Returning 10 result(s) out of 262 in 0.351 second(s)

  • 52.94.224.69:443 (tcp/http/tls) - last seen on 2024-11-21 at 08:15:05 UTC

  • 54.239.22.32:443 (tcp/http/tls) - last seen on 2024-11-21 at 07:36:06 UTC

    • IP
      54.239.22.32
      Network
      54.239.16.0/20
      Domain(s)
      a2z.com amazon.com amazon.dev aws.dev
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux amazon
      URL

      https://midway-auth.amazon.com/login?next=%2FSSO%2Fredirect%3Fredirect_uri%3Dhttps%3A%2F%2F54.244.13.246%2Fverify_midway%3Fredirect_to%3D%25252F%26client_id%3Dscarf.forecasting.aws.a2z.com%26response_type%3Did_token%26scope%3Dopenid%26nonce%3D6798246118732134&require_digital_identity=false 200

      HTTP Title
      Midway Authentication Portal
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http Cert not expired http
      Source
      datascan::redirect::2
    • NOTE
      This tab is a merge from current page results.
      CPE(s)
      Domain(s)
      a2z.com amazon.com amazon.dev aws.dev
      Hostname(s)
      auth.midway.amazon.dev auth.midway.aws.a2z.com auth.midway.aws.dev midway-auth-iad.iad.proxy.amazon.com midway-auth-onebox-iad55.iad.amazon.com midway-auth.amazon.com midway-auth.iad.amazon.com otp.midway-auth-lbr.amazon.com
      IP(s)
      52.94.224.69 52.94.232.98 54.239.22.32
      Port(s)
      443
      Protocol(s)
      http
      Tag(s)
      URL(s)
      / /SSO/redirect?redirect_uri=https%3A%2F%2F3.228.194.33%2F&client_id=https%3A%2F%2Fprod.rnoasinprofiler.fulfillment.amazon.dev&scope=openid&response_type=id_token&response_mode=query&state=eyJwYXRoIjogIi8ifQ%3D%3D&nonce=4a3288d80c74e2c1ce75b54176683175cdbbcb90687cfcb0573a0662c3d5e4e6&sentry_handler_version=PythonMidwayServerHandler-1.0 /SSO/redirect?redirect_uri=https%3A%2F%2Fromiking.us-east-1.sso.operatornet.aws.a2z.com&client_id=https%3A%2F%2Fromiking.us-east-1.sso.operatornet.aws.a2z.com%3A443&scope=openid&response_type=id_token&nonce=66542bd9d3504493d396d831b1159aba6527d0b8ed5159cf3ed35c3511a33080&response_mode=query&state=eyJwYXRoIjoiLyJ9&sentry_handler_version=interceptor-core-1.x /SSO/redirect?redirect_uri=https%3A%2F%2Fs3-throttleco-prod-syd.aka.amazon.com%2F&client_id=https%3A%2F%2Fs3-throttleco-prod-syd.aka.amazon.com%3A443&scope=openid&response_type=id_token&nonce=9864741b74602dfe569fa5d8a05abf8f4ce7f48ddfb1e3e142c9ba57e490d62b&sentry_handler_version=midwaygateway&response_mode=query&state=%2F /SSO/redirect?redirect_uri=https://54.244.13.246/verify_midway?redirect_to=%252F&client_id=scarf.forecasting.aws.a2z.com&response_type=id_token&scope=openid&nonce=6798246118732134 /login?next=%2F /login?next=%2FSSO%2Fredirect%3Fredirect_uri%3Dhttps%253A%252F%252Fiad.beta.farquaad.elb.aws.a2z.com%253A443%252F%26client_id%3Dhttps%253A%252F%252Fiad.beta.farquaad.elb.aws.a2z.com%253A443%26scope%3Dopenid%26max_age%3D86400%26sentry_handler_version%3DMidwayNginxModule-1.7-1%26response_type%3Did_token%26nonce%3D87606550fb9b75a64fced2cdf71638bed2120008fa5e39e418a057e4555ae360&require_digital_identity=false /login?next=%2FSSO%2Fredirect%3Fredirect_uri%3Dhttps%253A%252F%252Fpdx.website.beta.mechanic.aws.a2z.com%253A443%252F%26client_id%3Dhttps%253A%252F%252Fpdx.website.beta.mechanic.aws.a2z.com%253A443%26scope%3Dopenid%26sentry_handler_version%3DMidwayNginxModule-1.7-1%26response_type%3Did_token%26nonce%3Dd547f27ea80faa2eb1147837e7ca3339c9e3f6f178f870cc6b871e4df34d4163&require_digital_identity=false /login?next=%2FSSO%2Fredirect%3Fredirect_uri%3Dhttps%3A%2F%2F54.244.13.246%2Fverify_midway%3Fredirect_to%3D%25252F%26client_id%3Dscarf.forecasting.aws.a2z.com%26response_type%3Did_token%26scope%3Dopenid%26nonce%3D6798246118732134&require_digital_identity=false
    • Operating System
      Linux Linux amazon
      Product
      Server Server
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Amazon RSA 2048 M01
      Issuer Organization
      Amazon
      Subject Common Name
      midway-auth.iad.amazon.com
      Subject Alt Name
      midway-auth.iad.amazon.com midway-auth-iad.iad.proxy.amazon.com otp.midway-auth-lbr.amazon.com midway-auth-onebox-iad55.iad.amazon.com midway-auth.amazon.com auth.midway.aws.a2z.com auth.midway.aws.dev auth.midway.amazon.dev
      SHA256 Fingerprint
      634e053071a627295b1980b69eec6219342a0cb60234e4330726bfce4a51e5b7
      Validity Not Before
      2024-08-16T00:00:00Z
      Validity Not After
      2025-07-24T23:59:59Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      b1bb8c1411a2a24ec74a980c0f0f1116
      HTTP Header MD5
      b895898f8fbdde3000b686b018dd0244
      HTTP Body MD5
      3a5effaad72d614200c583159c38c3cc
    • HTTP/1.1 200 OK
      Server: Server
      Date: Thu, 21 Nov 2024 07:36:06 GMT
      Content-Type: text/html; charset=utf-8
      Transfer-Encoding: chunked
      Connection: close
      X-Frame-Options: SAMEORIGIN
      X-XSS-Protection: 1; mode=block
      X-Content-Type-Options: nosniff
      X-Download-Options: noopen
      X-Permitted-Cross-Domain-Policies: none
      Referrer-Policy: strict-origin-when-cross-origin
      Content-Security-Policy: default-src 'self'; script-src 'self' https://d3s096xoykcjlq.cloudfront.net; style-src 'self' https://d3s096xoykcjlq.cloudfront.net; img-src 'self' https://d3s096xoykcjlq.cloudfront.net; connect-src 'self' https://midway-static.amazon.com/app-id.json https://unagi-na.amazon.com; object-src 'none'; frame-ancestors 'self'
      X-UA-Compatible: IE=Edge,chrome=1
      ETag: W/"37fca65ba2a0375ad5df8937ec4a4d5e"
      Cache-Control: max-age=0, private, must-revalidate
      Set-Cookie: kerberos_disabled=1; path=/; expires=Fri, 21 Nov 2025 07:36:06 GMT; Secure; SameSite=None
      Set-Cookie: session=eyJraWQiOiIzMzUiLCJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..pzXr0tkN68DrJ_eBuhAd2A._209YmIKF03HtcbLwaESUA3AL8_zSJAt4YcUxCwhUveb48d2kvXvDfn280o9l0U3CKkYh2FWzS6kSJPjKFwciy4bwIT59VFycYTNNoviuhVE-XHWNTTFgiewM1plxsHxaoBHJw7cevI1oxDguF5-vN4bUEZkV9126Od22U7J7WRs7i627EhYz5PVwmPonQ0ZvCwv2Bke5Io-1Gh3ZrZkY1kpXoB_mcC_FhtE9wTtHmMvNfgZKwOWbea88s6dzdgY.z7_3loe74COaLjCA1DHRNQ; path=/; expires=Fri, 22 Nov 2024 03:36:06 GMT; secure; HttpOnly; SameSite=None
      X-Host: midway-auth-prod-iad55-71023.iad55.amazon.com
      X-Request-Id: 51d5d0fa-5a5d-479a-8d66-5c1a9b2b1267
      Strict-Transport-Security: max-age=63072000; includeSubDomains
      
      198b
      <!DOCTYPE html>
      <html lang='en'>
      <head>
      <title>Midway Authentication Portal</title>
      <link rel="stylesheet" media="all" href="/assets/application-6f214fe947c0edd4efaa0177e590dd6b201ba0b1eb0324263498e235c5262cbe.css" />
      <script src="/assets/application-f6fff0e6bde057c3cbfdd0338d34b0056b8b007d106c0a26b3190271b98d9c36.js"></script>
      <script src="/packs/js/client-side-metrics-4daab7872936f98b980b.js"></script>
      <meta name="csrf-param" content="authenticity_token" />
      <meta name="csrf-token" content="d94Dj/EGGCBT6YFE02r8/4ZEJL2IvxXKALIOitG2dxsjVBX/SPZI1v/GCEb7rN0BZ5eKGQ4YdwgYdwo1C9ik4A==" />
      <meta id="viewport" name="viewport" content="width=device-width, initial-scale=1" />
      </head>
      <body>
      <script src="/assets/login-5f4607a3effee4c149258f44642a94045f30f57302e2a1145be74744ea3e376a.js" defer="defer"></script>
      <main>
          <div class="banner-item">
            You are using old UI, to switch to new UI click
            <button id="switch-to-new-ui-button">here</button>
          </div>
      
      
        <form id="fpr_form" name="fpr_form"></form>
        <section id="base-pane">
          <div id="login-pane">
            <div id="input-params" data-session-status="{&quot;csrf_param&quot;:&quot;authenticity_token&quot;,&quot;csrf_token&quot;:&quot;78Jwy0/I2oIsQSBypza5yfNEnTz3g6350ICiVLFplkK7SGa79jiKdIBuqXCP8Jg3EpczmHEkzzvIRabrawdFuQ==&quot;,&quot;session_uuid&quot;:&quot;5f29af8653198a10d99624daf3ed503f&quot;,&quot;client_cert_valid&quot;:false,&quot;totp_enabled&quot;:true,&quot;display_otp_enabled&quot;:true,&quot;mcs_andon_cord_pulled&quot;:false,&quot;otp_enabled&quot;:true,&quot;authenticated&quot;:false,&quot;auth_prompt&quot;:&quot;Password&quot;}" data-js-params="{&quot;next&quot;:&quot;/SSO/redirect?redirect_uri=https://54.244.13.246/verify_midway?redirect_to=%252F\u0026client_id=scarf.forecasting.aws.a2z.com\u0026response_type=id_token\u0026scope=openid\u0026nonce=6798246118732134&quot;}"></div>
            <h2>Sign in</h2>
            <!--This hidden header is added because many canaries look for this text to know that they are on a Midway page-->
            <h2 hidden>Sign in with Midway</h2>
            <div class="ta-right">
              <a class="medium-heavy-text small-text" href="https://w.amazon.com/index.php/NextGenMidway/FAQ">Why am I here?</a>
            </div>
      
            <form id="login_form" action="/api/login" accept-charset="UTF-8" method="post"><input name="utf8" type="hidden" value="&#x2713;" autocomplete="off" /><input type="hidden" name="authenticity_token" value="pcdV7v3LAKk/PI2Eq5WUnbn1CGf/+X7CX6SC7CoGofXxTUOeRDtQX5MTBIaDU7VjWCamw3leHABHYYZT8GhyDg==" autocomplete="off" />
              <input type="hidden" name="old_login_form" id="old_login_form" value="true" autocomplete="off" />
              <input type="hidden" name="next" id="next" value="/SSO/redirect?redirect_uri=https://54.244.13.246/verify_midway?redirect_to=%252F&amp;client_id=scarf.forecasting.aws.a2z.com&amp;response_type=id_token&amp;scope=openid&amp;nonce=6798246118732134" autocomplete="off" />
              <p>
                <label for="user_name">Amazon username</label><br/>
                <input type="text" name="user_name" id="user_name" value="" placeholder="Enter your Amazon username" autocomplete="username" autocorrect="off" autocapitalize="off" spellcheck="false" />
              </p>
      
              <p>
              <div class="row">
                <div class="cell-50">
                  <label for="password">PIN</label>
                </div>
                <div class="cell-50 ta-right">
                  <a class="medium-heavy-text small-text" href="https://password-v2.corp.amazon.com/selfReset">Reset password</a>
                </div>
              </div>
              <input type="password" name="password" id="password" value="" placeholder="Enter your security key PIN" autocomplete="current-password" autocorrect="off" autocapitalize="off" />
              <p>
                <input type="submit" name="commit" value="Sign in" class="login-button inline-button orange-button" id="verify_btn" data-disable-with="Sign in" />
              <p id="error-message" class="m1-red ta-center mb-0 invisible" tabindex="0">Error</p>
              <p id="forgot-password" class="ta-center mb-0" hidden>
                <a href="https://password-v2.corp.amazon.com/selfReset">Did you forget your password?</a></p>
      </form>    </div>
      
          <div id="u2f-login-pane" class="ta-center" hidden>
            <h2>Second factor required</h2>
            <div class="row pb-1 pl-2 flex-container">
              <div class="cell-20 hide-small">
                <img height="128" alt="Security key with lock" src="/assets/yubikey-with-lock-4617700bf1ac51a21ee884c1e5b8208eb7c9fff492246a69ec718c8654e75cdd.png" />
              </div>
              <div class="cell-80 ta-left cell-100-small move-to-end-small">
                <ol class="no-indent">
                  <li>Plug your security key into a USB slot on your computer</li>
                  <li>Touch your security key</li>
                    <li>Or, if short touch does not work press and hold for 3 seconds to activate OTP</li>
                </ol>
              </div>
                <div class="cell-80">
                  <p>
                  <form action="/api/yubiotp/login" method="post">
                    <input id="otp-field" name="otp" autocomplete="off" class="otp-field" autocapitalize="none" style="width: 185px">
                    <input id="otp-submit-btn" type="submit" value="Submit">
                  </form>
                  <p id="u2f-error-message" class="m1-red" hidden></p>
                </div>
            </div>
          </div>
      
          <div id="redirect-pane" class="ta-center" hidden>
            <h2 class="green"> Authentication Successful</h2>
            <br/>
            <br/>
            <h3 class="">Now redirecting you to <span id="redirect-url"></span></h3>
            <br/>
            <img alt="Spinning processing circle" src="/assets/ajax-spinner-4e6e1fb3f08a162cfd4f8fb435769612a801c3cea4684b1efc71455e3795c5ca.gif" />
          </div>
      
          <div id="loadingDiv" class="ta-center invisible">
            <img alt="Spinning processing circle" src="/assets/ajax-spinner-4e6e1fb3f08a162cfd4f8fb435769612a801c3cea4684b1efc71455e3795c5ca.gif" />
          </div>
        </section>
        
        <footer>
          <p>
            Secured by  <a id="help_link" href="https://w.amazon.com/index.php/NextGenMidway/FAQ">Midway</a>. For login issues, 
            <a href="https://firstaid.it.a2z.com/chat">chat with IT support</a>.
          </p>
      
          <img height="32" class="mt-2" alt="Amazon logo" title="Midway is brought to you by Matt, Chris, Stefan, Alex, Misha, Eric, David, Pratik, Sunitha, Tyler, Carl, and more!" src="/assets/amazon-logo-f589d03bb13bcabcfcfdd596bf2f0c4bc4996adc605cc737991ce9c6a0025be6.png" />
        </footer>
      
      </main>
      
      <script src="/packs/js/old-ui-256ec15b2ec41d126e2b.js"></script>
      </body>
      </html>
      
