GeneralInformation

Hostnames	vm4907003.1nvme.had.wf uitips.me api.uitips.me
Domains	had.wf uitips.me
Country	Netherlands
City	Amsterdam
Organization	Zomro B.V.
ISP	Zomro B.V.
ASN	AS204601
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

-152893533 | 2024-04-17T21:56:55.775378

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDPQSoeo7EmW+g3iGeXUaIrOEQ6nx+NUq7UY3yhxPs9wjhc
Du3Sn/eFGcTlaotF4wLZdMR5ASd7ZEmZB+iE7RylGAzX3hppAFYo5ImcExMkomGBbw+3y9DROtWp
mgJ2h9+8GeUvzUNVMvaLfw1rd5jZPXgNaB3qVqfy5Wx05lctgmRLVEtjuGMNvLtGPT0rdFyxZuQl
jYiRghW7Orrg70x6SXxM6KJetSPvOcf3AQgUvC+i/K8Z29xnunDyE+J8ImD+PtIK583KJaYAuyaK
81STKmTmRDMPZm6VJbqE+DNnQzn6Y7Ci/XIuVUZhqE7HgTAVpegHYnvKuquUcuVxbJdlT/Kep51P
P5JsITnqisPiREpu/coJTF+DDQQHEwh4kd0PXuXUwD7YdMQtHu6TCZx8qVD2nWP6SLLhmQeZlZA/
pfNhn6pLwZkMHDRBZSnNq4KCdDk5kJc+EvxDTgZ6U3+oBgK4XyHsp8Tb7gwyvL1ZfMFkV+AOfxDR
aZg5bBJ1z2E=
Fingerprint: ba:ff:a8:53:bc:19:13:54:4e:37:5c:4e:18:57:ce:e0

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

677579724 | 2024-04-24T04:45:00.796053

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 24 Apr 2024 04:45:00 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

