GeneralInformation

Hostnames	alkemmarketplace.com ec2-13-232-54-40.ap-south-1.compute.amazonaws.com
Domains	alkemmarketplace.com amazonaws.com
Cloud Provider	Amazon
Cloud Region	ap-south-1
Cloud Service	EC2
Country	India
City	Mumbai
Organization	Amazon Data Services India
ISP	Amazon.com, Inc.
ASN	AS16509

WebTechnologies

A/B Testing

OneSignal

Analytics

Google Analytics

Marketing automation

OneSignal

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2019-20372	4.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.

OpenPorts

80 443

1949896279 | 2024-04-22T17:24:38.390544

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: awselb/2.0
Date: Mon, 22 Apr 2024 17:24:38 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Location: https://13.232.54.40:443/

-1216659001 | 2024-04-23T18:02:05.112410

443 / tcp

HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 18:02:04 GMT
Content-Type: text/html
Content-Length: 1568
Connection: keep-alive
Server: nginx/1.16.1
Last-Modified: Tuesday, 23-Apr-2024 18:02:04 GMT
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0c:ae:c8:3b:ef:d4:41:45:f1:ed:7b:09:58:b6:4d:3a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M03
        Validity
            Not Before: Apr  2 00:00:00 2024 GMT
            Not After : May  1 23:59:59 2025 GMT
        Subject: CN=alkemmarketplace.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:bc:80:d1:f2:b0:75:61:f2:b7:42:c7:36:63:44:
                    99:6d:ab:80:d0:28:1a:06:f2:bb:32:f8:12:c3:24:
                    c4:b1:17:cd:97:e1:fb:16:e0:72:32:1f:2e:38:77:
                    73:63:80:0e:80:81:a8:17:26:10:cc:f3:33:1e:37:
                    38:5b:43:38:fd:db:78:df:ce:11:9a:6f:ff:8e:66:
                    17:93:8e:8c:e4:71:ce:2f:00:59:cc:5f:bf:39:f8:
                    5e:41:71:44:b3:c9:a2:37:db:68:6c:5c:ae:7b:ee:
                    17:b5:40:36:56:79:8d:0e:30:19:e5:99:58:1a:3d:
                    22:4f:4a:89:5d:26:f4:02:da:63:2c:14:59:46:3c:
                    a7:9e:ef:53:76:e3:f5:e7:6d:dc:fd:ee:bc:00:1e:
                    60:d6:26:1d:4f:d9:b5:57:c2:90:df:8a:de:7b:d8:
                    a5:ea:85:5d:b8:eb:16:52:ad:54:f5:b8:65:c2:bc:
                    44:c1:35:6c:ee:03:a8:e1:c3:44:85:20:9f:de:ba:
                    40:fc:20:67:99:e7:88:8e:09:ec:b3:06:55:c8:8b:
                    de:f0:51:27:48:b3:e4:de:35:68:fe:05:ba:b3:14:
                    1e:b8:ab:be:1b:0d:24:8a:92:38:5e:48:0a:5c:ad:
                    69:e9:16:c3:d5:06:ab:b7:d6:e6:55:1d:ae:6e:b1:
                    a3:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                55:D9:18:5F:D2:1C:CC:01:E1:58:B4:BE:AB:D9:55:42:01:D7:2E:02
            X509v3 Subject Key Identifier: 
                8E:B7:30:5A:DD:FF:41:8B:2F:68:D5:49:1C:10:B7:E4:22:4F:00:C3
            X509v3 Subject Alternative Name: 
                DNS:alkemmarketplace.com, DNS:*.alkemmarketplace.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m03.amazontrust.com/r2m03.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m03.amazontrust.com
