GeneralInformation

Hostnames	blog.charlesprogers.com www.blog.charlesprogers.com 183.213.148.132.host.secureserver.net prod.phx3.secureserver.net
Domains	charlesprogers.com secureserver.net
Country	United States
City	Phoenix
Organization	GoDaddy.com, LLC
ISP	GoDaddy.com, LLC
ASN	AS398101

WebTechnologies

Blogs

WordPress4.9.25

CDN

Google Hosted Libraries

CMS

WordPress4.9.25

Databases

MySQL

Font scripts

Font Awesome

JavaScript frameworks

JavaScript libraries

Photo galleries

Imagely NextGEN Gallery

Programming languages

PHP

SEO

All in One SEO Pack2.12

Video players

YouTube

WordPress plugins

All in One SEO Pack2.12

NextGEN Gallery3.1.7

Imagely NextGEN Gallery

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2024-3097	The WordPress Gallery Plugin – NextGEN Gallery plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the get_item function in versions up to, and including, 3.59. This makes it possible for unauthenticated attackers to extract sensitive data including EXIF and other metadata of any image uploaded through the plugin.
CVE-2023-48328	Cross-Site Request Forgery (CSRF) vulnerability in Imagely WordPress Gallery Plugin – NextGEN Gallery allows Cross Site Request Forgery.This issue affects WordPress Gallery Plugin – NextGEN Gallery: from n/a through 3.37.
CVE-2023-3279	The WordPress Gallery Plugin WordPress plugin before 3.39 does not validate some block attributes before using them to generate paths passed to include function/s, allowing Admin users to perform LFI attacks
CVE-2023-3155	The WordPress Gallery Plugin WordPress plugin before 3.39 is vulnerable to Arbitrary File Read and Delete due to a lack of input parameter validation in the `gallery_edit` function, allowing an attacker to access arbitrary resources on the server.
CVE-2023-3154	The WordPress Gallery Plugin WordPress plugin before 3.39 is vulnerable to PHAR Deserialization due to a lack of input parameter validation in the `gallery_edit` function, allowing an attacker to access arbitrary resources on the server.
CVE-2023-0586	The All in One SEO Pack plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters in versions up to, and including, 4.2.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with Contributor+ role to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
CVE-2023-0585	The All in One SEO Pack plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters in versions up to, and including, 4.2.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with Administrator role or above to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
CVE-2022-42494	Server Side Request Forgery (SSRF) vulnerability in All in One SEO Pro plugin <= 4.2.5.1 on WordPress.
CVE-2022-38468	Cross-Site Request Forgery (CSRF) vulnerability in Imagely WordPress Gallery Plugin – NextGEN Gallery plugin <= 3.28 leading to thumbnail alteration.
CVE-2022-38093	Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in All in One SEO plugin <= 4.2.3.1 at WordPress.
CVE-2022-31629	In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site attackers to set a standard insecure cookie in the victim's browser which is treated as a `__Host-` or `__Secure-` cookie by PHP applications.
CVE-2022-31628	In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress "quines" gzip files, resulting in an infinite loop.
CVE-2021-25037	4.0The All in One SEO WordPress plugin before 4.1.5.3 is affected by an authenticated SQL injection issue, which was discovered during an internal audit by the Jetpack Scan team, and could grant attackers access to privileged information from the affected site’s database (e.g., usernames and hashed passwords).
CVE-2021-25036	6.5The All in One SEO WordPress plugin before 4.1.5.3 is affected by a Privilege Escalation issue, which was discovered during an internal audit by the Jetpack Scan team, and may grant bad actors access to protected REST API endpoints they shouldn’t have access to. This could ultimately enable users with low-privileged accounts, like subscribers, to perform remote code execution on affected sites.
CVE-2021-24307	9.0The All in One SEO – Best WordPress SEO Plugin – Easily Improve Your SEO Rankings before 4.1.0.2 enables authenticated users with "aioseo_tools_settings" privilege (most of the time admin) to execute arbitrary code on the underlying host. Users can restore plugin's configuration by uploading a backup .ini file in the section "Tool > Import/Export". However, the plugin attempts to unserialize values of the .ini file. Moreover, the plugin embeds Monolog library which can be used to craft a gadget chain and thus trigger system command execution.
CVE-2020-35943	4.3A Cross-Site Request Forgery (CSRF) issue in the NextGEN Gallery plugin before 3.5.0 for WordPress allows File Upload. (It is possible to bypass CSRF protection by simply not including a nonce parameter.)
CVE-2020-35942	6.8A Cross-Site Request Forgery (CSRF) issue in the NextGEN Gallery plugin before 3.5.0 for WordPress allows File Upload and Local File Inclusion via settings modification, leading to Remote Code Execution and XSS. (It is possible to bypass CSRF protection by simply not including a nonce parameter.)
CVE-2020-11579	5.0An issue was discovered in Chadha PHPKB 9.0 Enterprise Edition. installer/test-connection.php (part of the installation process) allows a remote unauthenticated attacker to disclose local files on hosts running PHP before 7.2.16, or on hosts where the MySQL ALLOW LOCAL DATA INFILE option is enabled.
CVE-2019-9641	7.5An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_TIFF.
CVE-2019-9639	5.0An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling the data_len variable.
CVE-2019-9638	5.0An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling the maker_note->offset relationship to value_len.
CVE-2019-9637	5.0An issue was discovered in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. Due to the way rename() across filesystems is implemented, it is possible that file being renamed is briefly available with wrong permissions while the rename is ongoing, thus enabling unauthorized users to access the data.
CVE-2019-14314	7.5A SQL injection vulnerability exists in the Imagely NextGEN Gallery plugin before 3.2.11 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system via modules/nextgen_gallery_display/package.module.nextgen_gallery_display.php.
CVE-2018-19396	5.0ext/standard/var_unserializer.c in PHP 5.x through 7.1.24 allows attackers to cause a denial of service (application crash) via an unserialize call for the com, dotnet, or variant class.
CVE-2018-19395	5.0ext/standard/var.c in PHP 5.x through 7.1.24 on Windows allows attackers to cause a denial of service (NULL pointer dereference and application crash) because com and com_safearray_proxy return NULL in com_properties_get in ext/com_dotnet/com_handlers.c, as demonstrated by a serialize call on COM("WScript.Shell").
CVE-2017-8923	7.5The zend_string_extend function in Zend/zend_string.h in PHP through 7.1.5 does not prevent changes to string objects that result in a negative length, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact by leveraging a script's use of .= with a long string.
CVE-2017-7963	5.0The GNU Multiple Precision Arithmetic Library (GMP) interfaces for PHP through 7.1.4 allow attackers to cause a denial of service (memory consumption and application crash) via operations on long strings. NOTE: the vendor disputes this, stating "There is no security issue here, because GMP safely aborts in case of an OOM condition. The only attack vector here is denial of service. However, if you allow attacker-controlled, unbounded allocations you have a DoS vector regardless of GMP's OOM behavior.
CVE-2017-7272	5.8PHP through 7.1.11 enables potential SSRF in applications that accept an fsockopen or pfsockopen hostname argument with an expectation that the port number is constrained. Because a :port syntax is recognized, fsockopen will use the port number that is specified in the hostname argument, instead of the port number in the second argument of the function.
CVE-2015-9253	6.8An issue was discovered in PHP 7.3.x before 7.3.0alpha3, 7.2.x before 7.2.8, and before 7.1.20. The php-fpm master process restarts a child process in an endless loop when using program execution functions (e.g., passthru, exec, shell_exec, or system) with a non-blocking STDIN stream, causing this master process to consume 100% of the CPU, and consume disk space with a large volume of error logs, as demonstrated by an attack by a customer of a shared-hosting facility.
CVE-2013-2220	7.5Buffer overflow in the radius_get_vendor_attr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large Vendor Specific Attributes (VSA) length value.
CVE-2007-3205	5.0The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the function or a bug in PHP, although it is likely to be regarded as a bug in Hardened-PHP and Suhosin.

