GeneralInformation

Hostnames	flowise.app.kanaanco.com
Domains	kanaanco.com
Cloud Provider	DigitalOcean
Cloud Region	us-nj
Country	United States
City	Clifton
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

-1836475360 | 2024-05-11T00:26:32.994543

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.20.1
Date: Sat, 11 May 2024 00:26:32 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

-1715381880 | 2024-05-01T00:28:29.186128

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 01 May 2024 00:28:29 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 2116
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Thu, 12 Oct 2023 17:27:54 GMT
ETag: W/"844-18b24ee3990"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:0d:92:18:0c:d1:ff:74:ce:8f:d7:fe:e6:b1:c2:e8:8f:5a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 12 15:18:19 2024 GMT
            Not After : Jul 11 15:18:18 2024 GMT
        Subject: CN=flowise.app.kanaanco.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:87:ad:69:9a:a4:a6:6a:36:ca:6e:12:a1:92:64:
                    c8:5c:e2:03:5d:b2:55:23:88:38:32:e2:c4:7b:01:
                    e3:ed:da:6a:6c:40:df:c4:73:4e:3d:99:77:c7:22:
                    60:e3:31:25:1a:83:cb:a7:50:bb:73:85:af:54:98:
                    91:f7:57:b9:1e
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                F5:C3:BE:8D:CA:28:54:8C:4A:52:B0:07:A6:2C:40:56:40:F8:B6:37
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:flowise.app.kanaanco.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr 12 16:18:19.275 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:21:57:43:6C:C7:BB:AC:3A:22:6A:C7:F9:
                                CB:0A:45:2C:7F:58:18:92:CC:8A:E5:29:17:79:3C:F5:
                                9F:B2:C1:6B:02:20:02:AC:6C:08:17:D4:1C:9B:20:C1:
                                86:A2:61:6E:5D:AD:64:95:CF:C2:A5:2C:2D:BD:69:FA:
                                CC:67:50:5A:E6:06
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Apr 12 16:18:19.318 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:2B:58:D1:78:50:3E:5D:9F:98:E7:94:5D:
                                65:3B:28:14:89:E6:91:55:4F:18:08:E3:2E:1F:42:83:
                                81:86:3E:2B:02:21:00:DA:0C:F6:6B:63:90:15:57:E4:
                                27:AB:63:9A:39:F5:2B:D3:58:2E:8D:B2:34:CF:D2:70:
                                C7:F9:14:69:69:FC:0E
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        04:9f:86:a0:91:e0:66:2c:a3:73:fd:ff:aa:2b:1b:9e:6e:28:
        2c:5b:f3:1f:92:5d:31:25:2d:e9:e7:4b:f5:ed:c3:63:7c:58:
        8a:19:fd:04:73:7b:a0:28:0d:80:58:39:90:b6:3d:04:b5:69:
        a3:21:7a:1c:dd:fd:43:86:97:de:c2:b6:bd:eb:9a:69:c4:f3:
        09:23:25:36:e8:00:56:90:f1:6b:66:22:68:32:e0:5f:93:44:
        b8:fd:ec:82:26:03:60:b6:74:5b:d4:46:64:d7:05:cc:66:02:
        29:7a:f4:70:1c:d0:10:e5:59:af:41:01:69:c2:87:02:a8:48:
        b3:1e:5b:d7:62:ff:fd:fb:34:d5:40:10:41:be:ab:66:37:89:
        b2:89:41:94:b4:b3:52:1e:c9:a1:a3:56:d0:1a:a0:f3:10:15:
        01:0b:f4:2c:65:81:b3:86:a6:d8:b7:a2:ba:8d:62:58:63:55:
        10:7f:ec:6f:79:19:d8:c0:ed:9e:b0:45:e5:9a:b7:0d:cc:d8:
        5e:9b:b4:90:2f:cd:6e:90:9d:41:9b:67:fc:64:93:fb:17:91:
        05:f5:06:0e:fd:db:e1:31:4e:30:f9:cc:2f:99:e7:bd:2a:41:
        89:19:2b:f7:6d:8e:3c:9b:fb:4f:db:00:15:b1:83:4b:54:b7:
        b4:82:81:2d

165.22.40.131

Last Seen: 2024-05-11

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1836475360 | 2024-05-11T00:26:32.994543
80 / tcp

nginx1.20.1

-1715381880 | 2024-05-01T00:28:29.186128
443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

165.22.40.131

Last Seen: 2024-05-11

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1836475360 | 2024-05-11T00:26:32.994543 80 / tcp

nginx1.20.1

-1715381880 | 2024-05-01T00:28:29.186128 443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

-1836475360 | 2024-05-11T00:26:32.994543
80 / tcp

-1715381880 | 2024-05-01T00:28:29.186128
443 / tcp