GeneralInformation

Hostnames	cooodes.com www.cooodes.com box.dks-server3.tech
Domains	cooodes.com dks-server3.tech
Country	United States
City	Phoenix
Organization	Namecheap, Inc.
ISP	Namecheap, Inc.
ASN	AS22612
Operating System	Ubuntu

WebTechnologies

JavaScript libraries

Miscellaneous

UI frameworks

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 4000

-1510884777 | 2024-04-28T02:27:44.690220

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDBVN7EzNQ0HvDMdjN3hTBQIUuB5pI+vcr1+BaDncR3A0q3
fcEeUY0SDoRbQHu6yQNOgSfMLNlH6wuk3jqq6K4wmRH/a0kCFxZxZeN70D8+YrrK/ZrEurdSfSl0
WgatCtp5ctDLZkQfYfQqTYloNAaJTK8Oxsog/4ueNmoygQ4Z0/m8xPsVgra/A7Vnwg6M3/FzDf3e
nipfE/BDMMo67GZw5NWS1OI5Q8iCCQ8J2cUA5syKHBsNExO0AFdmcB96nwMLzuwmyV6YcA1SL9l+
VyyxV5b9+FqyNgf/lvUsst7+IVxkpzBrqXbD9s/H3xboPkcl8PrHXOPgdVoiPZy4jISP
Fingerprint: ef:e0:9b:df:5f:b9:44:a5:05:3e:c3:df:0d:30:21:10

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

677579724 | 2024-04-28T16:54:18.068096

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 28 Apr 2024 16:54:17 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

