Nmap scan report for api-1ffec932.duosecurity.com (52.32.63.150) Host is up (0.030s latency). Other addresses for api-1ffec932.duosecurity.com (not scanned): 52.32.63.139 rDNS record for 52.32.63.150: ec2-52-32-63-150.us-west-2.compute.amazonaws.com Not shown: 997 filtered tcp ports (no-response) PORT STATE SERVICE VERSION 80/tcp open http Duo/1.0 | fingerprint-strings: | FourOhFourRequest, GetRequest: | HTTP/1.1 404 Not Found | Server: Duo/1.0 | Date: Fri, 12 Sep 2025 17:54:52 GMT | Content-Type: text/html | Content-Length: 148 | Connection: close | | 404 Not Found | |

404 Not Found

|
Duo/1.0
| | | HTTPOptions: | HTTP/1.1 405 Not Allowed | Server: Duo/1.0 | Date: Fri, 12 Sep 2025 17:54:52 GMT | Content-Type: text/html | Content-Length: 152 | Connection: close | | 405 Not Allowed | |

405 Not Allowed

|
Duo/1.0
| | | RPCCheck: | HTTP/1.1 400 Bad Request | Server: Duo/1.0 | Date: Fri, 12 Sep 2025 17:54:57 GMT | Content-Type: text/html | Content-Length: 152 | Connection: close | | 400 Bad Request | |

400 Bad Request

|
Duo/1.0
| | | RTSPRequest, X11Probe: | HTTP/1.1 400 Bad Request | Server: Duo/1.0 | Date: Fri, 12 Sep 2025 17:54:52 GMT | Content-Type: text/html | Content-Length: 152 | Connection: close | | 400 Bad Request | |

400 Bad Request

|
Duo/1.0
| |_ |_http-title: 404 Not Found |_http-server-header: Duo/1.0 88/tcp open kerberos-sec? | fingerprint-strings: | FourOhFourRequest, GenericLines, GetRequest, Kerberos, SMBProgNeg: | HTTP/1.1 400 Bad Request | Server: Duo/1.0 | Date: Fri, 12 Sep 2025 17:54:52 GMT | Content-Type: text/html | Content-Length: 152 | Connection: close | | 400 Bad Request | |

400 Bad Request

|
Duo/1.0
| |_ 443/tcp open ssl/https Duo/1.0 | fingerprint-strings: | FourOhFourRequest, GetRequest, HTTPOptions: | HTTP/1.1 301 Moved Permanently | Server: Duo/1.0 | Date: Fri, 12 Sep 2025 17:54:58 GMT | Content-Type: text/html | Content-Length: 164 | Connection: close | Location: https://duo.com/ | Strict-Transport-Security: max-age=31536000 | Content-Security-Policy: default-src 'self'; frame-src 'self' ; img-src 'self' ; connect-src 'self' | X-Content-Type-Options: nosniff | | 301 Moved Permanently | |

301 Moved Permanently

|
Duo/1.0
| |_ |_http-title: Did not follow redirect to https://duo.com/ | ssl-cert: Subject: commonName=*.duosecurity.com/organizationName=Duo Security LLC/stateOrProvinceName=Michigan/countryName=US | Subject Alternative Name: DNS:*.duosecurity.com, DNS:duosecurity.com | Not valid before: 2025-02-04T00:00:00 |_Not valid after: 2026-03-07T23:59:59 |_http-server-header: Duo/1.0 |_ssl-date: TLS randomness does not represent time 3 services unrecognized despite returning data. If you know the service/version, please submit the following fingerprints at https://nmap.org/cgi-bin/submit.cgi?new-service : ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)============== SF-Port80-TCP:V=7.92%I=7%D=9/12%Time=68C45E6B%P=x86_64-redhat-linux-gnu%r( SF:GetRequest,125,"HTTP/1\.1\x20404\x20Not\x20Found\r\nServer:\x20Duo/1\.0 SF:\r\nDate:\x20Fri,\x2012\x20Sep\x202025\x2017:54:52\x20GMT\r\nContent-Ty SF:pe:\x20text/html\r\nContent-Length:\x20148\r\nConnection:\x20close\r\n\ SF:r\n\r\n404\x20Not\x20Found\r\n\ SF:r\n

404\x20Not\x20Found

\r\n
Duo/1\. SF:0
\r\n\r\n\r\n")%r(HTTPOptions,12B,"HTTP/1\.1\x20 SF:405\x20Not\x20Allowed\r\nServer:\x20Duo/1\.0\r\nDate:\x20Fri,\x2012\x20 SF:Sep\x202025\x2017:54:52\x20GMT\r\nContent-Type:\x20text/html\r\nContent SF:-Length:\x20152\r\nConnection:\x20close\r\n\r\n\r\n4 SF:05\x20Not\x20Allowed\r\n\r\n

