GeneralInformation

Hostnames	huanhuanyang.org www.huanhuanyang.org
Domains	huanhuanyang.org
Cloud Provider	DigitalOcean
Cloud Region	sg-05
Country	Singapore
City	Singapore
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061

WebTechnologies

UI frameworks

Bootstrap

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 8888

-739142252 | 2024-05-15T00:44:45.653435

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBLftCEfJWT9MhI63C4lA5gmg
79dQfsHDYa5lAWsOhntLWM5K6zfnBm89azqSFapV/Fml7GcyQVYZxQzZBAT8J4o=
Fingerprint: 70:11:97:81:49:f7:a9:41:90:9e:b4:fe:03:65:dd:c8

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

677579724 | 2024-05-10T04:46:38.048673

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 10 May 2024 04:46:37 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

-697523095 | 2024-05-11T09:28:01.329585

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 11 May 2024 09:28:01 GMT
Content-Type: text/html
Content-Length: 3288
Last-Modified: Mon, 13 Nov 2023 09:10:58 GMT
Connection: keep-alive
ETag: "6551e822-cd8"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:a6:bf:c6:47:3d:33:93:67:20:a3:36:8a:eb:4b:38:d6:10
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: May 11 07:47:56 2024 GMT
            Not After : Aug  9 07:47:55 2024 GMT
        Subject: CN=huanhuanyang.org
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:92:6a:6b:52:75:15:08:ef:08:59:01:7b:10:a1:
                    4b:62:fc:0b:86:c2:98:07:af:0c:38:ac:39:f6:24:
                    a8:55:e9:8f:39:f6:34:6c:ff:f2:1a:01:33:e2:94:
                    45:39:b2:a5:1d:ff:0e:1d:0a:87:0f:10:a1:a7:67:
                    22:54:61:45:c3:8f:ea:0b:f6:d1:73:df:ea:67:92:
                    e7:28:a4:48:d7:a3:f3:13:49:2e:8e:92:f1:b3:9d:
                    87:5d:28:b1:47:af:f8:5d:62:6b:cc:08:06:55:d7:
                    ec:d6:63:5c:5c:4b:32:3e:e0:94:28:2d:0f:d8:9e:
                    36:14:b6:44:0a:33:9c:4d:39:92:90:34:ca:88:66:
                    e1:53:92:36:2b:fa:13:1b:42:b8:3b:89:58:3b:2b:
                    a0:da:48:2a:fb:a5:88:d3:d4:97:c7:ba:bc:f9:d7:
                    59:d6:8a:49:0f:21:40:0e:f0:fc:78:61:23:f0:2c:
                    3c:bb:e3:5c:ee:93:b6:82:ea:2d:46:1e:44:db:7b:
                    9e:af:12:37:03:f4:00:e4:53:b3:ff:58:8d:ce:bf:
                    88:79:e9:c6:0b:55:3b:af:02:83:47:24:b0:b0:90:
                    6b:52:6d:7a:ab:6c:3c:a9:99:9d:0c:fb:3c:6f:17:
                    a0:d8:2b:33:11:d2:e7:92:14:f4:81:ed:0c:86:1d:
                    86:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                1E:B6:62:5A:90:9E:3B:ED:B8:22:1D:A0:A3:BC:DE:68:17:73:0F:35
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:huanhuanyang.org, DNS:www.huanhuanyang.org
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : May 11 08:47:56.260 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:22:17:D6:BF:05:88:E0:3D:C7:E7:6E:5F:
                                9A:E3:1F:EC:14:58:DF:F6:9F:C9:E3:4D:88:FF:94:B8:
                                97:F0:35:D4:02:20:56:CF:49:09:84:11:7F:B2:AE:B4:
                                A7:43:85:DC:E6:07:DF:E7:E5:AD:84:49:A4:99:4D:A7:
                                1D:46:BC:FF:D6:2B
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : May 11 08:47:56.330 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:68:20:E1:6F:52:1F:98:9F:6F:BA:9E:35:
                                A1:24:4E:63:4C:A7:DE:0C:73:B0:C2:50:ED:9E:7A:C0:
                                F9:5A:07:AF:02:20:4B:A9:EC:B1:FE:D8:EC:D6:40:9F:
                                17:66:49:9B:DB:0C:80:38:E6:BC:9C:04:24:3B:8F:15:
                                53:B7:BE:8E:50:10
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        97:24:ad:f2:f4:63:45:36:6a:a2:40:4b:1b:8f:79:10:32:fd:
        c4:98:98:08:98:e6:dc:ef:96:4a:f9:4a:d8:32:0d:e1:ff:a9:
        f3:ec:b1:fd:81:96:14:11:85:b8:25:60:6d:db:3d:fd:d1:ed:
        46:a8:db:41:f8:e7:3e:0b:21:b5:cc:d3:ef:1d:4c:93:07:da:
        5c:3a:a5:c9:78:05:83:f3:54:6c:99:7e:1d:0f:fe:18:da:79:
        d9:3c:91:3a:c7:b3:0c:6a:6f:a4:f4:c6:a4:1c:85:27:c1:67:
        5b:0f:db:80:1c:05:dc:4c:91:71:e4:ca:35:21:b1:3b:f9:0a:
        10:8e:ae:b8:3c:c5:84:c6:8b:9c:49:44:3a:90:1d:fa:8b:ca:
        ad:f6:ab:42:f9:2e:62:e1:c5:8c:e7:aa:9c:1a:b5:5b:8a:e3:
        4e:c2:e3:85:37:d5:6f:c4:bb:b6:d3:f1:07:12:ca:5a:7c:71:
        f4:96:75:bc:70:3e:47:67:8d:a5:99:0f:4d:cd:56:2c:44:bf:
        2d:41:85:ad:ed:7d:9f:b5:4f:49:c0:cf:01:23:3b:e9:31:51:
        ab:dd:cc:00:a9:50:ab:82:59:59:61:04:4b:2e:04:d8:ea:3a:
        e2:2a:9f:82:b7:5a:c3:c7:52:bf:12:e7:64:2c:b6:03:51:05:
        4b:db:ee:40