OpenPorts

21 80 143 443 587 993 2083 2087

705453298 | 2024-05-19T23:34:35.044332

21 / tcp

220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------
220-You are user number 1 of 50 allowed.
220-Local time is now 16:34. Server port: 21.
220-This is a private system - No anonymous login
220-IPv6 connections are also welcome on this server.
220 You will be disconnected after 15 minutes of inactivity.
530 Login authentication failed
214-The following SITE commands are recognized
 ALIAS
 CHMOD
 IDLE
 UTIME
214 Pure-FTPd - http://pureftpd.org/
211-Extensions supported:
 UTF8
 EPRT
 IDLE
 MDTM
 SIZE
 MFMT
 REST STREAM
 MLST type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*;
 MLSD
 PRET
 AUTH TLS
 PBSZ
 PROT
 TVFS
 ESTA
 PASV
 EPSV
 ESTP
211 End.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 676578380601145839 (0x963b073d670b9ef)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=Arizona, L=Scottsdale, O=Starfield Technologies, Inc., OU=http:\/\/certs.starfieldtech.com\/repository\/, CN=Starfield Secure Certificate Authority - G2
        Validity
            Not Before: Feb 15 21:45:33 2024 GMT
            Not After : Mar 18 21:45:33 2025 GMT
        Subject: CN=*.prod.phx3.secureserver.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c5:85:b0:76:4c:86:3b:11:d8:89:2c:dd:3a:a8:
                    62:fc:51:2d:c5:b5:59:41:52:2f:51:5b:cf:3f:d9:
                    28:80:a4:c3:6b:18:df:bc:3a:9b:29:1f:5a:9d:26:
                    70:35:63:65:75:77:a3:05:43:56:92:5e:8c:be:ef:
                    cd:55:5d:c6:6a:15:27:14:56:ec:5b:27:e1:13:81:
                    7a:bb:77:d5:99:0c:b4:9e:f9:31:ee:36:7b:98:ce:
                    5d:f3:57:50:55:8f:eb:b3:bf:fd:0b:6f:a1:03:6b:
                    d6:a8:17:bc:d4:a9:6f:7c:36:5b:9b:a5:18:3c:ba:
                    2a:d1:b9:06:19:46:38:ae:ac:b6:9d:57:fb:0c:af:
                    59:fd:c8:34:a7:a6:13:9d:2c:18:8b:93:7c:f4:3b:
                    52:ad:11:12:08:d1:2b:65:02:31:41:9e:ee:06:8e:
                    36:bd:dc:6c:83:c0:74:8a:b8:0f:be:82:d1:93:da:
                    5e:bd:01:ae:ca:a8:61:ea:45:cd:ad:05:76:3e:5a:
                    c7:93:d7:b7:c7:f7:38:e7:88:ac:1a:9a:cd:e4:0a:
                    db:6a:07:14:d5:a8:c9:c9:19:6b:83:4c:a2:fd:51:
                    5c:80:94:ea:6b:92:e8:1e:e7:8f:79:96:18:56:ea:
                    58:b2:98:36:9b:99:2d:ee:c6:62:40:c4:5f:0d:61:
                    08:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.starfieldtech.com/sfig2s1-676.crl
            X509v3 Certificate Policies: 
                Policy: 2.16.840.1.114414.1.7.23.1
                  CPS: http://certificates.starfieldtech.com/repository/
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                OCSP - URI:http://ocsp.starfieldtech.com/
                CA Issuers - URI:http://certificates.starfieldtech.com/repository/sfig2.crt
            X509v3 Authority Key Identifier: 
                25:45:81:68:50:26:38:3D:3B:2D:2C:BE:CD:6A:D9:B6:3D:B3:66:63
            X509v3 Subject Alternative Name: 
                DNS:*.prod.phx3.secureserver.net, DNS:prod.phx3.secureserver.net
            X509v3 Subject Key Identifier: 
                E3:6A:A4:88:DA:00:95:F4:40:9F:1E:14:BA:5D:3C:48:C5:E9:01:E0
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Feb 15 21:45:34.154 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:72:96:96:7F:6B:97:2A:E9:77:86:F6:5C:
                                30:77:E3:43:FD:22:AB:E5:A3:53:8D:48:1A:F1:67:A9:
                                85:D9:D7:AA:02:21:00:9E:17:CB:61:0E:CB:9F:E5:D0:
                                00:8F:B7:CF:19:FD:0B:EE:B5:42:1B:12:80:E9:CB:66:
                                9E:16:9C:E8:22:C7:F3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Feb 15 21:45:34.425 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:18:A3:61:2F:FE:EB:65:A5:DB:E3:B1:E8:
                                63:D6:8B:07:1C:68:E0:AE:AD:19:35:44:32:CA:4C:42:
                                F3:B8:6E:B3:02:21:00:CC:1A:7E:D3:2F:01:66:14:7F:
                                14:AB:4D:3B:BF:37:DA:25:3D:E6:BA:7E:97:81:16:8D:
                                14:59:DB:4C:D0:17:E5
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Feb 15 21:45:34.638 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D3:BA:C7:A2:8D:69:45:CC:66:1A:E2:
                                CF:5B:E3:77:B0:35:69:CE:CF:DC:74:CA:34:FA:20:C7:
                                F7:32:B3:1F:B9:02:21:00:93:05:A3:42:2C:9A:4A:B5:
                                FE:4E:F2:33:7C:60:1C:EF:94:3E:24:51:5B:68:9F:66:
                                EB:45:26:23:58:16:FE:E1
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        22:ac:6e:66:5e:b5:6c:b2:66:e6:4e:4e:a7:5c:d8:62:6d:18:
        df:11:21:33:38:10:9c:58:1b:23:c3:0e:4d:a5:8e:3a:45:38:
        81:67:d7:61:44:1c:ab:b6:2f:ee:44:0c:ee:21:81:99:6e:e0:
        0e:b3:ca:4a:0a:b4:3c:66:36:5b:29:c9:ab:dc:a1:7c:71:e3:
        3b:a5:56:ae:a2:61:89:a0:0f:e4:62:6c:94:f2:3a:a7:f4:90:
        28:1c:52:b7:09:03:c0:f7:27:8b:fc:79:cf:a0:3c:8d:d3:84:
        5b:79:56:cb:fc:60:97:24:e5:95:ff:4d:79:27:7d:36:cc:ff:
        32:85:ec:eb:1f:eb:3a:45:4a:66:19:01:f9:fa:21:32:b4:74:
        0c:12:bf:d3:05:de:71:0e:2e:05:6a:04:a9:af:82:a4:0b:73:
        bf:ed:3e:67:af:5f:ac:39:23:dc:79:fb:bf:6b:d3:29:50:00:
        ca:69:25:5b:8a:6d:0e:b2:07:40:16:3d:88:14:fb:f5:0d:e6:
        33:44:9d:a8:68:5c:27:fe:40:85:70:54:bb:46:95:08:4d:79:
        07:11:c8:82:9a:12:9c:63:5c:67:8f:40:3f:ba:e1:b4:7e:a6:
        f7:f9:a8:c3:cc:d4:0c:62:3c:18:4a:83:bd:ef:32:ef:4e:61:
        71:f9:c1:e9

