GeneralInformation

Hostnames	api.shadearchive.securesecrets.org rpc.shadearchive.securesecrets.org
Domains	securesecrets.org
Country	United States
City	Washington
Organization	Leaseweb USA, Inc.
ISP	Leaseweb USA, Inc.
ASN	AS30633

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

955924389 | 2024-05-06T09:11:20.116581

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBO37DL6jzD52oCYndCbTND0e
MhcKwmdu38p+/hrA2BDM6Hn9/ev66faEpMgoGkXfrBwjX9v8PUphEsX/AOLIifk=
Fingerprint: 84:44:8d:50:56:3a:26:51:b1:2b:07:3f:f3:84:66:70

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

677579724 | 2024-05-03T21:07:08.697956

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 03 May 2024 21:07:08 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

1593744911 | 2024-04-29T20:59:41.802210

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 29 Apr 2024 20:59:41 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Server-Time: 1714424381
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, POST, OPTIONS

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:8b:42:ad:7f:fe:8e:c4:5e:3a:48:7d:6c:e6:1c:4a:d2:e4
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 24 00:11:46 2024 GMT
            Not After : Jun 22 00:11:45 2024 GMT
        Subject: CN=api.shadearchive.securesecrets.org
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b2:ca:6a:3b:6d:a6:ca:71:a8:4f:fd:4f:bc:ce:
                    3e:c4:65:46:b0:90:47:7a:4a:ec:50:ec:a6:5a:9b:
                    bc:db:3a:d5:2b:92:8b:6b:a7:fc:f7:e0:67:b5:28:
                    49:47:d3:b4:a5:02:fa:a6:c1:3c:d4:2b:1d:d5:80:
                    a8:96:dc:fe:87:24:b7:d5:8f:43:91:d5:bb:61:7e:
                    64:21:39:72:5a:38:85:99:f4:2b:c2:93:3e:67:8e:
                    95:a1:a1:f5:5f:bf:9d:12:00:c8:a0:dd:5a:8d:87:
                    a1:50:e8:6c:38:ef:90:b4:b1:ad:12:5d:18:73:a3:
                    67:07:e5:04:89:5f:06:90:d2:7f:e7:70:8a:9a:b1:
                    4d:e8:f6:8d:d2:d4:ac:0d:b6:87:9e:24:b3:4c:aa:
                    79:8d:1a:d6:88:1c:aa:d2:32:9f:14:c0:c9:40:56:
                    cc:74:c9:95:c3:6b:a2:3c:85:9c:10:35:c4:ab:23:
                    90:41:24:45:b0:be:96:b0:2c:ff:10:10:eb:99:c3:
                    a4:eb:ad:e1:c7:88:3e:7e:ac:d2:69:d5:a3:a7:71:
                    43:5b:33:c1:77:d7:f9:61:02:01:fe:9c:08:f1:8d:
                    bd:87:62:c8:16:e3:2f:0e:89:66:dc:51:ad:88:54:
                    9f:14:20:65:f7:d4:87:ef:40:d6:98:81:d0:44:a6:
                    fb:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                34:8B:B1:6E:AB:08:E8:CB:0A:E5:15:F5:E8:64:3E:22:F4:9A:71:4F
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:api.shadearchive.securesecrets.org, DNS:rpc.shadearchive.securesecrets.org
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Mar 24 01:11:46.141 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:AD:41:55:53:FD:87:01:77:B6:B4:01:
                                D2:8E:DF:B7:0F:54:90:79:CC:2B:F9:71:FF:89:2D:27:
                                A3:14:B8:1C:DB:02:20:09:C0:5D:92:12:FC:5D:7A:08:
                                81:17:A1:F9:4F:D5:5C:2C:31:0D:25:B4:38:3F:1F:F9:
                                A6:39:65:F4:C5:FC:4B
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Mar 24 01:11:48.145 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:04:F9:ED:B4:76:D8:39:89:73:FB:2B:66:
                                EB:2B:18:F0:5D:28:33:C7:CB:EC:37:C7:47:F1:2D:51:
                                50:50:6A:6A:02:20:52:7C:D2:E9:29:6C:B3:44:8B:E2:
                                7A:B9:F8:46:E8:23:2A:8A:19:26:78:29:69:0B:FD:6B:
                                A0:FB:D7:62:BA:7E
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        9f:2e:b8:c9:77:1f:27:01:e0:3e:3f:15:50:6a:d3:c0:de:a7:
        c6:05:cb:df:1d:ad:a6:34:01:85:41:a7:d4:74:30:52:0e:20:
        39:0b:bc:e6:ea:59:9b:ba:f3:a1:1a:2a:01:2b:47:38:f7:84:
        0b:48:2d:d0:76:bb:97:5a:fb:28:1d:f5:9f:2d:ea:12:96:f8:
        4b:28:2d:13:89:87:6a:ea:06:cd:ea:27:02:02:75:f2:07:37:
        10:79:26:53:f9:d5:52:4d:f5:30:b7:7f:01:45:de:bf:85:57:
        3e:e0:7d:2c:67:9d:25:fc:a0:74:9f:dc:21:83:ed:57:34:77:
        9d:90:f8:b8:e5:fd:ed:54:c9:d6:46:61:83:10:77:e9:b9:cc:
        c5:fe:0d:d3:d4:8e:1a:83:24:5b:fe:d9:5c:b8:02:1b:77:8f:
        55:80:a1:ac:f8:a0:82:2d:35:6a:7c:d4:83:c2:5f:bf:34:fd:
        7c:fa:fa:8c:a6:60:a5:5e:79:10:fc:3a:9f:ec:74:c4:df:15:
        e5:f2:25:fb:34:49:ca:f1:ef:2b:5b:fb:81:35:bc:1c:71:0d:
        ed:ed:43:c5:69:e7:c2:eb:c0:f9:84:2d:ee:ed:49:50:6c:31:
        89:c8:22:84:02:c6:2c:7f:f1:f7:00:06:1f:dd:4b:c2:2f:2e:
        d2:33:16:d0

108.59.9.162

Last Seen: 2024-05-06

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

955924389 | 2024-05-06T09:11:20.116581
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

677579724 | 2024-05-03T21:07:08.697956
80 / tcp

nginx1.18.0

1593744911 | 2024-04-29T20:59:41.802210
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

108.59.9.162

Last Seen: 2024-05-06

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

955924389 | 2024-05-06T09:11:20.116581 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

677579724 | 2024-05-03T21:07:08.697956 80 / tcp

nginx1.18.0

1593744911 | 2024-04-29T20:59:41.802210 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

955924389 | 2024-05-06T09:11:20.116581
22 / tcp

677579724 | 2024-05-03T21:07:08.697956
80 / tcp

1593744911 | 2024-04-29T20:59:41.802210
443 / tcp