GeneralInformation

Hostnames	thiagoamaral.com www.thiagoamaral.com
Domains	thiagoamaral.com
Cloud Provider	DigitalOcean
Cloud Region	us-nj
Country	United States
City	North Bergen
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061

WebTechnologies

CDN

Unpkg

JavaScript libraries

AOS2.3.1

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

21 22 80 443 5000

-1062991961 | 2024-05-04T21:28:28.271511

21 / tcp

220 (vsFTPd 3.0.5)
530 Permission denied.
530 Please login with USER and PASS.
211-Features:
 EPRT
 EPSV
 MDTM
 PASV
 REST STREAM
 SIZE
 TVFS
211 End

-458995352 | 2024-04-28T17:59:13.828216

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDVCd1jSOIbnMxHZfqnljhKBosGkXtYCItBRwGO6uXySE46
sSOlxVAuEdSyfE8J+7AoPMpDfG2roi8zpeermGv49cP7Vkyz5PZQfF+rEnQhpzuoZZ8HFxRPacjQ
uYlTvbF4sqX+/Gp4O3jnMPj77kxl+gbhKdjRRp+jjK/3MfjfXCDhZB8aXblqo9eWF2dSaN9BdY2c
g5ST3oEzGU+rHRWkClj5ZTYGkJeGrz2BxIdYD232TzAzjjNvM/HT+YLMBGh2l2vt3PUY49KrOe9S
p8bT+t2AM+REf5ZkJlm/ZMA2ddJAiaU97QSJdB81CBPwP/Ye0bCfLXqbPNE2NHkgFMJR5IINy3E3
OIYIw/HxV3RquFmF5nv7cN4/a/nDuE2IikbAHiMycukTcCsKAzXO3pfSFLu9deFUWEXxt+RXiz09
MMGqrUj0b8uyu5ez5rW8LpjlGaXrqgFeGfBS3nljBNvX2GC6gxkvk5lJSc+JGLrAvnz0raBBg0Ge
Z8ABjS57Xmk=
Fingerprint: 5a:c2:a8:ca:d6:eb:7b:7c:93:4c:ec:98:1e:25:2f:b0

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1845118841 | 2024-04-28T19:39:56.307737

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 28 Apr 2024 19:39:55 GMT
Content-Type: text/html
Content-Length: 10918
Last-Modified: Fri, 12 Mar 2021 23:44:43 GMT
Connection: keep-alive
ETag: "604bfceb-2aa6"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
Accept-Ranges: bytes

-229065308 | 2024-05-03T12:26:15.432701

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 03 May 2024 12:25:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 12022
Connection: keep-alive
X-DNS-Prefetch-Control: off
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
ETag: W/"2ef6-7uvw7uVOC1uRoElhW2Hhc1mirQ4"
Set-Cookie: connect.sid=s%3AweXXBQyP9njP5IinqyA12-Kx4e1pG-_9.s7G43JEYPGD1AIJNH1QmJZ%2FbDvlMb6Cew4sq0rSJdp4; Path=/; HttpOnly

