GeneralInformation

Hostnames	coreapi.armanirestaurant.ir
Domains	armanirestaurant.ir
Country	Iran, Islamic Republic of
City	Shiraz
Organization	Asiatech Data Transmission company
ISP	Asiatech Data Transmission company
ASN	AS43754

WebTechnologies

JavaScript frameworks

AngularJS

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 4000 4002 5000 5001 5432 8000 8090 9000 9090

-1943171758 | 2024-03-28T16:20:05.152012

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.4
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBH3dimYPVIH9nW9hO1ODW0W8
2Vhz8sY/IBISLiexFU9bP2hzzj0trnMeb1fyWLI5q6jX1Ra7qfgmeX9f4SfuiBI=
Fingerprint: 51:25:d9:9d:99:9d:1b:3c:33:4b:26:c8:89:94:91:c9

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-04-05T15:44:50.703514

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 05 Apr 2024 15:44:50 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Fri, 19 May 2023 17:46:02 GMT
Connection: keep-alive
ETag: "6467b5da-264"
Accept-Ranges: bytes

-322721063 | 2024-03-22T21:36:34.165875

443 / tcp

HTTP/1.1 401 Unauthorized
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 22 Mar 2024 21:36:34 GMT
Content-Length: 0
Connection: keep-alive
WWW-Authenticate: Bearer

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:36:a6:0e:68:68:21:aa:d9:84:80:2a:10:dd:4c:13:37:89
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 19 19:10:41 2024 GMT
            Not After : Jun 17 19:10:40 2024 GMT
        Subject: CN=coreapi.armanirestaurant.ir
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a6:35:1d:94:80:5b:b8:e6:fd:8b:6d:41:95:85:
                    86:e1:43:e3:c0:1a:45:41:27:80:5b:6b:ef:8a:6b:
                    3d:b6:c1:9e:cc:11:5d:06:43:22:02:86:23:64:d2:
                    68:e1:6c:57:f4:c0:03:f1:5e:7b:74:a9:18:d7:f2:
                    d0:3d:eb:c4:40:9c:83:65:e2:53:87:25:d8:5a:3b:
                    75:77:ba:65:77:05:ff:fa:44:df:00:e4:eb:af:b0:
                    df:21:8b:32:af:19:b7:0a:5a:62:33:f3:7c:af:c8:
                    4d:8e:40:91:0f:fe:69:8c:17:57:7e:80:66:9d:4d:
                    3c:bb:4d:95:54:9d:0b:f2:42:9e:e1:eb:0d:c2:51:
                    c3:76:93:e0:1b:5f:dd:db:3d:25:82:4b:1c:a4:f7:
                    43:06:a2:63:86:ff:45:e4:e1:a4:66:25:72:e1:be:
                    ab:d3:d7:9c:1c:54:d2:36:d4:09:fe:02:f0:58:f1:
                    34:bd:6b:64:e7:81:52:8e:aa:fb:b8:f8:94:b7:e7:
                    ec:1f:28:67:60:f8:22:2e:c0:5a:ff:4f:e8:43:c5:
                    c8:08:45:5e:97:c9:f6:38:b0:82:2d:7b:f5:dc:27:
                    ac:8e:56:99:63:0d:83:08:d2:83:76:0b:cc:9c:f5:
                    14:8e:ec:98:b5:09:32:13:f0:8f:01:94:d8:d5:a3:
                    ff:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                F7:51:E4:C3:6F:14:EB:A7:F4:3D:7C:B2:63:45:ED:17:93:A1:8F:90
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:coreapi.armanirestaurant.ir
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar 19 20:10:42.127 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:21:AA:39:48:3D:8A:D7:0F:6F:1C:7D:7C:
                                EA:12:ED:E9:5A:C0:08:BD:46:9C:F0:B8:39:30:B2:07:
                                46:53:5F:FC:02:21:00:81:53:6F:89:50:C7:62:51:9E:
                                1B:64:13:3C:A0:10:85:14:EA:DA:F1:5E:B1:9B:22:C2:
                                F8:5D:B2:E4:26:E7:B6
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 19 20:10:42.572 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:0A:53:20:05:F7:F2:BA:AE:83:BB:11:74:
                                D2:07:62:D4:5E:38:14:A3:C5:2E:F8:67:7F:5D:19:73:
                                81:69:CE:01:02:21:00:9D:AE:07:3C:0D:AE:B5:59:7B:
                                21:DD:F3:2C:7B:E6:FA:44:59:8D:B7:60:AB:B8:D6:BC:
                                76:32:79:C4:DE:19:57
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        85:b3:e2:68:35:45:ab:02:15:c6:e3:34:f9:e8:d2:86:11:a0:
        d0:9e:9c:1d:80:5e:60:d0:4b:c0:88:ae:a6:b3:9d:4a:48:fe:
        19:70:92:c3:eb:9a:4c:66:a7:1a:58:d6:21:ae:e4:15:33:06:
        60:50:15:a0:79:6f:0d:f4:db:a6:70:a0:69:51:74:79:1d:f7:
        ef:15:dd:95:bc:d5:5a:cf:3c:4a:37:4c:77:54:46:ef:97:b4:
        02:df:ba:59:35:cf:a4:15:11:2b:d6:37:9a:da:54:1f:8f:52:
        ef:e6:dc:2e:37:4a:9e:70:da:01:25:3b:74:02:40:a4:44:9c:
        63:56:eb:26:44:0e:c2:cc:a6:dd:2a:27:7b:48:ec:48:2f:15:
        ed:8a:c8:18:c4:2d:d7:22:1e:6a:fc:c8:65:f5:8d:47:1f:a8:
        9e:f6:9b:2f:cf:45:67:33:91:c5:c0:6b:22:c7:1d:99:f1:c3:
        bb:1b:3a:b8:7e:1c:b4:07:94:a3:a7:b6:b9:b0:51:c0:ff:1b:
        ee:24:74:58:86:9a:2a:da:77:a2:a8:67:ec:0f:28:96:3b:ce:
        c6:55:91:9a:4c:89:81:ca:0d:77:28:37:cf:47:2c:0c:83:f0:
        52:c3:62:77:1f:6c:92:49:ee:3e:1e:81:b6:7d:68:32:b2:cd:
        d2:3c:65:d4

