GeneralInformation

Hostnames	103.118.42.209.static.cubecloud.net ai.api.i3.wtf
Domains	cubecloud.net i3.wtf
Country	Hong Kong
City	Hong Kong
Organization	NetPilot Limited
ISP	Cloudfort IT
ASN	AS7586
Operating System	Debian

WebTechnologies

JavaScript frameworks

React

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 53 80 443 3000

47389644 | 2024-05-30T05:50:20.064835

22 / tcp

SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u1
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDYMb/aN59hMiFGBrvDk2RMSsX0Gs0YvIFe5Mka3Oa7BvV7
PZLhhlRMMjxHT8u9+vZfzVklrGCJo5OzH38TKp2KseGb0F5V/8XexdxFJDhclSt54qiAq/+CSXB3
vQ84kVR4+mrq7APavFS33uErEzgc6DxeDPZwH7zv6EatUOCkuS9BuWcDukiBjgPlRyCedfLwfBH/
t2Ik2HyU6wb51KpzQSe8XMbEvcDua5IPXW4V5l3ZNr4W9qc840g9nkq9j+ltIW/oWTySJnGpBh0k
g681QCkvNUrKP3OMIDwns9nCzIyTOpc44gNc5DUkKPBz8BSITmPDeekUbpNu3VjPAUXP
Fingerprint: e4:9f:c0:d4:87:d5:bd:52:e3:16:c0:b8:76:20:51:c3

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-05-25T22:52:33.723826

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 25 May 2024 22:52:33 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Wed, 01 Mar 2023 06:33:42 GMT
Connection: keep-alive
ETag: "63fef1c6-264"
Accept-Ranges: bytes

45373631 | 2024-05-28T04:53:03.944578

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Tue, 28 May 2024 04:53:03 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 544
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=604800

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:63:c4:6a:1d:15:92:d7:94:30:8f:c6:a9:c2:09:22:d6:86
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: May 18 08:41:05 2023 GMT
            Not After : Aug 16 08:41:04 2023 GMT
        Subject: CN=ai.api.i3.wtf
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:13:2a:2e:e0:86:7f:34:be:9e:95:30:c8:f8:f0:
                    c7:bf:f4:ad:b2:88:2c:f0:ea:ca:97:80:75:25:e1:
                    68:23:d4:e5:6a:03:36:e3:e8:cc:ce:a5:19:a0:c9:
                    90:f0:31:64:84:9c:5b:8e:74:a9:cb:d6:32:36:48:
                    c1:c4:9a:94:8a
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                82:87:A1:BE:DE:93:C7:93:53:2C:78:44:9F:60:9D:FF:29:FB:A8:D7
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:ai.api.i3.wtf
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.44947.1.1.1
                  CPS: http://cps.letsencrypt.org
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : B7:3E:FB:24:DF:9C:4D:BA:75:F2:39:C5:BA:58:F4:6C:
                                5D:FC:42:CF:7A:9F:35:C4:9E:1D:09:81:25:ED:B4:99
                    Timestamp : May 18 09:41:05.315 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:64:E4:80:2A:39:34:57:09:89:FA:E5:67:
                                4F:8F:69:87:A8:C3:36:A7:31:32:F5:21:F4:1E:70:FB:
                                07:15:D8:8A:02:21:00:F0:D8:D7:E0:EA:E9:E8:B5:1E:
                                5D:CA:CC:29:82:62:C1:D8:19:C3:D9:CE:53:15:77:3E:
                                4A:9A:C6:D7:AC:9A:57
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7A:32:8C:54:D8:B7:2D:B6:20:EA:38:E0:52:1E:E9:84:
                                16:70:32:13:85:4D:3B:D2:2B:C1:3A:57:A3:52:EB:52
                    Timestamp : May 18 09:41:05.354 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:FF:E8:00:51:42:F2:E6:69:41:B8:98:
                                DF:C9:5D:6A:22:21:FE:93:13:AF:C7:4A:58:69:70:AA:
                                A8:ED:47:0A:F9:02:20:67:B8:77:65:FF:75:97:B2:FE:
                                32:4A:91:8C:39:93:2C:6E:74:BC:71:00:57:BC:A5:B6:
                                0C:7C:85:F3:F7:5F:EE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        5a:82:c1:82:c8:ee:ed:e5:7d:eb:4a:18:d2:a2:b7:45:58:98:
        09:b4:74:b6:71:8d:8a:7c:11:b7:ee:0d:58:2a:50:ee:45:5d:
        78:29:f9:67:91:17:12:00:e3:9f:b2:11:fa:33:a1:fd:7c:06:
        ba:42:53:5b:2e:2b:32:40:24:7a:5e:63:5c:97:11:5e:25:2a:
        c8:36:6a:6e:2a:97:4e:f8:92:12:49:77:51:e0:f1:14:0c:1d:
        8a:a3:c5:de:94:f0:c9:d0:61:46:07:09:dc:a2:3b:18:9c:41:
        79:bf:68:d8:8c:ac:7d:25:3f:28:f8:51:b2:5b:fe:3d:5d:cc:
        66:ac:3c:4d:d5:c8:53:51:2e:a5:94:f0:a4:b7:3b:0f:47:fd:
        c4:51:1e:0b:8b:c5:74:65:d0:53:b2:ac:80:86:e0:1f:5b:7d:
        f3:3a:26:6a:18:4e:ee:5d:a6:c1:44:9e:55:c9:45:42:ae:11:
        35:14:0c:f2:b5:91:c9:05:ee:54:6d:f0:ad:8f:bd:a0:48:be:
        00:ed:80:25:03:aa:9b:e8:a3:b6:d0:7e:28:6a:4d:e2:5b:56:
        06:55:85:a7:8a:e8:83:2e:60:32:cd:2c:57:fa:53:6e:8b:03:
        dc:be:78:35:63:f0:55:65:93:8a:a9:a7:fc:a9:29:c8:3e:9a:
        81:61:6a:e9

45373631 | 2024-05-18T07:29:40.438575

3000 / tcp

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=604800
Content-Length: 544
Content-Type: text/html; charset=utf-8
Date: Sat, 18 May 2024 07:29:40 GMT

103.118.42.209

Last Seen: 2024-05-30

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

47389644 | 2024-05-30T05:50:20.064835
22 / tcp

OpenSSH8.4p1 Debian 5+deb11u1

1651973090 | 2024-05-25T22:52:33.723826
80 / tcp

nginx1.18.0

45373631 | 2024-05-28T04:53:03.944578
443 / tcp

nginx1.18.0

45373631 | 2024-05-18T07:29:40.438575
3000 / tcp

Products

Pricing

Contact Us

103.118.42.209

Last Seen: 2024-05-30

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

47389644 | 2024-05-30T05:50:20.064835 22 / tcp

OpenSSH8.4p1 Debian 5+deb11u1

1651973090 | 2024-05-25T22:52:33.723826 80 / tcp

nginx1.18.0

45373631 | 2024-05-28T04:53:03.944578 443 / tcp

nginx1.18.0

45373631 | 2024-05-18T07:29:40.438575 3000 / tcp

Products

Pricing

Contact Us

47389644 | 2024-05-30T05:50:20.064835
22 / tcp

1651973090 | 2024-05-25T22:52:33.723826
80 / tcp

45373631 | 2024-05-28T04:53:03.944578
443 / tcp

45373631 | 2024-05-18T07:29:40.438575
3000 / tcp