GeneralInformation

Hostnames	ss.hkg.im
Domains	hkg.im
Country	Japan
City	Tokyo
Organization	Digital Energy Technologies Limited
ISP	AKILE LTD
ASN	AS61112

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 3000

1163549326 | 2024-03-22T09:42:38.771671

22 / tcp

SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u3
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDeTqOH7rWRIoyGgj9UbwoyMWe6mSjXOiy3bEViI5WMQGrg
pHoNJYvQlcUE+BVQ4xGFpd5jFqgZvC1bU0co7yQYzEt4TWFw1cQuETmcGoYaSgipLVumDknaE7Ia
wjJPHWBRRMHCZdtJINv1hckmQ6oQs7caosdln8XKvfgpevcq1E0xLyqXOpTurCgpOGtCrwtJnPUF
WmS74EOR5zkJgnlIbfrWIBo563PSHd9Hp1pHGHymxXEj46dZ5hxQ/vkpfqXeHxWTx3I6G/qT7scQ
W+f7tUT4/lpURVuRyW5c//d1r0C5jN2pkRH2CvlmyjdC3nXbvTGi5ScuG6WItHy4ApJJ2uGXpv9U
aQwq7DId2ohDdgI7r2iX4tBDnMP1fCikdeQ4r1x26rV7VWGTUhxHjeAO2uRKHJklBL/Qem0hgNPe
oBGwC97mF/oLL7uUHMeRyQ8JRACnlYvdPzJXaT5sBBlZWPm5nBPSGZiqXqhacYqPvjpwQ6R1QWo6
O+aLMPQD0vU=
Fingerprint: 0d:13:65:c9:2c:ed:bc:e7:74:20:b7:42:f2:c4:21:a6

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-04-11T00:19:12.546095

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 11 Apr 2024 00:19:12 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Sun, 18 Feb 2024 04:24:27 GMT
Connection: keep-alive
ETag: "65d1867b-264"
Accept-Ranges: bytes

-1426073400 | 2024-04-08T04:31:31.177299

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Mon, 08 Apr 2024 04:31:31 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 723
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=2678400
Last-Modified: Sat, 02 Mar 2024 04:43:17 GMT
ETag: W/"2d3-18dfd793e60"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:b9:57:c7:1f:d3:6f:21:25:dc:ac:aa:39:3d:41:f7:91:0a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb 18 03:35:08 2024 GMT
            Not After : May 18 03:35:07 2024 GMT
        Subject: CN=ss.hkg.im
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:7f:92:2e:4e:b1:f9:b2:92:67:f8:38:20:77:0c:
                    57:ef:15:f3:c4:7f:27:c6:dd:66:8e:0a:5e:69:4e:
                    b0:52:37:85:08:46:b8:5e:1a:45:34:64:cd:6f:9c:
                    28:fb:e2:9d:d1:53:a6:1e:4c:00:d0:ba:cb:4f:aa:
                    4d:41:a1:05:1c
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                6B:3F:F8:BB:AE:91:DD:7B:D0:37:A2:15:7E:F3:43:66:AA:09:F6:C6
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:ss.hkg.im
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Feb 18 04:35:09.204 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:B2:2A:AF:3E:AB:94:81:7D:79:91:57:
                                4B:7F:EE:92:E6:D1:F2:9A:54:D9:3D:C2:41:E8:CF:49:
                                BD:FF:68:77:A7:02:20:7E:AD:D3:DD:5E:4E:D4:11:E1:
                                AE:25:39:9A:F2:B1:6E:D8:8A:7C:E1:53:A4:64:B0:EA:
                                0E:79:B2:39:45:CA:5F
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Feb 18 04:35:09.289 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:79:19:D9:99:3C:AA:CF:29:7E:CC:26:62:
                                E2:1D:EC:D7:3C:B8:3C:8E:38:7D:28:6C:00:F5:94:BF:
                                89:E6:AC:59:02:20:44:AB:B2:AE:C5:00:3D:79:1F:C1:
                                D1:45:D9:FF:EE:1F:AF:79:16:AF:D7:4D:50:41:05:DF:
                                56:97:77:53:88:35
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        1b:07:cf:00:ae:16:31:3d:9b:1b:9d:e7:56:0f:37:26:76:a0:
        2c:3b:8b:a2:5d:0b:00:fe:65:4b:99:8a:1a:46:13:48:58:4b:
        18:37:c2:43:af:d6:83:71:37:be:37:15:a1:5d:15:0f:1d:33:
        e6:f9:4b:08:b3:2a:fb:b0:d0:ec:cf:63:7f:40:14:91:bf:e7:
        fb:c0:08:02:8a:73:9c:7b:85:0d:9d:c0:a1:db:16:ba:69:0a:
        3a:8f:6f:d1:6f:d0:4b:ba:b3:25:d1:db:01:de:22:bd:f1:6f:
        34:81:60:ed:01:dd:eb:a2:81:6c:1f:f6:47:44:ca:a9:09:6e:
        d2:a3:a0:4e:f3:5e:e2:85:82:46:a5:e6:4e:0e:06:59:a7:7b:
        f6:d4:ad:db:28:62:b6:a6:c6:33:ca:21:fa:6a:e9:0d:ef:9b:
        ed:8a:cf:8a:e0:c1:dc:1c:9d:b9:5e:54:75:70:c6:42:14:93:
        79:7e:9c:89:eb:b1:9c:9a:d3:33:cb:5b:81:ab:bf:0a:8e:43:
        d7:c1:4d:06:ea:cd:38:b8:39:68:0f:8c:bf:4c:d4:84:46:0f:
        20:97:ea:6f:a3:3f:d9:1d:7a:67:07:61:5f:22:89:9b:ac:e3:
        d8:2d:85:fa:ca:5a:e3:ac:a8:b3:95:52:25:9b:a1:03:c7:16:
        6e:50:3c:1c

-1426073400 | 2024-04-19T01:51:16.295862

3000 / tcp

HTTP/1.1 200 OK
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=2678400
Last-Modified: Sat, 02 Mar 2024 04:43:17 GMT
ETag: W/"2d3-18dfd793e60"
Content-Type: text/html; charset=UTF-8
Content-Length: 723
Date: Fri, 19 Apr 2024 01:51:17 GMT
Connection: keep-alive
Keep-Alive: timeout=5

154.16.55.196

Last Seen: 2024-04-19

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1163549326 | 2024-03-22T09:42:38.771671
22 / tcp

OpenSSH8.4p1 Debian 5+deb11u3

1651973090 | 2024-04-11T00:19:12.546095
80 / tcp

nginx1.18.0

-1426073400 | 2024-04-08T04:31:31.177299
443 / tcp

nginx1.18.0

-1426073400 | 2024-04-19T01:51:16.295862
3000 / tcp

Products

Pricing

Contact Us

154.16.55.196

Last Seen: 2024-04-19

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1163549326 | 2024-03-22T09:42:38.771671 22 / tcp

OpenSSH8.4p1 Debian 5+deb11u3

1651973090 | 2024-04-11T00:19:12.546095 80 / tcp

nginx1.18.0

-1426073400 | 2024-04-08T04:31:31.177299 443 / tcp

nginx1.18.0

-1426073400 | 2024-04-19T01:51:16.295862 3000 / tcp

Products

Pricing

Contact Us

1163549326 | 2024-03-22T09:42:38.771671
22 / tcp

1651973090 | 2024-04-11T00:19:12.546095
80 / tcp

-1426073400 | 2024-04-08T04:31:31.177299
443 / tcp

-1426073400 | 2024-04-19T01:51:16.295862
3000 / tcp