      0
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T07:36:06.000Z",
         "app" : {
            "extract" : {
               "domain" : [
                  "amazon.com",
                  "cloudfront.net",
                  "a2z.com"
               ],
               "hostname" : [
                  "d3s096xoykcjlq.cloudfront.net",
                  "firstaid.it.a2z.com",
                  "midway-static.amazon.com",
                  "password-v2.corp.amazon.com",
                  "unagi-na.amazon.com",
                  "w.amazon.com"
               ],
               "ip" : [
                  "54.244.13.246"
               ],
               "url" : [
                  "https://54.244.13.246/verify_midway?redirect_to=%252F",
                  "https://54.244.13.246/verify_midway?redirect_to=%252F&amp;client_id=scarf.forecasting.aws.a2z.com&amp;response_type=id_token&amp;scope=openid&amp;nonce=6798246118732134",
                  "https://d3s096xoykcjlq.cloudfront.net",
                  "https://firstaid.it.a2z.com/chat",
                  "https://midway-static.amazon.com/app-id.json",
                  "https://password-v2.corp.amazon.com/selfReset",
                  "https://unagi-na.amazon.com",
                  "https://w.amazon.com/index.php/NextGenMidway/FAQ"
               ]
            },
            "http" : {
               "bodymd5" : "3a5effaad72d614200c583159c38c3cc",
               "bodymmh3" : -972904029,
               "header" : [
                  {
                     "value" : "W/\"37fca65ba2a0375ad5df8937ec4a4d5e",
                     "name" : "ETag"
                  }
               ],
               "headermd5" : "b895898f8fbdde3000b686b018dd0244",
               "headermmh3" : -2066340545,
               "title" : "Midway Authentication Portal"
            },
            "length" : 8147
         },
         "asn" : "AS16509",
         "basicconstraints" : "critical",
         "ca" : "false",
         "city" : "Ashburn",
         "company" : {
            "country" : "<enterprise field>: company.country",
            "globalrank" : "<enterprise field>: company.globalrank",
            "industry" : "<enterprise field>: company.industry",
            "name" : "<enterprise field>: company.name",
            "sector" : "<enterprise field>: company.sector"
         },
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nServer: Server\r\nDate: Thu, 21 Nov 2024 07:36:06 GMT\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nX-Frame-Options: SAMEORIGIN\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nX-Download-Options: noopen\r\nX-Permitted-Cross-Domain-Policies: none\r\nReferrer-Policy: strict-origin-when-cross-origin\r\nContent-Security-Policy: default-src 'self'; script-src 'self' https://d3s096xoykcjlq.cloudfront.net; style-src 'self' https://d3s096xoykcjlq.cloudfront.net; img-src 'self' https://d3s096xoykcjlq.cloudfront.net; connect-src 'self' https://midway-static.amazon.com/app-id.json https://unagi-na.amazon.com; object-src 'none'; frame-ancestors 'self'\r\nX-UA-Compatible: IE=Edge,chrome=1\r\nETag: W/\"37fca65ba2a0375ad5df8937ec4a4d5e\"\r\nCache-Control: max-age=0, private, must-revalidate\r\nSet-Cookie: kerberos_disabled=1; path=/; expires=Fri, 21 Nov 2025 07:36:06 GMT; Secure; SameSite=None\r\nSet-Cookie: session=eyJraWQiOiIzMzUiLCJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..pzXr0tkN68DrJ_eBuhAd2A._209YmIKF03HtcbLwaESUA3AL8_zSJAt4YcUxCwhUveb48d2kvXvDfn280o9l0U3CKkYh2FWzS6kSJPjKFwciy4bwIT59VFycYTNNoviuhVE-XHWNTTFgiewM1plxsHxaoBHJw7cevI1oxDguF5-vN4bUEZkV9126Od22U7J7WRs7i627EhYz5PVwmPonQ0ZvCwv2Bke5Io-1Gh3ZrZkY1kpXoB_mcC_FhtE9wTtHmMvNfgZKwOWbea88s6dzdgY.z7_3loe74COaLjCA1DHRNQ; path=/; expires=Fri, 22 Nov 2024 03:36:06 GMT; secure; HttpOnly; SameSite=None\r\nX-Host: midway-auth-prod-iad55-71023.iad55.amazon.com\r\nX-Request-Id: 51d5d0fa-5a5d-479a-8d66-5c1a9b2b1267\r\nStrict-Transport-Security: max-age=63072000; includeSubDomains\r\n\r\n198b\r\n<!DOCTYPE html>\n<html lang='en'>\n<head>\n<title>Midway Authentication Portal</title>\n<link rel=\"stylesheet\" media=\"all\" href=\"/assets/application-6f214fe947c0edd4efaa0177e590dd6b201ba0b1eb0324263498e235c5262cbe.css\" />\n<script src=\"/assets/application-f6fff0e6bde057c3cbfdd0338d34b0056b8b007d106c0a26b3190271b98d9c36.js\"></script>\n<script src=\"/packs/js/client-side-metrics-4daab7872936f98b980b.js\"></script>\n<meta name=\"csrf-param\" content=\"authenticity_token\" />\n<meta name=\"csrf-token\" content=\"d94Dj/EGGCBT6YFE02r8/4ZEJL2IvxXKALIOitG2dxsjVBX/SPZI1v/GCEb7rN0BZ5eKGQ4YdwgYdwo1C9ik4A==\" />\n<meta id=\"viewport\" name=\"viewport\" content=\"width=device-width, initial-scale=1\" />\n</head>\n<body>\n<script src=\"/assets/login-5f4607a3effee4c149258f44642a94045f30f57302e2a1145be74744ea3e376a.js\" defer=\"defer\"></script>\n<main>\n    <div class=\"banner-item\">\n      You are using old UI, to switch to new UI click\n      <button id=\"switch-to-new-ui-button\">here</button>\n    </div>\n\n\n  <form id=\"fpr_form\" name=\"fpr_form\"></form>\n  <section id=\"base-pane\">\n    <div id=\"login-pane\">\n      <div id=\"input-params\" data-session-status=\"{&quot;csrf_param&quot;:&quot;authenticity_token&quot;,&quot;csrf_token&quot;:&quot;78Jwy0/I2oIsQSBypza5yfNEnTz3g6350ICiVLFplkK7SGa79jiKdIBuqXCP8Jg3EpczmHEkzzvIRabrawdFuQ==&quot;,&quot;session_uuid&quot;:&quot;5f29af8653198a10d99624daf3ed503f&quot;,&quot;client_cert_valid&quot;:false,&quot;totp_enabled&quot;:true,&quot;display_otp_enabled&quot;:true,&quot;mcs_andon_cord_pulled&quot;:false,&quot;otp_enabled&quot;:true,&quot;authenticated&quot;:false,&quot;auth_prompt&quot;:&quot;Password&quot;}\" data-js-params=\"{&quot;next&quot;:&quot;/SSO/redirect?redirect_uri=https://54.244.13.246/verify_midway?redirect_to=%252F\\u0026client_id=scarf.forecasting.aws.a2z.com\\u0026response_type=id_token\\u0026scope=openid\\u0026nonce=6798246118732134&quot;}\"></div>\n      <h2>Sign in</h2>\n      <!--This hidden header is added because many canaries look for this text to know that they are on a Midway page-->\n      <h2 hidden>Sign in with Midway</h2>\n      <div class=\"ta-right\">\n        <a class=\"medium-heavy-text small-text\" href=\"https://w.amazon.com/index.php/NextGenMidway/FAQ\">Why am I here?</a>\n      </div>\n\n      <form id=\"login_form\" action=\"/api/login\" accept-charset=\"UTF-8\" method=\"post\"><input name=\"utf8\" type=\"hidden\" value=\"&#x2713;\" autocomplete=\"off\" /><input type=\"hidden\" name=\"authenticity_token\" value=\"pcdV7v3LAKk/PI2Eq5WUnbn1CGf/+X7CX6SC7CoGofXxTUOeRDtQX5MTBIaDU7VjWCamw3leHABHYYZT8GhyDg==\" autocomplete=\"off\" />\n        <input type=\"hidden\" name=\"old_login_form\" id=\"old_login_form\" value=\"true\" autocomplete=\"off\" />\n        <input type=\"hidden\" name=\"next\" id=\"next\" value=\"/SSO/redirect?redirect_uri=https://54.244.13.246/verify_midway?redirect_to=%252F&amp;client_id=scarf.forecasting.aws.a2z.com&amp;response_type=id_token&amp;scope=openid&amp;nonce=6798246118732134\" autocomplete=\"off\" />\n        <p>\n          <label for=\"user_name\">Amazon username</label><br/>\n          <input type=\"text\" name=\"user_name\" id=\"user_name\" value=\"\" placeholder=\"Enter your Amazon username\" autocomplete=\"username\" autocorrect=\"off\" autocapitalize=\"off\" spellcheck=\"false\" />\n        </p>\n\n        <p>\n        <div class=\"row\">\n          <div class=\"cell-50\">\n            <label for=\"password\">PIN</label>\n          </div>\n          <div class=\"cell-50 ta-right\">\n            <a class=\"medium-heavy-text small-text\" href=\"https://password-v2.corp.amazon.com/selfReset\">Reset password</a>\n          </div>\n        </div>\n        <input type=\"password\" name=\"password\" id=\"password\" value=\"\" placeholder=\"Enter your security key PIN\" autocomplete=\"current-password\" autocorrect=\"off\" autocapitalize=\"off\" />\n        <p>\n          <input type=\"submit\" name=\"commit\" value=\"Sign in\" class=\"login-button inline-button orange-button\" id=\"verify_btn\" data-disable-with=\"Sign in\" />\n        <p id=\"error-message\" class=\"m1-red ta-center mb-0 invisible\" tabindex=\"0\">Error</p>\n        <p id=\"forgot-password\" class=\"ta-center mb-0\" hidden>\n          <a href=\"https://password-v2.corp.amazon.com/selfReset\">Did you forget your password?</a></p>\n</form>    </div>\n\n    <div id=\"u2f-login-pane\" class=\"ta-center\" hidden>\n      <h2>Second factor required</h2>\n      <div class=\"row pb-1 pl-2 flex-container\">\n        <div class=\"cell-20 hide-small\">\n          <img height=\"128\" alt=\"Security key with lock\" src=\"/assets/yubikey-with-lock-4617700bf1ac51a21ee884c1e5b8208eb7c9fff492246a69ec718c8654e75cdd.png\" />\n        </div>\n        <div class=\"cell-80 ta-left cell-100-small move-to-end-small\">\n          <ol class=\"no-indent\">\n            <li>Plug your security key into a USB slot on your computer</li>\n            <li>Touch your security key</li>\n              <li>Or, if short touch does not work press and hold for 3 seconds to activate OTP</li>\n          </ol>\n        </div>\n          <div class=\"cell-80\">\n            <p>\n            <form action=\"/api/yubiotp/login\" method=\"post\">\n              <input id=\"otp-field\" name=\"otp\" autocomplete=\"off\" class=\"otp-field\" autocapitalize=\"none\" style=\"width: 185px\">\n              <input id=\"otp-submit-btn\" type=\"submit\" value=\"Submit\">\n            </form>\n            <p id=\"u2f-error-message\" class=\"m1-red\" hidden></p>\n          </div>\n      </div>\n    </div>\n\n    <div id=\"redirect-pane\" class=\"ta-center\" hidden>\n      <h2 class=\"green\"> Authentication Successful</h2>\n      <br/>\n      <br/>\n      <h3 class=\"\">Now redirecting you to <span id=\"redirect-url\"></span></h3>\n      <br/>\n      <img alt=\"Spinning processing circle\" src=\"/assets/ajax-spinner-4e6e1fb3f08a162cfd4f8fb435769612a801c3cea4684b1efc71455e3795c5ca.gif\" />\n    </div>\n\n    <div id=\"loadingDiv\" class=\"ta-center invisible\">\n      <img alt=\"Spinning processing circle\" src=\"/assets/ajax-spinner-4e6e1fb3f08a162cfd4f8fb435769612a801c3cea4684b1efc71455e3795c5ca.gif\" />\n    </div>\n  </section>\n  \n  <footer>\n    <p>\n      Secured by  <a id=\"help_link\" href=\"https://w.amazon.com/index.php/NextGenMidway/FAQ\">Midway</a>. For login issues, \n      <a href=\"https://firstaid.it.a2z.com/chat\">chat with IT support</a>.\n    </p>\n\n    <img height=\"32\" class=\"mt-2\" alt=\"Amazon logo\" title=\"Midway is brought to you by Matt, Chris, Stefan, Alex, Misha, Eric, David, Pratik, Sunitha, Tyler, Carl, and more!\" src=\"/assets/amazon-logo-f589d03bb13bcabcfcfdd596bf2f0c4bc4996adc605cc737991ce9c6a0025be6.png\" />\n  </footer>\n\n</main>\n\n<script src=\"/packs/js/old-ui-256ec15b2ec41d126e2b.js\"></script>\n</body>\n</html>\n\r\n0\r\n\r\n",
         "datamd5" : "b1bb8c1411a2a24ec74a980c0f0f1116",
         "datammh3" : 1123038387,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "a2z.com",
            "amazon.com",
            "amazon.dev",
            "aws.dev"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "0a6f29b90f485404868bf01d72395f86",
            "sha1" : "823d4ffd677d3ec7a5c53a79678b6162dcea8a1f",
            "sha256" : "634e053071a627295b1980b69eec6219342a0cb60234e4330726bfce4a51e5b7"
         },
         "forward" : "midway-auth.amazon.com",
         "geolocus" : {
            "asn" : "AS16509",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "amazon.com",
               "aws.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "AMAZON-2011L",
            "organization" : "Amazon Technologies Inc.",
            "subnet" : "54.239.16.0/20"
         },
         "host" : [
            "auth",
            "midway-auth",
            "midway-auth-iad",
            "midway-auth-onebox-iad55",
            "otp"
         ],
         "hostname" : [
            "auth.midway.amazon.dev",
            "auth.midway.aws.a2z.com",
            "auth.midway.aws.dev",
            "midway-auth-iad.iad.proxy.amazon.com",
            "midway-auth-onebox-iad55.iad.amazon.com",
            "midway-auth.amazon.com",
            "midway-auth.iad.amazon.com",
            "otp.midway-auth-lbr.amazon.com"
         ],
         "ip" : "54.239.22.32",
         "ipv6" : "false",
         "issuer" : {
            "commonname" : "Amazon RSA 2048 M01",
            "country" : "US",
            "organization" : "Amazon"
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "39.0469",
         "location" : "39.0469,-77.4903",
         "longitude" : "-77.4903",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "AMAZON-02",
         "os" : "Linux",
         "osdistribution" : "amazon",
         "osvendor" : "Linux",
         "port" : 443,
         "product" : "Server",
         "productvendor" : "Server",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "reason" : "OK",
         "seen_date" : "2024-11-21",
         "serial" : "09:13:e5:75:b7:57:57:39:2f:62:c8:a8:ba:5a:18:6a",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan::redirect::2",
         "status" : 200,
         "subdomains" : [
            "aws.a2z.com",
            "iad.amazon.com",
            "iad.proxy.amazon.com",
            "midway-auth-lbr.amazon.com",
            "midway.amazon.dev",
            "midway.aws.a2z.com",
            "midway.aws.dev",
            "proxy.amazon.com"
         ],
         "subject" : {
            "altname" : [
               "midway-auth.iad.amazon.com",
               "midway-auth-iad.iad.proxy.amazon.com",
               "otp.midway-auth-lbr.amazon.com",
               "midway-auth-onebox-iad55.iad.amazon.com",
               "midway-auth.amazon.com",
               "auth.midway.aws.a2z.com",
               "auth.midway.aws.dev",
               "auth.midway.amazon.dev"
            ],
            "commonname" : "midway-auth.iad.amazon.com"
         },
         "subnet" : "54.239.16.0/20",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com",
            "dev"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "url" : "/login?next=%2FSSO%2Fredirect%3Fredirect_uri%3Dhttps%3A%2F%2F54.244.13.246%2Fverify_midway%3Fredirect_to%3D%25252F%26client_id%3Dscarf.forecasting.aws.a2z.com%26response_type%3Did_token%26scope%3Dopenid%26nonce%3D6798246118732134&require_digital_identity=false",
         "validity" : {
            "notafter" : "2025-07-24T23:59:59Z",
            "notbefore" : "2024-08-16T00:00:00Z"
         },
         "version" : "v3",
         "wildcard" : "false"
      }
      
  • 52.94.232.98:443 (tcp/http/tls) - last seen on 2024-11-21 at 07:30:06 UTC

  • 52.94.232.98:443 (tcp/http/tls) - last seen on 2024-11-21 at 06:26:16 UTC

    • IP
      52.94.232.98
      Network
      52.94.224.0/20
      Domain(s)
      a2z.com amazon.com amazon.dev aws.dev
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux amazon
      URL

      https://midway-auth.amazon.com/login?next=%2F 200

      HTTP Title
      Midway Authentication Portal
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http Cert not expired http
      Source
      datascan::redirect::2
    • NOTE
      This tab is a merge from current page results.
      CPE(s)
      Domain(s)
      a2z.com amazon.com amazon.dev aws.dev
      Hostname(s)
      auth.midway.amazon.dev auth.midway.aws.a2z.com auth.midway.aws.dev midway-auth-iad.iad.proxy.amazon.com midway-auth-onebox-iad55.iad.amazon.com midway-auth.amazon.com midway-auth.iad.amazon.com otp.midway-auth-lbr.amazon.com
      IP(s)
      52.94.224.69 52.94.232.98 54.239.22.32
      Port(s)
      443
      Protocol(s)
      http
      Tag(s)
      URL(s)
      / /SSO/redirect?redirect_uri=https%3A%2F%2F3.228.194.33%2F&client_id=https%3A%2F%2Fprod.rnoasinprofiler.fulfillment.amazon.dev&scope=openid&response_type=id_token&response_mode=query&state=eyJwYXRoIjogIi8ifQ%3D%3D&nonce=4a3288d80c74e2c1ce75b54176683175cdbbcb90687cfcb0573a0662c3d5e4e6&sentry_handler_version=PythonMidwayServerHandler-1.0 /SSO/redirect?redirect_uri=https%3A%2F%2Fromiking.us-east-1.sso.operatornet.aws.a2z.com&client_id=https%3A%2F%2Fromiking.us-east-1.sso.operatornet.aws.a2z.com%3A443&scope=openid&response_type=id_token&nonce=66542bd9d3504493d396d831b1159aba6527d0b8ed5159cf3ed35c3511a33080&response_mode=query&state=eyJwYXRoIjoiLyJ9&sentry_handler_version=interceptor-core-1.x /SSO/redirect?redirect_uri=https%3A%2F%2Fs3-throttleco-prod-syd.aka.amazon.com%2F&client_id=https%3A%2F%2Fs3-throttleco-prod-syd.aka.amazon.com%3A443&scope=openid&response_type=id_token&nonce=9864741b74602dfe569fa5d8a05abf8f4ce7f48ddfb1e3e142c9ba57e490d62b&sentry_handler_version=midwaygateway&response_mode=query&state=%2F /SSO/redirect?redirect_uri=https://54.244.13.246/verify_midway?redirect_to=%252F&client_id=scarf.forecasting.aws.a2z.com&response_type=id_token&scope=openid&nonce=6798246118732134 /login?next=%2F /login?next=%2FSSO%2Fredirect%3Fredirect_uri%3Dhttps%253A%252F%252Fiad.beta.farquaad.elb.aws.a2z.com%253A443%252F%26client_id%3Dhttps%253A%252F%252Fiad.beta.farquaad.elb.aws.a2z.com%253A443%26scope%3Dopenid%26max_age%3D86400%26sentry_handler_version%3DMidwayNginxModule-1.7-1%26response_type%3Did_token%26nonce%3D87606550fb9b75a64fced2cdf71638bed2120008fa5e39e418a057e4555ae360&require_digital_identity=false /login?next=%2FSSO%2Fredirect%3Fredirect_uri%3Dhttps%253A%252F%252Fpdx.website.beta.mechanic.aws.a2z.com%253A443%252F%26client_id%3Dhttps%253A%252F%252Fpdx.website.beta.mechanic.aws.a2z.com%253A443%26scope%3Dopenid%26sentry_handler_version%3DMidwayNginxModule-1.7-1%26response_type%3Did_token%26nonce%3Dd547f27ea80faa2eb1147837e7ca3339c9e3f6f178f870cc6b871e4df34d4163&require_digital_identity=false /login?next=%2FSSO%2Fredirect%3Fredirect_uri%3Dhttps%3A%2F%2F54.244.13.246%2Fverify_midway%3Fredirect_to%3D%25252F%26client_id%3Dscarf.forecasting.aws.a2z.com%26response_type%3Did_token%26scope%3Dopenid%26nonce%3D6798246118732134&require_digital_identity=false
    • Operating System
      Linux Linux amazon
      Product
      Server Server
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Amazon RSA 2048 M01
      Issuer Organization
      Amazon
      Subject Common Name
      midway-auth.iad.amazon.com
      Subject Alt Name
      midway-auth.iad.amazon.com midway-auth-iad.iad.proxy.amazon.com otp.midway-auth-lbr.amazon.com midway-auth-onebox-iad55.iad.amazon.com midway-auth.amazon.com auth.midway.aws.a2z.com auth.midway.aws.dev auth.midway.amazon.dev
      SHA256 Fingerprint
      634e053071a627295b1980b69eec6219342a0cb60234e4330726bfce4a51e5b7
      Validity Not Before
      2024-08-16T00:00:00Z
      Validity Not After
      2025-07-24T23:59:59Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      d154163b063ff5abf20989361923ba11
      HTTP Header MD5
      6c1cc5869e641712a1e5040d07c63463
      HTTP Body MD5
      e9b8e95c51aa8dc9ecffbfa8618fb017
    • HTTP/1.1 200 OK
      Server: Server
      Date: Thu, 21 Nov 2024 06:26:16 GMT
      Content-Type: text/html; charset=utf-8
      Transfer-Encoding: chunked
      Connection: close
      X-Frame-Options: SAMEORIGIN
      X-XSS-Protection: 1; mode=block
      X-Content-Type-Options: nosniff
      X-Download-Options: noopen
      X-Permitted-Cross-Domain-Policies: none
      Referrer-Policy: strict-origin-when-cross-origin
      Content-Security-Policy: default-src 'self'; script-src 'self' https://d3s096xoykcjlq.cloudfront.net; style-src 'self' https://d3s096xoykcjlq.cloudfront.net; img-src 'self' https://d3s096xoykcjlq.cloudfront.net; connect-src 'self' https://midway-static.amazon.com/app-id.json https://unagi-na.amazon.com; object-src 'none'; frame-ancestors 'self'
      X-UA-Compatible: IE=Edge,chrome=1
      ETag: W/"ee5a94ebc49cd415014e91f9aec38050"
      Cache-Control: max-age=0, private, must-revalidate
      Set-Cookie: kerberos_disabled=1; path=/; expires=Fri, 21 Nov 2025 06:26:16 GMT; Secure; SameSite=None
      Set-Cookie: session=eyJraWQiOiIzMzUiLCJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..rbLPsGUJ_zXeykxfCrPijg.20JL_VBl3J45QvffRvQAa36gqA862TCegVjhKHd_UcYQaDOGY51rP57gm4gSPpjY2ctboXFBQACOv5B4GWQ-Oj_-kpEoLq-FS_HlM5HUoN02xrIixB0RaIjwVhJpZgTaBa9l-P-gQgLA_ULq9HMWe4mEc1_XbbVag8xSzQBDbdJ4RJSXkz4Q0LCOf5k29PU_a728rQ0fPEOEJXaYopPKPbIKf7tEyYKLVECWM4_p-TUDjP3EuNQI8MFcpMxHPOTY.1bIPtZ0bIDJhv8CSw4ag7w; path=/; expires=Fri, 22 Nov 2024 02:26:16 GMT; secure; HttpOnly; SameSite=None
      X-Host: midway-auth-prod-iad12-25024.iad12.amazon.com
      X-Request-Id: 2796de2e-cb4f-45f0-a7d4-f74aa46c9699
      Strict-Transport-Security: max-age=63072000; includeSubDomains
      
