================================================================================
BURKINA FASO - BANKING / TELECOM / ENTERPRISE PROBE RESULTS
Date: 2026-03-04
Methodology: curl -s --connect-timeout 10 --max-time 20 -L
Tests: Headers, WP-JSON, API paths, robots.txt, Joomla, admin panels, config leaks
================================================================================
########################################################################
# BANKING / FINANCE TARGETS #
########################################################################
================================================================================
TARGET: BICIA-B Bank (bicia.bf)
DOMAIN: bicia.bf
Probed: 2026-03-04 01:59:38
================================================================================
--- [1] HOMEPAGE HEADERS ---
Trying: https://bicia.bf/
[No response from https://bicia.bf]
Trying: http://bicia.bf/
[No response from http://bicia.bf]
*** DOMAIN UNREACHABLE ON BOTH HTTP AND HTTPS ***
================================================================================
TARGET: BICIA-B Bank (biciab.bf)
DOMAIN: biciab.bf
Probed: 2026-03-04 01:59:38
================================================================================
--- [1] HOMEPAGE HEADERS ---
Trying: https://biciab.bf/
[No response from https://biciab.bf]
Trying: http://biciab.bf/
[No response from http://biciab.bf]
*** DOMAIN UNREACHABLE ON BOTH HTTP AND HTTPS ***
================================================================================
TARGET: Coris Bank (coris-bank.com)
DOMAIN: coris-bank.com
Probed: 2026-03-04 01:59:39
================================================================================
--- [1] HOMEPAGE HEADERS ---
Trying: https://coris-bank.com/
[No response from https://coris-bank.com]
Trying: http://coris-bank.com/
[No response from http://coris-bank.com]
*** DOMAIN UNREACHABLE ON BOTH HTTP AND HTTPS ***
================================================================================
TARGET: Coris Bank (corisbank.bf)
DOMAIN: corisbank.bf
Probed: 2026-03-04 01:59:40
================================================================================
--- [1] HOMEPAGE HEADERS ---
Trying: https://corisbank.bf/
[No response from https://corisbank.bf]
Trying: http://corisbank.bf/
[No response from http://corisbank.bf]
*** DOMAIN UNREACHABLE ON BOTH HTTP AND HTTPS ***
================================================================================
TARGET: Ecobank (ecobank.com)
DOMAIN: ecobank.com
Probed: 2026-03-04 01:59:41
================================================================================
--- [1] HOMEPAGE HEADERS ---
Trying: https://ecobank.com/
HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 134
Content-Type: text/html; charset=utf-8
Expires: Thu, 04 Mar 2027 06:58:42 GMT
Location: /personal-banking
content-security-policy: default-src 'self'; style-src 'self' 'unsafe-inline' https://unpkg.com https://www.gstatic.com *.googleapis.com *.cloudflare.com https://cdn-eu.dynamicyield.com https://maxcdn.bootstrapcdn.com *.dynamicyield.com; font-src 'self' *.gstatic.com data: https://cdn-eu.dynamicyield.com *.dynamicyield.