GeneralInformation

Hostnames	mw.basketbros.io 104.238.162.104.vultrusercontent.com
Domains	basketbros.io vultrusercontent.com
Cloud Provider	Vultr
Country	United States
City	Elk Grove Village
Organization	Vultr Holdings, LLC
ISP	The Constant Company, LLC
ASN	AS20473

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

-1204608303 | 2024-06-04T11:23:41.412984

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQCWkPVsJbzlscTwVW2ntq5M+pZH1H7wUjtRDQVn7egTPMmb
fvx2omuiygN8YBkwkRzthcvIlP6cqDhVHviRV852wzDiTIrE+/iZpXievqeSTu5Fl7i4NuP0yXHA
2y9pSHgJ2xajGVkzP0Lc7Cf6MzzNI0THJrTRBS0FLkCKjrFKYzCl/VR4YTLdgIoGyTqpUCoWQIoX
HD+ivJno/vDDxMcvcfMfN9lhkIg0qcPPayGSCnu1dge2LfVypB53VB5ryYSmZ/EKGJXLxulBaZWq
2BBAoUzOhp7hkZF21BD9TYp75t7E41J7J3waAr1S3b7GyFaTUwZW2f8AY54dAvvEC1wTlsflqpgY
gv+WPbc2TzgJ584xaRKp22N/0qhNtHEAiKCUnCzYxY3TuGW0fNcgpUumYDvhzyDFlrJszaZcmiXp
aJEeQ9GzydYGi+iVB1aTNR8NkIfwGRmqZclodtPXANPxlLut9NLIiHIgrKVtbDr6nyAE2313tSyA
gvdTRcakTvs=
Fingerprint: 84:1f:8d:ea:4f:cb:6c:f9:6f:34:a1:0f:36:17:a8:66

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-06-04T04:59:55.682727

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 04 Jun 2024 04:59:55 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Tue, 21 Apr 2020 14:09:01 GMT
Connection: keep-alive
ETag: "5e9efe7d-264"
Accept-Ranges: bytes

