GeneralInformation

Hostnames	vmi921955.contaboserver.net gtadminer.gtdevel.com
Domains	contaboserver.net gtdevel.com
Country	Germany
City	Düsseldorf
Organization	Contabo GmbH
ISP	Contabo GmbH
ASN	AS51167

WebTechnologies

Issue trackers

YouTrack

Programming languages

Web frameworks

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 123 443 3081 8080 8084 9000 9100

1332881005 | 2024-04-18T14:30:10.159405

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.7
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAACAQCqMFAXdxAQwrbfhyXtT0eEQ+dbUgtk7yKufmeK0KQB4qTm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Fingerprint: ae:2b:9c:15:67:e8:82:d5:18:d9:20:c5:a2:cd:73:e7

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-04-16T04:57:44.825476

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 16 Apr 2024 04:57:44 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Thu, 30 Jun 2022 09:23:32 GMT
Connection: keep-alive
ETag: "62bd6b94-264"
Accept-Ranges: bytes

44662064 | 2024-05-06T08:06:35.319428

123 / udp

NTP
protocolversion: 3
stratum: 3
leap: 0
precision: -24
rootdelay: 0.0237884521484
rootdisp: 0.0465240478516
refid: 1440109463
reftime: 3923969576.72
poll: 3

869281729 | 2024-04-12T07:19:30.027899

443 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 12 Apr 2024 07:19:29 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:d2:05:38:86:d5:2d:df:c9:3d:d1:09:a2:6e:88:18:32:7d
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb 13 01:39:57 2024 GMT
            Not After : May 13 01:39:56 2024 GMT
        Subject: CN=gtadminer.gtdevel.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b2:14:8e:25:d7:ae:65:3a:e1:95:05:1b:90:ca:
                    8c:16:51:56:2d:6b:3a:0f:c9:e8:07:67:74:a1:3b:
                    ea:e1:2d:0b:53:1d:1d:b7:19:35:03:11:07:24:f8:
                    16:86:da:ec:8d:47:47:30:c0:a4:6a:fb:77:41:fb:
                    15:d1:90:b3:5f:54:28:53:fb:6d:08:1b:cd:d4:c6:
                    fa:11:67:64:1c:b8:2d:0a:f0:ba:7f:ee:92:b3:ef:
                    79:d3:ce:7d:28:43:df:55:36:9c:72:05:3f:9e:71:
                    78:d8:4f:8c:0f:a3:ff:11:db:cb:dd:54:ac:14:0c:
                    5a:62:6e:97:f0:4e:75:0f:ed:81:f5:cc:c8:7d:2e:
                    ef:cc:f3:2d:0c:a1:f3:57:1b:f0:eb:67:59:2d:46:
                    b2:74:9f:d7:77:28:a8:5a:44:9a:45:2a:b1:b3:f3:
                    f6:45:60:0e:e5:a4:10:27:9f:be:2c:83:95:5b:64:
                    1e:1b:7f:dd:09:bf:f1:58:1d:47:31:af:d1:ea:a7:
                    10:18:12:90:dc:97:dd:8b:fc:b1:ac:b5:f7:7f:3e:
                    83:c9:2e:f3:dd:4d:70:ed:76:da:3a:d9:c4:e7:4e:
                    dc:71:b9:c6:44:e1:af:25:25:1c:c9:57:27:9f:57:
                    2a:31:29:e7:f9:b2:2a:dc:aa:f4:ba:97:c8:55:66:
                    63:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                68:3E:6D:67:0D:C2:C1:9A:FF:1A:36:0D:C9:0D:A1:EF:C2:BB:60:F0
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:gtadminer.gtdevel.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Feb 13 02:39:57.364 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:E7:B2:11:84:78:B1:00:A9:05:0A:10:
                                E1:50:BF:29:0F:6C:BD:17:79:60:D0:6F:12:83:71:22:
                                24:12:D4:78:71:02:21:00:8F:25:B2:3A:DE:8C:5E:76:
                                10:97:BB:3B:D8:7E:AB:95:77:30:1D:51:B4:3C:95:9E:
                                28:1B:B7:63:A1:73:4A:79
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Feb 13 02:39:57.372 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:16:7E:31:5B:8A:E2:06:1F:B5:90:BA:C0:
                                B0:40:8B:61:34:9B:8C:C5:4B:E7:39:9D:A4:61:4E:5F:
                                AA:E3:AB:2C:02:21:00:C2:E5:51:7D:60:45:58:84:29:
                                9A:A2:42:05:FD:4C:B3:94:13:22:89:46:BE:D2:80:2B:
                                FA:79:BF:C6:03:F9:49
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        65:6a:7c:dc:78:74:ab:c1:e5:f5:36:7a:7c:64:cf:f0:32:af:
        22:c0:97:da:e5:8c:be:f7:ec:c2:f3:6f:0b:e5:5f:e3:00:43:
        f2:2c:97:59:6a:89:9f:5c:6a:90:ad:f9:18:e9:a0:79:46:f6:
        d9:fe:7d:42:47:08:4b:61:5c:14:2c:b8:df:76:c1:52:69:16:
        2a:74:7f:1c:a1:ca:0a:6b:e2:23:26:da:d9:df:d1:60:74:e1:
        37:e1:7e:6c:2d:1c:4e:37:7e:f3:77:4c:48:15:2b:81:8e:ef:
        52:f3:98:9f:39:92:84:ea:51:92:cc:bc:c7:2d:98:54:18:cf:
        fa:60:0e:d7:5a:78:b1:71:4f:5f:38:e5:c7:1f:b2:1b:4d:91:
        9a:fc:e7:d0:99:e2:0a:f4:c3:ec:05:ad:49:29:0b:e7:5b:ab:
        8e:22:c5:63:30:1a:c6:0b:96:63:4a:a2:d7:09:ea:cd:f7:cc:
        ed:6f:cf:0b:34:e5:e9:ef:ba:f2:b6:f4:48:34:7e:3d:db:44:
        95:53:a4:48:16:09:f9:b0:96:df:02:6f:96:9a:5e:5a:11:4a:
        d1:7c:4c:1c:f8:65:04:dc:2a:20:3c:2a:bf:84:43:6d:bd:2c:
        42:bf:56:fb:9d:c1:fa:f2:e0:e6:10:ae:ea:8c:cc:c4:14:53:
        55:10:ad:98