                CA Issuers - URI:http://crt.r2m03.amazontrust.com/r2m03.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Apr  2 00:15:52.485 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:B5:3C:18:68:D1:86:1B:E8:35:A5:CD:
                                83:B1:A1:F2:2E:13:7D:9C:60:EC:CC:C5:83:83:CE:58:
                                2C:FE:DB:4B:83:02:21:00:80:46:F7:73:9F:EE:6C:A7:
                                92:05:7C:82:1D:80:E0:E7:E9:F1:A9:7B:0D:54:AF:60:
                                71:7B:39:9A:B0:AA:7E:D3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Apr  2 00:15:52.544 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:FE:E9:EE:9B:F1:EE:BA:0D:BD:BE:7E:
                                A7:8E:35:A8:00:B3:12:B9:D3:35:9B:6A:6F:EE:94:01:
                                CD:27:A0:09:CD:02:21:00:E8:5D:F7:6F:D7:B9:59:40:
                                C7:A6:9D:2B:E6:6E:74:5C:03:4D:F3:7A:7C:44:D5:1A:
                                09:E4:0B:0F:73:26:2B:E1
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Apr  2 00:15:52.567 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:B5:0A:FE:D9:E4:88:74:8C:83:6E:08:
                                1C:9E:40:2C:C2:7B:1B:AB:A8:45:54:60:BA:08:DD:AB:
                                39:64:C1:25:FA:02:20:14:A7:74:4F:28:A0:A1:1C:2D:
                                77:95:0F:B7:12:5F:57:A5:96:EE:03:70:5A:7F:B4:CB:
                                CA:33:47:4E:B3:9C:D9
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        73:89:e0:f9:97:cf:ba:95:b9:95:61:d1:69:d7:ed:97:f5:3d:
        57:d9:fe:83:ff:7b:bf:b3:07:18:65:11:0c:04:2c:05:aa:6b:
        74:d3:69:d3:38:12:b7:d9:46:71:bd:a5:36:1e:f7:d6:e5:02:
        04:80:88:8a:b2:ce:5d:db:70:36:49:05:db:44:86:dc:a6:68:
        9f:f1:07:55:4c:09:bf:87:82:29:8c:d2:15:ad:8e:36:94:3d:
        83:31:81:51:df:7c:b1:b5:63:73:6a:cd:17:ea:ca:46:2a:11:
        73:e8:36:22:ad:c3:36:1b:bc:ba:d7:6a:dc:1c:da:c4:6d:85:
        2c:d7:4e:04:38:df:bd:73:9d:aa:e7:fb:22:44:7f:91:27:ce:
        02:fe:cd:d4:67:0e:19:38:2c:69:dd:5d:15:f3:87:26:5f:b0:
        ee:9e:cd:40:d5:74:12:5e:2f:07:36:63:3c:64:ea:dc:bf:64:
        f1:ce:2e:b7:a7:cb:c1:e6:9f:a9:8a:90:ba:c5:c0:ac:d0:24:
        72:0c:88:b4:3a:1a:e2:36:1d:0d:82:4e:97:8c:86:93:5b:23:
        c0:c9:3e:18:bf:ef:ac:47:1f:86:73:5a:b0:bf:ad:31:b5:e4:
        c7:e9:01:37:1f:36:86:f4:fd:54:4e:68:7d:e9:d0:49:e1:81:
        83:8d:55:b8

13.232.54.40

Last Seen: 2024-04-23

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1949896279 | 2024-04-22T17:24:38.390544
80 / tcp

AWS ELB2.0

-1216659001 | 2024-04-23T18:02:05.112410
443 / tcp

nginx1.16.1

Products

Pricing

Contact Us

13.232.54.40

Last Seen: 2024-04-23

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1949896279 | 2024-04-22T17:24:38.390544 80 / tcp

AWS ELB2.0

-1216659001 | 2024-04-23T18:02:05.112410 443 / tcp

nginx1.16.1

Products

Pricing

Contact Us

1949896279 | 2024-04-22T17:24:38.390544
80 / tcp

-1216659001 | 2024-04-23T18:02:05.112410
443 / tcp