GeneralInformation

Hostnames	adv.strafbuch.de tm-web-1.triskel-media.de
Domains	strafbuch.de triskel-media.de
Country	Germany
City	Falkenstein
Organization	Universal Ware
ISP	Hetzner Online GmbH
ASN	AS24940

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 3306

1057503055 | 2024-04-17T22:47:57.101228

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDGL7NmnlXqU4WY2C/yf/rf8K5FHHptQ7OgeO43aHxYMzLQ
qXciimFS+gpupONQzi9t99xW62Xgo9fiZNu3ZjWpyzxmhKFhImUMBu4iKksJ47yz2JpSEjV7RBTj
6iktYsopUsxP28k4JG5VNkXLiCQZpThcwWH/Ue75ZPk3qMydb1XHfeVwfu9XZZaGI+19aGsfmPn4
pYhSlK+dPWWACQ2gQguuGd4l+DuuzFaZwcBFekGVLmSw+Xyieje9kPRx9J9Dqu0gOc81VBU4V8WZ
6EY932yBZ8gjgLZHJY0WjIzuDh0Q/8HmKyjnqhp1qB+P/2PhPBwP4MgONB6QRwv/m3mE57zm0R2e
fplv2otY6h5WRXorEd4yQPgkoxpOUPfe+CMbSH3g2vd/v2QqKlqRIFSGxjU9C8O7jT9zOtopspqa
bXMRhrMXTd6gaZVGNMKuUZAWZ5ezaArLEvXtX7stUQrHMRMujollklHtMXaaACm/oWCLQqybqOqh
COWuGPzgjfM=
Fingerprint: d5:6c:50:52:53:18:42:ba:c7:33:b5:8d:d3:ad:95:46

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-04-14T22:06:41.812894

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 14 Apr 2024 22:06:41 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Sun, 05 Feb 2023 12:30:50 GMT
Connection: keep-alive
ETag: "63dfa17a-264"
Accept-Ranges: bytes

2093921689 | 2024-04-23T10:13:45.139879

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 23 Apr 2024 10:13:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Expires: 0
Set-Cookie: sessionID=c680083f5ceb9a6c85f3e916393493c2; path=/www/admin; domain=adv.strafbuch.de; HttpOnly
Cache-Control: max-age=0, no-cache, proxy-revalidate, must-revalidate