      1803
      <!DOCTYPE html>
      <html lang='en'>
      <head>
      <title>Midway Authentication Portal</title>
      <link rel="stylesheet" media="all" href="/assets/application-6f214fe947c0edd4efaa0177e590dd6b201ba0b1eb0324263498e235c5262cbe.css" />
      <script src="/assets/application-f6fff0e6bde057c3cbfdd0338d34b0056b8b007d106c0a26b3190271b98d9c36.js"></script>
      <script src="/packs/js/client-side-metrics-4daab7872936f98b980b.js"></script>
      <meta name="csrf-param" content="authenticity_token" />
      <meta name="csrf-token" content="eRr5GKk6eZzDz6eH6b3J3oG65wjl6UBVNKm3UOPawrgX0VJZCT61+LJcXeXI/7oJHkaSGWiwCcbl5Q2DYmTHYw==" />
      <meta id="viewport" name="viewport" content="width=device-width, initial-scale=1" />
      </head>
      <body>
      <script src="/assets/login-5f4607a3effee4c149258f44642a94045f30f57302e2a1145be74744ea3e376a.js" defer="defer"></script>
      <main>
          <div class="banner-item">
            You are using old UI, to switch to new UI click
            <button id="switch-to-new-ui-button">here</button>
          </div>
      
      
        <form id="fpr_form" name="fpr_form"></form>
        <section id="base-pane">
          <div id="login-pane">
            <div id="input-params" data-session-status="{&quot;csrf_param&quot;:&quot;authenticity_token&quot;,&quot;csrf_token&quot;:&quot;ecytgCixF0pEIpd2nBcPdsR+I8tqddzhG57rDqxFcUYXBwbBiLXbLjWxbRS9VXyhW4JW2ucslXLK0lHdLft0nQ==&quot;,&quot;session_uuid&quot;:&quot;cfbf1c02e436f8cfc7faaf1ec61bbed0&quot;,&quot;client_cert_valid&quot;:false,&quot;totp_enabled&quot;:true,&quot;display_otp_enabled&quot;:true,&quot;mcs_andon_cord_pulled&quot;:false,&quot;otp_enabled&quot;:true,&quot;authenticated&quot;:false,&quot;auth_prompt&quot;:&quot;Password&quot;}" data-js-params="{&quot;next&quot;:&quot;/&quot;}"></div>
            <h2>Sign in</h2>
            <!--This hidden header is added because many canaries look for this text to know that they are on a Midway page-->
            <h2 hidden>Sign in with Midway</h2>
            <div class="ta-right">
              <a class="medium-heavy-text small-text" href="https://w.amazon.com/index.php/NextGenMidway/FAQ">Why am I here?</a>
            </div>
      
            <form id="login_form" action="/api/login" accept-charset="UTF-8" method="post"><input name="utf8" type="hidden" value="&#x2713;" autocomplete="off" /><input type="hidden" name="authenticity_token" value="mJCcqV45k1x6cLFKnxo1E84ZUV7j9FXL3OzXm08JbQj2Wzfo/j1fOAvjSyi+WEbEUeUkT26tHFgNoG1Izrdo0w==" autocomplete="off" />
              <input type="hidden" name="old_login_form" id="old_login_form" value="true" autocomplete="off" />
              <input type="hidden" name="next" id="next" value="/" autocomplete="off" />
              <p>
                <label for="user_name">Amazon username</label><br/>
                <input type="text" name="user_name" id="user_name" value="" placeholder="Enter your Amazon username" autocomplete="username" autocorrect="off" autocapitalize="off" spellcheck="false" />
              </p>
      
              <p>
              <div class="row">
                <div class="cell-50">
                  <label for="password">PIN</label>
                </div>
                <div class="cell-50 ta-right">
                  <a class="medium-heavy-text small-text" href="https://password-v2.corp.amazon.com/selfReset">Reset password</a>
                </div>
              </div>
              <input type="password" name="password" id="password" value="" placeholder="Enter your security key PIN" autocomplete="current-password" autocorrect="off" autocapitalize="off" />
              <p>
                <input type="submit" name="commit" value="Sign in" class="login-button inline-button orange-button" id="verify_btn" data-disable-with="Sign in" />
              <p id="error-message" class="m1-red ta-center mb-0 invisible" tabindex="0">Error</p>
              <p id="forgot-password" class="ta-center mb-0" hidden>
                <a href="https://password-v2.corp.amazon.com/selfReset">Did you forget your password?</a></p>
      </form>    </div>
      
          <div id="u2f-login-pane" class="ta-center" hidden>
            <h2>Second factor required</h2>
            <div class="row pb-1 pl-2 flex-container">
              <div class="cell-20 hide-small">
                <img height="128" alt="Security key with lock" src="/assets/yubikey-with-lock-4617700bf1ac51a21ee884c1e5b8208eb7c9fff492246a69ec718c8654e75cdd.png" />
              </div>
              <div class="cell-80 ta-left cell-100-small move-to-end-small">
                <ol class="no-indent">
                  <li>Plug your security key into a USB slot on your computer</li>
                  <li>Touch your security key</li>
                    <li>Or, if short touch does not work press and hold for 3 seconds to activate OTP</li>
                </ol>
              </div>
                <div class="cell-80">
                  <p>
                  <form action="/api/yubiotp/login" method="post">
                    <input id="otp-field" name="otp" autocomplete="off" class="otp-field" autocapitalize="none" style="width: 185px">
                    <input id="otp-submit-btn" type="submit" value="Submit">
                  </form>
                  <p id="u2f-error-message" class="m1-red" hidden></p>
                </div>
            </div>
          </div>
      
          <div id="redirect-pane" class="ta-center" hidden>
            <h2 class="green"> Authentication Successful</h2>
            <br/>
            <br/>
            <h3 class="">Now redirecting you to <span id="redirect-url"></span></h3>
            <br/>
            <img alt="Spinning processing circle" src="/assets/ajax-spinner-4e6e1fb3f08a162cfd4f8fb435769612a801c3cea4684b1efc71455e3795c5ca.gif" />
          </div>
      
          <div id="loadingDiv" class="ta-center invisible">
            <img alt="Spinning processing circle" src="/assets/ajax-spinner-4e6e1fb3f08a162cfd4f8fb435769612a801c3cea4684b1efc71455e3795c5ca.gif" />
          </div>
        </section>
        
        <footer>
          <p>
            Secured by  <a id="help_link" href="https://w.amazon.com/index.php/NextGenMidway/FAQ">Midway</a>. For login issues, 
            <a href="https://firstaid.it.a2z.com/chat">chat with IT support</a>.
          </p>
      
          <img height="32" class="mt-2" alt="Amazon logo" title="Midway is brought to you by Sunitha, Eric, Tyler, Alex, Carl, Pratik, Misha, Matt, Stefan, David, Chris, and more!" src="/assets/amazon-logo-f589d03bb13bcabcfcfdd596bf2f0c4bc4996adc605cc737991ce9c6a0025be6.png" />
        </footer>
      
      </main>
      
      <script src="/packs/js/old-ui-256ec15b2ec41d126e2b.js"></script>
      </body>
      </html>
      
      0
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T06:26:16.000Z",
         "app" : {
            "extract" : {
               "domain" : [
                  "amazon.com",
                  "cloudfront.net",
                  "a2z.com"
               ],
               "hostname" : [
                  "d3s096xoykcjlq.cloudfront.net",
                  "firstaid.it.a2z.com",
                  "midway-static.amazon.com",
                  "password-v2.corp.amazon.com",
                  "unagi-na.amazon.com",
                  "w.amazon.com"
               ],
               "url" : [
                  "https://d3s096xoykcjlq.cloudfront.net",
                  "https://firstaid.it.a2z.com/chat",
                  "https://midway-static.amazon.com/app-id.json",
                  "https://password-v2.corp.amazon.com/selfReset",
                  "https://unagi-na.amazon.com",
                  "https://w.amazon.com/index.php/NextGenMidway/FAQ"
               ]
            },
            "http" : {
               "bodymd5" : "e9b8e95c51aa8dc9ecffbfa8618fb017",
               "bodymmh3" : 170774175,
               "header" : [
                  {
                     "value" : "W/\"ee5a94ebc49cd415014e91f9aec38050",
                     "name" : "ETag"
                  }
               ],
               "headermd5" : "6c1cc5869e641712a1e5040d07c63463",
               "headermmh3" : 1271000850,
               "title" : "Midway Authentication Portal"
            },
            "length" : 7755
         },
         "asn" : "AS16509",
         "basicconstraints" : "critical",
         "ca" : "false",
         "city" : "Ashburn",
         "company" : {
            "country" : "<enterprise field>: company.country",
            "globalrank" : "<enterprise field>: company.globalrank",
            "industry" : "<enterprise field>: company.industry",
            "name" : "<enterprise field>: company.name",
            "sector" : "<enterprise field>: company.sector"
         },
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nServer: Server\r\nDate: Thu, 21 Nov 2024 06:26:16 GMT\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nX-Frame-Options: SAMEORIGIN\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nX-Download-Options: noopen\r\nX-Permitted-Cross-Domain-Policies: none\r\nReferrer-Policy: strict-origin-when-cross-origin\r\nContent-Security-Policy: default-src 'self'; script-src 'self' https://d3s096xoykcjlq.cloudfront.net; style-src 'self' https://d3s096xoykcjlq.cloudfront.net; img-src 'self' https://d3s096xoykcjlq.cloudfront.net; connect-src 'self' https://midway-static.amazon.com/app-id.json https://unagi-na.amazon.com; object-src 'none'; frame-ancestors 'self'\r\nX-UA-Compatible: IE=Edge,chrome=1\r\nETag: W/\"ee5a94ebc49cd415014e91f9aec38050\"\r\nCache-Control: max-age=0, private, must-revalidate\r\nSet-Cookie: kerberos_disabled=1; path=/; expires=Fri, 21 Nov 2025 06:26:16 GMT; Secure; SameSite=None\r\nSet-Cookie: session=eyJraWQiOiIzMzUiLCJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..rbLPsGUJ_zXeykxfCrPijg.20JL_VBl3J45QvffRvQAa36gqA862TCegVjhKHd_UcYQaDOGY51rP57gm4gSPpjY2ctboXFBQACOv5B4GWQ-Oj_-kpEoLq-FS_HlM5HUoN02xrIixB0RaIjwVhJpZgTaBa9l-P-gQgLA_ULq9HMWe4mEc1_XbbVag8xSzQBDbdJ4RJSXkz4Q0LCOf5k29PU_a728rQ0fPEOEJXaYopPKPbIKf7tEyYKLVECWM4_p-TUDjP3EuNQI8MFcpMxHPOTY.1bIPtZ0bIDJhv8CSw4ag7w; path=/; expires=Fri, 22 Nov 2024 02:26:16 GMT; secure; HttpOnly; SameSite=None\r\nX-Host: midway-auth-prod-iad12-25024.iad12.amazon.com\r\nX-Request-Id: 2796de2e-cb4f-45f0-a7d4-f74aa46c9699\r\nStrict-Transport-Security: max-age=63072000; includeSubDomains\r\n\r\n1803\r\n<!DOCTYPE html>\n<html lang='en'>\n<head>\n<title>Midway Authentication Portal</title>\n<link rel=\"stylesheet\" media=\"all\" href=\"/assets/application-6f214fe947c0edd4efaa0177e590dd6b201ba0b1eb0324263498e235c5262cbe.css\" />\n<script src=\"/assets/application-f6fff0e6bde057c3cbfdd0338d34b0056b8b007d106c0a26b3190271b98d9c36.js\"></script>\n<script src=\"/packs/js/client-side-metrics-4daab7872936f98b980b.js\"></script>\n<meta name=\"csrf-param\" content=\"authenticity_token\" />\n<meta name=\"csrf-token\" content=\"eRr5GKk6eZzDz6eH6b3J3oG65wjl6UBVNKm3UOPawrgX0VJZCT61+LJcXeXI/7oJHkaSGWiwCcbl5Q2DYmTHYw==\" />\n<meta id=\"viewport\" name=\"viewport\" content=\"width=device-width, initial-scale=1\" />\n</head>\n<body>\n<script src=\"/assets/login-5f4607a3effee4c149258f44642a94045f30f57302e2a1145be74744ea3e376a.js\" defer=\"defer\"></script>\n<main>\n    <div class=\"banner-item\">\n      You are using old UI, to switch to new UI click\n      <button id=\"switch-to-new-ui-button\">here</button>\n    </div>\n\n\n  <form id=\"fpr_form\" name=\"fpr_form\"></form>\n  <section id=\"base-pane\">\n    <div id=\"login-pane\">\n      <div id=\"input-params\" data-session-status=\"{&quot;csrf_param&quot;:&quot;authenticity_token&quot;,&quot;csrf_token&quot;:&quot;ecytgCixF0pEIpd2nBcPdsR+I8tqddzhG57rDqxFcUYXBwbBiLXbLjWxbRS9VXyhW4JW2ucslXLK0lHdLft0nQ==&quot;,&quot;session_uuid&quot;:&quot;cfbf1c02e436f8cfc7faaf1ec61bbed0&quot;,&quot;client_cert_valid&quot;:false,&quot;totp_enabled&quot;:true,&quot;display_otp_enabled&quot;:true,&quot;mcs_andon_cord_pulled&quot;:false,&quot;otp_enabled&quot;:true,&quot;authenticated&quot;:false,&quot;auth_prompt&quot;:&quot;Password&quot;}\" data-js-params=\"{&quot;next&quot;:&quot;/&quot;}\"></div>\n      <h2>Sign in</h2>\n      <!--This hidden header is added because many canaries look for this text to know that they are on a Midway page-->\n      <h2 hidden>Sign in with Midway</h2>\n      <div class=\"ta-right\">\n        <a class=\"medium-heavy-text small-text\" href=\"https://w.amazon.com/index.php/NextGenMidway/FAQ\">Why am I here?</a>\n      </div>\n\n      <form id=\"login_form\" action=\"/api/login\" accept-charset=\"UTF-8\" method=\"post\"><input name=\"utf8\" type=\"hidden\" value=\"&#x2713;\" autocomplete=\"off\" /><input type=\"hidden\" name=\"authenticity_token\" value=\"mJCcqV45k1x6cLFKnxo1E84ZUV7j9FXL3OzXm08JbQj2Wzfo/j1fOAvjSyi+WEbEUeUkT26tHFgNoG1Izrdo0w==\" autocomplete=\"off\" />\n        <input type=\"hidden\" name=\"old_login_form\" id=\"old_login_form\" value=\"true\" autocomplete=\"off\" />\n        <input type=\"hidden\" name=\"next\" id=\"next\" value=\"/\" autocomplete=\"off\" />\n        <p>\n          <label for=\"user_name\">Amazon username</label><br/>\n          <input type=\"text\" name=\"user_name\" id=\"user_name\" value=\"\" placeholder=\"Enter your Amazon username\" autocomplete=\"username\" autocorrect=\"off\" autocapitalize=\"off\" spellcheck=\"false\" />\n        </p>\n\n        <p>\n        <div class=\"row\">\n          <div class=\"cell-50\">\n            <label for=\"password\">PIN</label>\n          </div>\n          <div class=\"cell-50 ta-right\">\n            <a class=\"medium-heavy-text small-text\" href=\"https://password-v2.corp.amazon.com/selfReset\">Reset password</a>\n          </div>\n        </div>\n        <input type=\"password\" name=\"password\" id=\"password\" value=\"\" placeholder=\"Enter your security key PIN\" autocomplete=\"current-password\" autocorrect=\"off\" autocapitalize=\"off\" />\n        <p>\n          <input type=\"submit\" name=\"commit\" value=\"Sign in\" class=\"login-button inline-button orange-button\" id=\"verify_btn\" data-disable-with=\"Sign in\" />\n        <p id=\"error-message\" class=\"m1-red ta-center mb-0 invisible\" tabindex=\"0\">Error</p>\n        <p id=\"forgot-password\" class=\"ta-center mb-0\" hidden>\n          <a href=\"https://password-v2.corp.amazon.com/selfReset\">Did you forget your password?</a></p>\n</form>    </div>\n\n    <div id=\"u2f-login-pane\" class=\"ta-center\" hidden>\n      <h2>Second factor required</h2>\n      <div class=\"row pb-1 pl-2 flex-container\">\n        <div class=\"cell-20 hide-small\">\n          <img height=\"128\" alt=\"Security key with lock\" src=\"/assets/yubikey-with-lock-4617700bf1ac51a21ee884c1e5b8208eb7c9fff492246a69ec718c8654e75cdd.png\" />\n        </div>\n        <div class=\"cell-80 ta-left cell-100-small move-to-end-small\">\n          <ol class=\"no-indent\">\n            <li>Plug your security key into a USB slot on your computer</li>\n            <li>Touch your security key</li>\n              <li>Or, if short touch does not work press and hold for 3 seconds to activate OTP</li>\n          </ol>\n        </div>\n          <div class=\"cell-80\">\n            <p>\n            <form action=\"/api/yubiotp/login\" method=\"post\">\n              <input id=\"otp-field\" name=\"otp\" autocomplete=\"off\" class=\"otp-field\" autocapitalize=\"none\" style=\"width: 185px\">\n              <input id=\"otp-submit-btn\" type=\"submit\" value=\"Submit\">\n            </form>\n            <p id=\"u2f-error-message\" class=\"m1-red\" hidden></p>\n          </div>\n      </div>\n    </div>\n\n    <div id=\"redirect-pane\" class=\"ta-center\" hidden>\n      <h2 class=\"green\"> Authentication Successful</h2>\n      <br/>\n      <br/>\n      <h3 class=\"\">Now redirecting you to <span id=\"redirect-url\"></span></h3>\n      <br/>\n      <img alt=\"Spinning processing circle\" src=\"/assets/ajax-spinner-4e6e1fb3f08a162cfd4f8fb435769612a801c3cea4684b1efc71455e3795c5ca.gif\" />\n    </div>\n\n    <div id=\"loadingDiv\" class=\"ta-center invisible\">\n      <img alt=\"Spinning processing circle\" src=\"/assets/ajax-spinner-4e6e1fb3f08a162cfd4f8fb435769612a801c3cea4684b1efc71455e3795c5ca.gif\" />\n    </div>\n  </section>\n  \n  <footer>\n    <p>\n      Secured by  <a id=\"help_link\" href=\"https://w.amazon.com/index.php/NextGenMidway/FAQ\">Midway</a>. For login issues, \n      <a href=\"https://firstaid.it.a2z.com/chat\">chat with IT support</a>.\n    </p>\n\n    <img height=\"32\" class=\"mt-2\" alt=\"Amazon logo\" title=\"Midway is brought to you by Sunitha, Eric, Tyler, Alex, Carl, Pratik, Misha, Matt, Stefan, David, Chris, and more!\" src=\"/assets/amazon-logo-f589d03bb13bcabcfcfdd596bf2f0c4bc4996adc605cc737991ce9c6a0025be6.png\" />\n  </footer>\n\n</main>\n\n<script src=\"/packs/js/old-ui-256ec15b2ec41d126e2b.js\"></script>\n</body>\n</html>\n\r\n0\r\n\r\n",
         "datamd5" : "d154163b063ff5abf20989361923ba11",
         "datammh3" : -1007744198,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "a2z.com",
            "amazon.com",
            "amazon.dev",
            "aws.dev"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "0a6f29b90f485404868bf01d72395f86",
            "sha1" : "823d4ffd677d3ec7a5c53a79678b6162dcea8a1f",
            "sha256" : "634e053071a627295b1980b69eec6219342a0cb60234e4330726bfce4a51e5b7"
         },
         "forward" : "midway-auth.amazon.com",
         "geolocus" : {
            "asn" : "AS16509",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "amazon.com",
               "aws.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "AT-88-Z",
            "organization" : "Amazon Technologies Inc.",
            "subnet" : "52.94.224.0/20"
         },
         "host" : [
            "auth",
            "midway-auth",
            "midway-auth-iad",
            "midway-auth-onebox-iad55",
            "otp"
         ],
         "hostname" : [
            "auth.midway.amazon.dev",
            "auth.midway.aws.a2z.com",
            "auth.midway.aws.dev",
            "midway-auth-iad.iad.proxy.amazon.com",
            "midway-auth-onebox-iad55.iad.amazon.com",
            "midway-auth.amazon.com",
            "midway-auth.iad.amazon.com",
            "otp.midway-auth-lbr.amazon.com"
         ],
         "ip" : "52.94.232.98",
         "ipv6" : "false",
         "issuer" : {
            "commonname" : "Amazon RSA 2048 M01",
            "country" : "US",
            "organization" : "Amazon"
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "39.0469",
         "location" : "39.0469,-77.4903",
         "longitude" : "-77.4903",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "AMAZON-02",
         "os" : "Linux",
         "osdistribution" : "amazon",
         "osvendor" : "Linux",
         "port" : 443,
         "product" : "Server",
         "productvendor" : "Server",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "reason" : "OK",
         "seen_date" : "2024-11-21",
         "serial" : "09:13:e5:75:b7:57:57:39:2f:62:c8:a8:ba:5a:18:6a",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan::redirect::2",
         "status" : 200,
         "subdomains" : [
            "aws.a2z.com",
            "iad.amazon.com",
            "iad.proxy.amazon.com",
            "midway-auth-lbr.amazon.com",
            "midway.amazon.dev",
            "midway.aws.a2z.com",
            "midway.aws.dev",
            "proxy.amazon.com"
         ],
         "subject" : {
            "altname" : [
               "midway-auth.iad.amazon.com",
               "midway-auth-iad.iad.proxy.amazon.com",
               "otp.midway-auth-lbr.amazon.com",
               "midway-auth-onebox-iad55.iad.amazon.com",
               "midway-auth.amazon.com",
               "auth.midway.aws.a2z.com",
               "auth.midway.aws.dev",
               "auth.midway.amazon.dev"
            ],
            "commonname" : "midway-auth.iad.amazon.com"
         },
         "subnet" : "52.94.224.0/20",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com",
            "dev"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "url" : "/login?next=%2F",
         "validity" : {
            "notafter" : "2025-07-24T23:59:59Z",
            "notbefore" : "2024-08-16T00:00:00Z"
         },
         "version" : "v3",
         "wildcard" : "false"
      }
      
