GeneralInformation

Hostnames	x.foreverstoked.com
Domains	foreverstoked.com
Cloud Provider	DigitalOcean
Cloud Region	us-ca
Country	United States
City	Santa Clara
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061

WebTechnologies

CMS

Odoo

Databases

PostgreSQL

Miscellaneous

Less

Programming languages

Python

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

21 22 80 443 8069

-1396335236 | 2024-05-14T23:59:30.231717

21 / tcp

220 (vsFTPd 3.0.5)
530 Login incorrect.
530 Please login with USER and PASS.
211-Features:
 EPRT
 EPSV
 MDTM
 PASV
 REST STREAM
 SIZE
 TVFS
211 End

-1028754171 | 2024-05-15T02:12:00.066230

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQC8roEg+iI8U5XD2SBTW/9Ikp1uNf1zpuV+rduxBggZssfs
m+XJFq/zDyCEcwr9AaQ1VEFZ7Q2K+uWORgklP+HQOu6rb0qSCDN+fuQduhB+HltrO8s13iGoItd4
aTHKUHZYfrqAIYJXGR5O13jeCLv0j72sHJgvITtBHLzW/eeJ0HKd4TDeHvjTz1wbyClh57rr4m/V
xzMP2/lPbFZ/eU9fitn/MarVBv3nh8FS4BDrpA9xHRwtoxZ6q+eZuWTwT3O2C+J28J3S0cS+p91b
jvPQ4Hg0MDRuNcRHo4WLbfepkOze+/ubgvB6VVNwGgS3BDPKj9iBY9Lr9VKII+OOHbv+BDSL6Hzw
mUoEdf3Duk7YifUbjNA3OSES2/ADhg+bwroHPX9WCSc4XhO4VLM6z7RJf950LFs7fPkTgKv0Nkxg
iuv3jl7//MfXxZF084gKTc201jhSJwSMq0pXZS3jnxywJA4EumFLS2ZkaV7JEL5Rp4MimD1ReOvI
8wxDCXgcp5c=
Fingerprint: e6:a4:53:ba:fe:d5:aa:27:c2:59:05:43:ee:5c:84:d9

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-05-14T10:10:19.265998

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 14 May 2024 10:10:19 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Mon, 31 Jul 2023 21:23:27 GMT
Connection: keep-alive
ETag: "64c8264f-264"
Accept-Ranges: bytes

312256186 | 2024-05-14T05:49:16.359018

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 14 May 2024 05:49:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: frontend_lang=en_US; Path=/
Set-Cookie: session_id=3488750d3fce7af1d4721119afb8513877091819; Expires=Tue, 21-May-2024 05:49:16 GMT; Max-Age=604800; HttpOnly; Path=/
Strict-Transport-Security: max-age=15768000; includeSubdomains; preload
X-FrameOptions: SAMEORIGIN
X-Content-Type-Options: nosniff