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:d1:c1:06:44:05:ab:87:3a:ca:72:30:13:7c:fc:4b:3d:b3
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr  4 10:47:24 2024 GMT
            Not After : Jul  3 10:47:23 2024 GMT
        Subject: CN=adv.strafbuch.de
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:bf:cf:fb:e1:d6:43:45:4d:2a:e4:15:9e:c0:6e:
                    c1:0f:33:b3:52:f2:57:03:29:8c:a6:1a:e2:22:24:
                    e1:5e:a6:af:c2:ec:28:d1:e8:d8:fb:bc:7d:42:59:
                    23:0f:32:70:ea:e0:13:d5:50:f2:61:53:16:aa:e6:
                    eb:70:49:bc:b5:08:c1:f6:12:9e:06:2e:1d:dd:d4:
                    fc:5d:c8:11:26:79:e0:d8:62:dd:1b:70:f1:8f:79:
                    d5:3c:a1:f0:6e:44:6f:fe:13:8c:40:eb:55:c2:65:
                    e3:2f:ed:24:ee:c7:f3:af:74:98:13:df:1a:60:41:
                    04:74:f6:6c:e1:11:18:e3:f5:92:9a:ac:88:f0:11:
                    21:71:f4:b4:97:7c:9e:92:2d:56:47:36:4a:64:31:
                    4b:7c:ac:4d:78:d7:2f:dc:fe:d9:f5:8a:bd:26:75:
                    b3:49:b1:0e:37:95:7b:40:0b:3e:77:6f:b0:d1:ac:
                    11:d6:c8:28:6e:db:e5:e9:00:9e:d3:da:30:1e:c7:
                    70:28:4d:fc:ca:01:69:4c:8a:3d:ae:16:fd:fb:0f:
                    8a:3e:4f:75:55:8f:f6:3f:88:3b:21:61:6f:10:34:
                    be:67:fa:30:85:fa:8d:e0:51:ca:25:00:89:68:63:
                    9c:7e:da:ef:e1:79:59:55:b2:90:c7:24:6a:f7:c0:
                    d6:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                A2:2C:81:71:28:EC:3F:ED:8D:A2:40:7F:79:CC:04:03:21:13:AB:D8
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:adv.strafbuch.de
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Apr  4 11:47:24.265 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:E5:C5:C6:5A:BA:92:59:02:39:3C:C7:
                                AF:9A:CC:E0:17:C4:5C:98:D4:31:C3:81:AF:46:6C:D4:
                                1A:1C:5D:44:0E:02:20:42:FB:3A:62:AB:B0:B8:7E:51:
                                58:75:05:8E:F2:1E:15:2A:F3:D8:62:55:25:36:61:3D:
                                31:54:D0:E4:45:D2:AC
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
                                4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
                    Timestamp : Apr  4 11:47:24.398 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D5:FD:A8:E5:F1:28:82:D9:D3:F6:57:
                                96:21:E5:E4:B3:CB:E9:C5:5C:E5:11:15:DB:F0:26:86:
                                02:92:1E:55:78:02:21:00:B8:52:CC:C4:30:00:49:F7:
                                6C:A4:FC:DB:5B:49:3A:98:EA:9C:6E:F0:58:33:71:B1:
                                87:81:FE:B1:F9:D6:C3:5F
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        8b:85:b5:7a:7b:a1:53:65:39:71:3d:11:ed:fc:e2:9a:1c:2f:
        40:fa:9b:63:ef:21:d4:36:54:e2:df:9c:18:1f:84:1a:23:73:
        2c:0e:3a:a8:af:d2:00:55:60:de:d8:b1:1f:64:5c:65:a3:dc:
        be:d5:a3:08:8e:ca:0b:c0:4c:00:83:7c:20:76:7e:c4:8d:d6:
        06:df:63:09:ef:cd:6f:03:fa:98:04:b2:01:e7:f8:bb:3f:00:
        88:0d:8a:13:eb:ac:2a:fd:f3:f0:a1:f5:8f:cb:2d:1a:6a:30:
        01:f4:20:84:2f:f0:67:42:d8:89:5c:dd:c2:a5:10:ad:7c:fc:
        65:02:37:da:2f:9f:d8:4d:5c:72:c2:4a:83:22:6a:bc:42:ef:
        89:31:25:6b:d1:89:cb:4a:37:83:82:73:b4:7c:20:11:86:3f:
        ff:24:d1:9b:72:26:02:28:75:fc:14:15:65:47:f6:14:6f:49:
        c9:57:56:f5:16:93:16:8a:8c:eb:f2:13:ee:07:20:f9:2c:ca:
        28:a0:06:e9:fb:0c:d3:60:cb:82:d4:bc:70:60:5c:a2:73:99:
        f3:b8:26:4e:ac:f2:40:de:0c:eb:fc:f6:e8:ef:ef:fd:47:32:
        d2:6e:b1:45:77:87:a3:e5:bb:b8:1c:6b:00:56:eb:1f:c2:46:
        f9:8a:60:76

737485374 | 2024-04-23T14:30:21.969009

3306 / tcp

MySQL:
  Protocol Version: 10
  Version: 8.0.36-0ubuntu0.20.04.1
  Capabilities: 65535
  Server Language: 255
  Server Status: 2
  Extended Server Capabilities: 57343
  Authentication Plugin: mysql_native_password

136.243.226.226

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1057503055 | 2024-04-17T22:47:57.101228
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-04-14T22:06:41.812894
80 / tcp

nginx1.18.0

2093921689 | 2024-04-23T10:13:45.139879
443 / tcp

nginx1.18.0

737485374 | 2024-04-23T14:30:21.969009
3306 / tcp

MySQL8.0.36-0ubuntu0.20.04.1

Products

Pricing

Contact Us

136.243.226.226

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1057503055 | 2024-04-17T22:47:57.101228 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-04-14T22:06:41.812894 80 / tcp

nginx1.18.0

2093921689 | 2024-04-23T10:13:45.139879 443 / tcp

nginx1.18.0

737485374 | 2024-04-23T14:30:21.969009 3306 / tcp

MySQL8.0.36-0ubuntu0.20.04.1

Products

Pricing

Contact Us

1057503055 | 2024-04-17T22:47:57.101228
22 / tcp

1651973090 | 2024-04-14T22:06:41.812894
80 / tcp

2093921689 | 2024-04-23T10:13:45.139879
443 / tcp

737485374 | 2024-04-23T14:30:21.969009
3306 / tcp