GeneralInformation

Hostnames	redloris.lk dataprovider.redloris.lk www.redloris.lk
Domains	redloris.lk
Cloud Provider	DigitalOcean
Cloud Region	sg-05
Country	Singapore
City	Singapore
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

929013686 | 2024-05-01T01:39:35.612264

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQC9VaqHPZMBttlFrXNKzyRDCs97uiM3qaQ+L+a9h7PVvjBO
OLU8NWIa8H98ihERq7QR5qVpN/LYN8+lfj34b8FeUqa5G3dgzhbqmrsjsnsd8JWOKKaSzBVe7Rqd
Q/J7uI2/m1Dk5MxMQDNym9MYrDYqxzY+LH0URapN69BW1i6px7vlOyUc5opl/mwr2O7fG+Ew3VJT
gWBa4ILGbxgalC7WZ6tAO20rx6EolDvWbwBTb8vFrXWqpfKz+wY7Y/IGLmf6KIggOS6YWJVy39tA
eCrnaEfhGmX+F0iJ4Ww44YmgkCoJsEwC4bY4xPpHv4QkcJdhQx5upkogNWKpJDZ+WL1xIu+1Ptvd
9h38t13VbU7rtqNeIT6gVxw1lZOO1jawghhGj1gJ+WI3iJE9zKYAOCAf5WSbMLSx9SuWciiIkkfF
xS/nHyhacVkG+N2ZjWDlv2KT/WOGnLL8PNxq+HywtlNOFcKrJxCsOa5HkRQf62kLH2qFpoY5tDJt
3d6U97Cj7Y8=
Fingerprint: 03:2f:68:92:a0:3a:54:ac:28:b9:ce:3a:d6:d4:54:5e

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-04-27T16:01:04.563274

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 27 Apr 2024 16:01:02 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Sun, 29 Nov 2020 16:26:05 GMT
Connection: keep-alive
ETag: "5fc3cb9d-264"
Accept-Ranges: bytes