1651973090 | 2024-05-30T16:31:28.374021

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 30 May 2024 16:31:28 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Tue, 21 Apr 2020 14:09:01 GMT
Connection: keep-alive
ETag: "5e9efe7d-264"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:16:09:e9:95:19:c1:98:2f:e8:be:f3:4b:53:7c:ea:f8:c2
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb 29 15:59:26 2024 GMT
            Not After : May 29 15:59:25 2024 GMT
        Subject: CN=mw.basketbros.io
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ef:e1:ac:ec:c9:ec:ec:05:0e:93:36:6a:35:3d:
                    17:55:7e:b2:c6:d2:09:0a:fc:f7:9f:05:b0:5b:2c:
                    e9:52:d4:1f:c6:d6:fd:6b:de:f5:43:49:3b:ac:92:
                    b8:3f:06:73:73:35:44:9d:50:ee:df:e8:61:6a:f3:
                    52:d8:8d:2f:b0:65:f8:48:e5:90:64:05:58:ae:7e:
                    09:ba:b4:4f:6b:6e:18:ba:fe:88:ef:e2:46:b1:93:
                    9c:fb:fe:fb:d4:33:d5:87:3e:58:0c:c4:bb:99:37:
                    29:82:e0:b3:f9:3d:c4:cb:53:5c:6b:3f:47:db:71:
                    50:0c:86:eb:cc:57:e4:68:7d:0d:fb:2e:f3:9a:aa:
                    b2:95:2d:9e:ee:e2:e4:fc:e6:6f:6a:fa:19:79:a4:
                    b1:d0:9d:21:cf:3a:9f:23:08:f9:17:b9:64:e0:94:
                    9f:4d:78:37:0d:ad:dd:91:a8:65:44:82:4c:61:4d:
                    71:e7:a4:81:76:94:c4:f3:fc:22:dc:2c:65:d4:bf:
                    14:49:c6:af:00:f1:50:ce:10:27:12:11:3c:de:e7:
                    0a:2c:62:75:25:c1:07:4d:f9:e5:9a:a2:a3:24:34:
                    bb:10:57:06:28:34:fb:58:01:63:89:2e:fc:2b:50:
                    34:51:57:2a:8e:46:08:80:e5:09:de:e0:87:bc:0c:
                    1b:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                82:A9:C9:53:9F:3A:91:02:57:2E:F9:50:9B:82:B3:EB:25:E1:22:EF
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:mw.basketbros.io
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Feb 29 16:59:26.964 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:96:F7:EB:90:2B:C9:FE:29:ED:24:7A:
                                74:4E:41:D3:9F:43:0B:21:61:F3:2F:5B:F3:12:D9:FF:
                                13:9A:93:FE:95:02:20:7E:E5:02:1A:C1:6D:37:39:A4:
                                22:3B:11:11:B3:7C:FB:BC:16:D4:47:DE:51:60:C0:7C:
                                A4:58:0D:69:B6:40:07
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Feb 29 16:59:26.951 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D2:2E:74:5B:9A:A9:8F:F6:AF:F4:E9:
                                91:B1:E2:B3:C7:2D:9C:14:7E:43:39:8F:C4:8D:11:E6:
                                04:2A:AF:CF:2F:02:21:00:DC:C2:F6:F8:BA:50:E5:97:
                                17:D2:38:C0:80:F9:82:D2:F9:F0:32:D5:E0:E5:97:76:
                                64:23:52:B0:E8:E4:95:61
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        19:03:1c:fe:af:05:af:fd:38:95:81:3e:91:2c:7a:cf:58:0f:
        de:3f:49:f0:cc:21:08:d4:77:71:f6:72:4f:4c:8c:7a:fc:ee:
        20:1d:57:4d:49:b2:fd:21:09:63:a2:17:f8:cc:a0:d8:81:45:
        59:f4:ff:cf:be:41:88:6a:8a:dc:68:87:75:d6:da:aa:ad:0d:
        cc:9b:6e:d3:4b:0b:87:00:83:24:02:5d:07:7c:f5:fa:eb:75:
        3a:be:d7:4b:c8:0d:f3:36:a5:e1:77:6f:ae:a5:40:68:a6:39:
        13:ec:97:d5:58:26:cd:b4:5e:6c:68:07:1b:dc:df:f4:eb:29:
        35:40:9b:4e:57:12:9a:bc:b3:c8:32:4d:ef:72:64:97:96:e9:
        36:4c:e0:0d:7c:e3:b5:73:c2:df:c7:fd:4e:26:1f:d6:db:34:
        f3:a3:92:3d:65:19:97:19:e0:d8:7e:e6:16:76:01:12:f1:f5:
        76:56:43:f5:27:3c:29:13:fd:9a:c6:90:86:45:46:1e:a9:82:
        db:ec:6c:a1:c8:23:c2:c9:07:fb:2d:c4:0a:33:ab:40:7f:08:
        b9:16:89:35:7c:d4:32:e3:95:d2:db:8c:5b:88:9d:8a:c9:70:
        5d:ef:2b:b2:2c:ed:6e:2c:dd:5b:51:2e:2f:3d:53:c9:c8:7c:
        be:77:ae:e8

104.238.162.104

Last Seen: 2024-06-04

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1204608303 | 2024-06-04T11:23:41.412984
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-06-04T04:59:55.682727
80 / tcp

nginx1.18.0

1651973090 | 2024-05-30T16:31:28.374021
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

104.238.162.104

Last Seen: 2024-06-04

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1204608303 | 2024-06-04T11:23:41.412984 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-06-04T04:59:55.682727 80 / tcp

nginx1.18.0

1651973090 | 2024-05-30T16:31:28.374021 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-1204608303 | 2024-06-04T11:23:41.412984
22 / tcp

1651973090 | 2024-06-04T04:59:55.682727
80 / tcp

1651973090 | 2024-05-30T16:31:28.374021
443 / tcp