  • 52.94.224.69:443 (tcp/http/tls) - last seen on 2024-11-21 at 06:25:04 UTC

    • IP
      52.94.224.69
      Network
      52.94.224.0/20
      Domain(s)
      a2z.com amazon.com amazon.dev aws.dev
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux amazon
      URL

      https://midway-auth.amazon.com/login?next=%2FSSO%2Fredirect%3Fredirect_uri%3Dhttps%253A%252F%252Fpdx.website.beta.mechanic.aws.a2z.com%253A443%252F%26client_id%3Dhttps%253A%252F%252Fpdx.website.beta.mechanic.aws.a2z.com%253A443%26scope%3Dopenid%26sentry_handler_version%3DMidwayNginxModule-1.7-1%26response_type%3Did_token%26nonce%3Dd547f27ea80faa2eb1147837e7ca3339c9e3f6f178f870cc6b871e4df34d4163&require_digital_identity=false 200

      HTTP Title
      Midway Authentication Portal
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http Cert not expired http
      Source
      datascan::redirect::3
    • NOTE
      This tab is a merge from current page results.
      CPE(s)
      Domain(s)
      a2z.com amazon.com amazon.dev aws.dev
      Hostname(s)
      auth.midway.amazon.dev auth.midway.aws.a2z.com auth.midway.aws.dev midway-auth-iad.iad.proxy.amazon.com midway-auth-onebox-iad55.iad.amazon.com midway-auth.amazon.com midway-auth.iad.amazon.com otp.midway-auth-lbr.amazon.com
      IP(s)
      52.94.224.69 52.94.232.98 54.239.22.32
      Port(s)
      443
      Protocol(s)
      http
      Tag(s)
      URL(s)
      / /SSO/redirect?redirect_uri=https%3A%2F%2F3.228.194.33%2F&client_id=https%3A%2F%2Fprod.rnoasinprofiler.fulfillment.amazon.dev&scope=openid&response_type=id_token&response_mode=query&state=eyJwYXRoIjogIi8ifQ%3D%3D&nonce=4a3288d80c74e2c1ce75b54176683175cdbbcb90687cfcb0573a0662c3d5e4e6&sentry_handler_version=PythonMidwayServerHandler-1.0 /SSO/redirect?redirect_uri=https%3A%2F%2Fromiking.us-east-1.sso.operatornet.aws.a2z.com&client_id=https%3A%2F%2Fromiking.us-east-1.sso.operatornet.aws.a2z.com%3A443&scope=openid&response_type=id_token&nonce=66542bd9d3504493d396d831b1159aba6527d0b8ed5159cf3ed35c3511a33080&response_mode=query&state=eyJwYXRoIjoiLyJ9&sentry_handler_version=interceptor-core-1.x /SSO/redirect?redirect_uri=https%3A%2F%2Fs3-throttleco-prod-syd.aka.amazon.com%2F&client_id=https%3A%2F%2Fs3-throttleco-prod-syd.aka.amazon.com%3A443&scope=openid&response_type=id_token&nonce=9864741b74602dfe569fa5d8a05abf8f4ce7f48ddfb1e3e142c9ba57e490d62b&sentry_handler_version=midwaygateway&response_mode=query&state=%2F /SSO/redirect?redirect_uri=https://54.244.13.246/verify_midway?redirect_to=%252F&client_id=scarf.forecasting.aws.a2z.com&response_type=id_token&scope=openid&nonce=6798246118732134 /login?next=%2F /login?next=%2FSSO%2Fredirect%3Fredirect_uri%3Dhttps%253A%252F%252Fiad.beta.farquaad.elb.aws.a2z.com%253A443%252F%26client_id%3Dhttps%253A%252F%252Fiad.beta.farquaad.elb.aws.a2z.com%253A443%26scope%3Dopenid%26max_age%3D86400%26sentry_handler_version%3DMidwayNginxModule-1.7-1%26response_type%3Did_token%26nonce%3D87606550fb9b75a64fced2cdf71638bed2120008fa5e39e418a057e4555ae360&require_digital_identity=false /login?next=%2FSSO%2Fredirect%3Fredirect_uri%3Dhttps%253A%252F%252Fpdx.website.beta.mechanic.aws.a2z.com%253A443%252F%26client_id%3Dhttps%253A%252F%252Fpdx.website.beta.mechanic.aws.a2z.com%253A443%26scope%3Dopenid%26sentry_handler_version%3DMidwayNginxModule-1.7-1%26response_type%3Did_token%26nonce%3Dd547f27ea80faa2eb1147837e7ca3339c9e3f6f178f870cc6b871e4df34d4163&require_digital_identity=false /login?next=%2FSSO%2Fredirect%3Fredirect_uri%3Dhttps%3A%2F%2F54.244.13.246%2Fverify_midway%3Fredirect_to%3D%25252F%26client_id%3Dscarf.forecasting.aws.a2z.com%26response_type%3Did_token%26scope%3Dopenid%26nonce%3D6798246118732134&require_digital_identity=false
    • Operating System
      Linux Linux amazon
      Product
      Server Server
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Amazon RSA 2048 M01
      Issuer Organization
      Amazon
      Subject Common Name
      midway-auth.iad.amazon.com
      Subject Alt Name
      midway-auth.iad.amazon.com midway-auth-iad.iad.proxy.amazon.com otp.midway-auth-lbr.amazon.com midway-auth-onebox-iad55.iad.amazon.com midway-auth.amazon.com auth.midway.aws.a2z.com auth.midway.aws.dev auth.midway.amazon.dev
      SHA256 Fingerprint
      634e053071a627295b1980b69eec6219342a0cb60234e4330726bfce4a51e5b7
      Validity Not Before
      2024-08-16T00:00:00Z
      Validity Not After
      2025-07-24T23:59:59Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      04cae556094d682222345219cac30904
      HTTP Header MD5
      6fbcf33eda7d8d4885497fa4d58f072c
      HTTP Body MD5
      f4197e3abc8a0c979e641b8b6a37da5d
    • HTTP/1.1 200 OK
      Server: Server
      Date: Thu, 21 Nov 2024 06:25:04 GMT
      Content-Type: text/html; charset=utf-8
      Transfer-Encoding: chunked
      Connection: close
      X-Frame-Options: SAMEORIGIN
      X-XSS-Protection: 1; mode=block
      X-Content-Type-Options: nosniff
      X-Download-Options: noopen
      X-Permitted-Cross-Domain-Policies: none
      Referrer-Policy: strict-origin-when-cross-origin
      Content-Security-Policy: default-src 'self'; script-src 'self' https://d3s096xoykcjlq.cloudfront.net; style-src 'self' https://d3s096xoykcjlq.cloudfront.net; img-src 'self' https://d3s096xoykcjlq.cloudfront.net; connect-src 'self' https://midway-static.amazon.com/app-id.json https://unagi-na.amazon.com; object-src 'none'; frame-ancestors 'self'
      X-UA-Compatible: IE=Edge,chrome=1
      ETag: W/"945ec7ce40deff2f072db0025fece31d"
      Cache-Control: max-age=0, private, must-revalidate
      Set-Cookie: kerberos_disabled=1; path=/; expires=Fri, 21 Nov 2025 06:25:04 GMT; Secure; SameSite=None
      Set-Cookie: session=eyJraWQiOiIzMzUiLCJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..ted56OFMlM7Ke7mMc43Aig.ooVnOu0d7p-WLvmzhjVqQloKOx0SZOeORpaJc7vxZlRhe-PhqnKF5WheyrLsFRTfEcJ_0Cu7mwmUVZK-r5TXeb22R0m_djkN4EDntfKmDqYYxyLuVFpEICyEiJCzEwnCPWw86txryUhb2Q8_uMaJQHjyEQtrmPAT2CVOoXx-xkBpfKS0s3NMe9GkKtW9lKjilOihboTjUGWwrRQiQwEgmad4Sd_qoPrcfe91EWgha8i1opnZyqr967LZCsl1zXC_.qS5o64E1WeFF9apopv1d7w; path=/; expires=Fri, 22 Nov 2024 02:25:04 GMT; secure; HttpOnly; SameSite=None
      X-Host: midway-auth-prod-iad6-6013.iad6.amazon.com
      X-Request-Id: efbabe3c-01fb-4600-b070-a76b4b3ce814
      Strict-Transport-Security: max-age=63072000; includeSubDomains
      
      1a98
      <!DOCTYPE html>
      <html lang='en'>
      <head>
      <title>Midway Authentication Portal</title>
      <link rel="stylesheet" media="all" href="/assets/application-6f214fe947c0edd4efaa0177e590dd6b201ba0b1eb0324263498e235c5262cbe.css" />
      <script src="/assets/application-f6fff0e6bde057c3cbfdd0338d34b0056b8b007d106c0a26b3190271b98d9c36.js"></script>
      <script src="/packs/js/client-side-metrics-4daab7872936f98b980b.js"></script>
      <meta name="csrf-param" content="authenticity_token" />
      <meta name="csrf-token" content="NcNYYeEyHwaCBw2rDO36Zieik1ikEs+TmAG2OLbTf/6DCmC061//apgtFDrNx3WHwhFpJLJ8+mpSZlHUIK73NQ==" />
      <meta id="viewport" name="viewport" content="width=device-width, initial-scale=1" />
      </head>
      <body>
      <script src="/assets/login-5f4607a3effee4c149258f44642a94045f30f57302e2a1145be74744ea3e376a.js" defer="defer"></script>
      <main>
          <div class="banner-item">
            You are using old UI, to switch to new UI click
            <button id="switch-to-new-ui-button">here</button>
          </div>
      
      
        <form id="fpr_form" name="fpr_form"></form>
        <section id="base-pane">
          <div id="login-pane">
            <div id="input-params" data-session-status="{&quot;csrf_param&quot;:&quot;authenticity_token&quot;,&quot;csrf_token&quot;:&quot;fbRIMyiun6JV8uDlYnbp3rfUWChW1ET275S3lgqkdiHLfXDmIsN/zk/Y+XSjXGY/UmeiVEC6cQ8l81B6nNn+6g==&quot;,&quot;session_uuid&quot;:&quot;36b1a33134452f5a47d1ace6a4b05f83&quot;,&quot;client_cert_valid&quot;:false,&quot;totp_enabled&quot;:true,&quot;display_otp_enabled&quot;:true,&quot;mcs_andon_cord_pulled&quot;:false,&quot;otp_enabled&quot;:true,&quot;authenticated&quot;:false,&quot;auth_prompt&quot;:&quot;Password&quot;}" data-js-params="{&quot;next&quot;:&quot;/SSO/redirect?redirect_uri=https%3A%2F%2Fpdx.website.beta.mechanic.aws.a2z.com%3A443%2F\u0026client_id=https%3A%2F%2Fpdx.website.beta.mechanic.aws.a2z.com%3A443\u0026scope=openid\u0026sentry_handler_version=MidwayNginxModule-1.7-1\u0026response_type=id_token\u0026nonce=d547f27ea80faa2eb1147837e7ca3339c9e3f6f178f870cc6b871e4df34d4163&quot;}"></div>
            <h2>Sign in</h2>
            <!--This hidden header is added because many canaries look for this text to know that they are on a Midway page-->
            <h2 hidden>Sign in with Midway</h2>
            <div class="ta-right">
              <a class="medium-heavy-text small-text" href="https://w.amazon.com/index.php/NextGenMidway/FAQ">Why am I here?</a>
            </div>
      
            <form id="login_form" action="/api/login" accept-charset="UTF-8" method="post"><input name="utf8" type="hidden" value="&#x2713;" autocomplete="off" /><input type="hidden" name="authenticity_token" value="Yeh0i6wS19Gw8z/zAKr3BAZ0AFlrjSZ/OQP8t4jseUnXIUxepn83varZJmLBgHjl48f6JX3jE4bzZBtbHpHxgg==" autocomplete="off" />
              <input type="hidden" name="old_login_form" id="old_login_form" value="true" autocomplete="off" />
              <input type="hidden" name="next" id="next" value="/SSO/redirect?redirect_uri=https%3A%2F%2Fpdx.website.beta.mechanic.aws.a2z.com%3A443%2F&amp;client_id=https%3A%2F%2Fpdx.website.beta.mechanic.aws.a2z.com%3A443&amp;scope=openid&amp;sentry_handler_version=MidwayNginxModule-1.7-1&amp;response_type=id_token&amp;nonce=d547f27ea80faa2eb1147837e7ca3339c9e3f6f178f870cc6b871e4df34d4163" autocomplete="off" />
              <p>
                <label for="user_name">Amazon username</label><br/>
                <input type="text" name="user_name" id="user_name" value="" placeholder="Enter your Amazon username" autocomplete="username" autocorrect="off" autocapitalize="off" spellcheck="false" />
              </p>
      
              <p>
              <div class="row">
                <div class="cell-50">
                  <label for="password">PIN</label>
                </div>
                <div class="cell-50 ta-right">
                  <a class="medium-heavy-text small-text" href="https://password-v2.corp.amazon.com/selfReset">Reset password</a>
                </div>
              </div>
              <input type="password" name="password" id="password" value="" placeholder="Enter your security key PIN" autocomplete="current-password" autocorrect="off" autocapitalize="off" />
              <p>
                <input type="submit" name="commit" value="Sign in" class="login-button inline-button orange-button" id="verify_btn" data-disable-with="Sign in" />
              <p id="error-message" class="m1-red ta-center mb-0 invisible" tabindex="0">Error</p>
              <p id="forgot-password" class="ta-center mb-0" hidden>
                <a href="https://password-v2.corp.amazon.com/selfReset">Did you forget your password?</a></p>
      </form>    </div>
      
          <div id="u2f-login-pane" class="ta-center" hidden>
            <h2>Second factor required</h2>
            <div class="row pb-1 pl-2 flex-container">
              <div class="cell-20 hide-small">
                <img height="128" alt="Security key with lock" src="/assets/yubikey-with-lock-4617700bf1ac51a21ee884c1e5b8208eb7c9fff492246a69ec718c8654e75cdd.png" />
              </div>
              <div class="cell-80 ta-left cell-100-small move-to-end-small">
                <ol class="no-indent">
                  <li>Plug your security key into a USB slot on your computer</li>
                  <li>Touch your security key</li>
                    <li>Or, if short touch does not work press and hold for 3 seconds to activate OTP</li>
                </ol>
              </div>
                <div class="cell-80">
                  <p>
                  <form action="/api/yubiotp/login" method="post">
                    <input id="otp-field" name="otp" autocomplete="off" class="otp-field" autocapitalize="none" style="width: 185px">
                    <input id="otp-submit-btn" type="submit" value="Submit">
                  </form>
                  <p id="u2f-error-message" class="m1-red" hidden></p>
                </div>
            </div>
          </div>
      
          <div id="redirect-pane" class="ta-center" hidden>
            <h2 class="green"> Authentication Successful</h2>
            <br/>
            <br/>
            <h3 class="">Now redirecting you to <span id="redirect-url"></span></h3>
            <br/>
            <img alt="Spinning processing circle" src="/assets/ajax-spinner-4e6e1fb3f08a162cfd4f8fb435769612a801c3cea4684b1efc71455e3795c5ca.gif" />
          </div>
      
          <div id="loadingDiv" class="ta-center invisible">
            <img alt="Spinning processing circle" src="/assets/ajax-spinner-4e6e1fb3f08a162cfd4f8fb435769612a801c3cea4684b1efc71455e3795c5ca.gif" />
          </div>
        </section>
        
        <footer>
          <p>
            Secured by  <a id="help_link" href="https://w.amazon.com/index.php/NextGenMidway/FAQ">Midway</a>. For login issues, 
            <a href="https://firstaid.it.a2z.com/chat">chat with IT support</a>.
          </p>
      
          <img height="32" class="mt-2" alt="Amazon logo" title="Midway is brought to you by Misha, Matt, David, Pratik, Tyler, Carl, Chris, Sunitha, Alex, Stefan, Eric, and more!" src="/assets/amazon-logo-f589d03bb13bcabcfcfdd596bf2f0c4bc4996adc605cc737991ce9c6a0025be6.png" />
        </footer>
      
      </main>
      
      <script src="/packs/js/old-ui-256ec15b2ec41d126e2b.js"></script>
      </body>
      </html>
      