-258047933 | 2024-05-19T15:50:46.390215

80 / tcp

HTTP/1.1 301 Moved Permanently
Date: Sun, 19 May 2024 15:50:46 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Upgrade: h2,h2c
Connection: Upgrade
Location: https://132.148.213.183/
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=UTF-8

1559185454 | 2024-04-21T07:09:33.802305

143 / tcp

* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot ready.
* CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 676578380601145839 (0x963b073d670b9ef)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=Arizona, L=Scottsdale, O=Starfield Technologies, Inc., OU=http:\/\/certs.starfieldtech.com\/repository\/, CN=Starfield Secure Certificate Authority - G2
        Validity
            Not Before: Feb 15 21:45:33 2024 GMT
            Not After : Mar 18 21:45:33 2025 GMT
        Subject: CN=*.prod.phx3.secureserver.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c5:85:b0:76:4c:86:3b:11:d8:89:2c:dd:3a:a8:
                    62:fc:51:2d:c5:b5:59:41:52:2f:51:5b:cf:3f:d9:
                    28:80:a4:c3:6b:18:df:bc:3a:9b:29:1f:5a:9d:26:
                    70:35:63:65:75:77:a3:05:43:56:92:5e:8c:be:ef:
                    cd:55:5d:c6:6a:15:27:14:56:ec:5b:27:e1:13:81:
                    7a:bb:77:d5:99:0c:b4:9e:f9:31:ee:36:7b:98:ce:
                    5d:f3:57:50:55:8f:eb:b3:bf:fd:0b:6f:a1:03:6b:
                    d6:a8:17:bc:d4:a9:6f:7c:36:5b:9b:a5:18:3c:ba:
                    2a:d1:b9:06:19:46:38:ae:ac:b6:9d:57:fb:0c:af:
                    59:fd:c8:34:a7:a6:13:9d:2c:18:8b:93:7c:f4:3b:
                    52:ad:11:12:08:d1:2b:65:02:31:41:9e:ee:06:8e:
                    36:bd:dc:6c:83:c0:74:8a:b8:0f:be:82:d1:93:da:
                    5e:bd:01:ae:ca:a8:61:ea:45:cd:ad:05:76:3e:5a:
                    c7:93:d7:b7:c7:f7:38:e7:88:ac:1a:9a:cd:e4:0a:
                    db:6a:07:14:d5:a8:c9:c9:19:6b:83:4c:a2:fd:51:
                    5c:80:94:ea:6b:92:e8:1e:e7:8f:79:96:18:56:ea:
                    58:b2:98:36:9b:99:2d:ee:c6:62:40:c4:5f:0d:61:
                    08:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.starfieldtech.com/sfig2s1-676.crl
            X509v3 Certificate Policies: 
                Policy: 2.16.840.1.114414.1.7.23.1
                  CPS: http://certificates.starfieldtech.com/repository/
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                OCSP - URI:http://ocsp.starfieldtech.com/
                CA Issuers - URI:http://certificates.starfieldtech.com/repository/sfig2.crt
            X509v3 Authority Key Identifier: 
                25:45:81:68:50:26:38:3D:3B:2D:2C:BE:CD:6A:D9:B6:3D:B3:66:63
            X509v3 Subject Alternative Name: 
                DNS:*.prod.phx3.secureserver.net, DNS:prod.phx3.secureserver.net
            X509v3 Subject Key Identifier: 
                E3:6A:A4:88:DA:00:95:F4:40:9F:1E:14:BA:5D:3C:48:C5:E9:01:E0
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Feb 15 21:45:34.154 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:72:96:96:7F:6B:97:2A:E9:77:86:F6:5C:
                                30:77:E3:43:FD:22:AB:E5:A3:53:8D:48:1A:F1:67:A9:
                                85:D9:D7:AA:02:21:00:9E:17:CB:61:0E:CB:9F:E5:D0:
                                00:8F:B7:CF:19:FD:0B:EE:B5:42:1B:12:80:E9:CB:66:
                                9E:16:9C:E8:22:C7:F3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Feb 15 21:45:34.425 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:18:A3:61:2F:FE:EB:65:A5:DB:E3:B1:E8:
                                63:D6:8B:07:1C:68:E0:AE:AD:19:35:44:32:CA:4C:42:
                                F3:B8:6E:B3:02:21:00:CC:1A:7E:D3:2F:01:66:14:7F:
                                14:AB:4D:3B:BF:37:DA:25:3D:E6:BA:7E:97:81:16:8D:
                                14:59:DB:4C:D0:17:E5
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Feb 15 21:45:34.638 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D3:BA:C7:A2:8D:69:45:CC:66:1A:E2:
                                CF:5B:E3:77:B0:35:69:CE:CF:DC:74:CA:34:FA:20:C7:
                                F7:32:B3:1F:B9:02:21:00:93:05:A3:42:2C:9A:4A:B5:
                                FE:4E:F2:33:7C:60:1C:EF:94:3E:24:51:5B:68:9F:66:
                                EB:45:26:23:58:16:FE:E1
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        22:ac:6e:66:5e:b5:6c:b2:66:e6:4e:4e:a7:5c:d8:62:6d:18:
        df:11:21:33:38:10:9c:58:1b:23:c3:0e:4d:a5:8e:3a:45:38:
        81:67:d7:61:44:1c:ab:b6:2f:ee:44:0c:ee:21:81:99:6e:e0:
        0e:b3:ca:4a:0a:b4:3c:66:36:5b:29:c9:ab:dc:a1:7c:71:e3:
        3b:a5:56:ae:a2:61:89:a0:0f:e4:62:6c:94:f2:3a:a7:f4:90:
        28:1c:52:b7:09:03:c0:f7:27:8b:fc:79:cf:a0:3c:8d:d3:84:
        5b:79:56:cb:fc:60:97:24:e5:95:ff:4d:79:27:7d:36:cc:ff:
        32:85:ec:eb:1f:eb:3a:45:4a:66:19:01:f9:fa:21:32:b4:74:
        0c:12:bf:d3:05:de:71:0e:2e:05:6a:04:a9:af:82:a4:0b:73:
        bf:ed:3e:67:af:5f:ac:39:23:dc:79:fb:bf:6b:d3:29:50:00:
        ca:69:25:5b:8a:6d:0e:b2:07:40:16:3d:88:14:fb:f5:0d:e6:
        33:44:9d:a8:68:5c:27:fe:40:85:70:54:bb:46:95:08:4d:79:
        07:11:c8:82:9a:12:9c:63:5c:67:8f:40:3f:ba:e1:b4:7e:a6:
        f7:f9:a8:c3:cc:d4:0c:62:3c:18:4a:83:bd:ef:32:ef:4e:61:
        71:f9:c1:e9

