-2061965787 | 2024-05-02T06:54:21.647911
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows 10 (version 1809)/Windows Server 2019 (version 1809)
OS Build: 10.0.17763
Target Name: CEDEG
NetBIOS Domain Name: CEDEG
NetBIOS Computer Name: WIN-SRV1
DNS Domain Name: cedeg.be
DNS Tree Name: cedeg.be
FQDN: WIN-SRV1.cedeg.be
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:4e:18:88:7c:6f:e0:af:42:9f:e9:df:ad:2a:4c:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=WIN-SRV1.cedeg.be
Validity
Not Before: Apr 5 13:00:00 2024 GMT
Not After : Oct 5 13:00:00 2024 GMT
Subject: CN=WIN-SRV1.cedeg.be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:b4:ed:68:be:94:d3:d0:60:60:bb:ac:1f:12:70:
91:95:33:9e:f8:d3:95:a0:02:ce:a2:cd:dc:8c:be:
7a:3b:23:fe:16:b2:69:00:33:f4:3a:ed:a2:3e:c0:
fc:62:70:95:ad:69:3f:ed:d8:d0:ff:47:5b:39:61:
b9:ee:bd:da:59:57:4e:2b:ef:b0:ff:58:5e:87:48:
21:51:d3:be:a1:36:ff:9e:0f:fd:14:51:41:f5:56:
49:c5:e8:e2:da:23:be:c0:aa:df:18:d0:54:e9:f9:
18:60:64:d2:2c:8f:b5:90:0f:ed:08:a4:3b:26:d3:
0b:e1:26:d8:e1:62:b0:86:07:94:8a:9b:2d:8a:a8:
93:a8:5a:07:04:08:8f:dd:fe:78:a8:9f:70:07:fc:
fb:06:cf:79:70:8d:a7:42:d4:03:70:a3:f6:e2:09:
44:00:85:c4:ae:2b:c9:87:7f:fd:6b:70:4d:01:11:
34:2b:4e:79:1c:b3:99:23:4f:0d:0f:a7:45:89:3e:
50:3d:cd:44:a9:f2:98:65:96:a4:d4:25:9e:b8:fd:
42:10:5e:b5:46:c7:5a:a5:78:c4:d0:9b:38:e3:91:
08:7b:47:98:f3:a2:c0:df:aa:86:2e:1b:5c:f3:1b:
a4:4b:17:5a:f9:ba:2f:45:41:b3:da:33:ec:cf:4a:
a4:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
05:b0:4b:d6:a8:6f:82:cd:54:7f:f2:01:4d:5c:61:49:86:1f:
f8:90:96:65:e0:3f:31:a8:9a:ee:59:af:eb:80:42:a1:a6:9c:
2d:3d:43:e8:c0:f6:2a:a7:f1:c5:36:74:ff:bc:ec:8a:66:c3:
6c:00:cf:c6:3c:83:b1:e5:88:05:80:90:7b:32:bf:a9:9b:46:
fd:6b:78:fa:d9:d7:6f:0e:b1:fc:c9:01:b1:a4:e5:55:bb:5b:
d4:2c:41:bb:c0:75:06:64:b7:91:ff:e4:08:69:e3:bb:40:e5:
1b:98:3d:1d:f7:7f:60:fc:1e:7b:5c:20:d7:aa:ee:cf:22:22:
ae:c6:ba:21:a0:55:0e:8d:ef:6d:06:44:01:d0:4a:ad:6b:b1:
93:bf:da:47:92:a4:8a:39:06:c2:17:10:2d:4d:14:9e:c5:a9:
ec:32:de:7d:4c:7b:f5:38:e6:7c:29:be:46:55:de:85:15:2e:
ff:c1:06:b3:dd:e3:df:1b:e5:48:ed:1b:79:10:ed:cd:f3:bc:
a4:96:10:de:4f:5b:c1:97:3e:b0:af:63:13:80:6e:9c:fb:a3:
be:2d:d6:7b:c5:64:90:61:bc:3a:04:c8:08:15:b6:ee:23:ae:
44:77:25:af:58:12:97:25:a9:c9:f7:23:9d:7b:38:54:0f:f2:
33:29:51:d8
1881557452 | 2024-04-28T21:48:12.473503
8080 /
tcp
HTTP/1.1 302 Found
Date: Sun, 28 Apr 2024 21:56:01 GMT
Set-Cookie: FLS-SESSION=node01s2lup9fyqs3rtlayllcg09y915761.node0; Path=/; HttpOnly
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://account.jetbrains.com/fls-auth?uid=uyz7na2xf8&salt=0z8ewy1o29&url=http://157.143.254.66/auth
Content-Length: 0