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.jsdelivr.net/npm/alpinejs@3.x.x/dist/cdn.min.js https://embed.proto.cx *.googleadservices.com https://app.proto.cx https://www.googletagmanager.com https://unpkg.com https://ecobank-prod.custhelp.com https://az416426.vo.msecnd.net https://googleads.g.doubleclick.net https://static.site24x7rum.com *.google.com *.googletagmanager.com *.google-analytics.com *.google.ru https://static.hotjar.com https://script.hotjar.com https://bid.g.doubleclick.net https://googleads.g.doubleclick.net https://az416426.vo.msecnd.net *.googleapis.com *.googleadservices.com *.gstatic.com *.cloudflare.com http://*.matchingnotes.com http://matchingnotes.com *.facebook.net *.twitter.com http://st-eu.dynamicyield.com/st http://cdn-eu.dynamicyield.com http://async-px-eu.dynamicyield.com http://r.rrzb.ru http://p.2ad.wtf/ad/base.js *.dynamicyield.com; connect-src 'self' https://v3-api.proto.cx https://fonts.gstatic.com https://secure.ecobank.com/ContentHandler.ashx https://api.proto.cx *.visualstudio.com https://www.googletagmanager.com https://insights.hotjar.com *.google-analytics.com *.googleapis.com https://stats.g.doubleclick.net https://analytics.google.com http://async-px-eu.dynamicyield.com https://adm.dynamicyield.eu http://st-eu.dynamicyield.com *.dynamicyield.com *.analytics.google.com; img-src 'self' *.cdninstagram.com *.fbcdn.net *.tile.osm.org *.gstatic.com *.googleapis.com *.google.ie *.google.com *.google.ru *.google-analytics.com https://googleads.g.doubleclick.net https://stats.g.doubleclick.net https://www.googletagmanager.com *.facebook.com *.twitter.com *.openstreetmap.org data: http://dmg.digitaltarget.ru *.dynamicyield.com *.google.de; frame-src 'self' data: https://frame.proto.cx https://simple-website-rv2.eu-de.mybluemix.net/ https://app.proto.cx/ https://rafikiv5.eu-gb.mybluemix.net/ https://rafikiv2.eu-gb.mybluemix.net/ https://ice.ecobank.com/ https://digitalonline.ecobank.com/ https://player.vimeo.com/ https://bid.g.doubleclick.net/ https://www.executiveinterviews.com/ https://ecobank-prod.custhelp.com https://vars.hotjar.com https://youtu.be/ *.google.com *.youtube.com *.facebook.com *.twitter.com;
x-permitted-cross-domain-policies: master-only
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://edctradingportal.ecobank.com
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=18144000; includeSubDomains
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: POST, GET, OPTIONS
Request-Context: appId=cid-v1:a90fd4a1-70b1-4001-b6ed-6ec8e120f82a
Public-Key-Pins: pin-sha256='X3pGTSOuJeEVw989IJ/cEtXUEmy52zs1TZQrU06KUKg=';pin-sha256='MHJYVThihUrJcxW6wcqyOISTXIsInsdj3xK8QrZbHec=';pin-sha256='isi41AizREkLvvft0IRW4u3XMFR2Yg7bvrF7padyCJg=';includeSubdomains; max-age=2592000
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
SERVER:
Date: Wed, 04 Mar 2026 06:58:42 GMT
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 1412066
Content-Type: text/html; charset=utf-8
Expires: -1
Set-Cookie: ASP.NET_SessionId=vflyuismhyje0u5uxtvt3m0g; path=/; secure; HttpOnly; SameSite=Lax
Set-Cookie: theme=default; expires=Thu, 04-Mar-2027 06:58:42 GMT; path=/; secure; HttpOnly
content-security-policy: default-src 'self'; style-src 'self' 'unsafe-inline' https://unpkg.com https://www.gstatic.com *.googleapis.com *.cloudflare.com https://cdn-eu.dynamicyield.com https://maxcdn.bootstrapcdn.com *.dynamicyield.com; font-src 'self' *.gstatic.com data: https://cdn-eu.dynamicyield.com *.dynamicyield.