GeneralInformation

Hostnames	cc-prod-back.simcase.tech
Domains	simcase.tech
Cloud Provider	DigitalOcean
Cloud Region	us-nj
Country	United States
City	North Bergen
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 6006 8080 8082

-573056707 | 2024-05-21T09:27:43.539641

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBLYTBjc9GHZsFZiDKENpf78+
dyWq5bJZAkW34cu66rEho6j2rgjGgfisRI46M/kQtUkgdmnVhi75ms16YhTYpXM=
Fingerprint: 2d:89:53:4f:24:a9:d6:cf:a4:86:18:a1:9f:fe:49:3f

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1410093119 | 2024-05-17T11:37:29.480529

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 17 May 2024 11:37:29 GMT
Content-Type: text/html
Content-Length: 10671
Last-Modified: Tue, 27 Dec 2022 20:51:36 GMT
Connection: keep-alive
ETag: "63ab5ad8-29af"
Accept-Ranges: bytes

2122831770 | 2024-05-17T21:17:47.068539

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx
Date: Fri, 17 May 2024 21:17:46 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/8.1.27
Cache-Control: no-cache, private

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:b4:8a:76:a2:1c:fa:a3:31:25:e0:7b:b5:be:b6:7d:96:eb
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 21 16:07:40 2024 GMT
            Not After : Jul 20 16:07:39 2024 GMT
        Subject: CN=cc-prod-back.simcase.tech
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:ba:d2:b0:ce:5b:63:08:b6:ff:4f:c5:96:64:a5:
                    03:37:73:f1:07:d2:5d:be:40:c9:d1:af:f5:ce:28:
                    84:98:6e:a8:d5:0c:8c:24:0e:fd:87:9d:f1:87:e4:
                    4c:4b:e1:1f:37:78:4c:2f:cd:e6:99:56:76:c3:0a:
                    d1:5b:24:98:77
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                07:85:41:28:0C:D0:95:DF:10:59:4F:ED:93:A2:49:AC:94:11:E2:B0
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:cc-prod-back.simcase.tech
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Apr 21 17:07:40.164 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D0:42:E0:E4:A1:BA:D8:A2:EE:26:2F:
                                80:C7:28:BA:A8:C5:B7:B3:B9:23:D1:9B:C9:4A:09:24:
                                66:D4:8E:DF:CC:02:21:00:F5:5C:8D:57:BC:8C:2A:21:
                                4E:5F:14:E2:A7:47:E5:82:A8:37:53:B7:CD:2F:CA:46:
                                78:7B:20:11:A0:01:6E:1B
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Apr 21 17:07:40.229 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:BD:96:07:09:C1:A9:81:B3:7A:63:3C:
                                2B:50:02:02:2D:65:77:3B:0A:7A:4A:44:EF:49:9E:27:
                                E2:46:EB:76:10:02:21:00:CE:6B:5D:75:83:9E:66:5E:
                                9B:9F:27:A8:7C:A7:F3:46:FC:F4:DB:26:7B:63:B1:8A:
                                60:5A:D9:0B:91:C5:00:39
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a4:25:ed:37:7f:4c:bf:bc:c7:52:91:52:c6:3c:7e:a9:6f:3a:
        8e:cc:a2:27:3f:ff:21:05:c6:e7:70:b9:27:7d:17:b5:39:0c:
        be:15:b9:1f:3e:9f:81:c0:d5:08:95:a8:11:8c:45:fa:4e:16:
        7b:e4:d4:36:f9:52:b7:62:53:3f:65:9d:49:d3:33:07:0a:4e:
        20:35:ad:f7:1f:35:5f:28:b0:f5:cc:d2:ac:52:5f:fd:11:9a:
        13:37:b4:42:9c:0a:dd:8f:43:fb:d8:c7:be:1e:1c:02:ea:82:
        4b:85:f3:b3:2a:42:74:e8:7b:61:8e:a1:73:01:ab:9b:02:c6:
        53:f0:82:d4:bd:03:99:0b:33:db:4e:60:c0:70:e8:3d:1f:a8:
        c5:24:69:fa:e4:b0:a2:8f:b0:87:16:f4:61:ab:6f:97:97:c7:
        90:fa:b3:ec:fb:de:bd:2b:e5:fb:a7:8d:2a:7a:f5:b9:c3:1a:
        84:46:21:e1:3a:93:26:72:67:1b:9e:28:ff:16:c8:4f:83:9d:
        41:9b:07:65:95:7d:79:b6:3d:ba:11:28:91:03:ec:fd:c8:49:
        6e:31:ba:54:b0:2c:55:3e:95:ce:eb:5f:86:6e:0e:03:e7:b1:
        30:48:51:01:e6:90:c0:2c:65:95:8b:41:35:84:0e:75:17:d0:
        7a:78:c6:c9

1822055410 | 2024-05-14T19:56:46.766966

6006 / tcp

HTTP/1.1 200 OK
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Accept-Ranges: bytes
Content-Type: text/html; charset=UTF-8
Content-Length: 2791
ETag: W/"ae7-FpoeNKasgFm8dBMHi/pZaRJNnl8"
Date: Tue, 14 May 2024 19:56:46 GMT
Connection: keep-alive

-1060095501 | 2024-05-03T02:55:34.764099

8080 / tcp

HTTP/1.1 404 Not Found
X-Powered-By: Express
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
Date: Fri, 03 May 2024 02:55:33 GMT
Connection: keep-alive

-987952246 | 2024-05-03T03:55:22.262539

8082 / tcp

HTTP/1.1 404 Not Found
X-Powered-By: Express
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
Date: Fri, 03 May 2024 03:55:22 GMT
Connection: keep-alive

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

159.65.224.50

Last Seen: 2024-05-21

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-573056707 | 2024-05-21T09:27:43.539641
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

1410093119 | 2024-05-17T11:37:29.480529
80 / tcp

nginx1.18.0

2122831770 | 2024-05-17T21:17:47.068539
443 / tcp

nginx

1822055410 | 2024-05-14T19:56:46.766966
6006 / tcp

-1060095501 | 2024-05-03T02:55:34.764099
8080 / tcp

-987952246 | 2024-05-03T03:55:22.262539
8082 / tcp

Products

Pricing

Contact Us

159.65.224.50

Last Seen: 2024-05-21

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-573056707 | 2024-05-21T09:27:43.539641 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

1410093119 | 2024-05-17T11:37:29.480529 80 / tcp

nginx1.18.0

2122831770 | 2024-05-17T21:17:47.068539 443 / tcp

nginx

1822055410 | 2024-05-14T19:56:46.766966 6006 / tcp

-1060095501 | 2024-05-03T02:55:34.764099 8080 / tcp

-987952246 | 2024-05-03T03:55:22.262539 8082 / tcp

Products

Pricing

Contact Us

-573056707 | 2024-05-21T09:27:43.539641
22 / tcp

1410093119 | 2024-05-17T11:37:29.480529
80 / tcp

2122831770 | 2024-05-17T21:17:47.068539
443 / tcp

1822055410 | 2024-05-14T19:56:46.766966
6006 / tcp

-1060095501 | 2024-05-03T02:55:34.764099
8080 / tcp

-987952246 | 2024-05-03T03:55:22.262539
8082 / tcp