GeneralInformation

Hostnames	pre.bossapps.co
Domains	bossapps.co
Cloud Provider	DigitalOcean
Cloud Region	ca-on
Country	Canada
City	Toronto
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

-2050107495 | 2024-05-06T00:32:42.231895

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQC8VwSQ16d3XyznhORsgxX89Q5VZcaxDJGn1K+DKVTkjior
iH4l2r7rZxOPU5aQir8wZ5K7O2kqeoTI8aKtHVTXajy9N724a/DgzkHsmwl3uM1FChA6KUDrzFif
wwliUXlyxzGXSVlwumz7wVlROxB+cPhGDDDOR4csvk3Nq3z+PfT2Hq8mLW7KbzOmcaCV9J4EiUfc
HiK/w2K+FVDaojQQjh3RVGkTd9rA0kxcjfXM1qqLPOb9oyheh7PZsVioFUFQMB3/hWvUfecTT7Y4
2dLesugaOiJxSFWpggEs4mfbw8NAWkXcZ0Z6tGNyYtI8cshz10jsvBPtRNxUPeHoNYkcfpX8ZzRf
tCoRNHIOP8Q5gEosEkXZU9w1KlVXG0qHD3KDGq21T0yOWsi7p24xm4kiEkJK/HaozW9YcQKdhqb4
kzrRtqmQnnaJhRBpuZPy8JXvOQiMDAZAKmT1e0Vl+nfKWjmQqixi3W6pVlcnvtUuBYAXiUlIyPMS
PDurqGaQDyM=
Fingerprint: 77:b3:2c:7a:7e:ed:9e:43:79:04:3e:f3:2a:42:fd:e5

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1202544330 | 2024-04-30T09:14:44.928227

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 30 Apr 2024 09:14:44 GMT
Content-Type: text/html
Content-Length: 6510
Last-Modified: Thu, 08 Jul 2021 14:38:11 GMT
Connection: keep-alive
ETag: "60e70dd3-196e"
Accept-Ranges: bytes

2122831770 | 2024-05-01T19:00:33.923814

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
date: Wed, 01 May 2024 19:00:33 GMT