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.jsdelivr.net/npm/alpinejs@3.x.x/dist/cdn.min.js https://embed.proto.cx *.googleadservices.com https://app.proto.cx https://www.googletagmanager.com https://unpkg.com https://ecobank-prod.custhelp.com https://az416426.vo.msecnd.net https://googleads.g.doubleclick.net https://static.site24x7rum.com *.google.com *.googletagmanager.com *.google-analytics.com *.google.ru https://static.hotjar.com https://script.hotjar.com https://bid.g.doubleclick.net https://googleads.g.doubleclick.net https://az416426.vo.msecnd.net *.googleapis.com *.googleadservices.com *.gstatic.com *.cloudflare.com http://*.matchingnotes.com http://matchingnotes.com *.facebook.net *.twitter.com http://st-eu.dynamicyield.com/st http://cdn-eu.dynamicyield.com http://async-px-eu.dynamicyield.com http://r.rrzb.ru http://p.2ad.wtf/ad/base.js *.dynamicyield.com; connect-src 'self' https://v3-api.proto.cx https://fonts.gstatic.com https://secure.ecobank.com/ContentHandler.ashx https://api.proto.cx *.visualstudio.com https://www.googletagmanager.com https://insights.hotjar.com *.google-analytics.com *.googleapis.com https://stats.g.doubleclick.net https://analytics.google.com http://async-px-eu.dynamicyield.com https://adm.dynamicyield.eu http://st-eu.dynamicyield.com *.dynamicyield.com *.analytics.google.com; img-src 'self' *.cdninstagram.com *.fbcdn.net *.tile.osm.org *.gstatic.com *.googleapis.com *.google.ie *.google.com *.google.ru *.google-analytics.com https://googleads.g.doubleclick.net https://stats.g.doubleclick.net https://www.googletagmanager.com *.facebook.com *.twitter.com *.openstreetmap.org data: http://dmg.digitaltarget.ru *.dynamicyield.com *.google.de; frame-src 'self' data: https://frame.proto.cx https://simple-website-rv2.eu-de.mybluemix.net/ https://app.proto.cx/ https://rafikiv5.eu-gb.mybluemix.net/ https://rafikiv2.eu-gb.mybluemix.net/ https://ice.ecobank.com/ https://digitalonline.ecobank.com/ https://player.vimeo.com/ https://bid.g.doubleclick.net/ https://www.executiveinterviews.com/ https://ecobank-prod.custhelp.com https://vars.hotjar.com https://youtu.be/ *.google.com *.youtube.com *.facebook.com *.twitter.com;
x-permitted-cross-domain-policies: master-only
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://edctradingportal.ecobank.com
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=18144000; includeSubDomains
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: POST, GET, OPTIONS
Request-Context: appId=cid-v1:a90fd4a1-70b1-4001-b6ed-6ec8e120f82a
Public-Key-Pins: pin-sha256='X3pGTSOuJeEVw989IJ/cEtXUEmy52zs1TZQrU06KUKg=';pin-sha256='MHJYVThihUrJcxW6wcqyOISTXIsInsdj3xK8QrZbHec=';pin-sha256='isi41AizREkLvvft0IRW4u3XMFR2Yg7bvrF7padyCJg=';includeSubdomains; max-age=2592000
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
SERVER:
Date: Wed, 04 Mar 2026 06:58:42 GMT
>> SERVER: SERVER:
--- [2] WORDPRESS API (wp-json) ---
*** WORDPRESS API DETECTED ***
HTTP 200 Location: /
/admin/ -> HTTP 200 Location: /admin
/administrator/ -> HTTP 200 Location: /administrator
/wp-admin/ -> HTTP 200 Location: /wp-admin
/login -> HTTP 200
/login/ -> HTTP 200 Location: /login
/user/login -> HTTP 200 Location: /
/panel/ -> HTTP 200 Location: /panel
/dashboard/ -> HTTP 200 Location: /dashboard
/cpanel -> HTTP 200 Location: /
/webmail -> HTTP 200 Location: /
/phpmyadmin/ -> HTTP 200 Location: /phpmyadmin
/adminer/ -> HTTP 200 Location: /adminer
/manager/ -> HTTP 200 Location: /manager
--- [7] CONFIG / SENSITIVE FILE LEAKS ---
*** /server-status -> HTTP 200 (500 bytes) ***
Preview:
> SERVER: server: nginx
--- [2] WORDPRESS API (wp-json) ---
*** WORDPRESS API DETECTED ***
Page Not Found