780672404 | 2024-04-28T20:58:23.288806

443 / tcp

HTTP/1.1 502 Bad Gateway
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 28 Apr 2024 20:58:23 GMT
Content-Type: text/html
Content-Length: 568
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:ba:cc:9a:b9:68:70:9f:b0:68:fd:ac:d3:4c:39:d4:3b:0a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 12 04:32:01 2024 GMT
            Not After : Jul 11 04:32:00 2024 GMT
        Subject: CN=redloris.lk
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b5:6a:4f:d5:f7:e6:e0:1b:fe:fa:14:23:ac:dc:
                    4c:a0:9b:8c:bc:77:c0:dc:83:cf:17:97:a7:e4:53:
                    37:e1:6d:2e:9c:1e:27:f2:36:63:9f:cf:ae:7a:70:
                    ca:ff:b6:5a:4d:29:41:6a:e1:5d:8f:89:97:2a:50:
                    bd:c5:cb:3d:4f:84:a3:b0:f7:47:41:bf:13:34:e3:
                    44:b5:83:42:f6:bb:4a:a5:59:0f:18:f7:09:23:b3:
                    64:80:02:84:93:b3:c4:09:42:7c:50:03:d9:7b:1d:
                    50:0a:90:c8:cd:91:bf:5e:1f:0e:0c:2c:28:e6:50:
                    58:0d:e9:84:0a:62:c5:f0:2c:21:30:d5:f4:ac:25:
                    da:4b:2f:e3:ff:fe:7e:0d:57:8f:02:03:3d:37:21:
                    ef:39:45:55:ec:ae:d9:88:f9:05:a7:7a:1e:63:d2:
                    d7:65:ba:8b:fd:a5:17:2e:5a:5a:f5:4c:94:df:15:
                    0c:fd:b6:ad:bf:5d:56:4e:12:68:21:29:cb:24:27:
                    55:c5:22:86:e2:a2:79:24:84:1a:8c:67:78:6b:80:
                    a2:36:7e:27:f4:9e:f7:e8:a3:e6:22:50:8d:c0:21:
                    61:16:3c:30:05:e8:29:46:fa:90:c7:4b:f6:1d:45:
                    1b:65:0a:29:5b:c3:35:6e:b2:c9:fb:a1:a2:e1:6d:
                    f0:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                98:34:74:BD:B6:2D:49:6B:C9:36:F3:35:B9:CC:42:BC:CC:63:1B:7B
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:dataprovider.redloris.lk, DNS:redloris.lk, DNS:www.redloris.lk
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 12 05:32:01.086 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:01:40:F0:89:7A:01:C9:55:1B:90:2E:61:
                                B3:65:2B:A0:99:CD:05:15:7A:B2:74:AD:85:7C:D6:D8:
                                76:6C:35:00:02:20:4E:DE:6B:04:88:82:6D:DF:60:4C:
                                6C:CB:6D:89:30:F9:DB:07:A2:D9:3B:24:AC:BA:1B:68:
                                EC:E4:B4:69:E5:7C
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Apr 12 05:32:01.165 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:B0:83:4C:DF:66:CB:E0:64:2A:69:FC:
                                9B:AE:B4:96:7D:94:5B:67:63:CC:D2:E4:A2:01:74:07:
                                4A:AB:31:44:C9:02:20:53:71:25:81:31:AE:04:A5:79:
                                2F:03:F9:DD:7C:EA:EC:92:3A:8E:74:71:E8:1A:D0:3B:
                                6B:C2:F6:87:AA:3C:C7
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        54:ca:10:af:1e:9f:43:b3:36:05:fe:08:25:74:e7:87:31:66:
        e8:9e:ee:c0:35:02:8a:e8:51:30:73:8a:f6:10:4e:77:3d:f7:
        db:10:83:d4:69:0e:00:54:a0:6d:6f:97:f4:98:52:c4:3e:6c:
        72:82:13:f3:b4:b5:ca:ea:d5:81:a6:76:a9:b2:22:14:67:e2:
        4f:7d:ba:b7:2d:df:c8:d6:43:8b:4b:6d:d0:f0:46:e0:99:5b:
        2a:95:49:6f:62:52:d3:b5:bf:1e:88:12:0b:6c:c1:b0:b0:25:
        62:08:cf:e4:f0:d2:a9:49:7d:90:45:7e:3b:52:e9:84:de:5b:
        9d:78:67:7e:bf:c6:8c:89:9e:0a:e5:ad:6f:22:56:14:73:56:
        3f:8d:ba:4c:cb:1a:8b:a9:19:4b:57:ca:c4:cc:f5:50:1f:2b:
        1a:96:eb:65:67:9a:c8:70:c6:7a:ba:54:d3:cf:fd:ee:9d:08:
        24:62:fe:67:5d:0f:56:cb:f2:bd:95:a8:60:5c:11:ff:8e:b4:
        05:f4:dc:90:32:46:e6:51:75:d9:fb:95:da:ff:68:83:4b:0d:
        eb:22:75:51:19:e1:04:c4:b5:99:e3:d1:ab:ae:64:bf:eb:af:
        56:fd:2d:17:1b:9d:7d:83:c1:0b:cb:eb:38:d9:80:71:39:69:
        08:41:fa:7a

128.199.221.143

Last Seen: 2024-05-01

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

929013686 | 2024-05-01T01:39:35.612264
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-04-27T16:01:04.563274
80 / tcp

nginx1.18.0

780672404 | 2024-04-28T20:58:23.288806
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

128.199.221.143

Last Seen: 2024-05-01

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

929013686 | 2024-05-01T01:39:35.612264 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-04-27T16:01:04.563274 80 / tcp

nginx1.18.0

780672404 | 2024-04-28T20:58:23.288806 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

929013686 | 2024-05-01T01:39:35.612264
22 / tcp

1651973090 | 2024-04-27T16:01:04.563274
80 / tcp

780672404 | 2024-04-28T20:58:23.288806
443 / tcp