-510685671 | 2024-04-10T22:08:21.431266

3081 / tcp

HTTP/1.1 200 OK
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 0
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Link: </assets/application-bbddc84c66a1913692388938821e40fa8036e916618a542c0c01e211dc557cbb.css>; rel=preload; as=style; nopush,</assets/application-dc27edacbd65dccef29e1842b709eceedc792f403682630523706c678e974471.js>; rel=preload; as=script; nopush
Content-Type: text/html; charset=utf-8
ETag: W/"93ff53d64509167bad72a5ce20e2a3b4"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: default-src 'self' https:; font-src 'self' https: data:; img-src 'self' https: data:; object-src 'none'; script-src 'self' https:; style-src 'self' https: 'unsafe-inline'
Set-Cookie: sort_tags_by=name; path=/; expires=Sun, 10 Apr 2044 22:08:21 GMT; SameSite=Lax
Set-Cookie: sort_tags_order=desc; path=/; expires=Sun, 10 Apr 2044 22:08:21 GMT; SameSite=Lax
Set-Cookie: _docker_registry_browser_session=K1LnDBPsE3NRLm3uh1g%2BLuc%2BQDwnBbPNnUaUP2Bpz0FgGgE%2B6fjjzCAB%2Fn4d0ZUcp77ysUqLQYAi1%2FWOlSj700Ba5T6GbDN6Zo5ppojmZ86xA6n40wvdb7Nvf816IEjhWtZjpVnwrJ0jomdL2nj7XI2UbwkK8pMzmCK3Fz79SkZDqt61YjYbxAOFUvH78j0aqvh%2F7qXTzcolcLieSPvaHo3745YwBAl8CbkC%2FQgOjT0RQM0MutFu7BbFUwUuhZXqrHBG9GfdgCohjpvb%2B1tZinjphViP8Nh3aJGo3ePzIWv5AMz%2BOoJAsA%3D%3D--gfy2aL5iq1XEGZwO--EUED5X%2FLEMRq02gYRkNbiw%3D%3D; path=/; HttpOnly; SameSite=Lax
X-Request-Id: c60a2209-1346-4b84-8d47-bea012233796
X-Runtime: 0.225823
Transfer-Encoding: chunked

1742142208 | 2024-04-14T09:13:20.713549

8080 / tcp

HTTP/1.1 404 
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
Content-Type: text/html;charset=UTF-8
Content-Language: en
Content-Length: 275
Date: Sun, 14 Apr 2024 09:13:20 GMT

226093321 | 2024-04-11T14:16:06.745770

8084 / tcp

HTTP/1.1 200 OK
Date: Thu, 11 Apr 2024 14:16:06 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Server: YouTrack
Last-Modified: Wed, 20 Mar 2024 14:59:26 GMT
Content-Type: text/html
Cache-Control: no-cache, no-store, no-transform, must-revalidate
Vary: Accept-Encoding, User-Agent
Content-Length: 4420

