|Site title||Bank of America Chicago Marathon|
|Description||The Bank of America Chicago Marathon is the pinnacle of achievement for elite athletes and everyday runners alike. Marathon runners worldwide participate.|
|Date first seen||September 2015|
|Netcraft Risk Rating||0/10|
|Netblock Owner||Amazon.com, Inc.|
|IP address||184.108.40.206 (VirusTotal)|
|IPv6 address||Not Present|
|Organisation||Domains By Proxy, LLC, 14455 N. Hayden Road, Scottsdale, US|
|Hosting company||Amazon - US East (Northern Virginia) datacenter|
|Top Level Domain||Commercial entities (.com)|
|DNS Security Extensions||unknown|
|0.0.0.0-255.255.255.255||N/A||IANA-BLK||The whole IPv4 address space|
|↳ 220.127.116.11-18.104.22.168||United States||NET107||American Registry for Internet Numbers|
|↳ 22.214.171.124-126.96.36.199||United States||AMAZON-EC2-8||Amazon.com, Inc.|
|↳ 188.8.131.52||United States||AMAZON-EC2-8||Amazon.com, Inc.|
|Organisational unit||Not Present|
|Subject Alternative Name||chicagomarathon.com, www.chicagomarathon.com|
|Validity period||From May 3 2020 to Jun 3 2021 (13 months)|
|Public key algorithm||rsaEncryption|
|Public key length||2048|
|Perfect Forward Secrecy||Yes|
|Next Protocol Negotiation||Not Present|
|Supported TLS Extensions||RFC5746 renegotiation info, RFC4492 EC point formats|
|Issuer common name||Amazon|
|Issuer unit||Server CA 1B|
|Issuer location||Not Present|
|Issuer state||Not Present|
|Certificate Revocation Lists||
|Public Key Hash||8eb5b0f027271be969f0145c74865db8c08ad54acd937ee2137c80a4ab62fe19|
|OCSP servers||http://ocsp.sca1b.amazontrust.com - 100% uptime in the past 24 hours
|OCSP stapling response||No response received|
Signed Certificate Timestamps (SCTs)
|Certificate||Google Argon 2021
|Certificate||DigiCert Yeti 2021
This site does not support the SSL version 3 protocol.
The site did not offer the Heartbeat TLS extension prior to the Heartbleed disclosure, and so was not exploitable.
This test does not exploit the Heartbleed vulnerability but uses information from conventional HTTPS requests. More information about Heartbleed detection.
SSL Certificate Chain
|Common name||Amazon Root CA 1|
|Organisational unit||Not Present|
|Validity period||From 2015-05-26 to 2038-01-17|
|Organisational unit||Server CA 1B|
|Validity period||From 2015-10-22 to 2025-10-19|
|Netblock owner||IP address||OS||Web server||Last seen|
|Amazon Data Services NoVa 13200 Woodland Park Road Herndon VA US 20171||184.108.40.206||Linux||Apache/2.4.18 Ubuntu||18-Dec-2019|
Amazon.com, Inc. Amazo…Amazon.com, Inc. Amazon Web Services, Inc. P.O. Box 81226 Seattle WA US 98108-1226
|Amazon Data Services NoVa 13200 Woodland Park Road Herndon VA US 20171||220.127.116.11||Linux||Apache||15-Jun-2016|
Sender Policy Framework
A host's Sender Policy Framework (SPF) describes who can send mail on its behalf. This is done by publishing an SPF record containing a series of rules. Each rule consists of a qualifier followed by a specification of which domains to apply this qualifier to. For more information please see open-spf.org.
Warning: It appears that this host does not have an SPF record. There may be an SPF record on chicagomarathon.com: Check the site report.
Setting up an SPF record helps prevent the delivery of forged emails from your domain. Please note that an SPF record will only protect the domain it is added to and not any mail-enabled subdomains. It is recommended to add an SPF record to any subdomain with an MX record.
