GeneralInformation

Hostnames	getcourse.ru
Domains	getcourse.ru
Country	Russian Federation
City	Moscow
Organization	HLL LLC
ISP	HLL LLC
ASN	AS51115

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

-252863853 | 2024-04-26T12:08:49.146363

80 / tcp

HTTP/1.1 302 Moved Temporarily
Server: nginx/1.20.1
Date: Fri, 26 Apr 2024 12:08:56 GMT
Content-Type: text/html
Content-Length: 145
Connection: keep-alive
Location: https://getcourse.ru/

1243217378 | 2024-04-26T12:08:51.983012

443 / tcp

HTTP/1.1 302 Found
Server: nginx/1.20.1
Date: Fri, 26 Apr 2024 12:08:58 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://getcourse.ru
X-XSS-Protection: 1

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3e:09:45:32:74:3c:55:aa:66:09:ff:ec
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign GCC R3 DV TLS CA 2020
        Validity
            Not Before: Oct 23 09:54:16 2023 GMT
            Not After : Nov 23 09:54:15 2024 GMT
        Subject: CN=*.getcourse.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ca:46:ed:db:c2:e7:9c:22:d8:05:2e:0f:fe:77:
                    2f:44:33:f0:f7:4a:ce:71:25:8d:70:9a:d3:aa:c3:
                    d4:64:e5:bd:38:46:13:88:95:7e:0a:c6:9a:91:1c:
                    a8:89:bb:a9:b6:ad:3c:38:c9:bf:ea:a0:7d:39:10:
                    f0:df:81:54:87:a6:4f:e1:b7:e7:ff:69:53:c7:a1:
                    c7:d9:05:9a:ea:45:52:5e:93:5a:f8:95:38:07:6d:
                    49:42:04:cb:97:12:45:d0:cd:3f:7a:38:23:c6:a7:
                    05:cc:8e:ce:6f:64:4c:60:fa:87:2f:ac:f1:88:da:
                    a4:12:4b:48:68:2a:31:bc:29:2b:0f:14:95:e6:8a:
                    27:5e:c9:22:d6:28:5b:3b:9b:33:0f:46:ec:c2:0c:
                    f3:5a:63:92:9c:82:17:67:c6:bf:05:48:b0:07:bd:
                    c0:ad:79:a8:84:78:24:e3:e5:67:ca:24:b9:b4:de:
                    ff:44:4c:22:7b:a4:bc:7c:16:f2:4d:6a:94:0c:5b:
                    d9:87:c1:7a:f1:72:77:2a:51:28:ff:5f:01:38:71:
                    28:1c:7f:78:f5:00:50:ab:bf:7d:ae:b7:b9:81:47:
                    df:1c:d3:b0:76:17:16:f8:66:3f:9f:36:da:28:25:
                    7f:91:7b:15:10:fd:24:13:8b:82:ad:8e:61:d5:5c:
                    7c:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            Authority Information Access: 
                CA Issuers - URI:http://secure.globalsign.com/cacert/gsgccr3dvtlsca2020.crt
                OCSP - URI:http://ocsp.globalsign.com/gsgccr3dvtlsca2020
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.4146.1.10
                  CPS: https://www.globalsign.com/repository/
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/gsgccr3dvtlsca2020.crl
            X509v3 Subject Alternative Name: 
                DNS:*.getcourse.ru, DNS:getcourse.ru
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                0D:98:C0:73:7F:AB:BD:BD:D9:47:4B:49:AD:0A:4A:0C:AC:3E:C7:7C
            X509v3 Subject Key Identifier: 
                07:19:14:B6:33:7A:57:D2:7E:04:E8:78:07:7D:CB:D3:F2:7D:3E:74
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Oct 23 09:54:19.049 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D7:08:44:68:C9:11:C9:82:0E:F8:E2:
                                A3:BE:54:0E:39:D4:0C:D2:8B:42:B0:AD:40:33:D8:DC:
                                12:CF:77:81:5E:02:20:01:8D:B1:01:AB:7D:6B:2C:00:
                                66:30:BC:9D:4D:78:A2:62:71:56:ED:CA:98:32:02:C2:
                                43:D5:54:49:40:07:D9
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Oct 23 09:54:18.309 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:CC:9C:47:63:7E:A3:04:B3:3F:BC:01:
                                0E:90:BF:EC:10:2B:39:84:73:0C:13:2A:EB:5E:F1:77:
                                5F:31:A1:84:7C:02:20:6A:5A:05:47:C2:C7:AF:56:50:
                                A7:1F:EF:2E:8A:31:7B:A5:BD:D8:E0:55:03:6D:7B:4C:
                                5F:F4:0D:1F:E3:7A:7C
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Oct 23 09:54:18.968 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:AD:C3:68:83:0D:EC:02:43:DE:29:5D:
                                06:62:47:5A:C7:2C:23:04:D9:99:3F:E6:D5:9B:CD:69:
                                82:55:E1:58:D0:02:20:6A:60:20:66:35:15:4A:69:F8:
                                9F:33:82:A3:C5:BE:EC:0A:3C:15:04:52:38:98:19:8F:
                                59:6D:59:16:BB:B2:DF
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        2f:03:c4:cf:fc:0f:02:9b:95:11:36:d4:4c:2d:87:85:a0:ae:
        fc:d4:86:84:aa:e2:5f:f5:30:91:10:e9:81:f5:51:b3:4c:70:
        88:35:ef:92:2d:c1:57:e8:ee:05:be:30:e9:59:c5:45:1c:d5:
        c0:fa:4d:a8:7f:c1:5d:ec:8a:9f:ba:c9:c5:f0:96:32:33:48:
        23:6b:87:8c:62:f2:b7:21:eb:a7:78:f2:2f:bf:68:32:f1:42:
        1e:d4:9b:55:b5:18:07:a3:23:b9:c1:b7:bd:ff:d5:5f:c3:51:
        30:10:41:27:40:f8:54:eb:b9:b5:60:a9:72:79:dc:9f:bc:85:
        6c:3f:2d:c9:22:9b:a4:c9:07:cf:d1:85:4e:3c:3b:bd:4a:d4:
        60:d0:3c:6d:ac:c5:e8:a1:f6:01:f6:8e:5f:fb:2f:b7:39:a5:
        9c:bd:38:b8:fa:ff:dd:85:aa:3d:e9:dc:93:e2:05:bf:47:61:
        45:fe:f7:51:50:49:28:a8:6b:aa:35:58:db:5b:8e:13:f5:b4:
        e6:05:c7:4f:ea:4b:19:1b:db:41:fa:89:d4:f8:1b:1b:88:20:
        c6:57:00:99:bc:1b:79:9f:0a:a1:5a:8c:f0:22:4f:ba:38:b8:
        f1:d3:a0:06:49:24:03:fe:9c:cc:4b:84:2e:b0:4f:1a:8a:16:
        48:c6:22:08

178.248.235.39

Last Seen: 2024-04-26

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-252863853 | 2024-04-26T12:08:49.146363
80 / tcp

nginx1.20.1

1243217378 | 2024-04-26T12:08:51.983012
443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

178.248.235.39

Last Seen: 2024-04-26

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-252863853 | 2024-04-26T12:08:49.146363 80 / tcp

nginx1.20.1

1243217378 | 2024-04-26T12:08:51.983012 443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

-252863853 | 2024-04-26T12:08:49.146363
80 / tcp

1243217378 | 2024-04-26T12:08:51.983012
443 / tcp