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:d3:e9:29:f0:79:6c:2a:b7:f2:9d:ee:59:d0:ee:09:7c:68
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr  7 22:54:51 2024 GMT
            Not After : Jul  6 22:54:50 2024 GMT
        Subject: CN=thiagoamaral.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c5:97:c6:50:42:3f:f5:b5:de:ce:10:51:79:65:
                    2b:09:6d:74:d8:3f:4d:18:ed:58:80:24:ff:9d:40:
                    a3:76:24:98:95:c8:90:a1:d4:06:de:a9:b9:61:70:
                    69:84:d0:74:11:cb:8f:05:3e:f2:38:87:2f:08:c5:
                    33:89:b4:cd:b9:2b:fc:e3:0c:39:56:a9:e1:c9:ab:
                    cf:4d:1f:e0:17:b7:62:e4:01:85:d6:26:89:1d:ce:
                    51:cd:f0:e6:f6:a8:09:06:dc:3a:64:0d:67:0a:9a:
                    75:8c:1c:77:99:4e:92:73:46:a0:2e:2d:2b:1b:5d:
                    f0:8a:b4:7e:7f:b2:8a:d5:97:da:ac:de:8e:6c:7a:
                    12:ff:95:48:c8:46:af:15:09:97:c4:1c:2c:10:52:
                    c0:79:90:8d:0c:af:83:4c:a9:81:31:87:6e:85:e4:
                    41:c8:eb:ab:6c:ed:89:85:20:83:2b:42:07:3b:6d:
                    03:a4:ae:82:42:6c:8f:18:ce:8c:a5:3a:2a:e9:b7:
                    49:24:7b:4e:ac:16:2f:1f:51:c5:f1:75:a3:85:51:
                    6a:1b:4c:01:4c:db:15:1b:b0:88:bc:16:de:90:16:
                    22:82:d4:09:b1:f2:b7:93:91:2b:1d:19:2e:43:63:
                    72:29:de:12:f9:e5:ea:f1:cc:4e:a8:1d:d2:96:f8:
                    73:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                68:66:49:F8:66:70:93:BF:2D:81:EF:6F:A6:FD:4A:9B:9C:AA:CB:D2
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:thiagoamaral.com, DNS:www.thiagoamaral.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Apr  7 23:54:52.245 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:1C:80:6A:7B:E9:61:3A:79:64:42:8A:D5:
                                C4:2C:F6:E0:91:2E:EE:C3:08:2D:87:5C:25:07:25:46:
                                C6:C5:D3:AF:02:20:62:7F:39:6B:3E:30:72:AA:0D:85:
                                D5:5B:2D:36:56:DE:00:99:73:5A:88:FD:62:55:07:EA:
                                64:6E:51:E5:BE:35
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
                                4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
                    Timestamp : Apr  7 23:54:52.382 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:59:62:3D:85:C3:90:04:F8:4B:57:43:B1:
                                EB:53:86:CE:34:62:77:C8:CC:DC:9E:AF:99:BF:4A:6F:
                                28:80:D9:77:02:20:69:BB:4C:B9:1F:10:A6:70:0B:82:
                                56:35:53:2D:A1:70:CA:DF:AD:99:EE:66:B8:A4:E3:4D:
                                E1:D7:07:62:08:EC
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        74:f7:06:90:86:2c:a4:79:ac:a8:be:9f:16:88:18:d6:cb:ad:
        3e:4d:24:72:4b:dd:00:31:01:6b:e8:06:db:cf:1a:d1:82:5b:
        41:6d:bd:c4:9a:a3:7a:f3:a8:18:c0:16:b0:b7:1f:36:08:23:
        2b:1e:74:2b:4d:cc:96:da:db:13:ea:82:9c:71:bc:4e:8b:78:
        4d:2c:00:30:d4:75:5d:87:40:d4:bb:85:dd:8e:21:02:72:21:
        3f:37:a1:44:d5:ef:3e:d0:d0:f5:d6:ad:ff:5b:e5:81:56:11:
        9e:a5:70:88:8f:0a:f5:61:ec:e9:11:03:1c:4a:6d:5f:1f:bc:
        ce:97:d2:dc:48:b8:15:af:ec:8a:57:ce:5d:47:22:4c:10:9c:
        5e:70:12:7e:06:f9:fb:8e:fb:0c:97:5e:73:f4:b7:38:83:5c:
        38:61:ef:97:16:22:63:8b:2b:dd:6a:d5:3b:31:7b:ef:83:26:
        1f:8a:80:b8:a1:c4:8e:d7:f2:30:a1:dc:ba:f8:d2:5e:f4:b2:
        37:12:c0:85:38:bf:1b:42:b2:e1:0a:92:bf:32:e2:51:bf:ec:
        fe:48:de:1d:9d:0a:ac:88:dc:42:ab:e7:d3:c9:9d:0e:47:7c:
        51:b0:e2:a4:35:7b:8c:b7:31:e1:24:47:8d:23:0a:2d:9e:37:
        02:c1:75:d7

159.203.157.8

Last Seen: 2024-05-04

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1062991961 | 2024-05-04T21:28:28.271511
21 / tcp

-458995352 | 2024-04-28T17:59:13.828216
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1845118841 | 2024-04-28T19:39:56.307737
80 / tcp

nginx1.18.0

-229065308 | 2024-05-03T12:26:15.432701
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

159.203.157.8

Last Seen: 2024-05-04

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1062991961 | 2024-05-04T21:28:28.271511 21 / tcp

-458995352 | 2024-04-28T17:59:13.828216 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1845118841 | 2024-04-28T19:39:56.307737 80 / tcp

nginx1.18.0

-229065308 | 2024-05-03T12:26:15.432701 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-1062991961 | 2024-05-04T21:28:28.271511
21 / tcp

-458995352 | 2024-04-28T17:59:13.828216
22 / tcp

1845118841 | 2024-04-28T19:39:56.307737
80 / tcp

-229065308 | 2024-05-03T12:26:15.432701
443 / tcp