1507030800 | 2024-04-22T18:34:25.199695

9000 / tcp

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 Apr 2024 18:34:24 GMT
Content-Type: text/html
Content-Length: 13078
Connection: keep-alive
Expires: Mon, 22 Apr 2024 18:34:24 GMT
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Vary: Accept-Language, Cookie
Content-Language: en
X-Frame-Options: deny
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: sc=NRbxlPJbkkklcn0Q7T9uaS2zZyIQ4UKAefbEexTMWViQRt4uH09LGCtWWtHxSLrl; expires=Mon, 21 Apr 2025 18:34:24 GMT; Max-Age=31449600; Path=/; SameSite=Lax
Set-Cookie: sentrysid=eyJ0ZXN0Y29va2llIjoid29ya2VkIn0:1ryyUi:ckK-hJt6sfkWeNiM-O6aPvp694A; expires=Mon, 06 May 2024 18:34:24 GMT; HttpOnly; Max-Age=1209600; Path=/

-396320124 | 2024-04-21T07:10:20.761233

9100 / tcp

HTTP/1.1 400 Bad Request
Content-Type: text/plain; charset=utf-8
Connection: close

400 Bad Request
Prometheus Node Exporter:
  node_exporter_build_info:
    branch: HEAD
    goversion: go1.19.1
    revision: 7da1321761b3b8dfc9e496e1a60e6a476fec6018
    version: 1.4.0
  node_uname_info:
    domainname: (none)
    machine: x86_64
    nodename: f8b9a7a60b3c
    release: 5.4.0-150-generic
    sysname: Linux
    version: #167-Ubuntu SMP Mon May 15 17:35:05 UTC 2023
  node_dmi_info:
    bios_date: 04/01/2014
    bios_vendor: SeaBIOS
    bios_version: rel-1.15.0-0-g2dd4b9b3f840-prebuilt.qemu.org
    chassis_vendor: QEMU
    chassis_version: pc-i440fx-6.2
    product_name: Standard PC (i440FX + PIIX, 1996)
    product_version: pc-i440fx-6.2
    system_vendor: QEMU
  node_network_info:
    lo:
      address: 00:00:00:00:00:00
      broadcast: 00:00:00:00:00:00
      device: lo
      operstate: unknown
    eth0:
      address: 02:42:ac:1c:00:03
      broadcast: ff:ff:ff:ff:ff:ff
      device: eth0
      duplex: full
      operstate: up

MAC Addresses

02:42:AC:1C:00:03
    Unknown

161.97.159.85

Last Seen: 2024-05-06

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1332881005 | 2024-04-18T14:30:10.159405
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.7

1651973090 | 2024-04-16T04:57:44.825476
80 / tcp

nginx1.18.0

44662064 | 2024-05-06T08:06:35.319428
123 / udp

869281729 | 2024-04-12T07:19:30.027899
443 / tcp

nginx1.18.0

-510685671 | 2024-04-10T22:08:21.431266
3081 / tcp

1742142208 | 2024-04-14T09:13:20.713549
8080 / tcp

226093321 | 2024-04-11T14:16:06.745770
8084 / tcp

1507030800 | 2024-04-22T18:34:25.199695
9000 / tcp

nginx

-396320124 | 2024-04-21T07:10:20.761233
9100 / tcp

Prometheus Node Exporter1.4.0

Products

Pricing

Contact Us

161.97.159.85

Last Seen: 2024-05-06

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1332881005 | 2024-04-18T14:30:10.159405 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.7

1651973090 | 2024-04-16T04:57:44.825476 80 / tcp

nginx1.18.0

44662064 | 2024-05-06T08:06:35.319428 123 / udp

869281729 | 2024-04-12T07:19:30.027899 443 / tcp

nginx1.18.0

-510685671 | 2024-04-10T22:08:21.431266 3081 / tcp

1742142208 | 2024-04-14T09:13:20.713549 8080 / tcp

226093321 | 2024-04-11T14:16:06.745770 8084 / tcp

1507030800 | 2024-04-22T18:34:25.199695 9000 / tcp

nginx

-396320124 | 2024-04-21T07:10:20.761233 9100 / tcp

Prometheus Node Exporter1.4.0

Products

Pricing

Contact Us

1332881005 | 2024-04-18T14:30:10.159405
22 / tcp

1651973090 | 2024-04-16T04:57:44.825476
80 / tcp

44662064 | 2024-05-06T08:06:35.319428
123 / udp

869281729 | 2024-04-12T07:19:30.027899
443 / tcp

-510685671 | 2024-04-10T22:08:21.431266
3081 / tcp

1742142208 | 2024-04-14T09:13:20.713549
8080 / tcp

226093321 | 2024-04-11T14:16:06.745770
8084 / tcp

1507030800 | 2024-04-22T18:34:25.199695
9000 / tcp

-396320124 | 2024-04-21T07:10:20.761233
9100 / tcp