      0
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T06:25:04.000Z",
         "app" : {
            "extract" : {
               "domain" : [
                  "amazon.com",
                  "a2z.com",
                  "cloudfront.net"
               ],
               "hostname" : [
                  "d3s096xoykcjlq.cloudfront.net",
                  "firstaid.it.a2z.com",
                  "midway-static.amazon.com",
                  "password-v2.corp.amazon.com",
                  "unagi-na.amazon.com",
                  "w.amazon.com"
               ],
               "url" : [
                  "https://d3s096xoykcjlq.cloudfront.net",
                  "https://firstaid.it.a2z.com/chat",
                  "https://midway-static.amazon.com/app-id.json",
                  "https://password-v2.corp.amazon.com/selfReset",
                  "https://unagi-na.amazon.com",
                  "https://w.amazon.com/index.php/NextGenMidway/FAQ"
               ]
            },
            "http" : {
               "bodymd5" : "f4197e3abc8a0c979e641b8b6a37da5d",
               "bodymmh3" : -1958882521,
               "header" : [
                  {
                     "value" : "W/\"945ec7ce40deff2f072db0025fece31d",
                     "name" : "ETag"
                  }
               ],
               "headermd5" : "6fbcf33eda7d8d4885497fa4d58f072c",
               "headermmh3" : -2040785114,
               "title" : "Midway Authentication Portal"
            },
            "length" : 8413
         },
         "asn" : "AS16509",
         "basicconstraints" : "critical",
         "ca" : "false",
         "city" : "Ashburn",
         "company" : {
            "country" : "<enterprise field>: company.country",
            "globalrank" : "<enterprise field>: company.globalrank",
            "industry" : "<enterprise field>: company.industry",
            "name" : "<enterprise field>: company.name",
            "sector" : "<enterprise field>: company.sector"
         },
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nServer: Server\r\nDate: Thu, 21 Nov 2024 06:25:04 GMT\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nX-Frame-Options: SAMEORIGIN\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nX-Download-Options: noopen\r\nX-Permitted-Cross-Domain-Policies: none\r\nReferrer-Policy: strict-origin-when-cross-origin\r\nContent-Security-Policy: default-src 'self'; script-src 'self' https://d3s096xoykcjlq.cloudfront.net; style-src 'self' https://d3s096xoykcjlq.cloudfront.net; img-src 'self' https://d3s096xoykcjlq.cloudfront.net; connect-src 'self' https://midway-static.amazon.com/app-id.json https://unagi-na.amazon.com; object-src 'none'; frame-ancestors 'self'\r\nX-UA-Compatible: IE=Edge,chrome=1\r\nETag: W/\"945ec7ce40deff2f072db0025fece31d\"\r\nCache-Control: max-age=0, private, must-revalidate\r\nSet-Cookie: kerberos_disabled=1; path=/; expires=Fri, 21 Nov 2025 06:25:04 GMT; Secure; SameSite=None\r\nSet-Cookie: session=eyJraWQiOiIzMzUiLCJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..ted56OFMlM7Ke7mMc43Aig.ooVnOu0d7p-WLvmzhjVqQloKOx0SZOeORpaJc7vxZlRhe-PhqnKF5WheyrLsFRTfEcJ_0Cu7mwmUVZK-r5TXeb22R0m_djkN4EDntfKmDqYYxyLuVFpEICyEiJCzEwnCPWw86txryUhb2Q8_uMaJQHjyEQtrmPAT2CVOoXx-xkBpfKS0s3NMe9GkKtW9lKjilOihboTjUGWwrRQiQwEgmad4Sd_qoPrcfe91EWgha8i1opnZyqr967LZCsl1zXC_.qS5o64E1WeFF9apopv1d7w; path=/; expires=Fri, 22 Nov 2024 02:25:04 GMT; secure; HttpOnly; SameSite=None\r\nX-Host: midway-auth-prod-iad6-6013.iad6.amazon.com\r\nX-Request-Id: efbabe3c-01fb-4600-b070-a76b4b3ce814\r\nStrict-Transport-Security: max-age=63072000; includeSubDomains\r\n\r\n1a98\r\n<!DOCTYPE html>\n<html lang='en'>\n<head>\n<title>Midway Authentication Portal</title>\n<link rel=\"stylesheet\" media=\"all\" href=\"/assets/application-6f214fe947c0edd4efaa0177e590dd6b201ba0b1eb0324263498e235c5262cbe.css\" />\n<script src=\"/assets/application-f6fff0e6bde057c3cbfdd0338d34b0056b8b007d106c0a26b3190271b98d9c36.js\"></script>\n<script src=\"/packs/js/client-side-metrics-4daab7872936f98b980b.js\"></script>\n<meta name=\"csrf-param\" content=\"authenticity_token\" />\n<meta name=\"csrf-token\" content=\"NcNYYeEyHwaCBw2rDO36Zieik1ikEs+TmAG2OLbTf/6DCmC061//apgtFDrNx3WHwhFpJLJ8+mpSZlHUIK73NQ==\" />\n<meta id=\"viewport\" name=\"viewport\" content=\"width=device-width, initial-scale=1\" />\n</head>\n<body>\n<script src=\"/assets/login-5f4607a3effee4c149258f44642a94045f30f57302e2a1145be74744ea3e376a.js\" defer=\"defer\"></script>\n<main>\n    <div class=\"banner-item\">\n      You are using old UI, to switch to new UI click\n      <button id=\"switch-to-new-ui-button\">here</button>\n    </div>\n\n\n  <form id=\"fpr_form\" name=\"fpr_form\"></form>\n  <section id=\"base-pane\">\n    <div id=\"login-pane\">\n      <div id=\"input-params\" data-session-status=\"{&quot;csrf_param&quot;:&quot;authenticity_token&quot;,&quot;csrf_token&quot;:&quot;fbRIMyiun6JV8uDlYnbp3rfUWChW1ET275S3lgqkdiHLfXDmIsN/zk/Y+XSjXGY/UmeiVEC6cQ8l81B6nNn+6g==&quot;,&quot;session_uuid&quot;:&quot;36b1a33134452f5a47d1ace6a4b05f83&quot;,&quot;client_cert_valid&quot;:false,&quot;totp_enabled&quot;:true,&quot;display_otp_enabled&quot;:true,&quot;mcs_andon_cord_pulled&quot;:false,&quot;otp_enabled&quot;:true,&quot;authenticated&quot;:false,&quot;auth_prompt&quot;:&quot;Password&quot;}\" data-js-params=\"{&quot;next&quot;:&quot;/SSO/redirect?redirect_uri=https%3A%2F%2Fpdx.website.beta.mechanic.aws.a2z.com%3A443%2F\\u0026client_id=https%3A%2F%2Fpdx.website.beta.mechanic.aws.a2z.com%3A443\\u0026scope=openid\\u0026sentry_handler_version=MidwayNginxModule-1.7-1\\u0026response_type=id_token\\u0026nonce=d547f27ea80faa2eb1147837e7ca3339c9e3f6f178f870cc6b871e4df34d4163&quot;}\"></div>\n      <h2>Sign in</h2>\n      <!--This hidden header is added because many canaries look for this text to know that they are on a Midway page-->\n      <h2 hidden>Sign in with Midway</h2>\n      <div class=\"ta-right\">\n        <a class=\"medium-heavy-text small-text\" href=\"https://w.amazon.com/index.php/NextGenMidway/FAQ\">Why am I here?</a>\n      </div>\n\n      <form id=\"login_form\" action=\"/api/login\" accept-charset=\"UTF-8\" method=\"post\"><input name=\"utf8\" type=\"hidden\" value=\"&#x2713;\" autocomplete=\"off\" /><input type=\"hidden\" name=\"authenticity_token\" value=\"Yeh0i6wS19Gw8z/zAKr3BAZ0AFlrjSZ/OQP8t4jseUnXIUxepn83varZJmLBgHjl48f6JX3jE4bzZBtbHpHxgg==\" autocomplete=\"off\" />\n        <input type=\"hidden\" name=\"old_login_form\" id=\"old_login_form\" value=\"true\" autocomplete=\"off\" />\n        <input type=\"hidden\" name=\"next\" id=\"next\" value=\"/SSO/redirect?redirect_uri=https%3A%2F%2Fpdx.website.beta.mechanic.aws.a2z.com%3A443%2F&amp;client_id=https%3A%2F%2Fpdx.website.beta.mechanic.aws.a2z.com%3A443&amp;scope=openid&amp;sentry_handler_version=MidwayNginxModule-1.7-1&amp;response_type=id_token&amp;nonce=d547f27ea80faa2eb1147837e7ca3339c9e3f6f178f870cc6b871e4df34d4163\" autocomplete=\"off\" />\n        <p>\n          <label for=\"user_name\">Amazon username</label><br/>\n          <input type=\"text\" name=\"user_name\" id=\"user_name\" value=\"\" placeholder=\"Enter your Amazon username\" autocomplete=\"username\" autocorrect=\"off\" autocapitalize=\"off\" spellcheck=\"false\" />\n        </p>\n\n        <p>\n        <div class=\"row\">\n          <div class=\"cell-50\">\n            <label for=\"password\">PIN</label>\n          </div>\n          <div class=\"cell-50 ta-right\">\n            <a class=\"medium-heavy-text small-text\" href=\"https://password-v2.corp.amazon.com/selfReset\">Reset password</a>\n          </div>\n        </div>\n        <input type=\"password\" name=\"password\" id=\"password\" value=\"\" placeholder=\"Enter your security key PIN\" autocomplete=\"current-password\" autocorrect=\"off\" autocapitalize=\"off\" />\n        <p>\n          <input type=\"submit\" name=\"commit\" value=\"Sign in\" class=\"login-button inline-button orange-button\" id=\"verify_btn\" data-disable-with=\"Sign in\" />\n        <p id=\"error-message\" class=\"m1-red ta-center mb-0 invisible\" tabindex=\"0\">Error</p>\n        <p id=\"forgot-password\" class=\"ta-center mb-0\" hidden>\n          <a href=\"https://password-v2.corp.amazon.com/selfReset\">Did you forget your password?</a></p>\n</form>    </div>\n\n    <div id=\"u2f-login-pane\" class=\"ta-center\" hidden>\n      <h2>Second factor required</h2>\n      <div class=\"row pb-1 pl-2 flex-container\">\n        <div class=\"cell-20 hide-small\">\n          <img height=\"128\" alt=\"Security key with lock\" src=\"/assets/yubikey-with-lock-4617700bf1ac51a21ee884c1e5b8208eb7c9fff492246a69ec718c8654e75cdd.png\" />\n        </div>\n        <div class=\"cell-80 ta-left cell-100-small move-to-end-small\">\n          <ol class=\"no-indent\">\n            <li>Plug your security key into a USB slot on your computer</li>\n            <li>Touch your security key</li>\n              <li>Or, if short touch does not work press and hold for 3 seconds to activate OTP</li>\n          </ol>\n        </div>\n          <div class=\"cell-80\">\n            <p>\n            <form action=\"/api/yubiotp/login\" method=\"post\">\n              <input id=\"otp-field\" name=\"otp\" autocomplete=\"off\" class=\"otp-field\" autocapitalize=\"none\" style=\"width: 185px\">\n              <input id=\"otp-submit-btn\" type=\"submit\" value=\"Submit\">\n            </form>\n            <p id=\"u2f-error-message\" class=\"m1-red\" hidden></p>\n          </div>\n      </div>\n    </div>\n\n    <div id=\"redirect-pane\" class=\"ta-center\" hidden>\n      <h2 class=\"green\"> Authentication Successful</h2>\n      <br/>\n      <br/>\n      <h3 class=\"\">Now redirecting you to <span id=\"redirect-url\"></span></h3>\n      <br/>\n      <img alt=\"Spinning processing circle\" src=\"/assets/ajax-spinner-4e6e1fb3f08a162cfd4f8fb435769612a801c3cea4684b1efc71455e3795c5ca.gif\" />\n    </div>\n\n    <div id=\"loadingDiv\" class=\"ta-center invisible\">\n      <img alt=\"Spinning processing circle\" src=\"/assets/ajax-spinner-4e6e1fb3f08a162cfd4f8fb435769612a801c3cea4684b1efc71455e3795c5ca.gif\" />\n    </div>\n  </section>\n  \n  <footer>\n    <p>\n      Secured by  <a id=\"help_link\" href=\"https://w.amazon.com/index.php/NextGenMidway/FAQ\">Midway</a>. For login issues, \n      <a href=\"https://firstaid.it.a2z.com/chat\">chat with IT support</a>.\n    </p>\n\n    <img height=\"32\" class=\"mt-2\" alt=\"Amazon logo\" title=\"Midway is brought to you by Misha, Matt, David, Pratik, Tyler, Carl, Chris, Sunitha, Alex, Stefan, Eric, and more!\" src=\"/assets/amazon-logo-f589d03bb13bcabcfcfdd596bf2f0c4bc4996adc605cc737991ce9c6a0025be6.png\" />\n  </footer>\n\n</main>\n\n<script src=\"/packs/js/old-ui-256ec15b2ec41d126e2b.js\"></script>\n</body>\n</html>\n\r\n0\r\n\r\n",
         "datamd5" : "04cae556094d682222345219cac30904",
         "datammh3" : 1093609396,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "a2z.com",
            "amazon.com",
            "amazon.dev",
            "aws.dev"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "0a6f29b90f485404868bf01d72395f86",
            "sha1" : "823d4ffd677d3ec7a5c53a79678b6162dcea8a1f",
            "sha256" : "634e053071a627295b1980b69eec6219342a0cb60234e4330726bfce4a51e5b7"
         },
         "forward" : "midway-auth.amazon.com",
         "geolocus" : {
            "asn" : "AS16509",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "amazon.com",
               "aws.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "AT-88-Z",
            "organization" : "Amazon Technologies Inc.",
            "subnet" : "52.94.224.0/20"
         },
         "host" : [
            "auth",
            "midway-auth",
            "midway-auth-iad",
            "midway-auth-onebox-iad55",
            "otp"
         ],
         "hostname" : [
            "auth.midway.amazon.dev",
            "auth.midway.aws.a2z.com",
            "auth.midway.aws.dev",
            "midway-auth-iad.iad.proxy.amazon.com",
            "midway-auth-onebox-iad55.iad.amazon.com",
            "midway-auth.amazon.com",
            "midway-auth.iad.amazon.com",
            "otp.midway-auth-lbr.amazon.com"
         ],
         "ip" : "52.94.224.69",
         "ipv6" : "false",
         "issuer" : {
            "commonname" : "Amazon RSA 2048 M01",
            "country" : "US",
            "organization" : "Amazon"
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "39.0469",
         "location" : "39.0469,-77.4903",
         "longitude" : "-77.4903",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "AMAZON-02",
         "os" : "Linux",
         "osdistribution" : "amazon",
         "osvendor" : "Linux",
         "port" : 443,
         "product" : "Server",
         "productvendor" : "Server",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "reason" : "OK",
         "seen_date" : "2024-11-21",
         "serial" : "09:13:e5:75:b7:57:57:39:2f:62:c8:a8:ba:5a:18:6a",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan::redirect::3",
         "status" : 200,
         "subdomains" : [
            "aws.a2z.com",
            "iad.amazon.com",
            "iad.proxy.amazon.com",
            "midway-auth-lbr.amazon.com",
            "midway.amazon.dev",
            "midway.aws.a2z.com",
            "midway.aws.dev",
            "proxy.amazon.com"
         ],
         "subject" : {
            "altname" : [
               "midway-auth.iad.amazon.com",
               "midway-auth-iad.iad.proxy.amazon.com",
               "otp.midway-auth-lbr.amazon.com",
               "midway-auth-onebox-iad55.iad.amazon.com",
               "midway-auth.amazon.com",
               "auth.midway.aws.a2z.com",
               "auth.midway.aws.dev",
               "auth.midway.amazon.dev"
            ],
            "commonname" : "midway-auth.iad.amazon.com"
         },
         "subnet" : "52.94.224.0/20",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com",
            "dev"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "url" : "/login?next=%2FSSO%2Fredirect%3Fredirect_uri%3Dhttps%253A%252F%252Fpdx.website.beta.mechanic.aws.a2z.com%253A443%252F%26client_id%3Dhttps%253A%252F%252Fpdx.website.beta.mechanic.aws.a2z.com%253A443%26scope%3Dopenid%26sentry_handler_version%3DMidwayNginxModule-1.7-1%26response_type%3Did_token%26nonce%3Dd547f27ea80faa2eb1147837e7ca3339c9e3f6f178f870cc6b871e4df34d4163&require_digital_identity=false",
         "validity" : {
            "notafter" : "2025-07-24T23:59:59Z",
            "notbefore" : "2024-08-16T00:00:00Z"
         },
         "version" : "v3",
         "wildcard" : "false"
      }
      
  • 52.94.224.69:443 (tcp/http/tls) - last seen on 2024-11-21 at 06:20:07 UTC

  • 52.94.224.69:443 (tcp/http/tls) - last seen on 2024-11-21 at 06:19:07 UTC

    • IP
      52.94.224.69
      Network
      52.94.224.0/20
      Domain(s)
      a2z.com amazon.com amazon.dev aws.dev
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux amazon
      URL

      https://midway-auth.amazon.com/login?next=%2F 200

      HTTP Title
      Midway Authentication Portal
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http Cert not expired http
      Source
      datascan::redirect::2
    • NOTE
      This tab is a merge from current page results.
      CPE(s)
      Domain(s)
      a2z.com amazon.com amazon.dev aws.dev
      Hostname(s)
      auth.midway.amazon.dev auth.midway.aws.a2z.com auth.midway.aws.dev midway-auth-iad.iad.proxy.amazon.com midway-auth-onebox-iad55.iad.amazon.com midway-auth.amazon.com midway-auth.iad.amazon.com otp.midway-auth-lbr.amazon.com
      IP(s)
      52.94.224.69 52.94.232.98 54.239.22.32
      Port(s)
      443
      Protocol(s)
      http
      Tag(s)
      URL(s)
      / /SSO/redirect?redirect_uri=https%3A%2F%2F3.228.194.33%2F&client_id=https%3A%2F%2Fprod.rnoasinprofiler.fulfillment.amazon.dev&scope=openid&response_type=id_token&response_mode=query&state=eyJwYXRoIjogIi8ifQ%3D%3D&nonce=4a3288d80c74e2c1ce75b54176683175cdbbcb90687cfcb0573a0662c3d5e4e6&sentry_handler_version=PythonMidwayServerHandler-1.0 /SSO/redirect?redirect_uri=https%3A%2F%2Fromiking.us-east-1.sso.operatornet.aws.a2z.com&client_id=https%3A%2F%2Fromiking.us-east-1.sso.operatornet.aws.a2z.com%3A443&scope=openid&response_type=id_token&nonce=66542bd9d3504493d396d831b1159aba6527d0b8ed5159cf3ed35c3511a33080&response_mode=query&state=eyJwYXRoIjoiLyJ9&sentry_handler_version=interceptor-core-1.x /SSO/redirect?redirect_uri=https%3A%2F%2Fs3-throttleco-prod-syd.aka.amazon.com%2F&client_id=https%3A%2F%2Fs3-throttleco-prod-syd.aka.amazon.com%3A443&scope=openid&response_type=id_token&nonce=9864741b74602dfe569fa5d8a05abf8f4ce7f48ddfb1e3e142c9ba57e490d62b&sentry_handler_version=midwaygateway&response_mode=query&state=%2F /SSO/redirect?redirect_uri=https://54.244.13.246/verify_midway?redirect_to=%252F&client_id=scarf.forecasting.aws.a2z.com&response_type=id_token&scope=openid&nonce=6798246118732134 /login?next=%2F /login?next=%2FSSO%2Fredirect%3Fredirect_uri%3Dhttps%253A%252F%252Fiad.beta.farquaad.elb.aws.a2z.com%253A443%252F%26client_id%3Dhttps%253A%252F%252Fiad.beta.farquaad.elb.aws.a2z.com%253A443%26scope%3Dopenid%26max_age%3D86400%26sentry_handler_version%3DMidwayNginxModule-1.7-1%26response_type%3Did_token%26nonce%3D87606550fb9b75a64fced2cdf71638bed2120008fa5e39e418a057e4555ae360&require_digital_identity=false /login?next=%2FSSO%2Fredirect%3Fredirect_uri%3Dhttps%253A%252F%252Fpdx.website.beta.mechanic.aws.a2z.com%253A443%252F%26client_id%3Dhttps%253A%252F%252Fpdx.website.beta.mechanic.aws.a2z.com%253A443%26scope%3Dopenid%26sentry_handler_version%3DMidwayNginxModule-1.7-1%26response_type%3Did_token%26nonce%3Dd547f27ea80faa2eb1147837e7ca3339c9e3f6f178f870cc6b871e4df34d4163&require_digital_identity=false /login?next=%2FSSO%2Fredirect%3Fredirect_uri%3Dhttps%3A%2F%2F54.244.13.246%2Fverify_midway%3Fredirect_to%3D%25252F%26client_id%3Dscarf.forecasting.aws.a2z.com%26response_type%3Did_token%26scope%3Dopenid%26nonce%3D6798246118732134&require_digital_identity=false
    • Operating System
      Linux Linux amazon
      Product
      Server Server
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Amazon RSA 2048 M01
      Issuer Organization
      Amazon
      Subject Common Name
      midway-auth.iad.amazon.com
      Subject Alt Name
      midway-auth.iad.amazon.com midway-auth-iad.iad.proxy.amazon.com otp.midway-auth-lbr.amazon.com midway-auth-onebox-iad55.iad.amazon.com midway-auth.amazon.com auth.midway.aws.a2z.com auth.midway.aws.dev auth.midway.amazon.dev
      SHA256 Fingerprint
      634e053071a627295b1980b69eec6219342a0cb60234e4330726bfce4a51e5b7
      Validity Not Before
      2024-08-16T00:00:00Z
      Validity Not After
      2025-07-24T23:59:59Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      1065b54c05c3968c9ca422318a32c0ca
      HTTP Header MD5
      f311d22e8f64352fb0b025f1b5bfd97b
      HTTP Body MD5
      074a9b44728180fe21e17e22e400d2a4
    • HTTP/1.1 200 OK
      Server: Server
      Date: Thu, 21 Nov 2024 06:19:07 GMT
      Content-Type: text/html; charset=utf-8
      Transfer-Encoding: chunked
      Connection: close
      X-Frame-Options: SAMEORIGIN
      X-XSS-Protection: 1; mode=block
      X-Content-Type-Options: nosniff
      X-Download-Options: noopen
      X-Permitted-Cross-Domain-Policies: none
      Referrer-Policy: strict-origin-when-cross-origin
      Content-Security-Policy: default-src 'self'; script-src 'self' https://d3s096xoykcjlq.cloudfront.net; style-src 'self' https://d3s096xoykcjlq.cloudfront.net; img-src 'self' https://d3s096xoykcjlq.cloudfront.net; connect-src 'self' https://midway-static.amazon.com/app-id.json https://unagi-na.amazon.com; object-src 'none'; frame-ancestors 'self'
      X-UA-Compatible: IE=Edge,chrome=1
      ETag: W/"8b464c0deb8434f07d2642ed0fdd3d1c"
      Cache-Control: max-age=0, private, must-revalidate
      Set-Cookie: kerberos_disabled=1; path=/; expires=Fri, 21 Nov 2025 06:19:07 GMT; Secure; SameSite=None
      Set-Cookie: session=eyJraWQiOiIzMzUiLCJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..GXSfwCZNXO-any3pF53gGA.CtHhZ2mTVVMMwc-6A7Q8Ff3_wG6LEoRez3Rx1QdrgITZ7E2sT1cZYP7vRpsixgw4ZsAQm2_OUuGx9WmlnQGqpT_jSUDGVrxZwZhJTR-MIDaPWD04O34kwvlFqTSX7WNhHn3rt0qQ4GrbJEC_UhL9CUJfqxT7ftzEGzxyqtZxLGCkMlU1QyvUzf-M9ScagP4GMiUjlQ8IEmxK9UNpHi3go8s857QA0CTS65TfbXTNUO98roeFNAGs0tXJI5ztT_Gf.HvFwmNhTm9BxCPQL6zJHvA; path=/; expires=Fri, 22 Nov 2024 02:19:07 GMT; secure; HttpOnly; SameSite=None
      X-Host: midway-auth-prod-iad6-6012.iad6.amazon.com
      X-Request-Id: d7d46b8c-3fca-43b7-b132-14683aeb1ec8
      Strict-Transport-Security: max-age=63072000; includeSubDomains
      