DMARC (Domain-based Message Authentication, Reporting and Conformance) is a mechanism for domain owners to indicate how mail purporting to originate from their domain should be authenticated. It builds on SPF and DKIM, providing a method to set policy and to give reporting of failures. For more information please see dmarc.org.
This host does not have a DMARC record. There may be a DMARC record on the site report for chicagomarathon.com: Check the site report.
Site Technology (fetched today)
Cloud & PaaS
Cloud computing is the use of computing resources (hardware and software) that are delivered as a service over a network (typically the Internet). Platform as a service (PaaS) is a category of cloud computing services that provide a computing platform and a solution stack as a service.
Technology Description Popular sites using this technology Amazon Web Services - EC2 Cloud computing service (Elastic Compute Cloud) ads.servenobid.com, live.rezync.com, boss.bankofamerica.com Amazon Web Services - S3 Cloud storage service (Simple Storage Service) www.capitalone.com, players.brightcove.net, tag.sp.advertising.com
An application server is a server that provides software applications with services such as security, data services, transaction support, load balancing, and management of large distributed systems.
Includes all the main technologies that Netcraft detects as running on the server such as PHP.
Client-Side Scripting Frameworks
Frameworks or libraries allow for easier development of applications by providing an Application Program Interface (API) or a methodology to follow whilst developing.
Blog software is software designed to simplify creating and maintaining weblogs. They are specialized content management systems that support the authoring, editing, and publishing of blog posts and comments.
PHP is an open source server-side scripting language designed for Web development to produce dynamic Web pages.
Web analytics is the measurement, collection, analysis and reporting of internet data for purposes of understanding and optimizing web usage.
Technology Description Popular sites using this technology Google Webmaster Tools Set of tools allowing webmasters to check indexing status and optimize visibility of their websites on Google www.walmart.com, www.bbc.co.uk, www.ebay.com Google Analytics Google's website traffic analysis service www.security.nl, www.bom.gov.au, www.liveomg.com
A character encoding system consists of a code that pairs each character from a given repertoire with something else such as a bit pattern, sequence of natural numbers, octets, or electrical pulses in order to facilitate the transmission of data (generally numbers or text) through telecommunication networks or for data storage.
HTTP compression is a capability that can be built into web servers and web clients to make better use of available bandwidth, and provide greater transmission speeds between both.
Web Browser Targeting
Web browser targeting enables software applications to make use of specific functions of the browser as well as optimizing the application for specific browser versions.
Technology Description Popular sites using this technology Document Compatibility Mode A meta-tag used in Internet Explorer 8 to enable compatibility mode www.microsoft.com, teams.microsoft.com, player.vimeo.com X-Frame-Options Same Origin Do not allow this site to be rendered within an iframe www.linkedin.com, www.google.com, disqus.com Referrer Policy Restrict referrer information included in subsequent requests www.bet365.com, www.digikala.com, www.upwork.com X-XSS-Protection Block Block pages on which cross-site scripting is detected vars.hotjar.com, accounts.google.com, discordapp.com
A Document Type Declaration, or DOCTYPE, is an instruction that associates a particular SGML or XML document (for example, a webpage) with a Document Type Definition (DTD).
Technology Description Popular sites using this technology HTML5 Latest revision of the HTML standard, the main markup language on the web www.googleadservices.com, medium.com HTML The main markup language used for displaying web pages within browsers src.ebay-us.com, dra.amazon-adsystem.com, wassup.orange.fr
HTML5 is a markup language for structuring and presenting content for the World Wide Web and a core technology of the Internet. It is the fifth revision of the HTML standard.
Technology Description Popular sites using this technology Viewport meta tag HTML5 tag usually used for mobile optimization www.w3schools.com
Cascading Style Sheets (CSS) is a style sheet language used for describing the presentation semantics (the look and formatting) of a document written in a markup language (such as XHTML).