]
SessionTicket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
ALPN h2, http/1.1
status_request OCSP - Implicit Responder
signature_algs ecdsa_secp256r1_sha256, rsa_pss_rsae_sha256, rsa_pkcs1_sha256, ecdsa_secp384r1_sha384, rsa_pss_rsae_sha384, rsa_pkcs1_sha384, rsa_pss_rsae_sha512, rsa_pkcs1_sha512, rsa_pkcs1_sha1
SignedCertTimestamp (RFC6962) empty
key_share 00 29 4A 4A 00 01 00 00 1D 00 20 3C 53 0E 80 B6 C7 2E BF 06 A1 B1 03 9F 4C D4 0F D3 2C E2 E3 8B 44 1D 9A 6F 83 61 83 11 26 91 0E
psk_key_exchange_modes 01 01
supported_versions grease [0x2a2a], Tls1.3, Tls1.2, Tls1.1
0x001b 02 00 02
grease (0x5a5a) 00
padding 11 null bytes
Ciphers:
[AAAA] Unrecognized cipher - See https://www.iana.org/assignments/tls-parameters/
[1301] TLS_AES_128_GCM_SHA256
[1302] TLS_AES_256_GCM_SHA384
[1303] TLS_CHACHA20_POLY1305_SHA256
[C02B] TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[C02F] TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[C02C] TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[C030] TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[CCA9] TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[CCA8] TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[C013] TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
[C014] TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
[009C] TLS_RSA_WITH_AES_128_GCM_SHA256
[009D] TLS_RSA_WITH_AES_256_GCM_SHA384
[002F] TLS_RSA_WITH_AES_128_CBC_SHA
[0035] TLS_RSA_WITH_AES_256_CBC_SHA
[000A] SSL_RSA_WITH_3DES_EDE_SHA
Compression:
[00] NO_COMPRESSION
|
|