-1246004407 | 2024-04-14T17:40:58.337138

4000 / tcp

HTTP/1.1 400 Bad Request
Connection: close

866610123 | 2024-03-31T14:29:23.079695

4002 / tcp

HTTP/1.1 200 OK
Content-Length: 1321
Content-Disposition: inline; filename="index.html"
Accept-Ranges: bytes
ETag: "b19d7646140c952dcac9e69a610e19ac1e30e992"
Content-Type: text/html; charset=utf-8
Vary: Accept-Encoding
Date: Sun, 31 Mar 2024 14:29:23 GMT
Connection: keep-alive
Keep-Alive: timeout=5

-1377672143 | 2024-04-03T00:21:39.685125

5000 / tcp

HTTP/1.1 401 Unauthorized
Content-Length: 0
Date: Wed, 03 Apr 2024 00:21:38 GMT
Server: Kestrel
WWW-Authenticate: Bearer

-1933725845 | 2024-04-10T04:22:13.227012

5001 / tcp

HTTP/1.1 401 Unauthorized
Content-Length: 0
Date: Wed, 10 Apr 2024 04:22:12 GMT
Server: Kestrel
WWW-Authenticate: Bearer

-726790289 | 2024-04-16T02:30:46.720649

5432 / tcp

PostgreSQL
fe_sendauth: no password supplied

574130828 | 2024-03-28T06:12:43.971991

8000 / tcp

HTTP/1.1 404 Not Found
Date: Thu, 28 Mar 2024 06:12:43 GMT
Content-Length: 9
Content-Type: text/plain; charset=utf-8

