GeneralInformation

Hostnames	ec2-13-251-97-173.ap-southeast-1.compute.amazonaws.com api.mysuki.io
Domains	amazonaws.com mysuki.io
Cloud Provider	Amazon
Cloud Region	ap-southeast-1
Cloud Service	EC2
Country	Singapore
City	Singapore
Organization	Amazon Data Services Singapore
ISP	Amazon.com, Inc.
ASN	AS16509

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

-1060095501 | 2024-04-09T15:27:13.887515

80 / tcp

HTTP/1.1 404 Not Found
Date: Tue, 09 Apr 2024 15:27:13 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 139
Connection: keep-alive
Server: nginx/1.20.0
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff

-76842876 | 2024-04-15T12:31:30.610047

443 / tcp

HTTP/1.1 200 OK
Date: Mon, 15 Apr 2024 12:31:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 89
Connection: keep-alive
Server: nginx
Content-Security-Policy: default-src 'self';base-uri 'self' https://static.mysuki.io;block-all-mixed-content;font-src 'self' https: data: https://fonts.gstatic.com;form-action self;frame-ancestors self;img-src 'self' data: https://static.mysuki.io;object-src none;script-src self;script-src-attr none;style-src 'self' https: 'unsafe-inline' https://static.mysuki.io https://fonts.googleapis.com/;upgrade-insecure-requests
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
X-DNS-Prefetch-Control: on
Expect-CT: max-age=86400, enforce
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
Origin-Agent-Cluster: ?1
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin,origin
X-XSS-Protection: 0
Vary: Origin
ETag: W/"59-aLlaaNaDHglz+XTG9LdguGUz9bQ"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:93:e4:2c:11:7b:c2:78:b9:88:26:af:90:22:ec:04
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M02
        Validity
            Not Before: Nov  1 00:00:00 2023 GMT
            Not After : Nov 30 23:59:59 2024 GMT
        Subject: CN=api.mysuki.io
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c2:68:f5:71:11:e6:86:63:a3:99:8b:36:62:1c:
                    db:5f:0f:10:fb:a6:f4:4c:7a:30:a6:16:e5:e5:7f:
                    35:4a:f5:17:40:04:10:f0:b3:48:32:45:de:97:d3:
                    a7:fe:04:07:72:8b:47:aa:98:58:bf:fd:5c:94:67:
                    52:c2:cd:63:00:41:93:6f:14:80:4f:30:f5:3c:a8:
                    18:db:01:e5:4f:4b:f5:19:fa:f2:fc:a5:70:03:31:
                    7e:06:01:bc:15:9e:a2:9f:51:87:b2:83:d1:32:a9:
                    37:b7:e9:2c:39:fc:9f:85:bb:c8:22:50:33:b1:1a:
                    35:7e:ed:19:86:bd:79:de:db:9b:54:e1:b0:f2:14:
                    71:e5:c6:de:5f:7a:53:ce:a8:74:7e:2c:fd:b7:58:
                    b9:40:aa:43:ad:a3:1c:ba:64:ed:2e:1a:fa:4e:37:
                    5b:e6:ca:9d:17:24:76:b4:a1:10:a9:7d:34:75:b4:
                    15:f0:e6:d5:6d:e7:bc:d6:aa:2c:52:3f:bd:18:93:
                    89:7e:45:bb:6b:ba:ec:d2:6a:77:b7:31:1a:5c:c9:
                    60:dd:21:c6:5f:ad:83:f7:ef:e8:36:4f:82:d1:b0:
                    f4:52:97:d0:da:6e:63:17:b9:2a:69:cd:bd:e0:f1:
                    27:a0:ed:25:97:91:f4:cc:0e:7e:d4:87:f1:ea:95:
                    a4:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                C0:31:52:CD:5A:50:C3:82:7C:74:71:CE:CB:E9:9C:F9:7A:EB:82:E2
            X509v3 Subject Key Identifier: 
                B4:EB:74:F9:A3:BC:00:A0:39:05:A3:79:08:4C:10:E2:B9:6B:41:34