-472512346 | 2024-05-19T22:38:19.596025

443 / tcp

HTTP/1.1 200 OK
Date: Sun, 19 May 2024 22:38:19 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Link: <https://blog.charlesprogers.com/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade
Vary: Accept-Encoding
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            d4:1a:ac:b2:1d:91:86:35
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http:\/\/certs.godaddy.com\/repository\/, CN=Go Daddy Secure Certificate Authority - G2
        Validity
            Not Before: Feb  8 02:45:42 2024 GMT
            Not After : Mar 11 02:45:42 2025 GMT
        Subject: CN=blog.charlesprogers.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:f1:c4:f8:b3:3a:40:50:b2:82:39:61:cc:66:ad:
                    d9:f2:72:bc:f9:c6:96:52:ae:fc:36:2e:ef:5b:c3:
                    87:58:fb:b4:3e:68:cb:d3:51:6f:ae:a7:f3:81:46:
                    4a:50:89:30:86:72:ca:5d:c6:58:eb:8d:6b:58:b5:
                    97:aa:f6:a3:68:5f:4b:e3:22:90:5c:3b:fc:19:b9:
                    1e:1b:72:39:ba:f9:da:14:97:a1:7a:03:52:67:21:
                    1d:e9:bc:03:93:76:ac:17:b9:34:ef:9b:62:fd:16:
                    3a:de:d5:9f:6f:85:d4:50:f6:f8:aa:e2:50:98:1f:
                    34:1c:17:1e:35:75:18:fc:54:b7:b5:67:f9:c8:7f:
                    26:91:b5:fc:f0:09:fc:08:06:f8:e6:94:96:a5:b7:
                    de:06:e2:e1:74:48:3a:d8:a3:6a:14:ee:7f:fa:7e:
                    cb:7e:14:a6:c9:51:41:99:d5:20:ac:ee:64:9d:51:
                    b2:e3:79:8f:c6:7e:a0:1a:11:36:4a:33:57:6d:8a:
                    00:4d:99:fb:07:37:64:d9:98:7b:b5:df:9b:24:c4:
                    9e:29:87:35:79:a9:d4:ec:bd:48:0a:cf:6e:57:11:
                    ea:9d:1e:dd:91:c1:72:16:d7:17:28:77:de:c7:f9:
                    ae:7a:7f:de:e8:b7:d8:06:be:4a:0e:33:7d:c8:98:
                    5b:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.godaddy.com/gdig2s1-16815.crl
            X509v3 Certificate Policies: 
                Policy: 2.16.840.1.114413.1.7.23.1
                  CPS: http://certificates.godaddy.com/repository/
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                OCSP - URI:http://ocsp.godaddy.com/
                CA Issuers - URI:http://certificates.godaddy.com/repository/gdig2.crt
            X509v3 Authority Key Identifier: 
                40:C2:BD:27:8E:CC:34:83:30:A2:33:D7:FB:6C:B3:F0:B4:2C:80:CE
            X509v3 Subject Alternative Name: 
                DNS:blog.charlesprogers.com, DNS:www.blog.charlesprogers.com
            X509v3 Subject Key Identifier: 
                26:5A:3B:9A:84:49:64:BE:B1:40:E2:86:29:53:5E:60:43:34:A2:10
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Feb  8 02:45:43.603 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:F9:48:38:D7:A9:E7:06:70:3F:96:C4:
                                65:DD:4A:B0:EC:FA:4E:ED:D9:2F:7B:25:AB:BF:57:0F:
                                64:B2:93:73:64:02:20:5B:F1:A7:BC:0D:FE:CF:82:0C:
                                DE:75:85:34:DF:EB:E1:2D:79:78:3E:FA:EB:17:64:3A:
                                BD:7A:A6:A5:06:62:5E
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Feb  8 02:45:43.876 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:EB:CD:12:A2:70:12:D2:29:59:4D:37:
                                55:0F:71:54:2D:49:48:CB:3F:04:27:1C:E6:AC:0A:83:
                                72:AD:8F:3D:A2:02:21:00:A7:08:7F:BA:73:C3:E2:58:
                                20:0D:10:9A:4E:EE:03:49:D6:7D:04:41:C7:58:97:1B:
                                81:19:3B:C5:1F:36:36:E4
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Feb  8 02:45:43.973 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:56:F9:EF:CE:F8:54:67:81:62:3F:D4:43:
                                1F:1D:F4:17:52:1C:F4:F2:87:AC:9A:00:8F:95:C3:C1:
                                DA:96:0F:22:02:20:42:57:CC:E8:1D:AC:11:84:56:E6:
                                8B:00:BA:90:E9:8A:D0:D1:53:F4:76:D7:77:68:4B:0A:
                                6B:FE:02:F5:42:8C
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        b9:b2:9a:85:fc:3a:18:10:69:8e:07:b3:c8:eb:9b:3e:ec:e6:
        0f:34:7a:9a:94:31:c4:37:dc:90:f0:d5:5f:20:3a:36:56:e2:
        6c:f1:48:b8:98:aa:6c:67:61:fc:65:08:00:22:e1:da:41:a8:
        0a:94:46:7c:b7:2a:66:71:da:6b:be:23:62:91:f5:f2:51:08:
        60:cc:70:3b:0c:87:4b:62:93:f5:e0:21:2b:25:03:44:a8:d8:
        95:be:31:20:b8:55:a7:4c:d8:a1:86:48:80:14:1a:ff:cf:44:
        d9:15:7f:eb:19:ec:66:e9:3d:7a:ed:24:ba:90:e9:8a:ac:46:
        c0:93:81:6e:4f:ae:60:02:3d:34:07:d4:82:61:65:f4:29:57:
        e7:2d:c7:e0:27:3a:87:a8:7a:4d:22:89:ab:a0:56:e2:f8:80:
        26:e7:ca:63:af:cd:a0:eb:be:23:e4:2f:57:ea:e5:e2:c9:a0:
        7f:29:37:60:48:4d:be:79:64:0f:2d:76:48:4e:57:2e:c9:8a:
        8c:d1:73:05:d1:89:fb:e4:98:5e:8e:b3:bd:59:8f:13:32:dd:
        55:24:53:3e:21:f5:19:58:b8:33:48:ee:c3:99:db:24:78:90:
        43:4c:ea:78:25:f4:c0:4c:2c:8e:53:19:2c:de:b5:7d:a4:53:
        e4:94:78:50