688440545 | 2024-04-18T03:32:28.451301

8090 / tcp

HTTP/1.1 404 Not Found
Content-Type: application/json; charset=UTF-8
Vary: Origin
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Date: Thu, 18 Apr 2024 03:32:28 GMT
Content-Length: 46

1234688504 | 2024-04-15T05:03:32.575479

9000 / tcp

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Content-Length: 19130
Content-Type: text/html; charset=utf-8
Last-Modified: Wed, 20 Sep 2023 00:20:55 GMT
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Date: Mon, 15 Apr 2024 05:03:32 GMT

688440545 | 2024-04-09T09:15:06.737662

9090 / tcp

HTTP/1.1 404 Not Found
Content-Type: application/json; charset=UTF-8
Vary: Origin
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Date: Tue, 09 Apr 2024 09:15:06 GMT
Content-Length: 46

178.216.249.57

Last Seen: 2024-04-18

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1943171758 | 2024-03-28T16:20:05.152012
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.4

1651973090 | 2024-04-05T15:44:50.703514
80 / tcp

nginx1.18.0

-322721063 | 2024-03-22T21:36:34.165875
443 / tcp

nginx1.18.0

-1246004407 | 2024-04-14T17:40:58.337138
4000 / tcp

866610123 | 2024-03-31T14:29:23.079695
4002 / tcp

-1377672143 | 2024-04-03T00:21:39.685125
5000 / tcp

-1933725845 | 2024-04-10T04:22:13.227012
5001 / tcp

-726790289 | 2024-04-16T02:30:46.720649
5432 / tcp

PostgreSQL15.0 - 15.1

574130828 | 2024-03-28T06:12:43.971991
8000 / tcp

688440545 | 2024-04-18T03:32:28.451301
8090 / tcp

1234688504 | 2024-04-15T05:03:32.575479
9000 / tcp

Portainer2.19.1

688440545 | 2024-04-09T09:15:06.737662
9090 / tcp

Products

Pricing

Contact Us

178.216.249.57

Last Seen: 2024-04-18

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1943171758 | 2024-03-28T16:20:05.152012 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.4

1651973090 | 2024-04-05T15:44:50.703514 80 / tcp

nginx1.18.0

-322721063 | 2024-03-22T21:36:34.165875 443 / tcp

nginx1.18.0

-1246004407 | 2024-04-14T17:40:58.337138 4000 / tcp

866610123 | 2024-03-31T14:29:23.079695 4002 / tcp

-1377672143 | 2024-04-03T00:21:39.685125 5000 / tcp

-1933725845 | 2024-04-10T04:22:13.227012 5001 / tcp

-726790289 | 2024-04-16T02:30:46.720649 5432 / tcp

PostgreSQL15.0 - 15.1

574130828 | 2024-03-28T06:12:43.971991 8000 / tcp

688440545 | 2024-04-18T03:32:28.451301 8090 / tcp

1234688504 | 2024-04-15T05:03:32.575479 9000 / tcp

Portainer2.19.1

688440545 | 2024-04-09T09:15:06.737662 9090 / tcp

Products

Pricing

Contact Us

-1943171758 | 2024-03-28T16:20:05.152012
22 / tcp

1651973090 | 2024-04-05T15:44:50.703514
80 / tcp

-322721063 | 2024-03-22T21:36:34.165875
443 / tcp

-1246004407 | 2024-04-14T17:40:58.337138
4000 / tcp

866610123 | 2024-03-31T14:29:23.079695
4002 / tcp

-1377672143 | 2024-04-03T00:21:39.685125
5000 / tcp

-1933725845 | 2024-04-10T04:22:13.227012
5001 / tcp

-726790289 | 2024-04-16T02:30:46.720649
5432 / tcp

574130828 | 2024-03-28T06:12:43.971991
8000 / tcp

688440545 | 2024-04-18T03:32:28.451301
8090 / tcp

1234688504 | 2024-04-15T05:03:32.575479
9000 / tcp

688440545 | 2024-04-09T09:15:06.737662
9090 / tcp