      1803
      <!DOCTYPE html>
      <html lang='en'>
      <head>
      <title>Midway Authentication Portal</title>
      <link rel="stylesheet" media="all" href="/assets/application-6f214fe947c0edd4efaa0177e590dd6b201ba0b1eb0324263498e235c5262cbe.css" />
      <script src="/assets/application-f6fff0e6bde057c3cbfdd0338d34b0056b8b007d106c0a26b3190271b98d9c36.js"></script>
      <script src="/packs/js/client-side-metrics-4daab7872936f98b980b.js"></script>
      <meta name="csrf-param" content="authenticity_token" />
      <meta name="csrf-token" content="pEGujso4doYc5jC2hCJL20kUZ5Edsn2A0t9RR/mRZkxcwI82VcRbWe1qDE26XQKxaOxBvWQYSz7IgP114pWs3A==" />
      <meta id="viewport" name="viewport" content="width=device-width, initial-scale=1" />
      </head>
      <body>
      <script src="/assets/login-5f4607a3effee4c149258f44642a94045f30f57302e2a1145be74744ea3e376a.js" defer="defer"></script>
      <main>
          <div class="banner-item">
            You are using old UI, to switch to new UI click
            <button id="switch-to-new-ui-button">here</button>
          </div>
      
      
        <form id="fpr_form" name="fpr_form"></form>
        <section id="base-pane">
          <div id="login-pane">
            <div id="input-params" data-session-status="{&quot;csrf_param&quot;:&quot;authenticity_token&quot;,&quot;csrf_token&quot;:&quot;zGWL69RcBvw03ht25mqC6IIGtxnM3cldNNxztf/z1vI05KpTS6ArI8VSJ43YFcuCo/6RNbV3/+Mug9+H5PccYg==&quot;,&quot;session_uuid&quot;:&quot;b507a1481c36dced96a9a823518e34c3&quot;,&quot;client_cert_valid&quot;:false,&quot;totp_enabled&quot;:true,&quot;display_otp_enabled&quot;:true,&quot;mcs_andon_cord_pulled&quot;:false,&quot;otp_enabled&quot;:true,&quot;authenticated&quot;:false,&quot;auth_prompt&quot;:&quot;Password&quot;}" data-js-params="{&quot;next&quot;:&quot;/&quot;}"></div>
            <h2>Sign in</h2>
            <!--This hidden header is added because many canaries look for this text to know that they are on a Midway page-->
            <h2 hidden>Sign in with Midway</h2>
            <div class="ta-right">
              <a class="medium-heavy-text small-text" href="https://w.amazon.com/index.php/NextGenMidway/FAQ">Why am I here?</a>
            </div>
      
            <form id="login_form" action="/api/login" accept-charset="UTF-8" method="post"><input name="utf8" type="hidden" value="&#x2713;" autocomplete="off" /><input type="hidden" name="authenticity_token" value="1wF94WwMYfIVKccbD3r0ooCD7+CsMsK5+AFBgR02E0AvgFxZ8/BMLeSl++AxBb3IoXvJzNWY9AfiXu2zBjLZ0A==" autocomplete="off" />
              <input type="hidden" name="old_login_form" id="old_login_form" value="true" autocomplete="off" />
              <input type="hidden" name="next" id="next" value="/" autocomplete="off" />
              <p>
                <label for="user_name">Amazon username</label><br/>
                <input type="text" name="user_name" id="user_name" value="" placeholder="Enter your Amazon username" autocomplete="username" autocorrect="off" autocapitalize="off" spellcheck="false" />
              </p>
      
              <p>
              <div class="row">
                <div class="cell-50">
                  <label for="password">PIN</label>
                </div>
                <div class="cell-50 ta-right">
                  <a class="medium-heavy-text small-text" href="https://password-v2.corp.amazon.com/selfReset">Reset password</a>
                </div>
              </div>
              <input type="password" name="password" id="password" value="" placeholder="Enter your security key PIN" autocomplete="current-password" autocorrect="off" autocapitalize="off" />
              <p>
                <input type="submit" name="commit" value="Sign in" class="login-button inline-button orange-button" id="verify_btn" data-disable-with="Sign in" />
              <p id="error-message" class="m1-red ta-center mb-0 invisible" tabindex="0">Error</p>
              <p id="forgot-password" class="ta-center mb-0" hidden>
                <a href="https://password-v2.corp.amazon.com/selfReset">Did you forget your password?</a></p>
      </form>    </div>
      
          <div id="u2f-login-pane" class="ta-center" hidden>
            <h2>Second factor required</h2>
            <div class="row pb-1 pl-2 flex-container">
              <div class="cell-20 hide-small">
                <img height="128" alt="Security key with lock" src="/assets/yubikey-with-lock-4617700bf1ac51a21ee884c1e5b8208eb7c9fff492246a69ec718c8654e75cdd.png" />
              </div>
              <div class="cell-80 ta-left cell-100-small move-to-end-small">
                <ol class="no-indent">
                  <li>Plug your security key into a USB slot on your computer</li>
                  <li>Touch your security key</li>
                    <li>Or, if short touch does not work press and hold for 3 seconds to activate OTP</li>
                </ol>
              </div>
                <div class="cell-80">
                  <p>
                  <form action="/api/yubiotp/login" method="post">
                    <input id="otp-field" name="otp" autocomplete="off" class="otp-field" autocapitalize="none" style="width: 185px">
                    <input id="otp-submit-btn" type="submit" value="Submit">
                  </form>
                  <p id="u2f-error-message" class="m1-red" hidden></p>
                </div>
            </div>
          </div>
      
          <div id="redirect-pane" class="ta-center" hidden>
            <h2 class="green"> Authentication Successful</h2>
            <br/>
            <br/>
            <h3 class="">Now redirecting you to <span id="redirect-url"></span></h3>
            <br/>
            <img alt="Spinning processing circle" src="/assets/ajax-spinner-4e6e1fb3f08a162cfd4f8fb435769612a801c3cea4684b1efc71455e3795c5ca.gif" />
          </div>
      
          <div id="loadingDiv" class="ta-center invisible">
            <img alt="Spinning processing circle" src="/assets/ajax-spinner-4e6e1fb3f08a162cfd4f8fb435769612a801c3cea4684b1efc71455e3795c5ca.gif" />
          </div>
        </section>
        
        <footer>
          <p>
            Secured by  <a id="help_link" href="https://w.amazon.com/index.php/NextGenMidway/FAQ">Midway</a>. For login issues, 
            <a href="https://firstaid.it.a2z.com/chat">chat with IT support</a>.
          </p>
      
          <img height="32" class="mt-2" alt="Amazon logo" title="Midway is brought to you by Pratik, Eric, Matt, Stefan, Sunitha, David, Misha, Alex, Chris, Tyler, Carl, and more!" src="/assets/amazon-logo-f589d03bb13bcabcfcfdd596bf2f0c4bc4996adc605cc737991ce9c6a0025be6.png" />
        </footer>
      
      </main>
      
      <script src="/packs/js/old-ui-256ec15b2ec41d126e2b.js"></script>
      </body>
      </html>
      
      0
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T06:19:07.000Z",
         "app" : {
            "extract" : {
               "domain" : [
                  "amazon.com",
                  "cloudfront.net",
                  "a2z.com"
               ],
               "hostname" : [
                  "d3s096xoykcjlq.cloudfront.net",
                  "firstaid.it.a2z.com",
                  "midway-static.amazon.com",
                  "password-v2.corp.amazon.com",
                  "unagi-na.amazon.com",
                  "w.amazon.com"
               ],
               "url" : [
                  "https://d3s096xoykcjlq.cloudfront.net",
                  "https://firstaid.it.a2z.com/chat",
                  "https://midway-static.amazon.com/app-id.json",
                  "https://password-v2.corp.amazon.com/selfReset",
                  "https://unagi-na.amazon.com",
                  "https://w.amazon.com/index.php/NextGenMidway/FAQ"
               ]
            },
            "http" : {
               "bodymd5" : "074a9b44728180fe21e17e22e400d2a4",
               "bodymmh3" : 1830805139,
               "header" : [
                  {
                     "value" : "W/\"8b464c0deb8434f07d2642ed0fdd3d1c",
                     "name" : "ETag"
                  }
               ],
               "headermd5" : "f311d22e8f64352fb0b025f1b5bfd97b",
               "headermmh3" : 1125170000,
               "title" : "Midway Authentication Portal"
            },
            "length" : 7752
         },
         "asn" : "AS16509",
         "basicconstraints" : "critical",
         "ca" : "false",
         "city" : "Ashburn",
         "company" : {
            "country" : "<enterprise field>: company.country",
            "globalrank" : "<enterprise field>: company.globalrank",
            "industry" : "<enterprise field>: company.industry",
            "name" : "<enterprise field>: company.name",
            "sector" : "<enterprise field>: company.sector"
         },
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nServer: Server\r\nDate: Thu, 21 Nov 2024 06:19:07 GMT\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nX-Frame-Options: SAMEORIGIN\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nX-Download-Options: noopen\r\nX-Permitted-Cross-Domain-Policies: none\r\nReferrer-Policy: strict-origin-when-cross-origin\r\nContent-Security-Policy: default-src 'self'; script-src 'self' https://d3s096xoykcjlq.cloudfront.net; style-src 'self' https://d3s096xoykcjlq.cloudfront.net; img-src 'self' https://d3s096xoykcjlq.cloudfront.net; connect-src 'self' https://midway-static.amazon.com/app-id.json https://unagi-na.amazon.com; object-src 'none'; frame-ancestors 'self'\r\nX-UA-Compatible: IE=Edge,chrome=1\r\nETag: W/\"8b464c0deb8434f07d2642ed0fdd3d1c\"\r\nCache-Control: max-age=0, private, must-revalidate\r\nSet-Cookie: kerberos_disabled=1; path=/; expires=Fri, 21 Nov 2025 06:19:07 GMT; Secure; SameSite=None\r\nSet-Cookie: session=eyJraWQiOiIzMzUiLCJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..GXSfwCZNXO-any3pF53gGA.CtHhZ2mTVVMMwc-6A7Q8Ff3_wG6LEoRez3Rx1QdrgITZ7E2sT1cZYP7vRpsixgw4ZsAQm2_OUuGx9WmlnQGqpT_jSUDGVrxZwZhJTR-MIDaPWD04O34kwvlFqTSX7WNhHn3rt0qQ4GrbJEC_UhL9CUJfqxT7ftzEGzxyqtZxLGCkMlU1QyvUzf-M9ScagP4GMiUjlQ8IEmxK9UNpHi3go8s857QA0CTS65TfbXTNUO98roeFNAGs0tXJI5ztT_Gf.HvFwmNhTm9BxCPQL6zJHvA; path=/; expires=Fri, 22 Nov 2024 02:19:07 GMT; secure; HttpOnly; SameSite=None\r\nX-Host: midway-auth-prod-iad6-6012.iad6.amazon.com\r\nX-Request-Id: d7d46b8c-3fca-43b7-b132-14683aeb1ec8\r\nStrict-Transport-Security: max-age=63072000; includeSubDomains\r\n\r\n1803\r\n<!DOCTYPE html>\n<html lang='en'>\n<head>\n<title>Midway Authentication Portal</title>\n<link rel=\"stylesheet\" media=\"all\" href=\"/assets/application-6f214fe947c0edd4efaa0177e590dd6b201ba0b1eb0324263498e235c5262cbe.css\" />\n<script src=\"/assets/application-f6fff0e6bde057c3cbfdd0338d34b0056b8b007d106c0a26b3190271b98d9c36.js\"></script>\n<script src=\"/packs/js/client-side-metrics-4daab7872936f98b980b.js\"></script>\n<meta name=\"csrf-param\" content=\"authenticity_token\" />\n<meta name=\"csrf-token\" content=\"pEGujso4doYc5jC2hCJL20kUZ5Edsn2A0t9RR/mRZkxcwI82VcRbWe1qDE26XQKxaOxBvWQYSz7IgP114pWs3A==\" />\n<meta id=\"viewport\" name=\"viewport\" content=\"width=device-width, initial-scale=1\" />\n</head>\n<body>\n<script src=\"/assets/login-5f4607a3effee4c149258f44642a94045f30f57302e2a1145be74744ea3e376a.js\" defer=\"defer\"></script>\n<main>\n    <div class=\"banner-item\">\n      You are using old UI, to switch to new UI click\n      <button id=\"switch-to-new-ui-button\">here</button>\n    </div>\n\n\n  <form id=\"fpr_form\" name=\"fpr_form\"></form>\n  <section id=\"base-pane\">\n    <div id=\"login-pane\">\n      <div id=\"input-params\" data-session-status=\"{&quot;csrf_param&quot;:&quot;authenticity_token&quot;,&quot;csrf_token&quot;:&quot;zGWL69RcBvw03ht25mqC6IIGtxnM3cldNNxztf/z1vI05KpTS6ArI8VSJ43YFcuCo/6RNbV3/+Mug9+H5PccYg==&quot;,&quot;session_uuid&quot;:&quot;b507a1481c36dced96a9a823518e34c3&quot;,&quot;client_cert_valid&quot;:false,&quot;totp_enabled&quot;:true,&quot;display_otp_enabled&quot;:true,&quot;mcs_andon_cord_pulled&quot;:false,&quot;otp_enabled&quot;:true,&quot;authenticated&quot;:false,&quot;auth_prompt&quot;:&quot;Password&quot;}\" data-js-params=\"{&quot;next&quot;:&quot;/&quot;}\"></div>\n      <h2>Sign in</h2>\n      <!--This hidden header is added because many canaries look for this text to know that they are on a Midway page-->\n      <h2 hidden>Sign in with Midway</h2>\n      <div class=\"ta-right\">\n        <a class=\"medium-heavy-text small-text\" href=\"https://w.amazon.com/index.php/NextGenMidway/FAQ\">Why am I here?</a>\n      </div>\n\n      <form id=\"login_form\" action=\"/api/login\" accept-charset=\"UTF-8\" method=\"post\"><input name=\"utf8\" type=\"hidden\" value=\"&#x2713;\" autocomplete=\"off\" /><input type=\"hidden\" name=\"authenticity_token\" value=\"1wF94WwMYfIVKccbD3r0ooCD7+CsMsK5+AFBgR02E0AvgFxZ8/BMLeSl++AxBb3IoXvJzNWY9AfiXu2zBjLZ0A==\" autocomplete=\"off\" />\n        <input type=\"hidden\" name=\"old_login_form\" id=\"old_login_form\" value=\"true\" autocomplete=\"off\" />\n        <input type=\"hidden\" name=\"next\" id=\"next\" value=\"/\" autocomplete=\"off\" />\n        <p>\n          <label for=\"user_name\">Amazon username</label><br/>\n          <input type=\"text\" name=\"user_name\" id=\"user_name\" value=\"\" placeholder=\"Enter your Amazon username\" autocomplete=\"username\" autocorrect=\"off\" autocapitalize=\"off\" spellcheck=\"false\" />\n        </p>\n\n        <p>\n        <div class=\"row\">\n          <div class=\"cell-50\">\n            <label for=\"password\">PIN</label>\n          </div>\n          <div class=\"cell-50 ta-right\">\n            <a class=\"medium-heavy-text small-text\" href=\"https://password-v2.corp.amazon.com/selfReset\">Reset password</a>\n          </div>\n        </div>\n        <input type=\"password\" name=\"password\" id=\"password\" value=\"\" placeholder=\"Enter your security key PIN\" autocomplete=\"current-password\" autocorrect=\"off\" autocapitalize=\"off\" />\n        <p>\n          <input type=\"submit\" name=\"commit\" value=\"Sign in\" class=\"login-button inline-button orange-button\" id=\"verify_btn\" data-disable-with=\"Sign in\" />\n        <p id=\"error-message\" class=\"m1-red ta-center mb-0 invisible\" tabindex=\"0\">Error</p>\n        <p id=\"forgot-password\" class=\"ta-center mb-0\" hidden>\n          <a href=\"https://password-v2.corp.amazon.com/selfReset\">Did you forget your password?</a></p>\n</form>    </div>\n\n    <div id=\"u2f-login-pane\" class=\"ta-center\" hidden>\n      <h2>Second factor required</h2>\n      <div class=\"row pb-1 pl-2 flex-container\">\n        <div class=\"cell-20 hide-small\">\n          <img height=\"128\" alt=\"Security key with lock\" src=\"/assets/yubikey-with-lock-4617700bf1ac51a21ee884c1e5b8208eb7c9fff492246a69ec718c8654e75cdd.png\" />\n        </div>\n        <div class=\"cell-80 ta-left cell-100-small move-to-end-small\">\n          <ol class=\"no-indent\">\n            <li>Plug your security key into a USB slot on your computer</li>\n            <li>Touch your security key</li>\n              <li>Or, if short touch does not work press and hold for 3 seconds to activate OTP</li>\n          </ol>\n        </div>\n          <div class=\"cell-80\">\n            <p>\n            <form action=\"/api/yubiotp/login\" method=\"post\">\n              <input id=\"otp-field\" name=\"otp\" autocomplete=\"off\" class=\"otp-field\" autocapitalize=\"none\" style=\"width: 185px\">\n              <input id=\"otp-submit-btn\" type=\"submit\" value=\"Submit\">\n            </form>\n            <p id=\"u2f-error-message\" class=\"m1-red\" hidden></p>\n          </div>\n      </div>\n    </div>\n\n    <div id=\"redirect-pane\" class=\"ta-center\" hidden>\n      <h2 class=\"green\"> Authentication Successful</h2>\n      <br/>\n      <br/>\n      <h3 class=\"\">Now redirecting you to <span id=\"redirect-url\"></span></h3>\n      <br/>\n      <img alt=\"Spinning processing circle\" src=\"/assets/ajax-spinner-4e6e1fb3f08a162cfd4f8fb435769612a801c3cea4684b1efc71455e3795c5ca.gif\" />\n    </div>\n\n    <div id=\"loadingDiv\" class=\"ta-center invisible\">\n      <img alt=\"Spinning processing circle\" src=\"/assets/ajax-spinner-4e6e1fb3f08a162cfd4f8fb435769612a801c3cea4684b1efc71455e3795c5ca.gif\" />\n    </div>\n  </section>\n  \n  <footer>\n    <p>\n      Secured by  <a id=\"help_link\" href=\"https://w.amazon.com/index.php/NextGenMidway/FAQ\">Midway</a>. For login issues, \n      <a href=\"https://firstaid.it.a2z.com/chat\">chat with IT support</a>.\n    </p>\n\n    <img height=\"32\" class=\"mt-2\" alt=\"Amazon logo\" title=\"Midway is brought to you by Pratik, Eric, Matt, Stefan, Sunitha, David, Misha, Alex, Chris, Tyler, Carl, and more!\" src=\"/assets/amazon-logo-f589d03bb13bcabcfcfdd596bf2f0c4bc4996adc605cc737991ce9c6a0025be6.png\" />\n  </footer>\n\n</main>\n\n<script src=\"/packs/js/old-ui-256ec15b2ec41d126e2b.js\"></script>\n</body>\n</html>\n\r\n0\r\n\r\n",
         "datamd5" : "1065b54c05c3968c9ca422318a32c0ca",
         "datammh3" : -2068687312,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "a2z.com",
            "amazon.com",
            "amazon.dev",
            "aws.dev"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "0a6f29b90f485404868bf01d72395f86",
            "sha1" : "823d4ffd677d3ec7a5c53a79678b6162dcea8a1f",
            "sha256" : "634e053071a627295b1980b69eec6219342a0cb60234e4330726bfce4a51e5b7"
         },
         "forward" : "midway-auth.amazon.com",
         "geolocus" : {
            "asn" : "AS16509",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "amazon.com",
               "aws.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "AT-88-Z",
            "organization" : "Amazon Technologies Inc.",
            "subnet" : "52.94.224.0/20"
         },
         "host" : [
            "auth",
            "midway-auth",
            "midway-auth-iad",
            "midway-auth-onebox-iad55",
            "otp"
         ],
         "hostname" : [
            "auth.midway.amazon.dev",
            "auth.midway.aws.a2z.com",
            "auth.midway.aws.dev",
            "midway-auth-iad.iad.proxy.amazon.com",
            "midway-auth-onebox-iad55.iad.amazon.com",
            "midway-auth.amazon.com",
            "midway-auth.iad.amazon.com",
            "otp.midway-auth-lbr.amazon.com"
         ],
         "ip" : "52.94.224.69",
         "ipv6" : "false",
         "issuer" : {
            "commonname" : "Amazon RSA 2048 M01",
            "country" : "US",
            "organization" : "Amazon"
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "39.0469",
         "location" : "39.0469,-77.4903",
         "longitude" : "-77.4903",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "AMAZON-02",
         "os" : "Linux",
         "osdistribution" : "amazon",
         "osvendor" : "Linux",
         "port" : 443,
         "product" : "Server",
         "productvendor" : "Server",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "reason" : "OK",
         "seen_date" : "2024-11-21",
         "serial" : "09:13:e5:75:b7:57:57:39:2f:62:c8:a8:ba:5a:18:6a",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan::redirect::2",
         "status" : 200,
         "subdomains" : [
            "aws.a2z.com",
            "iad.amazon.com",
            "iad.proxy.amazon.com",
            "midway-auth-lbr.amazon.com",
            "midway.amazon.dev",
            "midway.aws.a2z.com",
            "midway.aws.dev",
            "proxy.amazon.com"
         ],
         "subject" : {
            "altname" : [
               "midway-auth.iad.amazon.com",
               "midway-auth-iad.iad.proxy.amazon.com",
               "otp.midway-auth-lbr.amazon.com",
               "midway-auth-onebox-iad55.iad.amazon.com",
               "midway-auth.amazon.com",
               "auth.midway.aws.a2z.com",
               "auth.midway.aws.dev",
               "auth.midway.amazon.dev"
            ],
            "commonname" : "midway-auth.iad.amazon.com"
         },
         "subnet" : "52.94.224.0/20",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com",
            "dev"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "url" : "/login?next=%2F",
         "validity" : {
            "notafter" : "2025-07-24T23:59:59Z",
            "notbefore" : "2024-08-16T00:00:00Z"
         },
         "version" : "v3",
         "wildcard" : "false"
      }
      
