Domain > api.receitaiogurte.online

More information on this domain is in AlienVault OTX

DNS Resolutions

Date	IP Address
2025-09-17	104.21.41.220 (ClassC)
2026-02-25	172.67.194.108 (ClassC)

HTTP/1.1 200 OKDate: Wed, 25 Feb 2026 21:43:09 GMTContent-Type: text/htmlTransfer-Encoding: chunkedConnection: keep-aliveServer: cloudflarelast-modified: Fri, 20 Feb 2026 11:54:15 GMTNel: {report_to:cf-nel,success_fraction:0.0,max_age:604800}x-frame-options: DENYx-content-type-options: nosniffreferrer-policy: strict-origin-when-cross-originpermissions-policy: geolocation(), microphone(), camera()content-security-policy: default-src self; object-src none; base-uri self; frame-ancestors none;Report-To: {group:cf-nel,max_age:604800,endpoints:{url:https://a.nel.cloudflare.com/report/v4?sVS4yRPivdhjW8bAKAI7UFSwCaj3TZ5mfYibyiBegW8IDA9T%2BkPBFYlPPayf5PC6Koxd8WHJn8Au8ugJ9yNm96%2BeOPQ4CCERiNVKGtXKf98W6S7R11h%2FQcUI%3D}}cf-cache-status: DYNAMICvary: accept-encodingCF-RAY: 9d3a6066b924debd-PDXalt-svc: h3:443; ma86400

!doctype html>html langes>head>  meta charsetutf-8 />  meta nameviewport contentwidthdevice-width,initial-scale1 />  title>Iván Montes — SysAdmin & Ciberseguridad/title>  meta namedescription contentPortfolio de Iván Montes: administración de sistemas, hardening Linux, Nginx, TLS, MySQL y 2FA. />  link relstylesheet href/assets/css/style.css />/head>body>  div classcontainer>    div classnav>      div classbrand>        span>Iván Montes/span>        span classbadge>SysAdmin · Cybersecurity/span>      /div>      div classlinks>        a href#proyectos>Proyectos/a>        a href#seguridad>Seguridad/a>        a href#login>Login demo/a>      /div>    /div>    div classhero>      div classhi>Hola, soy Iván 👋/div>      h1>Administración de sistemas & ciberseguridad aplicada./h1>      p classsub>        Portfolio técnico desplegado en VPS con hardening profesional: SSH seguro, UFW, Fail2ban, Nginx + TLS (Let’s Encrypt),        backend con MySQL, roles y autenticación 2FA (TOTP).      /p>      div classcta>        a classbtn primary href#login>Probar Login + 2FA/a>        a classbtn href#proyectos>Ver proyectos/a>      /div>    /div>    div idproyectos classsection>      h2>Proyectos destacados/h2>      div classgrid>        div classcard>          h3>Hardening Linux (VPS)/h3>          p>Usuario sin root por SSH, claves, cambio de puerto, UFW deny-by-default, Fail2ban, updates automáticos./p>          div classtagrow>            span classtag>SSH/span>span classtag>UFW/span>span classtag>Fail2ban/span>span classtag>unattended-upgrades/span>          /div>        /div>        div classcard>          h3>Nginx + HTTPS/h3>          p>Servidor Nginx con Let’s Encrypt, redirección HTTPS, headers de seguridad, rate-limit para endpoints sensibles./p>          div classtagrow>            span classtag>Nginx/span>span classtag>TLS/span>span classtag>Certbot/span>span classtag>Security headers/span>          /div>        /div>        div classcard>          h3>Backend Login + MySQL/h3>          p>Usuarios con roles (root/admin/user), passwords con bcrypt, sesiones seguras, DB accesible solo localhost./p>          div classtagrow>            span classtag>PHP/span>span classtag>MySQL/span>span classtag>bcrypt/span>span classtag>sessions/span>          /div>        /div>        div classcard>          h3>2FA TOTP (Authenticator)/h3>          p>Segundo factor con TOTP compatible con Aegis/Google Authenticator. Preparado para políticas y auditoría./p>          div classtagrow>            span classtag>2FA/span>span classtag>TOTP/span>span classtag>OTPHP/span>          /div>        /div>      /div>    /div>    div idseguridad classsection>      h2>Resumen técnico/h2>      div classgrid two>        div classblock>          h3>Stack/h3>          div classkv>            div>Web/div>div>Nginx + Let’s Encrypt/div>            div>Backend/div>div>PHP (FPM) + sesiones seguras/div>            div>DB/div>div>MySQL (solo localhost)/div>            div>DNS/div>div>DuckDNS/div>          /div>        /div>        div classblock>          h3>Controles/h3>          div classkv>            div>Acceso/div>div>SSH key-only, root bloqueado/div>            div>Red/div>div>UFW (22 cerrado, 80/443, ssh 2222)/div>            div>Anti-bruteforce/div>div>Fail2ban SSH + Fail2ban login web/div>            div>Headers/div>div>CSP, XFO, nosniff, permissions-policy/div>          /div>        /div>      /div>    /div>    hr />    div idlogin classsection>      h2>Login demo (backend real + 2FA)/h2>      p classnotice>        Introduce usuario/contraseña y el código TOTP de tu Authenticator. Esto llama a code>/api/login.php/code>,        guarda sesión y puedes comprobarla con code>/api/whoami.php/code>.      /p>      div classgrid>        div classcard stylegrid-column: span 12;>          form idloginForm classform>            div classrow>              input idusername classinput placeholderUsuario (ej: ivan) autocompleteusername required />              input idpassword classinput placeholderContraseña typepassword autocompletecurrent-password required />            /div>            input idotp classinput placeholderCódigo 2FA (6 dígitos) inputmodenumeric autocompleteone-time-code />            div classcta>              button classbtn primary typesubmit>Entrar/button>              button classbtn typebutton idbtnWhoami>whoami/button>              button classbtn typebutton idbtnLogout>logout/button>            /div>            pre idstatus classnotice>—/pre>          /form>        /div>      /div>    /div>    div classfooter>      © span idy>/span> Iván Montes · span classbadge>ivanmontes.duckdns.org/span>    /div>  /div>  script>document.getElementById(y).textContentnew Date().getFullYear()/script>  script src/assets/js/app.js>/script>/body>/html>

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > api.receitaiogurte.online

Is this malicious?

DNS Resolutions

Port 80

Port 443