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:e3:5e:5c:b4:98:2f:5b:38:aa:6d:94:12:82:4d:f2:ab:45
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Jan 28 03:55:36 2024 GMT
            Not After : Apr 27 03:55:35 2024 GMT
        Subject: CN=x.foreverstoked.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e4:89:f0:74:db:cf:01:ae:53:b4:da:88:c6:05:
                    79:ec:24:af:ed:87:6f:18:6d:b7:aa:90:88:32:b5:
                    60:19:84:ee:02:76:76:12:36:a3:de:ac:32:15:41:
                    66:37:89:9a:13:ea:de:c4:1e:57:e1:a5:72:3f:48:
                    d8:66:61:93:a8:e9:66:3a:71:7d:e9:a6:ac:65:d5:
                    55:bf:c2:14:03:40:ab:66:29:bb:3d:08:f7:0d:ab:
                    67:0a:b4:ea:7a:9f:e6:ea:51:59:cc:9d:6e:ed:32:
                    58:0c:e5:f4:18:24:4a:38:11:87:e3:4c:fc:e0:a0:
                    b5:29:5d:9f:21:df:94:73:ea:20:a6:02:09:60:81:
                    65:d1:d9:2f:ee:09:47:89:1e:ce:17:39:91:e4:25:
                    cb:3f:ff:f5:c6:ca:ee:11:1e:45:a7:a8:d5:c7:64:
                    df:40:ba:32:de:fa:70:a9:d6:1b:2d:cd:57:cf:13:
                    e8:a7:ca:ea:07:c7:15:a7:cd:1c:09:29:86:f8:a0:
                    cb:f9:d4:cc:cf:e1:69:38:7d:4d:7c:29:f6:05:9a:
                    27:5a:27:a7:6a:18:4b:d3:15:c3:e3:c5:8e:af:e0:
                    0c:f4:e5:0e:a8:a4:b5:b2:a3:61:4d:f9:d0:9c:de:
                    75:72:c1:44:74:e8:87:4d:06:fe:d9:89:24:a7:fd:
                    fb:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                16:B6:2A:2B:8E:2B:95:3F:BC:ED:A5:24:98:AA:48:1E:27:DE:D4:89
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:x.foreverstoked.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Jan 28 04:55:36.618 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:A5:A9:9A:4E:B8:C2:0A:4A:29:92:90:
                                84:24:69:93:74:AD:8D:6E:C8:B9:75:EC:D6:BC:25:A8:
                                68:24:91:9E:A8:02:20:54:33:30:6F:B5:E9:04:A8:D3:
                                B0:F3:9A:9A:9B:38:0F:26:25:DB:7E:DE:D2:E3:C1:67:
                                F6:08:A6:90:F6:92:EB
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Jan 28 04:55:36.669 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:7A:8E:0F:05:FD:5C:FB:9E:7C:AC:41:C7:
                                91:9F:F4:86:80:CD:59:E6:46:AB:DA:79:3B:40:BB:67:
                                FD:B3:54:FA:02:20:16:09:B1:E9:BF:FF:F1:56:83:BE:
                                C9:1A:57:59:F5:6C:CE:3B:C8:FB:34:FB:63:8B:7A:82:
                                EE:6F:DA:62:40:86
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a2:8f:f0:28:c2:94:83:e6:c2:ca:62:95:d1:6e:f9:0e:b5:86:
        a0:36:02:b1:74:1e:c9:2e:0e:99:b9:31:c1:38:5c:2a:fb:f9:
        67:4a:ad:ef:70:f4:92:db:2b:f9:03:c6:34:9d:be:37:17:dd:
        07:7c:09:a6:d7:b8:bd:8e:16:ee:50:5b:aa:91:7e:4b:37:2b:
        9c:9e:59:d7:66:fe:fd:99:32:b9:5b:6b:88:a3:cd:e0:1c:0a:
        c3:a9:0f:10:74:8f:f3:bf:92:7d:f8:91:00:0c:95:11:9e:39:
        7b:54:e7:8d:fe:3e:73:c5:e4:fc:e3:bd:61:46:98:e6:24:1d:
        48:b7:c2:65:dc:c3:cc:fa:ff:93:50:7a:f4:40:72:09:85:e4:
        24:f9:f3:15:42:0d:50:1f:a3:c8:b6:ca:42:03:ba:8f:56:68:
        c1:e5:b5:58:da:5c:b6:b8:c1:1d:89:83:78:c1:21:bf:63:d4:
        17:09:bb:be:a1:60:bc:01:4b:11:65:72:d7:54:18:5e:c1:a0:
        a6:f6:66:94:0d:6d:60:36:fb:b4:13:83:71:20:ba:03:22:cb:
        3e:4b:a9:7e:58:0c:03:f0:2d:51:ca:7b:b9:84:84:17:31:81:
        12:91:ad:79:99:13:c1:d7:62:9b:d4:3e:11:58:43:39:c2:4b:
        9a:cf:b6:35

24611415 | 2024-05-13T09:27:27.403742

8069 / tcp

HTTP/1.0 200 OK
Content-Type: text/html; charset=utf-8
Set-Cookie: frontend_lang=en_US; Path=/
Set-Cookie: session_id=f8d15b8daa067aa67b05ec2aaaef0aa540314ade; Expires=Mon, 20-May-2024 09:27:27 GMT; Max-Age=604800; HttpOnly; Path=/
Connection: close
Server: Werkzeug/0.16.1 Python/3.8.10
Date: Mon, 13 May 2024 09:27:27 GMT

143.110.156.49

Last Seen: 2024-05-15

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1396335236 | 2024-05-14T23:59:30.231717
21 / tcp

-1028754171 | 2024-05-15T02:12:00.066230
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-05-14T10:10:19.265998
80 / tcp

nginx1.18.0

312256186 | 2024-05-14T05:49:16.359018
443 / tcp

nginx1.18.0

24611415 | 2024-05-13T09:27:27.403742
8069 / tcp

Products

Pricing

Contact Us

143.110.156.49

Last Seen: 2024-05-15

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1396335236 | 2024-05-14T23:59:30.231717 21 / tcp

-1028754171 | 2024-05-15T02:12:00.066230 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-05-14T10:10:19.265998 80 / tcp

nginx1.18.0

312256186 | 2024-05-14T05:49:16.359018 443 / tcp

nginx1.18.0

24611415 | 2024-05-13T09:27:27.403742 8069 / tcp

Products

Pricing

Contact Us

-1396335236 | 2024-05-14T23:59:30.231717
21 / tcp

-1028754171 | 2024-05-15T02:12:00.066230
22 / tcp

1651973090 | 2024-05-14T10:10:19.265998
80 / tcp

312256186 | 2024-05-14T05:49:16.359018
443 / tcp

24611415 | 2024-05-13T09:27:27.403742
8069 / tcp