government

government public service

English

_ga_CSLL4ZEK4L

JSESSIONID

The domain 'www.rocis.gov' uses the United States government-restricted top-level domain (.gov); it also runs on subdomain 'www'. The second-level label 'rocis' is 5 characters long split between 2 vowels and three consonants. It segments into two words: roc, is. Median word length comes out to 2.5 characters. No strong language cues emerged from the frequency lists.

html/ce/fc/cefcc821-0391-47ba-a8fe-f0403538f446_fallback.html.gz

Rocis.Gov: Login Page

html/ce/fc/cefcc821-0391-47ba-a8fe-f0403538f446.html.gz

script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:112:0

ROCIS Training Registration and Information - Summer Edition

HSTS header missing - vulnerable to protocol downgrade attacks

CSP header missing - vulnerable to XSS attacks

child-src https:  chrome-untrusted://new-tab-page/ chrome-untrusted://ntp-microsoft-auth/;connect-src chrome://resources chrome://theme 'self';default-src 'self';font-src chrome://resources 'self';img-src chrome://resources chrome://theme chrome://image chrome://favicon2 chrome://app-icon chrome://extension-icon chrome://fileicon blob: data: 'self';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources chrome://webui-test 'self';style-src chrome://resources chrome://theme 'self' 'unsafe-inline';trusted-types parse-html-subset sanitize-inner-html static-types webui-test-script webui-test-html polymer-html-literal polymer-template-event-attribute-policy lit-html-desktop;frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;worker-src blob: 'self';frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;frame-ancestors 'none';

base-uri 'none';child-src https:;form-action https://ogs.google.com https://*.corp.google.com;object-src 'none';script-src 'self' 'unsafe-inline' https:;frame-ancestors chrome://new-tab-page/

rocis.gov

General Services Administration



	//pseudocode
/*
  1.Grab the accordion buttons from the DOM
  2. go through each accordion button one by one
  3. Use the classlist dom method in combination with the toggle method provided by the DOM to add or remove the "is-open" class. At this point, the accordion button should be able to switch back and forth between its font awesome icons but there is no content inside of it. This is because of the overflow:hidden and the max-height of zero; it is hiding our content. So now we must use javascript to change these values with DOM CSS
  4. get the div that has the content of the accordion button you are currently looking at; we do this using the .nextElementSibling method which allows us to look at the html element that is directly next to the current html element we are looking at. Since we are currently looking at a button (accordion button), the next element after that is the div with the class accordion-content. This is exactly what we want because it allows us to work with the div that has the content that we want to display. Also please note that we could have got to this div in another way but this is the "shortest path" to our answer.
  
  5. set the max-height based on whether the current value of the max-height css property. If the max-height is currently 0 (if the page has just been visited for the first time) or null (if it has been toggled once already) which means that it is closed, you will give it an actual value so the content will be shown; if not then that means the max-height currently has a value and you can set it back to null to close it.
  6. If the accordion is closed we set the max-height of the currently hidden text inside the accordion from 0 to the scroll height of the content inside the accordion. The scroll height refers to the height of an html element in pixels. For this specific example, we are talking about the height of the div with the class accordion-content with all of its nested ptags
*/

  $( document ).ready(function() {

	  var navExists = $("div.navigation").length > 0 ? true : false;
		if(navExists){
			$("div.grid-col-auto").css("float", "left");
			$("a.logo_internal").css("top","12px");
			console.log("Nav exists!!");
	  	} else {
	  		$("div.grid-col-auto").css("margin-left", "-540px");
	  	}

	const accordionBtns = document.getElementsByClassName("accordion");
	if(accordionBtns != null){

	  $($(accordionBtns)[0]).on('click', function () {
		this.classList.toggle("is-open");

		//let content = this.nextElementSibling;
		//let content = $(this).parent().next('.accordion-content');
		let content = this.parentNode.nextElementSibling;
		console.log(content);

		if (content.style.maxHeight) {
		  //this is if the accordion is open
		  content.style.maxHeight = null;
		  if(navigator.userAgent.indexOf("Firefox") != -1 ){
			  $(".navigation").css("margin-top", "-1px");
		  } else {
		  	  $(".navigation").css("margin-top", "-5px");
		  }
		} else {
		  //if the accordion is currently closed
		  content.style.maxHeight = content.scrollHeight + "px";
		  console.log(content.style.maxHeight);
		  if(navigator.userAgent.indexOf("Firefox") != -1 ){
			  $(".navigation").css("margin-top", "133px");
		  } else {
		  	  $(".navigation").css("margin-top", "13px");
		  }
		}
	  });
	}

});





if(navigator.userAgent.toLowerCase().indexOf('firefox')>-1){
	setTimeout(function(){
	    $("#loginForm #password").val('');
	}, 500);  
}

$(document).ready(function() {
	if (parent!=self) { // must be inside an iFrame 
		parent.window.location.href='login.do';
		return;
	}
	if (document.getElementById("RocisLogoutTag")) {	// if the logout tag presents, this page is invoked from a jQuery dialog
		window.location.href='login.do';
		return;
	}
		
    $("#loginForm").submitOnEnter();	
	$("#loginForm").validate({
		onfocusout: false,
		onkeyup: false,
		errorElement: 'li',
		errorClass: 'fieldError',
		errorContainer: '#messageBox',
		errorLabelContainer: '#messageBox ul',
		messages: {
			loginID: {required: 'Please enter user ID.'},
			password: {required: 'Please enter password.'}
		},
		showErrors: function(errorMap, errorList) {
			$('#messageBox ul').empty();
			this.defaultShowErrors();
      	}
	});
	
});


HSTS

Google

✅ Low Risk - https://www.rocis.gov/rocis/

Requests	IP Address	Location	AS Autonomous System
20	159.142.137.200	United States	AS16524METTEL
2	142.250.185.104	United States	AS15169GOOGLE
2	3.174.46.54	United States	AS16509AMAZON-02
2	104.17.25.14	United States	AS13335CLOUDFLARENET
1	104.17.24.14	United States	AS13335CLOUDFLARENET
1	216.239.32.36	United States	AS15169GOOGLE
1	3.174.46.56	United States	AS16509AMAZON-02
1	142.250.185.168	United States	AS15169GOOGLE
1	216.239.34.36	United States	AS15169GOOGLE
1	2606:4700::6811:180e	United States	AS13335CLOUDFLARENET
27	25	-	-

Security Scan Report: www.rocis.gov

Summary

AI Security Verdict

Safe Website

Safety Factors

Details

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Detected Technologies1

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

ssdeep (Context Triggered Piecewise Hashing)

sdhash (Similarity Digest Hashing)

Image Hashes

Perceptual Hashes

Other Hashes

Scan History