-463966467 | 2024-04-21T15:34:29.181335

587 / tcp

220-p3plmcpnl495848.prod.phx3.secureserver.net ESMTP Exim 4.96.2 #2 Sun, 21 Apr 2024 08:33:39 -0700 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-p3plmcpnl495848.prod.phx3.secureserver.net Hello qmp81i5ctq80.com [224.76.122.226]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPECONNECT
250-AUTH PLAIN LOGIN
250-STARTTLS
250 HELP

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 676578380601145839 (0x963b073d670b9ef)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=Arizona, L=Scottsdale, O=Starfield Technologies, Inc., OU=http:\/\/certs.starfieldtech.com\/repository\/, CN=Starfield Secure Certificate Authority - G2
        Validity
            Not Before: Feb 15 21:45:33 2024 GMT
            Not After : Mar 18 21:45:33 2025 GMT
        Subject: CN=*.prod.phx3.secureserver.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c5:85:b0:76:4c:86:3b:11:d8:89:2c:dd:3a:a8:
                    62:fc:51:2d:c5:b5:59:41:52:2f:51:5b:cf:3f:d9:
                    28:80:a4:c3:6b:18:df:bc:3a:9b:29:1f:5a:9d:26:
                    70:35:63:65:75:77:a3:05:43:56:92:5e:8c:be:ef:
                    cd:55:5d:c6:6a:15:27:14:56:ec:5b:27:e1:13:81:
                    7a:bb:77:d5:99:0c:b4:9e:f9:31:ee:36:7b:98:ce:
                    5d:f3:57:50:55:8f:eb:b3:bf:fd:0b:6f:a1:03:6b:
                    d6:a8:17:bc:d4:a9:6f:7c:36:5b:9b:a5:18:3c:ba:
                    2a:d1:b9:06:19:46:38:ae:ac:b6:9d:57:fb:0c:af:
                    59:fd:c8:34:a7:a6:13:9d:2c:18:8b:93:7c:f4:3b:
                    52:ad:11:12:08:d1:2b:65:02:31:41:9e:ee:06:8e:
                    36:bd:dc:6c:83:c0:74:8a:b8:0f:be:82:d1:93:da:
                    5e:bd:01:ae:ca:a8:61:ea:45:cd:ad:05:76:3e:5a:
                    c7:93:d7:b7:c7:f7:38:e7:88:ac:1a:9a:cd:e4:0a:
                    db:6a:07:14:d5:a8:c9:c9:19:6b:83:4c:a2:fd:51:
                    5c:80:94:ea:6b:92:e8:1e:e7:8f:79:96:18:56:ea:
                    58:b2:98:36:9b:99:2d:ee:c6:62:40:c4:5f:0d:61:
                    08:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.starfieldtech.com/sfig2s1-676.crl
            X509v3 Certificate Policies: 
                Policy: 2.16.840.1.114414.1.7.23.1
                  CPS: http://certificates.starfieldtech.com/repository/
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                OCSP - URI:http://ocsp.starfieldtech.com/
                CA Issuers - URI:http://certificates.starfieldtech.com/repository/sfig2.crt
            X509v3 Authority Key Identifier: 
                25:45:81:68:50:26:38:3D:3B:2D:2C:BE:CD:6A:D9:B6:3D:B3:66:63
            X509v3 Subject Alternative Name: 
                DNS:*.prod.phx3.secureserver.net, DNS:prod.phx3.secureserver.net
            X509v3 Subject Key Identifier: 
                E3:6A:A4:88:DA:00:95:F4:40:9F:1E:14:BA:5D:3C:48:C5:E9:01:E0
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Feb 15 21:45:34.154 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:72:96:96:7F:6B:97:2A:E9:77:86:F6:5C:
                                30:77:E3:43:FD:22:AB:E5:A3:53:8D:48:1A:F1:67:A9:
                                85:D9:D7:AA:02:21:00:9E:17:CB:61:0E:CB:9F:E5:D0:
                                00:8F:B7:CF:19:FD:0B:EE:B5:42:1B:12:80:E9:CB:66:
                                9E:16:9C:E8:22:C7:F3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Feb 15 21:45:34.425 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:18:A3:61:2F:FE:EB:65:A5:DB:E3:B1:E8:
                                63:D6:8B:07:1C:68:E0:AE:AD:19:35:44:32:CA:4C:42:
                                F3:B8:6E:B3:02:21:00:CC:1A:7E:D3:2F:01:66:14:7F:
                                14:AB:4D:3B:BF:37:DA:25:3D:E6:BA:7E:97:81:16:8D:
                                14:59:DB:4C:D0:17:E5
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Feb 15 21:45:34.638 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D3:BA:C7:A2:8D:69:45:CC:66:1A:E2:
                                CF:5B:E3:77:B0:35:69:CE:CF:DC:74:CA:34:FA:20:C7:
                                F7:32:B3:1F:B9:02:21:00:93:05:A3:42:2C:9A:4A:B5:
                                FE:4E:F2:33:7C:60:1C:EF:94:3E:24:51:5B:68:9F:66:
                                EB:45:26:23:58:16:FE:E1
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        22:ac:6e:66:5e:b5:6c:b2:66:e6:4e:4e:a7:5c:d8:62:6d:18:
        df:11:21:33:38:10:9c:58:1b:23:c3:0e:4d:a5:8e:3a:45:38:
        81:67:d7:61:44:1c:ab:b6:2f:ee:44:0c:ee:21:81:99:6e:e0:
        0e:b3:ca:4a:0a:b4:3c:66:36:5b:29:c9:ab:dc:a1:7c:71:e3:
        3b:a5:56:ae:a2:61:89:a0:0f:e4:62:6c:94:f2:3a:a7:f4:90:
        28:1c:52:b7:09:03:c0:f7:27:8b:fc:79:cf:a0:3c:8d:d3:84:
        5b:79:56:cb:fc:60:97:24:e5:95:ff:4d:79:27:7d:36:cc:ff:
        32:85:ec:eb:1f:eb:3a:45:4a:66:19:01:f9:fa:21:32:b4:74:
        0c:12:bf:d3:05:de:71:0e:2e:05:6a:04:a9:af:82:a4:0b:73:
        bf:ed:3e:67:af:5f:ac:39:23:dc:79:fb:bf:6b:d3:29:50:00:
        ca:69:25:5b:8a:6d:0e:b2:07:40:16:3d:88:14:fb:f5:0d:e6:
        33:44:9d:a8:68:5c:27:fe:40:85:70:54:bb:46:95:08:4d:79:
        07:11:c8:82:9a:12:9c:63:5c:67:8f:40:3f:ba:e1:b4:7e:a6:
        f7:f9:a8:c3:cc:d4:0c:62:3c:18:4a:83:bd:ef:32:ef:4e:61:
        71:f9:c1:e9