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:c2:7f:85:da:20:f4:9b:8c:7c:cb:eb:ba:ee:ea:4a:84:bd
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 12 05:50:05 2024 GMT
            Not After : Jul 11 05:50:04 2024 GMT
        Subject: CN=pre.bossapps.co
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:af:39:4b:02:92:c9:46:43:65:2e:3e:b9:13:2f:
                    32:32:d0:2d:2d:99:3c:61:77:43:4d:7a:37:29:c0:
                    a0:a0:d6:23:50:af:ed:08:93:8a:04:5e:76:48:63:
                    fa:75:f0:d6:bd:68:73:41:c6:ef:a7:eb:38:c2:68:
                    d8:b5:cc:27:3c:d6:8b:cb:6f:9c:6f:99:de:aa:6d:
                    cc:50:a3:71:d8:a7:5d:d8:43:bf:55:e5:6c:ca:38:
                    82:8d:71:bc:c5:13:2e:5b:b8:49:89:50:03:14:d6:
                    23:95:81:d8:75:a7:cb:73:00:ae:c1:80:3f:ed:0e:
                    93:3a:6a:55:e5:ad:14:ae:84:8d:0e:37:30:d3:ef:
                    c9:13:df:fe:b9:59:ee:33:b4:91:f6:b3:dd:04:1b:
                    4e:e1:7c:0e:33:ee:2c:78:3f:0c:0b:4f:32:e6:97:
                    9c:a1:12:0d:14:b1:db:77:90:39:79:8e:5e:b3:53:
                    ec:db:11:40:72:85:67:3c:4e:43:6b:94:de:fd:f1:
                    74:d6:ff:69:a4:59:0c:14:e1:d0:cb:86:a9:f1:4b:
                    6d:7d:5f:b9:1b:a4:19:9b:a6:ed:89:a4:0c:8b:cc:
                    f4:db:82:f4:92:16:21:60:97:29:e5:54:09:6a:1d:
                    32:fe:c6:8e:a3:df:fb:9c:43:12:97:c8:d2:62:34:
                    f2:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                25:55:90:7D:67:CD:26:A2:75:AA:D4:8E:92:66:1A:64:B0:BA:8A:E9
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:pre.bossapps.co
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Apr 12 06:50:06.293 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:52:36:89:21:47:EC:C3:E1:CE:BF:A9:59:
                                26:51:28:F0:B9:62:45:AD:FB:4E:02:CC:13:3B:EF:2E:
                                FC:80:80:84:02:20:5E:DC:E0:6C:FE:35:0F:5B:04:5F:
                                B6:DA:71:77:7A:FD:76:BA:37:45:CD:5F:72:93:9E:FD:
                                FB:2B:C7:63:E6:8F
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr 12 06:50:06.444 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:32:FC:2B:45:3C:0D:42:DC:A6:5B:E4:6B:
                                7F:C8:C3:3A:7D:25:71:C8:F7:5B:98:25:34:1A:17:12:
                                CC:22:8F:79:02:21:00:B5:55:A6:E3:59:26:A1:B6:14:
                                2A:36:C9:C1:5D:6E:C3:4B:97:A9:99:01:6A:48:30:BE:
                                F2:80:32:8C:E3:28:B9
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a9:b4:fd:cd:68:35:28:84:10:3b:c4:3e:6b:7b:7a:99:b9:b6:
        ee:5d:79:a6:7a:f7:71:cd:fd:4f:9f:45:6a:33:b1:d0:2b:43:
        69:de:74:1d:6b:47:23:58:63:16:41:0e:fb:ce:4f:29:1f:42:
        36:32:9c:cd:17:c4:2b:1a:95:b7:fa:26:35:87:64:2d:e7:ca:
        d0:a2:b6:71:a8:2a:a9:ba:2f:45:dc:77:fc:85:0f:d0:09:52:
        65:aa:ca:fc:bf:a0:13:76:c9:36:93:b2:73:52:dd:5b:86:c1:
        3c:e3:e1:8c:ed:fc:82:fa:34:c8:54:55:48:30:de:45:96:99:
        dd:c2:60:6c:ab:9f:a9:48:9f:65:49:2a:2a:af:99:4c:31:3b:
        b1:80:27:3e:1c:46:a7:ea:0d:8e:ff:84:67:e5:de:d5:43:c8:
        11:9e:10:6c:b4:8f:08:3d:67:0d:80:2d:7d:b6:22:e9:b6:2c:
        bd:46:9a:b9:98:e3:08:88:2f:31:e8:b5:33:14:b4:36:10:43:
        68:a8:de:48:aa:7b:10:14:7e:6b:32:ab:ed:81:29:1d:4b:a0:
        80:1e:12:6c:c5:a9:23:1f:02:80:b8:05:5b:99:74:4f:83:eb:
        d7:72:43:6a:e2:50:b3:21:41:60:27:52:d8:c1:35:5d:4b:b9:
        6c:86:de:2c

159.203.21.21

Last Seen: 2024-05-06

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-2050107495 | 2024-05-06T00:32:42.231895
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1202544330 | 2024-04-30T09:14:44.928227
80 / tcp

nginx1.18.0

2122831770 | 2024-05-01T19:00:33.923814
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

159.203.21.21

Last Seen: 2024-05-06

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-2050107495 | 2024-05-06T00:32:42.231895 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1202544330 | 2024-04-30T09:14:44.928227 80 / tcp

nginx1.18.0

2122831770 | 2024-05-01T19:00:33.923814 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-2050107495 | 2024-05-06T00:32:42.231895
22 / tcp

1202544330 | 2024-04-30T09:14:44.928227
80 / tcp

2122831770 | 2024-05-01T19:00:33.923814
443 / tcp