GeneralInformation

Hostnames	s37.be-on.dev webmonitoring.garant-gruppe.de
Domains	be-on.dev garant-gruppe.de
Country	Germany
City	Falkenstein
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940

WebTechnologies

Miscellaneous

Zabbix

Programming languages

PHP

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

1390064373 | 2024-04-17T17:35:00.155850

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBJVckRHGFZ2lTQPKeiyFiC1J
yDBOGunoelegEeeuEddtjV5RDDiAw4rU5dyTsSt3nXAi7wi7sFlT3TVN2RpSDns=
Fingerprint: 05:83:61:fc:8c:46:d2:d5:6e:59:d5:59:2a:f8:07:b3

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-04-17T15:01:37.457795

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 17 Apr 2024 15:01:37 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Wed, 10 May 2023 14:18:36 GMT
Connection: keep-alive
ETag: "645ba7bc-264"
Accept-Ranges: bytes

1224197778 | 2024-04-15T21:42:13.208827

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 15 Apr 2024 21:42:13 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Set-Cookie: zbx_session=eyJzZXNzaW9uaWQiOiJmYzQ5ZTk2ZGM4M2I4YjQ3YjczZTcyYmYzYzg0ZGRiMCIsInNpZ24iOiI1MmYzZDNjZGIxY2FlMTQ2ZTg5ZjVmNjg5M2FhOTNiZGU4ZWQxMDc0ODgzNDViN2NhYmQ1MzZmOTNhZjdhYzMyIn0%3D; secure; HttpOnly

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:e0:33:3e:dc:55:b1:cf:e6:88:4c:03:1b:93:b1:95:50:da
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 12 09:45:56 2024 GMT
            Not After : Jun 10 09:45:55 2024 GMT
        Subject: CN=webmonitoring.garant-gruppe.de
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:e9:47:77:a1:44:35:ea:46:32:b7:08:2b:83:dd:
                    5f:57:e7:3d:cd:f8:38:1f:6c:bc:62:13:30:98:4b:
                    da:56:bb:c3:19:5e:71:d6:99:3d:3d:d0:71:3c:83:
                    e0:0e:35:c4:4b:d0:5b:c0:cc:ad:a9:89:ed:6e:62:
                    53:aa:91:4e:a4
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                12:2A:6C:4B:CF:94:1D:7B:D8:D6:00:B3:FF:9E:57:81:48:F3:6A:14
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:webmonitoring.garant-gruppe.de
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 12 10:45:56.673 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:2E:AB:40:65:B3:BE:C6:2A:50:95:58:B9:
                                1E:0B:8B:A3:15:27:84:E5:5D:67:A9:2D:85:D4:CE:71:
                                B7:86:3B:DD:02:21:00:C5:45:38:3F:9E:24:E4:E4:53:
                                71:CB:51:37:81:6C:78:31:8B:59:FF:8D:44:83:08:FF:
                                7B:D8:52:FF:7A:98:B2
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar 12 10:45:56.747 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:9C:05:C4:4D:EA:E7:D2:B0:77:D9:F7:
                                29:3A:F0:46:02:29:64:9E:7E:4B:4C:3A:2A:50:8A:43:
                                3A:78:F5:15:E2:02:21:00:D3:96:F0:25:F8:D5:7E:30:
                                54:2C:BF:BF:E1:C8:37:3B:DE:29:83:C2:64:88:B7:4B:
                                E7:F0:77:6D:5D:18:C3:D9
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        7a:00:76:9f:f0:48:80:1b:f0:c2:7f:aa:d7:bf:6d:18:1a:19:
        63:c7:de:87:68:d2:de:cf:7d:4f:3b:e6:04:ca:88:81:09:ac:
        f3:aa:ab:27:96:fb:9f:ca:20:42:36:a8:ca:e7:d3:e8:93:b5:
        b5:db:cf:29:d1:65:ba:30:89:60:24:9e:6b:90:9d:ed:c8:fb:
        24:c8:b0:4b:29:7b:3b:12:11:5f:61:12:0d:77:a9:33:1f:c3:
        75:94:4d:b3:28:c5:41:40:f4:0a:01:77:89:fd:80:cd:ab:00:
        6c:11:20:64:fc:fe:89:49:1b:72:23:f2:96:81:05:53:86:a7:
        63:38:90:80:64:1f:95:b7:7e:33:ba:7a:80:05:b3:2b:aa:27:
        4f:bd:cb:a6:9e:85:8c:73:21:5f:6d:cc:31:7a:ef:f7:14:7e:
        3c:63:b3:23:d5:c4:1d:f6:46:93:cd:28:8f:c4:3a:78:85:5a:
        9a:0f:aa:bd:f5:e6:8b:6e:81:63:ca:5f:05:c7:3f:68:cf:d9:
        65:7c:e3:b2:13:a9:66:5a:28:fe:a3:1e:74:71:e8:c2:e8:82:
        24:86:14:51:59:f0:0d:97:2b:e6:70:f9:e1:13:28:7f:cb:14:
        45:93:8a:d6:b8:bc:ed:f6:90:78:02:05:d3:75:5a:8c:97:c2:
        af:5a:69:48

116.202.28.20

Last Seen: 2024-04-17

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1390064373 | 2024-04-17T17:35:00.155850
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

1651973090 | 2024-04-17T15:01:37.457795
80 / tcp

nginx1.18.0

1224197778 | 2024-04-15T21:42:13.208827
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

116.202.28.20

Last Seen: 2024-04-17

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1390064373 | 2024-04-17T17:35:00.155850 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

1651973090 | 2024-04-17T15:01:37.457795 80 / tcp

nginx1.18.0

1224197778 | 2024-04-15T21:42:13.208827 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

1390064373 | 2024-04-17T17:35:00.155850
22 / tcp

1651973090 | 2024-04-17T15:01:37.457795
80 / tcp

1224197778 | 2024-04-15T21:42:13.208827
443 / tcp