405\x20Not SF:\x20Allowed

\r\n
Duo/1\.0
\r\n\r SF:\n\r\n")%r(RTSPRequest,12B,"HTTP/1\.1\x20400\x20Bad\x20Request\r SF:\nServer:\x20Duo/1\.0\r\nDate:\x20Fri,\x2012\x20Sep\x202025\x2017:54:52 SF:\x20GMT\r\nContent-Type:\x20text/html\r\nContent-Length:\x20152\r\nConn SF:ection:\x20close\r\n\r\n\r\n400\x20Bad\x20Request</t SF:itle></head>\r\n<body>\r\n<center><h1>400\x20Bad\x20Request</h1></cente SF:r>\r\n<hr><center>Duo/1\.0</center>\r\n</body>\r\n</html>\r\n")%r(X11Pr SF:obe,12B,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nServer:\x20Duo/1\.0\r\nD SF:ate:\x20Fri,\x2012\x20Sep\x202025\x2017:54:52\x20GMT\r\nContent-Type:\x SF:20text/html\r\nContent-Length:\x20152\r\nConnection:\x20close\r\n\r\n<h SF:tml>\r\n<head><title>400\x20Bad\x20Request\r\n\r\n SF:

400\x20Bad\x20Request

\r\n
Duo/1\.0 SF:
\r\n\r\n\r\n")%r(FourOhFourRequest,125,"HTTP/1\. SF:1\x20404\x20Not\x20Found\r\nServer:\x20Duo/1\.0\r\nDate:\x20Fri,\x2012\ SF:x20Sep\x202025\x2017:54:52\x20GMT\r\nContent-Type:\x20text/html\r\nCont SF:ent-Length:\x20148\r\nConnection:\x20close\r\n\r\n\r\n404\x20Not\x20Found\r\n\r\n

404\x20No SF:t\x20Found

\r\n
Duo/1\.0
\r\n\r\ SF:n\r\n")%r(RPCCheck,12B,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nSe SF:rver:\x20Duo/1\.0\r\nDate:\x20Fri,\x2012\x20Sep\x202025\x2017:54:57\x20 SF:GMT\r\nContent-Type:\x20text/html\r\nContent-Length:\x20152\r\nConnecti SF:on:\x20close\r\n\r\n\r\n400\x20Bad\x20Request\r\n\r\n

400\x20Bad\x20Request

\r SF:\n
Duo/1\.0
\r\n\r\n\r\n"); ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)============== SF-Port88-TCP:V=7.92%I=7%D=9/12%Time=68C45E6B%P=x86_64-redhat-linux-gnu%r( SF:GetRequest,12B,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nServer:\x20Duo/1\ SF:.0\r\nDate:\x20Fri,\x2012\x20Sep\x202025\x2017:54:52\x20GMT\r\nContent- SF:Type:\x20text/html\r\nContent-Length:\x20152\r\nConnection:\x20close\r\ SF:n\r\n\r\n400\x20Bad\x20Request\r\n\r\n

400\x20Bad\x20Request

\r\n
D SF:uo/1\.0
\r\n\r\n\r\n")%r(Kerberos,12B,"HTTP/1\.1\ SF:x20400\x20Bad\x20Request\r\nServer:\x20Duo/1\.0\r\nDate:\x20Fri,\x2012\ SF:x20Sep\x202025\x2017:54:52\x20GMT\r\nContent-Type:\x20text/html\r\nCont SF:ent-Length:\x20152\r\nConnection:\x20close\r\n\r\n\r\n400\x20Bad\x20Request\r\n\r\n

400\x20 SF:Bad\x20Request

\r\n
Duo/1\.0
\r\n\r\n\r\n")%r(SMBProgNeg,12B,"HTTP/1\.1\x20400\x20Bad\x20Request SF:\r\nServer:\x20Duo/1\.0\r\nDate:\x20Fri,\x2012\x20Sep\x202025\x2017:54: SF:52\x20GMT\r\nContent-Type:\x20text/html\r\nContent-Length:\x20152\r\nCo SF:nnection:\x20close\r\n\r\n\r\n400\x20Bad\x20Request< SF:/title></head>\r\n<body>\r\n<center><h1>400\x20Bad\x20Request</h1></cen SF:ter>\r\n<hr><center>Duo/1\.0</center>\r\n</body>\r\n</html>\r\n")%r(Fou SF:rOhFourRequest,12B,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nServer:\x20Du SF:o/1\.0\r\nDate:\x20Fri,\x2012\x20Sep\x202025\x2017:54:52\x20GMT\r\nCont SF:ent-Type:\x20text/html\r\nContent-Length:\x20152\r\nConnection:\x20clos SF:e\r\n\r\n<html>\r\n<head><title>400\x20Bad\x20Request\r\ SF:n\r\n