  • 52.94.232.98:443 (tcp/http/tls) - last seen on 2024-11-21 at 05:42:07 UTC

  • 52.94.232.98:443 (tcp/http/tls) - last seen on 2024-11-21 at 04:23:07 UTC

  • 52.94.224.69:443 (tcp/http/tls) - last seen on 2024-11-21 at 03:16:06 UTC

    • IP
      52.94.224.69
      Network
      52.94.224.0/20
      Domain(s)
      a2z.com amazon.com amazon.dev aws.dev
      Device

      <enterprise field>: device.class

      Operating System
      Linux Linux amazon
      URL

      https://midway-auth.amazon.com/login?next=%2FSSO%2Fredirect%3Fredirect_uri%3Dhttps%253A%252F%252Fiad.beta.farquaad.elb.aws.a2z.com%253A443%252F%26client_id%3Dhttps%253A%252F%252Fiad.beta.farquaad.elb.aws.a2z.com%253A443%26scope%3Dopenid%26max_age%3D86400%26sentry_handler_version%3DMidwayNginxModule-1.7-1%26response_type%3Did_token%26nonce%3D87606550fb9b75a64fced2cdf71638bed2120008fa5e39e418a057e4555ae360&require_digital_identity=false 200

      HTTP Title
      Midway Authentication Portal
      ASN
      AS16509
      Organization
      AMAZON-02
      Protocol
      http Cert not expired http
      Source
      datascan::redirect::3
    • NOTE
      This tab is a merge from current page results.
      CPE(s)
      Domain(s)
      a2z.com amazon.com amazon.dev aws.dev
      Hostname(s)
      auth.midway.amazon.dev auth.midway.aws.a2z.com auth.midway.aws.dev midway-auth-iad.iad.proxy.amazon.com midway-auth-onebox-iad55.iad.amazon.com midway-auth.amazon.com midway-auth.iad.amazon.com otp.midway-auth-lbr.amazon.com
      IP(s)
      52.94.224.69 52.94.232.98 54.239.22.32
      Port(s)
      443
      Protocol(s)
      http
      Tag(s)
      URL(s)
      / /SSO/redirect?redirect_uri=https%3A%2F%2F3.228.194.33%2F&client_id=https%3A%2F%2Fprod.rnoasinprofiler.fulfillment.amazon.dev&scope=openid&response_type=id_token&response_mode=query&state=eyJwYXRoIjogIi8ifQ%3D%3D&nonce=4a3288d80c74e2c1ce75b54176683175cdbbcb90687cfcb0573a0662c3d5e4e6&sentry_handler_version=PythonMidwayServerHandler-1.0 /SSO/redirect?redirect_uri=https%3A%2F%2Fromiking.us-east-1.sso.operatornet.aws.a2z.com&client_id=https%3A%2F%2Fromiking.us-east-1.sso.operatornet.aws.a2z.com%3A443&scope=openid&response_type=id_token&nonce=66542bd9d3504493d396d831b1159aba6527d0b8ed5159cf3ed35c3511a33080&response_mode=query&state=eyJwYXRoIjoiLyJ9&sentry_handler_version=interceptor-core-1.x /SSO/redirect?redirect_uri=https%3A%2F%2Fs3-throttleco-prod-syd.aka.amazon.com%2F&client_id=https%3A%2F%2Fs3-throttleco-prod-syd.aka.amazon.com%3A443&scope=openid&response_type=id_token&nonce=9864741b74602dfe569fa5d8a05abf8f4ce7f48ddfb1e3e142c9ba57e490d62b&sentry_handler_version=midwaygateway&response_mode=query&state=%2F /SSO/redirect?redirect_uri=https://54.244.13.246/verify_midway?redirect_to=%252F&client_id=scarf.forecasting.aws.a2z.com&response_type=id_token&scope=openid&nonce=6798246118732134 /login?next=%2F /login?next=%2FSSO%2Fredirect%3Fredirect_uri%3Dhttps%253A%252F%252Fiad.beta.farquaad.elb.aws.a2z.com%253A443%252F%26client_id%3Dhttps%253A%252F%252Fiad.beta.farquaad.elb.aws.a2z.com%253A443%26scope%3Dopenid%26max_age%3D86400%26sentry_handler_version%3DMidwayNginxModule-1.7-1%26response_type%3Did_token%26nonce%3D87606550fb9b75a64fced2cdf71638bed2120008fa5e39e418a057e4555ae360&require_digital_identity=false /login?next=%2FSSO%2Fredirect%3Fredirect_uri%3Dhttps%253A%252F%252Fpdx.website.beta.mechanic.aws.a2z.com%253A443%252F%26client_id%3Dhttps%253A%252F%252Fpdx.website.beta.mechanic.aws.a2z.com%253A443%26scope%3Dopenid%26sentry_handler_version%3DMidwayNginxModule-1.7-1%26response_type%3Did_token%26nonce%3Dd547f27ea80faa2eb1147837e7ca3339c9e3f6f178f870cc6b871e4df34d4163&require_digital_identity=false /login?next=%2FSSO%2Fredirect%3Fredirect_uri%3Dhttps%3A%2F%2F54.244.13.246%2Fverify_midway%3Fredirect_to%3D%25252F%26client_id%3Dscarf.forecasting.aws.a2z.com%26response_type%3Did_token%26scope%3Dopenid%26nonce%3D6798246118732134&require_digital_identity=false
    • Operating System
      Linux Linux amazon
      Product
      Server Server
      CPE(s)

      <enterprise field>: cpe

    • Issuer Common Name
      Amazon RSA 2048 M01
      Issuer Organization
      Amazon
      Subject Common Name
      midway-auth.iad.amazon.com
      Subject Alt Name
      midway-auth.iad.amazon.com midway-auth-iad.iad.proxy.amazon.com otp.midway-auth-lbr.amazon.com midway-auth-onebox-iad55.iad.amazon.com midway-auth.amazon.com auth.midway.aws.a2z.com auth.midway.aws.dev auth.midway.amazon.dev
      SHA256 Fingerprint
      634e053071a627295b1980b69eec6219342a0cb60234e4330726bfce4a51e5b7
      Validity Not Before
      2024-08-16T00:00:00Z
      Validity Not After
      2025-07-24T23:59:59Z
    • This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

    • Data MD5
      0f9807baeea7dba8e30bac009e340181
      HTTP Header MD5
      c0898bfa66709cdec64c25ad717a9010
      HTTP Body MD5
      3179f2c6bc46789fed44b33762fd1ed6
    • HTTP/1.1 200 OK
      Server: Server
      Date: Thu, 21 Nov 2024 03:16:06 GMT
      Content-Type: text/html; charset=utf-8
      Transfer-Encoding: chunked
      Connection: close
      X-Frame-Options: SAMEORIGIN
      X-XSS-Protection: 1; mode=block
      X-Content-Type-Options: nosniff
      X-Download-Options: noopen
      X-Permitted-Cross-Domain-Policies: none
      Referrer-Policy: strict-origin-when-cross-origin
      Content-Security-Policy: default-src 'self'; script-src 'self' https://d3s096xoykcjlq.cloudfront.net; style-src 'self' https://d3s096xoykcjlq.cloudfront.net; img-src 'self' https://d3s096xoykcjlq.cloudfront.net; connect-src 'self' https://midway-static.amazon.com/app-id.json https://unagi-na.amazon.com; object-src 'none'; frame-ancestors 'self'
      X-UA-Compatible: IE=Edge,chrome=1
      ETag: W/"0ff99d3a0440548b949e51f49baaa430"
      Cache-Control: max-age=0, private, must-revalidate
      Set-Cookie: kerberos_disabled=1; path=/; expires=Fri, 21 Nov 2025 03:16:06 GMT; Secure; SameSite=None
      Set-Cookie: session=eyJraWQiOiIzMzUiLCJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..eeI6p2x8gPmRor_uKXnKGw.nfJ5cnSlKw_MGHUQE3hnwCoKPFkFWISD8OvYbDf7YkBbE5lyEBN60-bRnxlH6ltjZ6gs6c47LA6da8U4eddYNqSG-Ap-Y_RhWX9INnr8fA1QvaBTU6WxwLSTRgbgx5vTc3FQ0SoNAHORssWQfvzz-PVEQE_xo9FRhFhzThVIgyvJMdXPx-CEz2L7tMM3eXF0RrhnpRqG238z3CwnQDnJNv-Mr34oIjl-jRy5Qz6DZM4v0GHnJh2BG_z2AIEQ3im6.iA5nFMKXuz0B_7vIf4ffQA; path=/; expires=Thu, 21 Nov 2024 23:16:06 GMT; secure; HttpOnly; SameSite=None
      X-Host: midway-auth-prod-iad6-6011.iad6.amazon.com
      X-Request-Id: c68bed9c-fd0c-4641-9906-eb5a1d15c1cb
      Strict-Transport-Security: max-age=63072000; includeSubDomains
      
      1aad
      <!DOCTYPE html>
      <html lang='en'>
      <head>
      <title>Midway Authentication Portal</title>
      <link rel="stylesheet" media="all" href="/assets/application-6f214fe947c0edd4efaa0177e590dd6b201ba0b1eb0324263498e235c5262cbe.css" />
      <script src="/assets/application-f6fff0e6bde057c3cbfdd0338d34b0056b8b007d106c0a26b3190271b98d9c36.js"></script>
      <script src="/packs/js/client-side-metrics-4daab7872936f98b980b.js"></script>
      <meta name="csrf-param" content="authenticity_token" />
      <meta name="csrf-token" content="QbDUD8xDZCpnssEcsHGOXrKAPNkO/XyX2yGmamGBni+hL+sOt/LU4r6+599y1/aeKmH84TwJ1GzfYabHwR8dWg==" />
      <meta id="viewport" name="viewport" content="width=device-width, initial-scale=1" />
      </head>
      <body>
      <script src="/assets/login-5f4607a3effee4c149258f44642a94045f30f57302e2a1145be74744ea3e376a.js" defer="defer"></script>
      <main>
          <div class="banner-item">
            You are using old UI, to switch to new UI click
            <button id="switch-to-new-ui-button">here</button>
          </div>
      
      
        <form id="fpr_form" name="fpr_form"></form>
        <section id="base-pane">
          <div id="login-pane">
            <div id="input-params" data-session-status="{&quot;csrf_param&quot;:&quot;authenticity_token&quot;,&quot;csrf_token&quot;:&quot;5O+sGriu4865Cv5E2Fu/jOQrc7Fe/Boi1vHuqPJty2IEcJMbwx9TBmAG2Ica/cdMfMqziWwIstnSse4FUvNIFw==&quot;,&quot;session_uuid&quot;:&quot;87013dd0f07a894d61de6d366de486af&quot;,&quot;client_cert_valid&quot;:false,&quot;totp_enabled&quot;:true,&quot;display_otp_enabled&quot;:true,&quot;mcs_andon_cord_pulled&quot;:false,&quot;otp_enabled&quot;:true,&quot;authenticated&quot;:false,&quot;auth_prompt&quot;:&quot;Password&quot;}" data-js-params="{&quot;next&quot;:&quot;/SSO/redirect?redirect_uri=https%3A%2F%2Fiad.beta.farquaad.elb.aws.a2z.com%3A443%2F\u0026client_id=https%3A%2F%2Fiad.beta.farquaad.elb.aws.a2z.com%3A443\u0026scope=openid\u0026max_age=86400\u0026sentry_handler_version=MidwayNginxModule-1.7-1\u0026response_type=id_token\u0026nonce=87606550fb9b75a64fced2cdf71638bed2120008fa5e39e418a057e4555ae360&quot;}"></div>
            <h2>Sign in</h2>
            <!--This hidden header is added because many canaries look for this text to know that they are on a Midway page-->
            <h2 hidden>Sign in with Midway</h2>
            <div class="ta-right">
              <a class="medium-heavy-text small-text" href="https://w.amazon.com/index.php/NextGenMidway/FAQ">Why am I here?</a>
            </div>
      
            <form id="login_form" action="/api/login" accept-charset="UTF-8" method="post"><input name="utf8" type="hidden" value="&#x2713;" autocomplete="off" /><input type="hidden" name="authenticity_token" value="pVhHomZrtIiHQ9eQdJAQDiFl0uSltFVb3WlxqQfcDZxFx3ijHdoEQF5P8VO2NmjOuYQS3JdA/aDZKXEEp0KO6Q==" autocomplete="off" />
              <input type="hidden" name="old_login_form" id="old_login_form" value="true" autocomplete="off" />
              <input type="hidden" name="next" id="next" value="/SSO/redirect?redirect_uri=https%3A%2F%2Fiad.beta.farquaad.elb.aws.a2z.com%3A443%2F&amp;client_id=https%3A%2F%2Fiad.beta.farquaad.elb.aws.a2z.com%3A443&amp;scope=openid&amp;max_age=86400&amp;sentry_handler_version=MidwayNginxModule-1.7-1&amp;response_type=id_token&amp;nonce=87606550fb9b75a64fced2cdf71638bed2120008fa5e39e418a057e4555ae360" autocomplete="off" />
              <p>
                <label for="user_name">Amazon username</label><br/>
                <input type="text" name="user_name" id="user_name" value="" placeholder="Enter your Amazon username" autocomplete="username" autocorrect="off" autocapitalize="off" spellcheck="false" />
              </p>
      
              <p>
              <div class="row">
                <div class="cell-50">
                  <label for="password">PIN</label>
                </div>
                <div class="cell-50 ta-right">
                  <a class="medium-heavy-text small-text" href="https://password-v2.corp.amazon.com/selfReset">Reset password</a>
                </div>
              </div>
              <input type="password" name="password" id="password" value="" placeholder="Enter your security key PIN" autocomplete="current-password" autocorrect="off" autocapitalize="off" />
              <p>
                <input type="submit" name="commit" value="Sign in" class="login-button inline-button orange-button" id="verify_btn" data-disable-with="Sign in" />
              <p id="error-message" class="m1-red ta-center mb-0 invisible" tabindex="0">Error</p>
              <p id="forgot-password" class="ta-center mb-0" hidden>
                <a href="https://password-v2.corp.amazon.com/selfReset">Did you forget your password?</a></p>
      </form>    </div>
      
          <div id="u2f-login-pane" class="ta-center" hidden>
            <h2>Second factor required</h2>
            <div class="row pb-1 pl-2 flex-container">
              <div class="cell-20 hide-small">
                <img height="128" alt="Security key with lock" src="/assets/yubikey-with-lock-4617700bf1ac51a21ee884c1e5b8208eb7c9fff492246a69ec718c8654e75cdd.png" />
              </div>
              <div class="cell-80 ta-left cell-100-small move-to-end-small">
                <ol class="no-indent">
                  <li>Plug your security key into a USB slot on your computer</li>
                  <li>Touch your security key</li>
                    <li>Or, if short touch does not work press and hold for 3 seconds to activate OTP</li>
                </ol>
              </div>
                <div class="cell-80">
                  <p>
                  <form action="/api/yubiotp/login" method="post">
                    <input id="otp-field" name="otp" autocomplete="off" class="otp-field" autocapitalize="none" style="width: 185px">
                    <input id="otp-submit-btn" type="submit" value="Submit">
                  </form>
                  <p id="u2f-error-message" class="m1-red" hidden></p>
                </div>
            </div>
          </div>
      