523990555 | 2024-04-27T01:04:34.783904

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 27 Apr 2024 01:04:34 GMT
Content-Type: text/html
Content-Length: 2538
Last-Modified: Sat, 09 Sep 2023 03:40:53 GMT
Connection: keep-alive
ETag: "64fbe945-9ea"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:3d:13:73:9c:f8:f3:de:24:ce:a1:6d:64:68:b5:8a:fd:bf
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 21 22:09:25 2024 GMT
            Not After : Jun 19 22:09:24 2024 GMT
        Subject: CN=cooodes.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:bd:b4:42:6b:da:a5:13:d2:0c:41:e4:82:83:43:
                    7f:f3:c3:ae:b4:fc:5f:e2:c6:1e:0d:0e:59:16:09:
                    38:65:9a:33:c6:69:28:13:6e:33:e2:26:4b:71:48:
                    5e:78:da:ce:36:da:29:e5:87:a2:66:9e:d2:77:a8:
                    55:d7:58:f6:7b:f5:8f:4f:bf:de:ab:18:7f:ba:9e:
                    df:d7:0b:62:6f:99:e7:3d:3a:8a:25:d3:4f:a0:b1:
                    d9:51:69:2e:bf:fc:34:47:55:03:b9:ef:1d:63:0a:
                    c7:01:65:5f:c8:0e:4e:a5:f3:ce:51:86:d5:0d:78:
                    34:2f:4d:e6:22:15:f7:f6:33:31:e3:8e:92:c3:a2:
                    8c:53:b2:29:dd:29:72:5f:61:ad:58:67:26:f7:25:
                    aa:68:3b:f1:e4:b6:a8:83:e2:d7:84:93:3f:09:cc:
                    ae:a7:28:e3:f6:6c:e0:cb:2e:e0:fa:d0:aa:e4:80:
                    a7:84:4a:35:04:0c:94:38:55:fc:0b:0f:11:0e:97:
                    d0:8a:74:59:75:d9:e7:9f:a1:e7:0e:f1:8c:56:58:
                    d5:11:09:f6:10:4b:8a:33:be:42:dc:03:6e:ca:d7:
                    9b:23:fd:f0:d4:77:20:58:ac:de:66:eb:0c:5c:f0:
                    5b:0d:8e:76:eb:12:b1:34:51:bc:97:c7:d5:8e:16:
                    5c:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                E5:B7:0B:DA:03:D0:DB:27:8D:C1:B6:99:9B:8C:CC:C9:C6:8E:4B:41
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:cooodes.com, DNS:www.cooodes.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 21 23:09:25.614 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:19:72:BF:F9:2F:90:E9:17:07:19:7F:C9:
                                5D:9F:77:E7:37:52:66:26:2B:66:2C:47:D5:2F:E9:6D:
                                61:10:EA:12:02:21:00:EA:D9:09:18:0C:70:E7:19:32:
                                E9:66:4B:9B:B5:B3:B3:D1:66:4E:1D:45:34:C3:EE:2D:
                                FA:BA:CD:76:07:D7:B1
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Mar 21 23:09:25.617 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:DB:DD:DD:82:83:A3:BA:CF:2C:8C:DF:
                                A3:2F:FF:B8:A1:F3:6A:41:9E:22:57:5B:6D:58:39:92:
                                DE:11:E6:78:42:02:21:00:E8:E5:9C:E8:AE:65:C5:4E:
                                AB:18:98:7A:70:88:20:17:6E:86:B8:71:1D:8B:DB:75:
                                DD:A7:D5:FD:37:EA:7E:25
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        59:ba:46:6d:a1:c3:9d:8b:c9:05:aa:1e:d6:38:37:7a:b6:aa:
        cc:25:fd:c6:5a:f7:aa:f8:e6:fa:07:ba:97:69:91:40:ed:ce:
        fa:fc:3a:63:0d:a8:a3:3d:41:fd:c1:ed:d4:36:3c:4b:1e:18:
        3b:4a:4c:f0:75:51:1f:2a:4a:6a:7b:b8:90:bb:9e:6d:da:65:
        4c:2f:2a:2e:43:9d:dd:b5:d9:f0:38:6b:f6:e4:6f:35:88:c6:
        54:c8:e4:94:11:7c:29:c8:1b:a0:fc:50:9d:b3:71:1c:c3:b4:
        54:6d:56:aa:38:42:59:ba:fa:ff:c9:d9:db:2b:72:0c:59:e3:
        cd:b2:2d:75:06:34:9a:02:54:69:9f:bd:86:1b:5b:d8:31:61:
        af:49:2d:28:6c:9a:6b:41:21:15:c2:2d:57:28:3b:97:cb:42:
        69:c5:59:6f:35:d9:29:a7:8f:d4:60:2c:3d:3a:b4:f4:0a:ff:
        3a:ff:9e:5f:72:d3:9f:e5:05:e0:d2:61:c8:fd:45:6a:06:b9:
        54:de:ca:69:4f:91:b1:07:4e:c1:7c:5b:dd:af:6b:58:aa:c4:
        e7:5a:00:52:29:6f:cc:92:cf:78:e0:4c:95:1a:05:41:55:0d:
        cd:59:99:ed:41:a7:61:a9:9b:bb:9e:67:e5:8f:44:b1:12:db:
        69:3c:79:5c

115839686 | 2024-04-26T21:55:21.309310

4000 / tcp

HTTP/1.1 400 Bad Request
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 26 Apr 2024 21:55:21 GMT
Content-Type: text/html
Content-Length: 166
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx/1.18.0 (Ubuntu)</center>
</body>
</html>

162.0.230.25

Last Seen: 2024-04-28

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1510884777 | 2024-04-28T02:27:44.690220
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-04-28T16:54:18.068096
80 / tcp

nginx1.18.0

523990555 | 2024-04-27T01:04:34.783904
443 / tcp

nginx1.18.0

115839686 | 2024-04-26T21:55:21.309310
4000 / tcp

nginx1.18.0

Products

Pricing

Contact Us

162.0.230.25

Last Seen: 2024-04-28

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1510884777 | 2024-04-28T02:27:44.690220 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-04-28T16:54:18.068096 80 / tcp

nginx1.18.0

523990555 | 2024-04-27T01:04:34.783904 443 / tcp

nginx1.18.0

115839686 | 2024-04-26T21:55:21.309310 4000 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-1510884777 | 2024-04-28T02:27:44.690220
22 / tcp

677579724 | 2024-04-28T16:54:18.068096
80 / tcp

523990555 | 2024-04-27T01:04:34.783904
443 / tcp

115839686 | 2024-04-26T21:55:21.309310
4000 / tcp