1347048492 | 2024-04-20T06:57:45.655927

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 20 Apr 2024 06:57:45 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 118
Connection: keep-alive
X-Powered-By: Express
Vary: Origin
Access-Control-Allow-Credentials: true
ETag: W/"76-J2u+5keyfaF9j93HguLHNzTZMgM"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:4d:17:55:ab:f8:99:e1:f0:9c:d9:57:51:e8:ab:2d:03:cc
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 13 12:26:49 2024 GMT
            Not After : Jul 12 12:26:48 2024 GMT
        Subject: CN=uitips.me
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ca:56:bd:ad:da:7e:bd:4f:94:7c:4d:35:59:3b:
                    e9:77:a2:34:d7:4a:c6:d5:4a:8f:2e:df:03:d3:50:
                    1e:cd:3c:98:0c:a5:0c:92:2c:31:28:27:cb:b9:73:
                    7e:b6:98:c4:ec:a4:ec:12:79:8b:fa:b0:6b:3b:49:
                    56:ef:5d:c2:ae:3f:c8:b9:56:6d:17:f2:8e:56:94:
                    ef:fd:7f:cd:6e:79:78:ce:50:e1:3c:0a:1c:50:ec:
                    f9:68:ad:3c:20:de:61:e7:1d:3d:d8:73:14:30:dc:
                    c9:d7:f4:07:71:71:fe:f3:e5:74:39:a7:9f:6f:83:
                    e2:e8:f7:76:0d:99:a0:43:4c:62:32:cf:ff:46:69:
                    90:2a:ac:b1:50:f1:0e:d3:16:a5:aa:fa:08:ac:e4:
                    6a:54:f0:fd:50:ce:48:3b:f5:5d:16:b0:38:ea:fa:
                    c5:dd:60:3f:7c:77:d3:36:e7:64:75:d2:b2:65:7f:
                    86:20:62:da:ec:93:56:21:39:7d:69:68:db:a7:18:
                    f7:47:f8:a2:6c:e1:30:08:52:dd:5e:b7:c1:96:51:
                    d4:9e:c3:97:c6:2c:60:62:74:a5:b6:d4:56:4c:a0:
                    95:6f:5a:21:66:da:85:5c:12:d6:a7:2b:4d:84:9d:
                    d2:7b:67:e2:61:f0:16:3a:58:46:d0:97:7e:48:f2:
                    31:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                A2:E1:EE:F7:44:20:A6:5A:54:86:9B:93:55:6F:E6:E8:A8:C3:E4:44
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:api.uitips.me, DNS:uitips.me
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr 13 13:26:49.923 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:54:E9:6D:36:1F:BE:50:A3:F4:77:C4:3C:
                                CC:C9:46:EC:97:46:0F:51:98:41:21:5B:93:14:65:77:
                                8B:58:19:0F:02:20:73:6F:09:FB:E8:8F:70:61:13:1E:
                                F4:E5:0F:28:DE:08:73:99:B1:5E:0F:85:52:00:52:C3:
                                67:89:A4:7C:B9:84
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr 13 13:26:49.886 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:0A:73:FA:F2:4C:C2:00:77:0C:EA:F2:6E:
                                5B:1E:30:AF:B9:BB:95:75:6A:41:76:55:BC:9E:84:26:
                                B5:FA:D5:7E:02:21:00:D3:BA:CA:1A:A1:F9:7E:96:94:
                                3B:18:5F:C2:31:89:82:43:10:A6:A1:25:AC:CF:FC:4E:
                                9A:9C:4A:7C:B6:70:12
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        62:9d:5f:8e:92:44:94:d7:a2:05:54:8e:7d:ca:27:f9:92:01:
        56:75:5d:56:c8:4f:c4:8e:31:a0:85:6b:2b:65:34:73:a7:d0:
        ff:6c:3b:6a:53:f8:7f:91:68:c5:d0:67:55:74:28:4d:b4:56:
        e8:d6:5c:61:4c:13:f9:33:0c:ad:0d:62:61:e6:34:b4:43:b0:
        12:60:fc:7d:b1:6f:57:fd:e3:4b:09:ae:6c:52:9a:73:0c:f0:
        b0:16:fb:89:9a:a0:12:31:86:c5:31:21:78:0a:31:43:88:6b:
        db:bb:04:89:27:2e:48:f8:bc:f7:71:dc:ad:c6:cf:4c:27:42:
        e1:d1:44:49:d0:c1:02:5e:de:6d:2c:68:22:78:7a:29:78:e0:
        ca:25:ee:ce:ef:bf:48:7e:80:62:d9:98:43:ab:ab:01:21:4e:
        5a:10:92:80:1b:31:af:cd:cf:c8:b0:43:0a:4f:5a:ac:09:10:
        ca:8b:0f:89:dd:eb:4b:de:d5:c8:ab:be:3f:7b:6b:ff:13:40:
        97:9e:4f:b9:e5:1d:06:77:39:46:01:52:48:4e:f9:fb:8e:1d:
        59:c4:b4:d7:16:70:31:48:50:ae:64:04:9c:80:70:6d:ea:a9:
        7f:ee:4b:92:38:17:7f:ab:54:44:78:58:77:39:9e:84:89:c9:
        32:2b:ea:68

176.57.70.164

Last Seen: 2024-04-24

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-152893533 | 2024-04-17T21:56:55.775378
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-04-24T04:45:00.796053
80 / tcp

nginx1.18.0

1347048492 | 2024-04-20T06:57:45.655927
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

176.57.70.164

Last Seen: 2024-04-24

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-152893533 | 2024-04-17T21:56:55.775378 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-04-24T04:45:00.796053 80 / tcp

nginx1.18.0

1347048492 | 2024-04-20T06:57:45.655927 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-152893533 | 2024-04-17T21:56:55.775378
22 / tcp

677579724 | 2024-04-24T04:45:00.796053
80 / tcp

1347048492 | 2024-04-20T06:57:45.655927
443 / tcp