-1986738680 | 2024-05-16T03:04:33.235323

8888 / tcp

HTTP/1.1 200 OK
Server: TornadoServer/6.4
Content-Type: text/html; charset=UTF-8
Date: Thu, 16 May 2024 03:04:33 GMT
X-Content-Type-Options: nosniff
Content-Security-Policy: frame-ancestors 'self'; report-uri /api/security/csp-report
Etag: "c61402fa68e40725f0030cba3bb949bc23410140"
Content-Length: 3687
Set-Cookie: _xsrf=2|0ce20e70|4c8a71b9e6cc2eab04edc321260d0a07|1715828673; expires=Sat, 15 Jun 2024 03:04:33 GMT; Path=/

139.59.231.14

Last Seen: 2024-05-16

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-739142252 | 2024-05-15T00:44:45.653435
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

677579724 | 2024-05-10T04:46:38.048673
80 / tcp

nginx1.18.0

-697523095 | 2024-05-11T09:28:01.329585
443 / tcp

nginx1.18.0

-1986738680 | 2024-05-16T03:04:33.235323
8888 / tcp

Tornado Web Server6.4

Products

Pricing

Contact Us

139.59.231.14

Last Seen: 2024-05-16

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-739142252 | 2024-05-15T00:44:45.653435 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

677579724 | 2024-05-10T04:46:38.048673 80 / tcp

nginx1.18.0

-697523095 | 2024-05-11T09:28:01.329585 443 / tcp

nginx1.18.0

-1986738680 | 2024-05-16T03:04:33.235323 8888 / tcp

Tornado Web Server6.4

Products

Pricing

Contact Us

-739142252 | 2024-05-15T00:44:45.653435
22 / tcp

677579724 | 2024-05-10T04:46:38.048673
80 / tcp

-697523095 | 2024-05-11T09:28:01.329585
443 / tcp

-1986738680 | 2024-05-16T03:04:33.235323
8888 / tcp