GeneralInformation

Hostnames	b2b.ipfestore.reev.group
Domains	reev.group
Cloud Provider	DigitalOcean
Cloud Region	in-ka
Country	India
City	Doddaballapura
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

1564538692 | 2024-05-18T21:54:39.823614

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQC0P71vUauPaume1XOGnUAc5NkbL8rYLZfYyY6Bj10ekfPu
iyPHWz3/Q7MX4bzUdWjsEuWxQlqcai6S8aivdc/2E37TULjj05lhLmhRNrxEmp2nhI9L4b51P+We
RBF4ha5do8nAKmZqIL5K6XtvG7RoRywNHR4uQ2CdSP4qeq0gjLNx5WW9YA05wRtUPvKJ6KN0yPaa
sxEf0HlTQSdgKZn648hpIk0RBQ1ApHWnq2nfJhSzL+Nz2hKW+wzKVnSmzs5+l1kHI8D27psC05s0
Nd6Bv2/aTR5GXL8TblJDh8gZ7v74Bb1Sq0Rnlj7ZnIn+j0Z5dMRqIOnH/+XUqjN4StACI2dWutCH
1f/HBWMW0JoWkemjc/oBNdQnExTrxcOHi7HZ7/O9ZWUYxMP/41OhxCX8+XkdJFPzLMS5hiffWFqA
QV5VD/QsD6WWPfRGA12f+0EyV7txxykcpxQoZmXKynMBNCB7cAzcHGGgZhpg4a0zdSCzY2PUlU3s
ifmolxx/wCU=
Fingerprint: d0:97:4f:83:4f:53:3d:5f:71:12:ec:2e:f4:e9:75:e6

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

677579724 | 2024-05-28T02:50:48.543695

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 28 May 2024 02:50:48 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

-1039720315 | 2024-05-25T12:03:27.004128

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 25 May 2024 12:03:26 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 2054
Connection: keep-alive
Content-Security-Policy: script-src 'self' 'unsafe-eval';worker-src 'self' blob:;child-src 'self' blob:;img-src 'self' data: blob: https://cdn.directus.io;media-src 'self' https://cdn.directus.io;connect-src 'self' https://*;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'
X-Powered-By: Directus
Vary: Origin, Cache-Control
Access-Control-Allow-Credentials: true
Access-Control-Expose-Headers: Content-Range
Cache-Control: no-cache
ETag: W/"806-11wkRktT40LzOk+DDiimHwRmSvU"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:ed:71:d5:eb:be:23:1b:d2:12:0f:2c:6d:cb:7b:28:57:31
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: May  1 17:33:08 2024 GMT
            Not After : Jul 30 17:33:07 2024 GMT
        Subject: CN=b2b.ipfestore.reev.group
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:0f:36:91:b1:a1:df:c2:b9:7b:46:de:10:0c:38:
                    b9:be:95:b7:d2:36:2a:a3:e0:2e:17:98:f2:3c:9b:
                    45:2e:0d:38:f1:ec:b2:0c:2e:05:d8:d8:83:ce:eb:
                    d2:76:58:00:c1:0a:a3:cb:72:1c:75:7a:73:7c:18:
                    a3:53:02:f2:ab
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                1C:A2:04:E9:8D:AD:7D:AC:A1:0E:C3:3C:3C:11:27:ED:FF:EC:BC:73
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:b2b.ipfestore.reev.group
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : May  1 18:33:09.044 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:AC:E8:21:25:6C:28:9B:89:87:C7:3E:
                                84:C9:F1:B2:C2:22:AF:10:C3:21:9E:18:85:C1:7F:54:
                                83:E4:16:6C:A2:02:21:00:E8:AD:92:0F:8A:2D:D2:39:
                                07:DB:40:89:9D:AB:96:8F:5F:CF:6A:8C:CB:FE:3B:7C:
                                D6:8F:22:8A:D3:42:AF:B7
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : May  1 18:33:09.065 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:74:ED:19:E0:FE:16:C7:AE:3A:28:18:7A:
                                E5:54:1F:9F:64:FE:AE:F1:71:61:45:91:4B:F4:D9:E4:
                                75:2A:B8:77:02:20:69:EC:B2:05:A9:CD:35:F4:DC:62:
                                94:CF:A7:98:C1:67:C6:53:A3:80:3E:7D:15:28:71:0C:
                                D6:80:8A:6D:BC:22
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        10:2e:3e:60:c5:3f:6a:a9:16:1e:7c:c2:04:ad:24:a5:8b:c3:
        8f:fe:01:d1:99:f6:b0:c8:d7:44:bc:32:30:95:c7:f7:91:35:
        05:09:49:b3:c9:b0:23:31:d2:5a:71:5b:98:ee:c9:bd:51:ea:
        c2:ec:5b:3d:d3:30:9c:ec:61:f2:c9:c1:52:84:68:2d:68:10:
        6d:5e:e7:a8:7f:45:37:84:c5:2b:0d:e2:f0:65:6b:52:85:32:
        5f:4d:8f:9a:08:68:d2:d3:93:6a:4c:a8:4a:50:70:be:d7:25:
        84:67:65:f4:7c:89:0d:e6:45:eb:af:ff:66:ff:44:a8:6e:58:
        b4:1d:29:0f:45:9e:7d:ab:42:16:2d:f6:6b:dd:0a:aa:e7:dc:
        52:80:59:57:8b:34:9c:77:9a:fd:cd:02:5f:04:90:ae:94:96:
        64:61:03:87:71:f8:7d:42:34:0a:0d:70:46:80:eb:9c:4e:09:
        f4:56:e9:6c:48:8f:10:52:0e:73:c8:5d:3b:fb:11:9c:ff:0e:
        d7:f9:05:ae:3a:6b:ca:7a:8d:df:e4:b1:a3:9b:9e:ec:bd:76:
        c7:0d:d6:b5:c8:e6:a9:33:09:da:fb:70:0e:3c:f4:ae:ff:b1:
        b2:07:b5:4e:25:83:b6:5b:90:bb:f6:b7:54:f5:31:bb:3a:8a:
        d5:ac:91:60

159.65.145.165

Last Seen: 2024-05-28

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1564538692 | 2024-05-18T21:54:39.823614
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-05-28T02:50:48.543695
80 / tcp

nginx1.18.0

-1039720315 | 2024-05-25T12:03:27.004128
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

159.65.145.165

Last Seen: 2024-05-28

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1564538692 | 2024-05-18T21:54:39.823614 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-05-28T02:50:48.543695 80 / tcp

nginx1.18.0

-1039720315 | 2024-05-25T12:03:27.004128 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

1564538692 | 2024-05-18T21:54:39.823614
22 / tcp

677579724 | 2024-05-28T02:50:48.543695
80 / tcp

-1039720315 | 2024-05-25T12:03:27.004128
443 / tcp