GeneralInformation

Hostnames	devctl.onboardbase.com
Domains	onboardbase.com
Cloud Provider	DigitalOcean
Cloud Region	us-nj
Country	United States
City	North Bergen
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 5432 9100

138088942 | 2024-04-21T22:51:55.912505

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQC4byFzen+T+G8JAyAl5g9m5i4OKB91oHr/E7FTCjnoAGQM
s7DyZrDwvC03qfd/Pg+4j1bNK6IXRPjy7J2adILL+J4ziGpL0Wr83sWHug28Ehhfo+ymfUb0SF6f
8KVDJ2km+XlPEG8wepztu9m529A+m0kWC9WM7QONoXIq1cehH6TDh/2qLRd1GwKuwSQ4hSW0x86i
7osOm127PD4fP4J2HGxqB2aYHzQpKvo4Qn90zkIqdzAi91HPMm0H1Lvk58j2fWqxsGiHbb4fe+aa
78tHLUTKiTjHEnWZCVblwFtkc5n2frEX4okHwc964dFaglILf+AudExbiIFscvlDqwJmT8hoTAXe
H9DZ6ra+2qwcqi0NQt91zq3zUMjbBgLgCHvBXIuYqZLgKLJWHhArH5CpBrm32WW/F1RlOmp7s+G5
kmvtprSUVJKCUSQjPsPRK9/gKyR2sm1rkUJo5nsoDSpQvlRJAuVdUSkfD1/BiidvQwtWTD7HeVhD
UH3VGsbNAMU=
Fingerprint: 6c:fe:dc:55:35:de:6a:09:c2:5e:cc:bd:54:a1:6c:04

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-04-23T10:41:28.271600

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 23 Apr 2024 10:41:28 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Sat, 07 Nov 2020 05:17:36 GMT
Connection: keep-alive
ETag: "5fa62df0-264"
Accept-Ranges: bytes

780672404 | 2024-04-10T15:16:59.810157

443 / tcp

HTTP/1.1 502 Bad Gateway
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 10 Apr 2024 15:16:59 GMT
Content-Type: text/html
Content-Length: 568
Connection: keep-alive
Strict-Transport-Security: max-age=31536000; includeSubdomains
Content-Security-Policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:7b:e3:91:56:d4:85:26:34:99:0b:b3:0f:6b:58:d6:94:b1
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 28 23:45:53 2024 GMT
            Not After : Jun 26 23:45:52 2024 GMT
        Subject: CN=devctl.onboardbase.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c0:7c:cb:e7:eb:aa:95:a6:f5:09:19:11:80:aa:
                    d8:f9:07:c4:0a:2e:55:75:d9:19:31:83:f3:c4:02:
                    e2:64:dc:b7:3a:b9:7a:89:21:58:a8:d3:3c:12:39:
                    b5:54:2f:4d:a5:d3:d9:2d:9b:00:d7:99:11:aa:4e:
                    b6:fb:07:dc:3f:47:e2:91:0e:49:b7:9b:e5:32:71:
                    eb:7c:a6:99:b3:a2:e8:f4:ed:73:5f:59:b9:45:b5:
                    85:97:21:a4:e3:d3:3e:59:5b:85:45:b5:6c:55:82:
                    aa:40:7a:80:60:e8:11:19:04:a2:2e:0f:a6:32:a5:
                    66:8b:06:d8:6a:81:fa:91:18:31:45:d7:3f:ee:9f:
                    bf:1a:6e:59:32:0a:db:8e:41:c8:1e:3b:0f:20:bb:
                    a9:35:67:23:b4:e7:23:c2:95:d0:c9:f4:a7:aa:9f:
                    f7:0f:75:84:a6:6d:f5:9b:c3:1e:f7:be:c6:61:1f:
                    3a:0a:04:95:f6:32:33:0e:08:52:ff:e1:43:82:33:
                    42:96:dc:da:87:46:7f:3c:c4:ee:1b:8b:b4:e4:f5:
                    b5:a6:27:b9:25:09:57:ec:03:32:7a:ee:8f:af:ab:
                    6f:d9:eb:18:f0:27:01:2f:cf:0d:93:33:8a:da:2d:
                    d6:ea:9e:2b:1c:11:d1:03:c9:b2:14:2d:16:2a:97:
                    b6:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                4F:E9:B4:4F:45:66:3C:D8:53:8D:1F:80:65:AC:5C:8B:48:73:6A:BC
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:devctl.onboardbase.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 29 00:45:53.828 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:05:90:02:98:D1:56:29:87:46:D5:8C:F0:
                                90:F5:C3:DB:13:9A:46:86:FD:D9:F3:65:BC:E0:1B:A0:
                                42:67:FB:6B:02:20:2A:04:BD:B9:20:1E:BB:C0:6B:60:
                                5B:3B:B4:0B:79:CB:62:C6:81:96:51:D7:C4:95:CD:AC:
                                77:16:28:A9:53:68
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar 29 00:45:53.828 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:23:91:27:23:DD:E9:82:64:F3:7E:1E:CC:
                                B1:C5:6C:04:8E:65:52:45:E8:7B:61:D4:B7:DE:98:5B:
                                AC:B2:2B:A7:02:21:00:C8:B3:85:95:F5:BA:DB:22:D0:
                                CB:77:81:BA:6F:3D:C2:B2:97:51:A0:11:14:51:F1:91:
                                15:E8:89:F5:C9:01:34
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        14:c2:6a:42:01:54:48:96:87:4f:0b:eb:4a:4b:54:c8:bb:b9:
        1f:45:f8:c1:81:70:d0:d8:8a:2f:db:32:fb:38:18:db:b9:54:
        fb:6f:5e:9e:86:15:27:a3:0d:26:a8:74:76:81:90:60:7d:05:
        5b:79:7e:df:d7:a9:65:70:5f:a6:1f:23:56:f4:e5:81:d9:e3:
        68:c6:a4:df:7a:84:6c:4a:3b:5b:7b:97:9d:78:05:0d:fc:6f:
        4d:8e:a2:6a:4b:e7:fe:ae:27:1a:49:38:3b:2d:b8:ab:9e:08:
        53:4b:25:b8:ed:10:1b:2c:61:af:87:d0:87:82:33:35:c6:da:
        56:1a:cf:c6:66:55:f0:69:e4:94:2b:13:ee:39:83:b0:36:c4:
        e0:eb:e1:61:73:e3:6a:cd:93:f7:b0:2c:28:e8:47:a4:e4:30:
        f8:ba:3f:5b:d7:c2:2c:50:08:e7:87:96:3b:11:3b:9e:f1:0a:
        4c:fe:1f:c9:b8:d5:6b:ed:9b:42:ca:d2:2c:4f:c1:1c:7d:e6:
        db:1b:ee:6d:48:81:94:8e:09:5a:29:f8:f5:10:d3:a8:0c:d6:
        9f:96:7a:a6:1d:9d:94:70:6e:10:54:f7:ca:e6:ea:40:69:ab:
        44:94:d2:b5:ef:e4:0a:50:17:33:9c:d7:b3:ba:a3:15:7d:76:
        3c:c7:1d:73