          <div id="redirect-pane" class="ta-center" hidden>
            <h2 class="green"> Authentication Successful</h2>
            <br/>
            <br/>
            <h3 class="">Now redirecting you to <span id="redirect-url"></span></h3>
            <br/>
            <img alt="Spinning processing circle" src="/assets/ajax-spinner-4e6e1fb3f08a162cfd4f8fb435769612a801c3cea4684b1efc71455e3795c5ca.gif" />
          </div>
      
          <div id="loadingDiv" class="ta-center invisible">
            <img alt="Spinning processing circle" src="/assets/ajax-spinner-4e6e1fb3f08a162cfd4f8fb435769612a801c3cea4684b1efc71455e3795c5ca.gif" />
          </div>
        </section>
        
        <footer>
          <p>
            Secured by  <a id="help_link" href="https://w.amazon.com/index.php/NextGenMidway/FAQ">Midway</a>. For login issues, 
            <a href="https://firstaid.it.a2z.com/chat">chat with IT support</a>.
          </p>
      
          <img height="32" class="mt-2" alt="Amazon logo" title="Midway is brought to you by Chris, Misha, Sunitha, Matt, Pratik, Tyler, Alex, Stefan, David, Eric, Carl, and more!" src="/assets/amazon-logo-f589d03bb13bcabcfcfdd596bf2f0c4bc4996adc605cc737991ce9c6a0025be6.png" />
        </footer>
      
      </main>
      
      <script src="/packs/js/old-ui-256ec15b2ec41d126e2b.js"></script>
      </body>
      </html>
      
      0
      
      
    • {
         "@category" : "datascan",
         "@timestamp" : "2024-11-21T03:16:06.000Z",
         "app" : {
            "extract" : {
               "domain" : [
                  "a2z.com",
                  "amazon.com",
                  "cloudfront.net"
               ],
               "hostname" : [
                  "d3s096xoykcjlq.cloudfront.net",
                  "firstaid.it.a2z.com",
                  "midway-static.amazon.com",
                  "password-v2.corp.amazon.com",
                  "unagi-na.amazon.com",
                  "w.amazon.com"
               ],
               "url" : [
                  "https://d3s096xoykcjlq.cloudfront.net",
                  "https://firstaid.it.a2z.com/chat",
                  "https://midway-static.amazon.com/app-id.json",
                  "https://password-v2.corp.amazon.com/selfReset",
                  "https://unagi-na.amazon.com",
                  "https://w.amazon.com/index.php/NextGenMidway/FAQ"
               ]
            },
            "http" : {
               "bodymd5" : "3179f2c6bc46789fed44b33762fd1ed6",
               "bodymmh3" : -1330459850,
               "header" : [
                  {
                     "name" : "ETag",
                     "value" : "W/\"0ff99d3a0440548b949e51f49baaa430"
                  }
               ],
               "headermd5" : "c0898bfa66709cdec64c25ad717a9010",
               "headermmh3" : -1380809995,
               "title" : "Midway Authentication Portal"
            },
            "length" : 8434
         },
         "asn" : "AS16509",
         "basicconstraints" : "critical",
         "ca" : "false",
         "city" : "Ashburn",
         "company" : {
            "country" : "<enterprise field>: company.country",
            "globalrank" : "<enterprise field>: company.globalrank",
            "industry" : "<enterprise field>: company.industry",
            "name" : "<enterprise field>: company.name",
            "sector" : "<enterprise field>: company.sector"
         },
         "country" : "US",
         "cpe" : "<enterprise field>: cpe",
         "cpecount" : "<enterprise field>: cpecount",
         "data" : "HTTP/1.1 200 OK\r\nServer: Server\r\nDate: Thu, 21 Nov 2024 03:16:06 GMT\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nX-Frame-Options: SAMEORIGIN\r\nX-XSS-Protection: 1; mode=block\r\nX-Content-Type-Options: nosniff\r\nX-Download-Options: noopen\r\nX-Permitted-Cross-Domain-Policies: none\r\nReferrer-Policy: strict-origin-when-cross-origin\r\nContent-Security-Policy: default-src 'self'; script-src 'self' https://d3s096xoykcjlq.cloudfront.net; style-src 'self' https://d3s096xoykcjlq.cloudfront.net; img-src 'self' https://d3s096xoykcjlq.cloudfront.net; connect-src 'self' https://midway-static.amazon.com/app-id.json https://unagi-na.amazon.com; object-src 'none'; frame-ancestors 'self'\r\nX-UA-Compatible: IE=Edge,chrome=1\r\nETag: W/\"0ff99d3a0440548b949e51f49baaa430\"\r\nCache-Control: max-age=0, private, must-revalidate\r\nSet-Cookie: kerberos_disabled=1; path=/; expires=Fri, 21 Nov 2025 03:16:06 GMT; Secure; SameSite=None\r\nSet-Cookie: session=eyJraWQiOiIzMzUiLCJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..eeI6p2x8gPmRor_uKXnKGw.nfJ5cnSlKw_MGHUQE3hnwCoKPFkFWISD8OvYbDf7YkBbE5lyEBN60-bRnxlH6ltjZ6gs6c47LA6da8U4eddYNqSG-Ap-Y_RhWX9INnr8fA1QvaBTU6WxwLSTRgbgx5vTc3FQ0SoNAHORssWQfvzz-PVEQE_xo9FRhFhzThVIgyvJMdXPx-CEz2L7tMM3eXF0RrhnpRqG238z3CwnQDnJNv-Mr34oIjl-jRy5Qz6DZM4v0GHnJh2BG_z2AIEQ3im6.iA5nFMKXuz0B_7vIf4ffQA; path=/; expires=Thu, 21 Nov 2024 23:16:06 GMT; secure; HttpOnly; SameSite=None\r\nX-Host: midway-auth-prod-iad6-6011.iad6.amazon.com\r\nX-Request-Id: c68bed9c-fd0c-4641-9906-eb5a1d15c1cb\r\nStrict-Transport-Security: max-age=63072000; includeSubDomains\r\n\r\n1aad\r\n<!DOCTYPE html>\n<html lang='en'>\n<head>\n<title>Midway Authentication Portal</title>\n<link rel=\"stylesheet\" media=\"all\" href=\"/assets/application-6f214fe947c0edd4efaa0177e590dd6b201ba0b1eb0324263498e235c5262cbe.css\" />\n<script src=\"/assets/application-f6fff0e6bde057c3cbfdd0338d34b0056b8b007d106c0a26b3190271b98d9c36.js\"></script>\n<script src=\"/packs/js/client-side-metrics-4daab7872936f98b980b.js\"></script>\n<meta name=\"csrf-param\" content=\"authenticity_token\" />\n<meta name=\"csrf-token\" content=\"QbDUD8xDZCpnssEcsHGOXrKAPNkO/XyX2yGmamGBni+hL+sOt/LU4r6+599y1/aeKmH84TwJ1GzfYabHwR8dWg==\" />\n<meta id=\"viewport\" name=\"viewport\" content=\"width=device-width, initial-scale=1\" />\n</head>\n<body>\n<script src=\"/assets/login-5f4607a3effee4c149258f44642a94045f30f57302e2a1145be74744ea3e376a.js\" defer=\"defer\"></script>\n<main>\n    <div class=\"banner-item\">\n      You are using old UI, to switch to new UI click\n      <button id=\"switch-to-new-ui-button\">here</button>\n    </div>\n\n\n  <form id=\"fpr_form\" name=\"fpr_form\"></form>\n  <section id=\"base-pane\">\n    <div id=\"login-pane\">\n      <div id=\"input-params\" data-session-status=\"{&quot;csrf_param&quot;:&quot;authenticity_token&quot;,&quot;csrf_token&quot;:&quot;5O+sGriu4865Cv5E2Fu/jOQrc7Fe/Boi1vHuqPJty2IEcJMbwx9TBmAG2Ica/cdMfMqziWwIstnSse4FUvNIFw==&quot;,&quot;session_uuid&quot;:&quot;87013dd0f07a894d61de6d366de486af&quot;,&quot;client_cert_valid&quot;:false,&quot;totp_enabled&quot;:true,&quot;display_otp_enabled&quot;:true,&quot;mcs_andon_cord_pulled&quot;:false,&quot;otp_enabled&quot;:true,&quot;authenticated&quot;:false,&quot;auth_prompt&quot;:&quot;Password&quot;}\" data-js-params=\"{&quot;next&quot;:&quot;/SSO/redirect?redirect_uri=https%3A%2F%2Fiad.beta.farquaad.elb.aws.a2z.com%3A443%2F\\u0026client_id=https%3A%2F%2Fiad.beta.farquaad.elb.aws.a2z.com%3A443\\u0026scope=openid\\u0026max_age=86400\\u0026sentry_handler_version=MidwayNginxModule-1.7-1\\u0026response_type=id_token\\u0026nonce=87606550fb9b75a64fced2cdf71638bed2120008fa5e39e418a057e4555ae360&quot;}\"></div>\n      <h2>Sign in</h2>\n      <!--This hidden header is added because many canaries look for this text to know that they are on a Midway page-->\n      <h2 hidden>Sign in with Midway</h2>\n      <div class=\"ta-right\">\n        <a class=\"medium-heavy-text small-text\" href=\"https://w.amazon.com/index.php/NextGenMidway/FAQ\">Why am I here?</a>\n      </div>\n\n      <form id=\"login_form\" action=\"/api/login\" accept-charset=\"UTF-8\" method=\"post\"><input name=\"utf8\" type=\"hidden\" value=\"&#x2713;\" autocomplete=\"off\" /><input type=\"hidden\" name=\"authenticity_token\" value=\"pVhHomZrtIiHQ9eQdJAQDiFl0uSltFVb3WlxqQfcDZxFx3ijHdoEQF5P8VO2NmjOuYQS3JdA/aDZKXEEp0KO6Q==\" autocomplete=\"off\" />\n        <input type=\"hidden\" name=\"old_login_form\" id=\"old_login_form\" value=\"true\" autocomplete=\"off\" />\n        <input type=\"hidden\" name=\"next\" id=\"next\" value=\"/SSO/redirect?redirect_uri=https%3A%2F%2Fiad.beta.farquaad.elb.aws.a2z.com%3A443%2F&amp;client_id=https%3A%2F%2Fiad.beta.farquaad.elb.aws.a2z.com%3A443&amp;scope=openid&amp;max_age=86400&amp;sentry_handler_version=MidwayNginxModule-1.7-1&amp;response_type=id_token&amp;nonce=87606550fb9b75a64fced2cdf71638bed2120008fa5e39e418a057e4555ae360\" autocomplete=\"off\" />\n        <p>\n          <label for=\"user_name\">Amazon username</label><br/>\n          <input type=\"text\" name=\"user_name\" id=\"user_name\" value=\"\" placeholder=\"Enter your Amazon username\" autocomplete=\"username\" autocorrect=\"off\" autocapitalize=\"off\" spellcheck=\"false\" />\n        </p>\n\n        <p>\n        <div class=\"row\">\n          <div class=\"cell-50\">\n            <label for=\"password\">PIN</label>\n          </div>\n          <div class=\"cell-50 ta-right\">\n            <a class=\"medium-heavy-text small-text\" href=\"https://password-v2.corp.amazon.com/selfReset\">Reset password</a>\n          </div>\n        </div>\n        <input type=\"password\" name=\"password\" id=\"password\" value=\"\" placeholder=\"Enter your security key PIN\" autocomplete=\"current-password\" autocorrect=\"off\" autocapitalize=\"off\" />\n        <p>\n          <input type=\"submit\" name=\"commit\" value=\"Sign in\" class=\"login-button inline-button orange-button\" id=\"verify_btn\" data-disable-with=\"Sign in\" />\n        <p id=\"error-message\" class=\"m1-red ta-center mb-0 invisible\" tabindex=\"0\">Error</p>\n        <p id=\"forgot-password\" class=\"ta-center mb-0\" hidden>\n          <a href=\"https://password-v2.corp.amazon.com/selfReset\">Did you forget your password?</a></p>\n</form>    </div>\n\n    <div id=\"u2f-login-pane\" class=\"ta-center\" hidden>\n      <h2>Second factor required</h2>\n      <div class=\"row pb-1 pl-2 flex-container\">\n        <div class=\"cell-20 hide-small\">\n          <img height=\"128\" alt=\"Security key with lock\" src=\"/assets/yubikey-with-lock-4617700bf1ac51a21ee884c1e5b8208eb7c9fff492246a69ec718c8654e75cdd.png\" />\n        </div>\n        <div class=\"cell-80 ta-left cell-100-small move-to-end-small\">\n          <ol class=\"no-indent\">\n            <li>Plug your security key into a USB slot on your computer</li>\n            <li>Touch your security key</li>\n              <li>Or, if short touch does not work press and hold for 3 seconds to activate OTP</li>\n          </ol>\n        </div>\n          <div class=\"cell-80\">\n            <p>\n            <form action=\"/api/yubiotp/login\" method=\"post\">\n              <input id=\"otp-field\" name=\"otp\" autocomplete=\"off\" class=\"otp-field\" autocapitalize=\"none\" style=\"width: 185px\">\n              <input id=\"otp-submit-btn\" type=\"submit\" value=\"Submit\">\n            </form>\n            <p id=\"u2f-error-message\" class=\"m1-red\" hidden></p>\n          </div>\n      </div>\n    </div>\n\n    <div id=\"redirect-pane\" class=\"ta-center\" hidden>\n      <h2 class=\"green\"> Authentication Successful</h2>\n      <br/>\n      <br/>\n      <h3 class=\"\">Now redirecting you to <span id=\"redirect-url\"></span></h3>\n      <br/>\n      <img alt=\"Spinning processing circle\" src=\"/assets/ajax-spinner-4e6e1fb3f08a162cfd4f8fb435769612a801c3cea4684b1efc71455e3795c5ca.gif\" />\n    </div>\n\n    <div id=\"loadingDiv\" class=\"ta-center invisible\">\n      <img alt=\"Spinning processing circle\" src=\"/assets/ajax-spinner-4e6e1fb3f08a162cfd4f8fb435769612a801c3cea4684b1efc71455e3795c5ca.gif\" />\n    </div>\n  </section>\n  \n  <footer>\n    <p>\n      Secured by  <a id=\"help_link\" href=\"https://w.amazon.com/index.php/NextGenMidway/FAQ\">Midway</a>. For login issues, \n      <a href=\"https://firstaid.it.a2z.com/chat\">chat with IT support</a>.\n    </p>\n\n    <img height=\"32\" class=\"mt-2\" alt=\"Amazon logo\" title=\"Midway is brought to you by Chris, Misha, Sunitha, Matt, Pratik, Tyler, Alex, Stefan, David, Eric, Carl, and more!\" src=\"/assets/amazon-logo-f589d03bb13bcabcfcfdd596bf2f0c4bc4996adc605cc737991ce9c6a0025be6.png\" />\n  </footer>\n\n</main>\n\n<script src=\"/packs/js/old-ui-256ec15b2ec41d126e2b.js\"></script>\n</body>\n</html>\n\r\n0\r\n\r\n",
         "datamd5" : "0f9807baeea7dba8e30bac009e340181",
         "datammh3" : -775823482,
         "device" : {
            "class" : "<enterprise field>: device.class"
         },
         "domain" : [
            "a2z.com",
            "amazon.com",
            "amazon.dev",
            "aws.dev"
         ],
         "extkeyusage" : [
            "serverAuth",
            "clientAuth"
         ],
         "fingerprint" : {
            "md5" : "0a6f29b90f485404868bf01d72395f86",
            "sha1" : "823d4ffd677d3ec7a5c53a79678b6162dcea8a1f",
            "sha256" : "634e053071a627295b1980b69eec6219342a0cb60234e4330726bfce4a51e5b7"
         },
         "forward" : "midway-auth.amazon.com",
         "geolocus" : {
            "asn" : "AS16509",
            "continent" : "NA",
            "continentname" : "North America",
            "country" : "US",
            "countryname" : "United States",
            "domain" : [
               "amazon.com",
               "aws.com"
            ],
            "isineu" : "false",
            "latitude" : "37.09024",
            "location" : "37.09024,-95.712891",
            "longitude" : "-95.712891",
            "netname" : "AT-88-Z",
            "organization" : "Amazon Technologies Inc.",
            "subnet" : "52.94.224.0/20"
         },
         "host" : [
            "auth",
            "midway-auth",
            "midway-auth-iad",
            "midway-auth-onebox-iad55",
            "otp"
         ],
         "hostname" : [
            "auth.midway.amazon.dev",
            "auth.midway.aws.a2z.com",
            "auth.midway.aws.dev",
            "midway-auth-iad.iad.proxy.amazon.com",
            "midway-auth-onebox-iad55.iad.amazon.com",
            "midway-auth.amazon.com",
            "midway-auth.iad.amazon.com",
            "otp.midway-auth-lbr.amazon.com"
         ],
         "ip" : "52.94.224.69",
         "ipv6" : "false",
         "issuer" : {
            "commonname" : "Amazon RSA 2048 M01",
            "country" : "US",
            "organization" : "Amazon"
         },
         "keyusage" : [
            "digitalSignature",
            "keyEncipherment"
         ],
         "latitude" : "39.0469",
         "location" : "39.0469,-77.4903",
         "longitude" : "-77.4903",
         "node" : {
            "country" : "<enterprise field>: node.country",
            "groupid" : "<enterprise field>: node.groupid",
            "id" : "<enterprise field>: node.id",
            "physicalcountry" : "<enterprise field>: node.physicalcountry"
         },
         "organization" : "AMAZON-02",
         "os" : "Linux",
         "osdistribution" : "amazon",
         "osvendor" : "Linux",
         "port" : 443,
         "product" : "Server",
         "productvendor" : "Server",
         "protocol" : "http",
         "protocolversion" : "1.1",
         "publickey" : {
            "algorithm" : "rsaEncryption",
            "length" : 2048
         },
         "reason" : "OK",
         "seen_date" : "2024-11-21",
         "serial" : "09:13:e5:75:b7:57:57:39:2f:62:c8:a8:ba:5a:18:6a",
         "signature" : {
            "algorithm" : "sha256WithRSAEncryption"
         },
         "source" : "datascan::redirect::3",
         "status" : 200,
         "subdomains" : [
            "aws.a2z.com",
            "iad.amazon.com",
            "iad.proxy.amazon.com",
            "midway-auth-lbr.amazon.com",
            "midway.amazon.dev",
            "midway.aws.a2z.com",
            "midway.aws.dev",
            "proxy.amazon.com"
         ],
         "subject" : {
            "altname" : [
               "midway-auth.iad.amazon.com",
               "midway-auth-iad.iad.proxy.amazon.com",
               "otp.midway-auth-lbr.amazon.com",
               "midway-auth-onebox-iad55.iad.amazon.com",
               "midway-auth.amazon.com",
               "auth.midway.aws.a2z.com",
               "auth.midway.aws.dev",
               "auth.midway.amazon.dev"
            ],
            "commonname" : "midway-auth.iad.amazon.com"
         },
         "subnet" : "52.94.224.0/20",
         "tag" : "<enterprise field>: tag",
         "tld" : [
            "com",
            "dev"
         ],
         "tls" : "true",
         "transport" : "tcp",
         "url" : "/login?next=%2FSSO%2Fredirect%3Fredirect_uri%3Dhttps%253A%252F%252Fiad.beta.farquaad.elb.aws.a2z.com%253A443%252F%26client_id%3Dhttps%253A%252F%252Fiad.beta.farquaad.elb.aws.a2z.com%253A443%26scope%3Dopenid%26max_age%3D86400%26sentry_handler_version%3DMidwayNginxModule-1.7-1%26response_type%3Did_token%26nonce%3D87606550fb9b75a64fced2cdf71638bed2120008fa5e39e418a057e4555ae360&require_digital_identity=false",
         "validity" : {
            "notafter" : "2025-07-24T23:59:59Z",
            "notbefore" : "2024-08-16T00:00:00Z"
         },
         "version" : "v3",
         "wildcard" : "false"
      }