-1132241830 | 2024-05-11T11:01:41.959688

993 / tcp

* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot ready.
* CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ AUTH=PLAIN AUTH=LOGIN
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 676578380601145839 (0x963b073d670b9ef)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=Arizona, L=Scottsdale, O=Starfield Technologies, Inc., OU=http:\/\/certs.starfieldtech.com\/repository\/, CN=Starfield Secure Certificate Authority - G2
        Validity
            Not Before: Feb 15 21:45:33 2024 GMT
            Not After : Mar 18 21:45:33 2025 GMT
        Subject: CN=*.prod.phx3.secureserver.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c5:85:b0:76:4c:86:3b:11:d8:89:2c:dd:3a:a8:
                    62:fc:51:2d:c5:b5:59:41:52:2f:51:5b:cf:3f:d9:
                    28:80:a4:c3:6b:18:df:bc:3a:9b:29:1f:5a:9d:26:
                    70:35:63:65:75:77:a3:05:43:56:92:5e:8c:be:ef:
                    cd:55:5d:c6:6a:15:27:14:56:ec:5b:27:e1:13:81:
                    7a:bb:77:d5:99:0c:b4:9e:f9:31:ee:36:7b:98:ce:
                    5d:f3:57:50:55:8f:eb:b3:bf:fd:0b:6f:a1:03:6b:
                    d6:a8:17:bc:d4:a9:6f:7c:36:5b:9b:a5:18:3c:ba:
                    2a:d1:b9:06:19:46:38:ae:ac:b6:9d:57:fb:0c:af:
                    59:fd:c8:34:a7:a6:13:9d:2c:18:8b:93:7c:f4:3b:
                    52:ad:11:12:08:d1:2b:65:02:31:41:9e:ee:06:8e:
                    36:bd:dc:6c:83:c0:74:8a:b8:0f:be:82:d1:93:da:
                    5e:bd:01:ae:ca:a8:61:ea:45:cd:ad:05:76:3e:5a:
                    c7:93:d7:b7:c7:f7:38:e7:88:ac:1a:9a:cd:e4:0a:
                    db:6a:07:14:d5:a8:c9:c9:19:6b:83:4c:a2:fd:51:
                    5c:80:94:ea:6b:92:e8:1e:e7:8f:79:96:18:56:ea:
                    58:b2:98:36:9b:99:2d:ee:c6:62:40:c4:5f:0d:61:
                    08:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.starfieldtech.com/sfig2s1-676.crl
            X509v3 Certificate Policies: 
                Policy: 2.16.840.1.114414.1.7.23.1
                  CPS: http://certificates.starfieldtech.com/repository/
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                OCSP - URI:http://ocsp.starfieldtech.com/
                CA Issuers - URI:http://certificates.starfieldtech.com/repository/sfig2.crt
            X509v3 Authority Key Identifier: 
                25:45:81:68:50:26:38:3D:3B:2D:2C:BE:CD:6A:D9:B6:3D:B3:66:63
            X509v3 Subject Alternative Name: 
                DNS:*.prod.phx3.secureserver.net, DNS:prod.phx3.secureserver.net
            X509v3 Subject Key Identifier: 
                E3:6A:A4:88:DA:00:95:F4:40:9F:1E:14:BA:5D:3C:48:C5:E9:01:E0
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Feb 15 21:45:34.154 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:72:96:96:7F:6B:97:2A:E9:77:86:F6:5C:
                                30:77:E3:43:FD:22:AB:E5:A3:53:8D:48:1A:F1:67:A9:
                                85:D9:D7:AA:02:21:00:9E:17:CB:61:0E:CB:9F:E5:D0:
                                00:8F:B7:CF:19:FD:0B:EE:B5:42:1B:12:80:E9:CB:66:
                                9E:16:9C:E8:22:C7:F3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Feb 15 21:45:34.425 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:18:A3:61:2F:FE:EB:65:A5:DB:E3:B1:E8:
                                63:D6:8B:07:1C:68:E0:AE:AD:19:35:44:32:CA:4C:42:
                                F3:B8:6E:B3:02:21:00:CC:1A:7E:D3:2F:01:66:14:7F:
                                14:AB:4D:3B:BF:37:DA:25:3D:E6:BA:7E:97:81:16:8D:
                                14:59:DB:4C:D0:17:E5
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Feb 15 21:45:34.638 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D3:BA:C7:A2:8D:69:45:CC:66:1A:E2:
                                CF:5B:E3:77:B0:35:69:CE:CF:DC:74:CA:34:FA:20:C7:
                                F7:32:B3:1F:B9:02:21:00:93:05:A3:42:2C:9A:4A:B5:
                                FE:4E:F2:33:7C:60:1C:EF:94:3E:24:51:5B:68:9F:66:
                                EB:45:26:23:58:16:FE:E1
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        22:ac:6e:66:5e:b5:6c:b2:66:e6:4e:4e:a7:5c:d8:62:6d:18:
        df:11:21:33:38:10:9c:58:1b:23:c3:0e:4d:a5:8e:3a:45:38:
        81:67:d7:61:44:1c:ab:b6:2f:ee:44:0c:ee:21:81:99:6e:e0:
        0e:b3:ca:4a:0a:b4:3c:66:36:5b:29:c9:ab:dc:a1:7c:71:e3:
        3b:a5:56:ae:a2:61:89:a0:0f:e4:62:6c:94:f2:3a:a7:f4:90:
        28:1c:52:b7:09:03:c0:f7:27:8b:fc:79:cf:a0:3c:8d:d3:84:
        5b:79:56:cb:fc:60:97:24:e5:95:ff:4d:79:27:7d:36:cc:ff:
        32:85:ec:eb:1f:eb:3a:45:4a:66:19:01:f9:fa:21:32:b4:74:
        0c:12:bf:d3:05:de:71:0e:2e:05:6a:04:a9:af:82:a4:0b:73:
        bf:ed:3e:67:af:5f:ac:39:23:dc:79:fb:bf:6b:d3:29:50:00:
        ca:69:25:5b:8a:6d:0e:b2:07:40:16:3d:88:14:fb:f5:0d:e6:
        33:44:9d:a8:68:5c:27:fe:40:85:70:54:bb:46:95:08:4d:79:
        07:11:c8:82:9a:12:9c:63:5c:67:8f:40:3f:ba:e1:b4:7e:a6:
        f7:f9:a8:c3:cc:d4:0c:62:3c:18:4a:83:bd:ef:32:ef:4e:61:
        71:f9:c1:e9