-726790289 | 2024-04-20T19:37:35.489364

5432 / tcp

PostgreSQL
fe_sendauth: no password supplied

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3f:f6:5d:5f:32:0b:be:b7:dc:2c:ea:65:9d:1d:0f:64:89:99:2d:2c
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ubuntu-s-1vcpu-1gb-nyc1-01
        Validity
            Not Before: Nov  7 05:30:23 2020 GMT
            Not After : Nov  5 05:30:23 2030 GMT
        Subject: CN=ubuntu-s-1vcpu-1gb-nyc1-01
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cf:e3:23:03:b0:3c:a3:58:0a:be:ba:35:9f:e8:
                    db:a4:9c:4d:d1:9b:f1:54:c6:6e:f8:22:06:52:16:
                    af:26:53:5e:b6:f6:03:8e:8e:e8:b1:73:16:ec:e0:
                    76:b5:02:77:bd:7a:48:13:03:f3:0a:5f:3b:c4:a6:
                    28:da:b3:bc:7a:e4:f6:45:6c:f4:61:ba:7e:19:89:
                    83:b2:0c:e2:02:fe:64:93:79:1b:8a:d6:7b:e6:98:
                    cd:71:1f:d0:85:be:18:de:88:91:8d:b2:bf:f4:4d:
                    3b:36:46:94:b4:3b:aa:f9:67:52:35:e0:1a:1f:18:
                    af:3d:8c:a4:3b:c0:21:71:28:ab:c5:af:75:5a:9a:
                    63:7f:e1:a9:7e:9e:b3:0b:51:2d:3c:f1:4e:45:79:
                    19:cf:1d:36:10:fb:7d:f1:3a:93:0d:fa:0b:ad:24:
                    d3:2f:04:bd:30:1e:1d:61:f5:54:a4:dc:77:74:09:
                    f1:f5:da:13:b6:e1:3c:82:03:13:e2:bd:20:de:97:
                    63:f5:7c:50:82:d4:93:94:40:dc:fa:59:e4:eb:0f:
                    48:bf:8e:8e:bf:a1:de:0e:69:35:be:06:fc:d9:08:
                    c8:3b:15:74:d0:93:9e:47:fc:ae:98:7d:c3:f8:6d:
                    2f:99:ca:38:74:46:d9:55:b6:1a:97:ab:48:f2:95:
                    54:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Subject Alternative Name: 
                DNS:ubuntu-s-1vcpu-1gb-nyc1-01
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        03:1d:8a:00:b0:0d:d7:e5:80:5d:14:4f:60:c0:73:c3:d5:17:
        25:09:35:10:64:e2:cf:17:93:aa:f7:86:34:95:65:ba:46:95:
        7e:e9:0e:52:38:61:fc:1a:5f:6a:a2:36:83:92:9d:73:43:90:
        53:e6:e3:2d:15:0a:52:0c:25:02:17:1d:4e:b6:da:14:3c:d6:
        07:fc:e1:2c:03:cc:bc:c2:72:8c:e3:39:ad:ce:1e:b3:aa:fe:
        eb:ef:34:4d:83:8f:12:4e:dc:e9:b5:5f:fe:01:0c:bb:a1:c4:
        39:09:3e:d1:5f:ea:ca:10:15:c2:84:8a:1f:11:93:4a:dc:d8:
        59:1b:e5:06:b9:94:d0:16:60:f5:a2:63:50:a7:d6:34:ac:7e:
        13:33:40:e9:69:7f:a4:68:2f:53:9a:1c:f8:71:fa:d0:5b:0b:
        69:dc:65:c7:6b:95:cb:d6:e5:3c:f2:e4:e1:e1:a9:67:14:d0:
        bd:40:c7:88:42:94:3c:3f:6e:79:58:c5:5e:2b:90:b0:de:1c:
        dc:bd:24:01:1e:8e:02:76:8e:a1:4f:be:98:f3:7f:87:b2:02:
        94:8d:4b:73:f8:3e:62:97:33:30:c7:09:bf:fa:94:13:b6:24:
        8b:d7:b1:75:9f:5c:04:fa:41:e5:3c:d2:c4:08:61:05:0b:67:
        1a:2b:5f:12