400\x20Bad\x20Request

\r\n
Duo/1\.0\r\n\r\n\r\n")%r(GenericLines,12B,"HT SF:TP/1\.1\x20400\x20Bad\x20Request\r\nServer:\x20Duo/1\.0\r\nDate:\x20Fri SF:,\x2012\x20Sep\x202025\x2017:54:52\x20GMT\r\nContent-Type:\x20text/html SF:\r\nContent-Length:\x20152\r\nConnection:\x20close\r\n\r\n\r\n400\x20Bad\x20Request\r\n\r\n

400\x20Bad\x20Request

\r\n
Duo/1\.0
\r SF:\n\r\n\r\n"); ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)============== SF-Port443-TCP:V=7.92%T=SSL%I=7%D=9/12%Time=68C45E72%P=x86_64-redhat-linux SF:-gnu%r(GetRequest,212,"HTTP/1\.1\x20301\x20Moved\x20Permanently\r\nServ SF:er:\x20Duo/1\.0\r\nDate:\x20Fri,\x2012\x20Sep\x202025\x2017:54:58\x20GM SF:T\r\nContent-Type:\x20text/html\r\nContent-Length:\x20164\r\nConnection SF::\x20close\r\nLocation:\x20https://duo\.com/\r\nStrict-Transport-Securi SF:ty:\x20max-age=31536000\r\nContent-Security-Policy:\x20default-src\x20' SF:self';\x20frame-src\x20'self'\x20;\x20img-src\x20'self'\x20\x20;\x20con SF:nect-src\x20'self'\x20\x20\x20\x20\x20\r\nX-Content-Type-Options:\x20no SF:sniff\r\n\r\n\r\n301\x20Moved\x20Permanently SF:\r\n\r\n

301\x20Moved\x20Permanently

\r\n
Duo/1\.0
\r\n\r\n\r\n")%r(HTTP SF:Options,212,"HTTP/1\.1\x20301\x20Moved\x20Permanently\r\nServer:\x20Duo SF:/1\.0\r\nDate:\x20Fri,\x2012\x20Sep\x202025\x2017:54:58\x20GMT\r\nConte SF:nt-Type:\x20text/html\r\nContent-Length:\x20164\r\nConnection:\x20close SF:\r\nLocation:\x20https://duo\.com/\r\nStrict-Transport-Security:\x20max SF:-age=31536000\r\nContent-Security-Policy:\x20default-src\x20'self';\x20 SF:frame-src\x20'self'\x20;\x20img-src\x20'self'\x20\x20;\x20connect-src\x SF:20'self'\x20\x20\x20\x20\x20\r\nX-Content-Type-Options:\x20nosniff\r\n\ SF:r\n\r\n301\x20Moved\x20Permanently\r\ SF:n\r\n

301\x20Moved\x20Permanently

\r\n
Duo/1\.0
\r\n\r\n\r\n")%r(FourOhFourRequ SF:est,212,"HTTP/1\.1\x20301\x20Moved\x20Permanently\r\nServer:\x20Duo/1\. SF:0\r\nDate:\x20Fri,\x2012\x20Sep\x202025\x2017:54:58\x20GMT\r\nContent-T SF:ype:\x20text/html\r\nContent-Length:\x20164\r\nConnection:\x20close\r\n SF:Location:\x20https://duo\.com/\r\nStrict-Transport-Security:\x20max-age SF:=31536000\r\nContent-Security-Policy:\x20default-src\x20'self';\x20fram SF:e-src\x20'self'\x20;\x20img-src\x20'self'\x20\x20;\x20connect-src\x20's SF:elf'\x20\x20\x20\x20\x20\r\nX-Content-Type-Options:\x20nosniff\r\n\r\n< SF:html>\r\n301\x20Moved\x20Permanently\r\n\r\n

301\x20Moved\x20Permanently

\r\n
Duo/1\.0
\r\n\r\n\r\n"); Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port OS fingerprint not ideal because: Missing a closed TCP port so results incomplete No OS matches for host Network Distance: 24 hops TRACEROUTE (using port 80/tcp) HOP RTT ADDRESS 1 0.20 ms 208.76.251.177.rdns.ColocationAmerica.com (208.76.251.177) 2 1.20 ms gw.mcom-colocationamerica.com (208.64.231.81) 3 1.48 ms r2b4.n1.p1401.lax.multacom.net (64.69.46.11) 4 1.02 ms 206.72.211.146.any2ix.coresite.com (206.72.211.146) 5 ... 10 11 28.56 ms 108.166.240.48 12 ... 23 24 31.33 ms ec2-52-32-63-150.us-west-2.compute.amazonaws.com (52.32.63.150) OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 39.01 seconds