751083747 | 2024-04-30T05:18:37.481115

2083 / tcp

HTTP/1.1 200 OK
Connection: close
Content-Type: text/html; charset="utf-8"
Date: Tue, 30 Apr 2024 05:18:37 GMT
Cache-Control: no-cache, no-store, must-revalidate, private
Pragma: no-cache
Set-Cookie: cprelogin=no; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure
Set-Cookie: cpsession=%3a_hFPRd1fHTR7owPk%2c81e073b0388fb0a98c8569e0be454929; HttpOnly; path=/; port=2083; secure
Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure
Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=132.148.213.183; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure
Set-Cookie: PPA_ID=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure
Cache-Control: no-cache, no-store, must-revalidate, private
Content-Length: 36901

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 676578380601145839 (0x963b073d670b9ef)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=Arizona, L=Scottsdale, O=Starfield Technologies, Inc., OU=http:\/\/certs.starfieldtech.com\/repository\/, CN=Starfield Secure Certificate Authority - G2
        Validity
            Not Before: Feb 15 21:45:33 2024 GMT
            Not After : Mar 18 21:45:33 2025 GMT
        Subject: CN=*.prod.phx3.secureserver.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c5:85:b0:76:4c:86:3b:11:d8:89:2c:dd:3a:a8:
                    62:fc:51:2d:c5:b5:59:41:52:2f:51:5b:cf:3f:d9:
                    28:80:a4:c3:6b:18:df:bc:3a:9b:29:1f:5a:9d:26:
                    70:35:63:65:75:77:a3:05:43:56:92:5e:8c:be:ef:
                    cd:55:5d:c6:6a:15:27:14:56:ec:5b:27:e1:13:81:
                    7a:bb:77:d5:99:0c:b4:9e:f9:31:ee:36:7b:98:ce:
                    5d:f3:57:50:55:8f:eb:b3:bf:fd:0b:6f:a1:03:6b:
                    d6:a8:17:bc:d4:a9:6f:7c:36:5b:9b:a5:18:3c:ba:
                    2a:d1:b9:06:19:46:38:ae:ac:b6:9d:57:fb:0c:af:
                    59:fd:c8:34:a7:a6:13:9d:2c:18:8b:93:7c:f4:3b:
                    52:ad:11:12:08:d1:2b:65:02:31:41:9e:ee:06:8e:
                    36:bd:dc:6c:83:c0:74:8a:b8:0f:be:82:d1:93:da:
                    5e:bd:01:ae:ca:a8:61:ea:45:cd:ad:05:76:3e:5a:
                    c7:93:d7:b7:c7:f7:38:e7:88:ac:1a:9a:cd:e4:0a:
                    db:6a:07:14:d5:a8:c9:c9:19:6b:83:4c:a2:fd:51:
                    5c:80:94:ea:6b:92:e8:1e:e7:8f:79:96:18:56:ea:
                    58:b2:98:36:9b:99:2d:ee:c6:62:40:c4:5f:0d:61:
                    08:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.starfieldtech.com/sfig2s1-676.crl
            X509v3 Certificate Policies: 
                Policy: 2.16.840.1.114414.1.7.23.1
                  CPS: http://certificates.starfieldtech.com/repository/
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                OCSP - URI:http://ocsp.starfieldtech.com/
                CA Issuers - URI:http://certificates.starfieldtech.com/repository/sfig2.crt
            X509v3 Authority Key Identifier: 
                25:45:81:68:50:26:38:3D:3B:2D:2C:BE:CD:6A:D9:B6:3D:B3:66:63
            X509v3 Subject Alternative Name: 
                DNS:*.prod.phx3.secureserver.net, DNS:prod.phx3.secureserver.net
            X509v3 Subject Key Identifier: 
                E3:6A:A4:88:DA:00:95:F4:40:9F:1E:14:BA:5D:3C:48:C5:E9:01:E0
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Feb 15 21:45:34.154 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:72:96:96:7F:6B:97:2A:E9:77:86:F6:5C:
                                30:77:E3:43:FD:22:AB:E5:A3:53:8D:48:1A:F1:67:A9:
                                85:D9:D7:AA:02:21:00:9E:17:CB:61:0E:CB:9F:E5:D0:
                                00:8F:B7:CF:19:FD:0B:EE:B5:42:1B:12:80:E9:CB:66:
                                9E:16:9C:E8:22:C7:F3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Feb 15 21:45:34.425 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:18:A3:61:2F:FE:EB:65:A5:DB:E3:B1:E8:
                                63:D6:8B:07:1C:68:E0:AE:AD:19:35:44:32:CA:4C:42:
                                F3:B8:6E:B3:02:21:00:CC:1A:7E:D3:2F:01:66:14:7F:
                                14:AB:4D:3B:BF:37:DA:25:3D:E6:BA:7E:97:81:16:8D:
                                14:59:DB:4C:D0:17:E5
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Feb 15 21:45:34.638 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D3:BA:C7:A2:8D:69:45:CC:66:1A:E2:
                                CF:5B:E3:77:B0:35:69:CE:CF:DC:74:CA:34:FA:20:C7:
                                F7:32:B3:1F:B9:02:21:00:93:05:A3:42:2C:9A:4A:B5:
                                FE:4E:F2:33:7C:60:1C:EF:94:3E:24:51:5B:68:9F:66:
                                EB:45:26:23:58:16:FE:E1
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        22:ac:6e:66:5e:b5:6c:b2:66:e6:4e:4e:a7:5c:d8:62:6d:18:
        df:11:21:33:38:10:9c:58:1b:23:c3:0e:4d:a5:8e:3a:45:38:
        81:67:d7:61:44:1c:ab:b6:2f:ee:44:0c:ee:21:81:99:6e:e0:
        0e:b3:ca:4a:0a:b4:3c:66:36:5b:29:c9:ab:dc:a1:7c:71:e3:
        3b:a5:56:ae:a2:61:89:a0:0f:e4:62:6c:94:f2:3a:a7:f4:90:
        28:1c:52:b7:09:03:c0:f7:27:8b:fc:79:cf:a0:3c:8d:d3:84:
        5b:79:56:cb:fc:60:97:24:e5:95:ff:4d:79:27:7d:36:cc:ff:
        32:85:ec:eb:1f:eb:3a:45:4a:66:19:01:f9:fa:21:32:b4:74:
        0c:12:bf:d3:05:de:71:0e:2e:05:6a:04:a9:af:82:a4:0b:73:
        bf:ed:3e:67:af:5f:ac:39:23:dc:79:fb:bf:6b:d3:29:50:00:
        ca:69:25:5b:8a:6d:0e:b2:07:40:16:3d:88:14:fb:f5:0d:e6:
        33:44:9d:a8:68:5c:27:fe:40:85:70:54:bb:46:95:08:4d:79:
        07:11:c8:82:9a:12:9c:63:5c:67:8f:40:3f:ba:e1:b4:7e:a6:
        f7:f9:a8:c3:cc:d4:0c:62:3c:18:4a:83:bd:ef:32:ef:4e:61:
        71:f9:c1:e9

-815526357 | 2024-05-20T06:37:09.483053

2087 / tcp

HTTP/1.1 301 Moved
Content-length: 139
Location: https://p3plmcpnl495848.prod.phx3.secureserver.net:2087
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private
Pragma: no-cache

<html><head><META HTTP-EQUIV="refresh" CONTENT="2;URL=https://p3plmcpnl495848.prod.phx3.secureserver.net:2087"></head><body></body></html>

132.148.213.183

Last Seen: 2024-05-20

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

705453298 | 2024-05-19T23:34:35.044332
21 / tcp

Pure-FTPd

-258047933 | 2024-05-19T15:50:46.390215
80 / tcp

Apache httpd

1559185454 | 2024-04-21T07:09:33.802305
143 / tcp

-472512346 | 2024-05-19T22:38:19.596025
443 / tcp

Apache httpd

-463966467 | 2024-04-21T15:34:29.181335
587 / tcp

Exim smtpd4.96.2

-1132241830 | 2024-05-11T11:01:41.959688
993 / tcp

751083747 | 2024-04-30T05:18:37.481115
2083 / tcp

cPanel

-815526357 | 2024-05-20T06:37:09.483053
2087 / tcp

Products

Pricing

Contact Us

132.148.213.183

Last Seen: 2024-05-20

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

705453298 | 2024-05-19T23:34:35.044332 21 / tcp

Pure-FTPd

-258047933 | 2024-05-19T15:50:46.390215 80 / tcp

Apache httpd

1559185454 | 2024-04-21T07:09:33.802305 143 / tcp

-472512346 | 2024-05-19T22:38:19.596025 443 / tcp

Apache httpd

-463966467 | 2024-04-21T15:34:29.181335 587 / tcp

Exim smtpd4.96.2

-1132241830 | 2024-05-11T11:01:41.959688 993 / tcp

751083747 | 2024-04-30T05:18:37.481115 2083 / tcp

cPanel

-815526357 | 2024-05-20T06:37:09.483053 2087 / tcp

Products

Pricing

Contact Us

705453298 | 2024-05-19T23:34:35.044332
21 / tcp

-258047933 | 2024-05-19T15:50:46.390215
80 / tcp

1559185454 | 2024-04-21T07:09:33.802305
143 / tcp

-472512346 | 2024-05-19T22:38:19.596025
443 / tcp

-463966467 | 2024-04-21T15:34:29.181335
587 / tcp

-1132241830 | 2024-05-11T11:01:41.959688
993 / tcp

751083747 | 2024-04-30T05:18:37.481115
2083 / tcp

-815526357 | 2024-05-20T06:37:09.483053
2087 / tcp