-1275941910 | 2024-04-20T01:11:54.385873

9100 / tcp

HTTP/1.1 400 Bad Request
Content-Type: text/plain; charset=utf-8
Connection: close

400 Bad Request
Prometheus Node Exporter:
  node_exporter_build_info:
    branch: HEAD
    goarch: amd64
    goos: linux
    goversion: go1.20.6
    revision: 4a1b77600c1873a8233f3ffb55afcedbb63b8d84
    tags: netgo osusergo static_build
    version: 1.6.1
  node_os_info:
    id: ubuntu
    id_like: debian
    name: Ubuntu
    pretty_name: Ubuntu 20.04.1 LTS
    version: 20.04.1 LTS (Focal Fossa)
    version_codename: focal
    version_id: 20.04
  node_uname_info:
    domainname: (none)
    machine: x86_64
    nodename: ubuntu-s-1vcpu-1gb-nyc1-01
    release: 5.4.0-166-generic
    sysname: Linux
    version: #183-Ubuntu SMP Mon Oct 2 11:28:33 UTC 2023
  node_dmi_info:
    bios_date: 12/12/2017
    bios_vendor: DigitalOcean
    bios_version: 20171212
    board_asset_tag: 215739400
    board_name: Droplet
    board_vendor: DigitalOcean
    board_version: 20171212
    chassis_vendor: QEMU
    chassis_version: pc-i440fx-6.1
    product_family: DigitalOcean_Droplet
    product_name: Droplet
    product_version: 20171212
    system_vendor: DigitalOcean
  node_network_info:
    lo:
      address: 00:00:00:00:00:00
      adminstate: up
      broadcast: 00:00:00:00:00:00
      device: lo
      operstate: unknown
    docker0:
      address: 02:42:77:66:62:ad
      adminstate: up
      broadcast: ff:ff:ff:ff:ff:ff
      device: docker0
      operstate: down
    eth1:
      address: 92:97:fc:d9:d9:63
      adminstate: up
      broadcast: ff:ff:ff:ff:ff:ff
      device: eth1
      duplex: unknown
      operstate: up
    eth0:
      address: ce:a7:c7:07:e4:45
      adminstate: up
      broadcast: ff:ff:ff:ff:ff:ff
      device: eth0
      duplex: unknown
      operstate: up

MAC Addresses

92:97:FC:D9:D9:63
    Unknown
CE:A7:C7:07:E4:45
    Unknown

157.245.94.214

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

138088942 | 2024-04-21T22:51:55.912505
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-04-23T10:41:28.271600
80 / tcp

nginx1.18.0

780672404 | 2024-04-10T15:16:59.810157
443 / tcp

nginx1.18.0

-726790289 | 2024-04-20T19:37:35.489364
5432 / tcp

PostgreSQL12.14 - 12.18

-1275941910 | 2024-04-20T01:11:54.385873
9100 / tcp

Prometheus Node Exporter1.6.1

Products

Pricing

Contact Us

157.245.94.214

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

138088942 | 2024-04-21T22:51:55.912505 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-04-23T10:41:28.271600 80 / tcp

nginx1.18.0

780672404 | 2024-04-10T15:16:59.810157 443 / tcp

nginx1.18.0

-726790289 | 2024-04-20T19:37:35.489364 5432 / tcp

PostgreSQL12.14 - 12.18

-1275941910 | 2024-04-20T01:11:54.385873 9100 / tcp

Prometheus Node Exporter1.6.1

Products

Pricing

Contact Us

138088942 | 2024-04-21T22:51:55.912505
22 / tcp

1651973090 | 2024-04-23T10:41:28.271600
80 / tcp

780672404 | 2024-04-10T15:16:59.810157
443 / tcp

-726790289 | 2024-04-20T19:37:35.489364
5432 / tcp

-1275941910 | 2024-04-20T01:11:54.385873
9100 / tcp