            X509v3 Subject Alternative Name: 
                DNS:api.mysuki.io, DNS:*.api.mysuki.io
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m02.amazontrust.com/r2m02.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m02.amazontrust.com
                CA Issuers - URI:http://crt.r2m02.amazontrust.com/r2m02.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Nov  1 00:26:16.228 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:B8:7E:07:07:41:1B:B7:0D:1A:71:5C:
                                53:B9:36:4B:C0:BE:4F:6F:8E:AC:0E:19:48:04:34:09:
                                39:E2:86:BA:F8:02:20:00:84:6D:58:EC:B5:F8:8F:3F:
                                A5:E6:BB:0B:A9:03:1E:74:EF:78:FA:0F:8C:74:8E:D6:
                                26:06:2A:9B:AB:58:28
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Nov  1 00:26:16.264 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D1:EA:7D:64:6D:1A:CA:B7:9E:BD:68:
                                3D:49:EC:42:2C:77:19:58:AA:DD:7D:60:8F:C9:11:68:
                                BC:DD:39:08:B0:02:20:10:5E:7F:87:90:10:09:D6:EB:
                                78:A3:F9:DA:74:71:73:CC:06:82:AF:59:DA:DA:59:CB:
                                D7:85:EA:52:06:C7:EC
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Nov  1 00:26:16.251 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:7E:FB:68:6E:36:1F:CF:81:92:97:F0:06:
                                7B:61:2D:84:D6:17:36:60:DC:AE:C7:8A:66:58:F5:50:
                                49:80:5F:80:02:21:00:D7:A3:F7:B9:4C:01:6E:C1:5F:
                                36:AA:AA:EC:FD:C1:5D:C8:4B:F5:DC:7C:44:F3:0A:53:
                                A2:5F:B2:76:6B:8D:EC
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        0e:06:d8:57:a9:30:43:c5:e0:1e:0a:28:c9:3c:28:dc:90:be:
        9b:5c:77:8a:b0:99:cd:6f:c6:84:4b:9b:3b:f6:ff:60:e4:a8:
        cf:8e:17:b4:30:2d:55:6c:9d:10:97:07:ec:f4:45:3a:e1:97:
        88:b0:1e:e5:b5:00:48:1a:4e:ea:bc:fc:16:53:99:ea:5c:49:
        43:20:a7:9b:31:d4:78:c2:b4:ea:08:c0:53:19:91:6f:8d:6e:
        e5:d0:7a:a7:dd:d4:fc:8f:15:59:ba:b3:6c:c1:ca:e2:e8:6f:
        0e:b7:a0:91:74:29:e1:02:d7:a2:91:7f:2c:be:19:b7:8f:7e:
        ad:62:08:aa:3b:d5:42:24:07:a4:a9:70:ac:f6:ca:9f:26:31:
        46:a7:6e:79:cf:cd:17:d5:72:cb:26:cd:22:a6:30:0b:a6:7b:
        3d:bf:b5:77:61:eb:da:a1:c8:f6:cc:4b:82:4b:cb:09:bd:b3:
        ed:4e:e0:4c:97:01:9c:9c:38:a7:2d:ba:a8:15:3e:19:db:4d:
        c4:78:23:d5:6c:cd:9e:64:f1:0c:e7:a4:46:34:e3:64:ab:bd:
        4c:3a:50:6b:59:29:d5:94:09:eb:3b:fd:0a:ff:0f:22:38:71:
        03:69:65:88:6f:e7:fb:44:be:36:ae:cb:b5:22:03:4d:4d:01:
        a6:df:e9:db

13.251.97.173

Last Seen: 2024-04-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1060095501 | 2024-04-09T15:27:13.887515
80 / tcp

nginx1.20.0

-76842876 | 2024-04-15T12:31:30.610047
443 / tcp

nginx

Products

Pricing

Contact Us

13.251.97.173

Last Seen: 2024-04-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1060095501 | 2024-04-09T15:27:13.887515 80 / tcp

nginx1.20.0

-76842876 | 2024-04-15T12:31:30.610047 443 / tcp

nginx

Products

Pricing

Contact Us

-1060095501 | 2024-04-09T15:27:13.887515
80 / tcp

-76842876 | 2024-04-15T12:31:30.610047
443 / tcp