GeneralInformation

Hostnames	tacklexl.nl worker-01.ams3.tacklexl-cluster.visdeal.nl
Domains	tacklexl.nl visdeal.nl
Cloud Provider	DigitalOcean
Cloud Region	nl-nh
Country	Netherlands
City	Amsterdam
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

22 80 443

-2055952401 | 2024-04-21T10:24:00.402596

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDJFDhPhPlpI4NmIBmSTxo80343urF97ts8GcOwcrp/8YrC
C1w4MeosIWZg50kVFGH/yvh6mafSqJuCg7AAUvHIzT8cvysCb6Pk3w7PbVnn8d1HThrRNJLfRlEA
MmT+bZDb42vRMheZmPM6dU1WMSFX4FS0h+BSWoqFYydL2vMCwyDRrVdhB+RccQviX1UPKfbqAkOF
fSRSVPGk2Cx+0TS1Emyg01gFcL7SMz2MWybQNesPL8Rkndyt0JGsQAi8CIi/0LhNnpBuGX7BgPfY
nJzgP4MCLmoZy3s3uCBn4QQNwLMXoYYs7DWs/bKxFfG2cN8zQ/d/s7UF7/YqMzV2A06M98fbi/o7
a5G61RWH967DbvFWeiTRZVPugebs8FWUIObkgkSjBiRhkOv+HM2HZRQRq9ZpkzML4HnausSHQL1x
rXdLq6THmSKgNZJaZyC+LYCC0WTvSz2e+V9RPkJZC4YQDOP6bha9bcaFRWH4THRro0iGD3xZRs6q
8uBRqKieliM=
Fingerprint: 8e:00:0c:30:22:17:bd:f5:50:4f:ef:c8:b5:ef:11:d2

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

897585984 | 2024-04-23T03:26:21.280048

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.2
Date: Tue, 23 Apr 2024 03:26:20 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://167.172.41.138/

897585984 | 2024-04-23T11:35:34.011935

443 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.2
Date: Tue, 23 Apr 2024 11:35:27 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://tacklexl.nl/

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            14:85:15:85:02:91:de:77:50:6f:c3:a0:dd:f9:35:34:b0:77:06:a7
        Signature Algorithm: ecdsa-with-SHA256
        Issuer: C=US, ST=California, L=San Francisco, O=CloudFlare, Inc., OU=CloudFlare Origin SSL ECC Certificate Authority
        Validity
            Not Before: Sep 10 13:31:00 2021 GMT
            Not After : Sep  6 13:31:00 2036 GMT
        Subject: O=CloudFlare, Inc., OU=CloudFlare Origin CA, CN=CloudFlare Origin Certificate
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:24:a0:fd:c0:b9:9e:3d:ef:0e:a1:dd:51:d0:4c:
                    d7:cf:74:ef:99:70:b8:6d:e8:00:9b:c3:a2:4b:14:
                    0c:fc:c9:48:77:8e:99:f0:49:c2:da:ec:c7:86:11:
                    1d:27:4c:7b:7a:82:fd:79:b9:74:ba:42:b3:41:a3:
                    4c:88:13:04:4c
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Client Authentication, TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                D1:24:AE:CD:E1:78:17:53:F7:A3:9B:0C:E6:DA:9D:49:3B:5B:69:D4
            X509v3 Authority Key Identifier: 
                85:30:5D:3B:2A:70:D4:ED:D5:92:67:07:FD:EB:39:B4:1A:0E:38:A7
            Authority Information Access: 
                OCSP - URI:http://ocsp.cloudflare.com/origin_ecc_ca
            X509v3 Subject Alternative Name: 
                DNS:*.tacklexl.nl, DNS:tacklexl.nl
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.cloudflare.com/origin_ecc_ca.crl
    Signature Algorithm: ecdsa-with-SHA256
    Signature Value:
        30:46:02:21:00:b4:c0:96:c3:20:98:78:26:d7:95:32:9f:cf:
        70:84:72:c4:6c:52:ec:fe:63:3c:a3:69:6b:26:68:72:76:79:
        47:02:21:00:a7:5d:d0:14:ec:50:26:53:a5:10:c7:7b:96:58:
        89:28:ea:7c:2c:ec:b8:c9:b2:01:75:7c:5b:c2:c7:89:e0:69

167.172.41.138

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-2055952401 | 2024-04-21T10:24:00.402596
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

897585984 | 2024-04-23T03:26:21.280048
80 / tcp

nginx1.20.2

897585984 | 2024-04-23T11:35:34.011935
443 / tcp

nginx1.20.2

Products

Pricing

Contact Us

167.172.41.138

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-2055952401 | 2024-04-21T10:24:00.402596 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

897585984 | 2024-04-23T03:26:21.280048 80 / tcp

nginx1.20.2

897585984 | 2024-04-23T11:35:34.011935 443 / tcp

nginx1.20.2

Products

Pricing

Contact Us

-2055952401 | 2024-04-21T10:24:00.402596
22 / tcp

897585984 | 2024-04-23T03:26:21.280048
80 / tcp

897585984 | 2024-04-23T11:35:34.011935
443 / tcp