GeneralInformation

Hostnames	rjs.stbvpn.xyz
Domains	stbvpn.xyz
Cloud Provider	DigitalOcean
Cloud Region	sg-05
Country	Singapore
City	Singapore
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 8081

1415638915 | 2024-05-10T16:44:32.330209

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQClp7fB5urK9MBD1TEVNSTAp0wBcHV0TLB4KxPYdWmUvCNX
+5XUdr6ypVlOkfpjjcdAcft2Ov5GmCDBz58gkNZCsy3pHJHnZqQYpg6HLI4CJbF9cFnI6L239NQI
XPttrCh8QfSCkjgdokRRq5R/ztbqDu0JLVM12uJW84y3ITTxd4cEvADX9qWgVSwK3oHlMwatIitT
/5+VGpzwmY+jLh9IQsgVxpezY+fhhPVs3hK240e5ytG9RpDKpaOVO+id/y9d5knlr1GDMLi9piwQ
hlQm4EX43xtVzoDiWNbc9b0X9mGJg37TtzYoKgmdrz+/qce1I/NJmUfd4BNKcCC1hqqJ2T8OnRJZ
0YzMmyf96O7P015W7FK3p2uAXbJSgqcfDYZgNVje9RSpBEqd8LrfX56jSnUHE2A93swheGcpZC54
LxEkZFW66cvxoOWLxAFas6Yy0gsNfwCyt6r81QQ54/IvI23I/CatJRPY6PCT9aMT8RSKEZUCMKb6
uQgVBSnp/hE=
Fingerprint: 87:b5:4e:3e:6e:48:e9:95:9f:c5:08:c6:12:15:bc:1c

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1222917272 | 2024-04-28T13:52:12.121840

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 28 Apr 2024 13:52:11 GMT
Content-Type: text/html
Content-Length: 28
Last-Modified: Fri, 16 Feb 2024 13:38:33 GMT
Connection: keep-alive
ETag: "65cf6559-1c"
Accept-Ranges: bytes

1222917272 | 2024-05-04T00:46:46.251533

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 04 May 2024 00:46:46 GMT
Content-Type: text/html
Content-Length: 28
Last-Modified: Fri, 16 Feb 2024 13:38:33 GMT
Connection: keep-alive
ETag: "65cf6559-1c"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:15:cb:2f:6a:6a:6d:a8:d3:08:f1:b4:c7:32:19:88:e0:45
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb 16 12:38:51 2024 GMT
            Not After : May 16 12:38:50 2024 GMT
        Subject: CN=rjs.stbvpn.xyz
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:82:42:f0:43:d3:c8:d1:eb:9d:03:0b:1e:46:2f:
                    3c:dd:56:55:40:38:ae:a8:5c:ca:3c:44:04:90:c1:
                    f9:8c:c5:84:ae:31:d5:59:90:1f:d4:bc:90:97:78:
                    03:0a:6c:d7:cd:90:5d:48:73:ea:21:65:8d:ed:73:
                    39:71:7c:b6:e1
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                8A:09:2C:F5:54:D6:F1:6A:1B:EB:93:73:AD:57:6B:E1:72:E2:48:FD
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:rjs.stbvpn.xyz
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Feb 16 13:38:51.166 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:2C:E1:0F:59:6C:C6:72:A9:71:42:32:00:
                                7F:E7:13:CB:0B:5F:84:AB:1E:77:0A:1D:36:6A:59:23:
                                9E:32:40:64:02:20:20:B6:23:BA:57:B7:B4:E6:5C:30:
                                C0:D8:47:01:9C:95:77:C0:89:89:B6:F2:E9:31:0A:FF:
                                5F:24:D4:B5:27:B9
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Feb 16 13:38:51.169 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:57:0C:B5:40:29:C7:EC:1B:4D:1C:6A:ED:
                                82:8D:A7:3E:A8:25:B5:2D:4E:96:35:54:B5:D9:EE:3A:
                                41:15:9E:AC:02:21:00:AE:7D:86:0A:E5:31:01:F5:E1:
                                D3:A4:E2:E9:BA:30:B3:93:C8:02:0E:69:A2:C7:B8:73:
                                D6:E3:08:04:0A:EB:8F
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        20:0b:99:57:4d:cd:6e:b5:d8:8e:6c:5c:b0:f4:5f:ca:83:48:
        22:56:98:e5:2f:e0:8d:5a:13:80:3d:ee:47:82:90:63:e4:ba:
        7d:b4:c8:0c:a7:97:23:6f:c4:ce:4e:66:7e:3b:eb:3e:1a:40:
        a9:6b:b9:53:7d:14:17:e0:31:77:1e:4e:dc:f7:ed:44:28:75:
        7f:f2:42:12:ae:2c:ae:bc:97:c8:e0:83:7b:fb:01:c1:f7:60:
        7e:aa:1e:ac:e1:c2:00:42:d9:7a:8f:9d:c8:04:dc:db:37:67:
        5e:4b:1a:14:15:a3:6e:2d:ba:c0:5a:91:0a:70:63:93:d9:16:
        7a:4b:57:0f:05:25:60:93:aa:23:17:b9:97:20:38:76:01:58:
        f0:52:15:aa:ce:1d:55:5c:7e:17:b1:14:36:29:4a:88:b4:db:
        4e:9b:94:6f:e2:dc:46:a0:d7:a5:87:1c:f7:da:d6:94:e1:94:
        13:84:3b:fd:04:5a:dc:c2:34:0a:3b:cc:a2:ed:bd:56:53:ef:
        f7:e6:05:cd:36:af:fa:58:e4:00:49:17:69:be:21:d9:46:4d:
        5c:ee:e6:d3:00:f2:d6:6a:27:ca:8c:a2:6f:ca:b7:39:73:d7:
        b5:77:cc:ac:fc:e8:27:d8:4c:d9:77:80:f9:92:e1:d5:3a:30:
        ca:47:df:c8

-536880377 | 2024-05-09T16:11:35.159143

8081 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 09 May 2024 16:11:35 GMT
Content-Type: text/html
Content-Length: 28
Last-Modified: Fri, 16 Feb 2024 13:38:33 GMT
Connection: keep-alive
ETag: "65cf6559-1c"
Accept-Ranges: bytes

<pre>Setup by LingVPN</pre>

167.172.73.56

Last Seen: 2024-05-10

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1415638915 | 2024-05-10T16:44:32.330209
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1222917272 | 2024-04-28T13:52:12.121840
80 / tcp

nginx1.18.0

1222917272 | 2024-05-04T00:46:46.251533
443 / tcp

nginx1.18.0

-536880377 | 2024-05-09T16:11:35.159143
8081 / tcp

nginx1.18.0

Products

Pricing

Contact Us

167.172.73.56

Last Seen: 2024-05-10

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1415638915 | 2024-05-10T16:44:32.330209 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1222917272 | 2024-04-28T13:52:12.121840 80 / tcp

nginx1.18.0

1222917272 | 2024-05-04T00:46:46.251533 443 / tcp

nginx1.18.0

-536880377 | 2024-05-09T16:11:35.159143 8081 / tcp

nginx1.18.0

Products

Pricing

Contact Us

1415638915 | 2024-05-10T16:44:32.330209
22 / tcp

1222917272 | 2024-04-28T13:52:12.121840
80 / tcp

1222917272 | 2024-05-04T00:46:46.251533
443 / tcp

-536880377 | 2024-05-09T16:11:35.159143
8081 / tcp