GeneralInformation

Hostnames	a-tracs.com ec2-18-213-206-147.compute-1.amazonaws.com
Domains	a-tracs.com amazonaws.com
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS14618

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443 18081

782228690 | 2024-05-05T16:58:00.023346

80 / tcp

HTTP/1.1 404 
Date: Sun, 05 May 2024 16:58:00 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 275
Connection: keep-alive
Server: nginx/1.20.1
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
Content-Language: en-US

-485215261 | 2024-05-12T12:08:11.599146

443 / tcp

HTTP/1.1 404 
Date: Sun, 12 May 2024 12:07:49 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 275
Connection: keep-alive
Server: nginx/1.20.1
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
Content-Language: en-US

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0f:a0:94:6c:3c:b4:1a:d1:b5:5c:70:12:63:97:5c:3d
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=DigiCert, Inc., CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1
        Validity
            Not Before: Jan 25 00:00:00 2024 GMT
            Not After : Feb 19 23:59:59 2025 GMT
        Subject: CN=*.a-tracs.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c3:56:b5:ff:26:7d:9e:c4:7d:88:07:b0:4e:60:
                    49:e2:e7:0e:15:c9:20:b5:e8:2c:cc:ec:2f:e0:bf:
                    f7:38:b9:c5:a1:33:51:2f:b6:74:33:75:b8:fc:10:
                    d7:17:ed:a7:77:21:a6:03:f6:80:a4:4e:cd:ee:86:
                    13:a0:2f:40:80:23:a6:ad:9f:db:4f:23:98:34:11:
                    4f:f7:62:15:1d:e5:9f:e6:cf:18:d7:50:58:c1:85:
                    fc:d9:f8:3c:a4:95:ee:01:47:ef:d9:6b:b5:c9:22:
                    6e:8f:42:7c:70:8e:95:2b:73:ae:14:fb:68:38:a9:
                    7f:43:01:ef:d4:20:d3:b4:74:ff:a1:b3:c6:d3:c0:
                    b7:31:61:00:83:00:ef:b3:eb:bb:73:56:0b:60:9e:
                    fb:b6:d6:c2:40:75:46:40:f3:22:85:1d:54:2b:c4:
                    fa:b6:d0:65:c3:17:90:28:8c:64:45:45:91:3d:25:
                    22:b4:f0:52:17:1f:a8:a9:5f:4c:e3:e0:25:b0:80:
                    5f:61:c6:e8:ad:7e:65:7e:90:28:15:94:41:d6:8c:
                    e8:fa:fc:e1:b9:81:c5:cc:0b:70:2b:8e:37:3f:2d:
                    a3:79:e8:ef:89:d1:b3:82:53:3f:f9:f8:5a:a2:d7:
                    93:ed:5b:cb:00:0c:71:d0:ae:a3:22:0d:3c:9e:9f:
                    56:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                F0:9C:85:FD:A2:9F:7D:8F:C9:68:BB:D5:D4:89:4D:1D:BE:D3:90:FF
            X509v3 Subject Key Identifier: 
                DA:3F:48:38:2A:7E:2D:D6:BF:D8:65:B7:16:E6:43:CE:9D:3D:47:B5
            X509v3 Subject Alternative Name: 
                DNS:*.a-tracs.com, DNS:a-tracs.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                  CPS: http://www.digicert.com/CPS
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl3.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crl
                Full Name:
                  URI:http://crl4.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.digicert.com
                CA Issuers - URI:http://cacerts.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crt
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Jan 25 03:10:03.136 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:B5:5F:DD:D3:C3:7D:78:AF:5A:BE:D4:
                                EC:1B:E4:12:06:15:44:01:6A:68:82:B1:DA:8A:F2:B0:
                                9F:93:94:97:9C:02:21:00:FF:4F:88:E6:C3:74:77:A9:
                                A2:EF:22:49:EF:E9:FE:1C:3C:22:08:29:CA:34:3A:81:
                                AB:48:E2:D3:10:3D:F9:3C
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Jan 25 03:10:03.105 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:80:CF:AD:52:55:98:1D:09:EC:3E:E0:
                                86:26:80:21:F2:90:57:8A:64:E4:38:CA:BA:D4:C3:1D:
                                0D:68:37:59:C8:02:21:00:D9:6D:10:60:9D:6A:79:51:
                                54:24:1D:24:78:BD:09:F5:13:7B:69:70:E4:88:58:07:
                                4E:44:9E:10:88:58:21:79
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Jan 25 03:10:03.139 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:23:CB:FC:DC:22:FB:A8:34:46:BF:3C:90:
                                58:63:7F:BF:02:08:D7:BC:1A:4D:72:B9:F8:87:F5:C6:
                                DC:83:5B:F3:02:21:00:A0:9E:7B:A3:E1:65:30:B7:0B:
                                F5:FD:57:58:63:89:35:91:CA:E8:27:B9:6D:38:3D:79:
                                DF:D2:AE:95:35:58:02
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        69:ef:96:ee:bc:64:84:2f:4f:10:39:9b:14:ca:00:3b:38:34:
        a8:ac:b6:f3:ce:9b:11:43:59:6b:e5:99:84:47:97:ff:4c:82:
        93:65:dd:55:13:0a:bf:af:3f:c3:d6:ff:bf:aa:da:63:77:5f:
        01:78:93:02:21:ad:8a:7b:4b:6f:42:81:f7:d7:92:14:7a:e8:
        d5:40:bb:7c:f5:35:15:bf:39:1d:e9:e0:06:0b:03:bb:df:17:
        70:56:9c:9c:6c:63:e5:d1:1a:bc:d7:8d:37:d4:d9:d2:a8:58:
        36:a9:40:f1:45:d3:35:64:1a:87:15:62:8f:a8:d6:8a:3a:63:
        48:ce:6e:63:8b:07:0d:08:ed:b0:70:f7:13:e8:08:9b:80:f8:
        bf:b1:2a:bf:91:29:ac:06:29:03:48:53:69:3e:4b:3c:78:d3:
        36:0e:3d:ce:dc:30:fc:e8:b3:62:ae:a5:65:af:19:de:0a:59:
        c0:78:c8:8c:af:2f:31:ad:48:43:d7:63:e2:04:12:c5:f9:c4:
        72:84:af:59:b4:c9:3f:9d:99:2a:93:b2:51:9c:ba:0c:1a:c9:
        1e:52:27:ca:7a:dc:99:b2:31:c1:7d:75:bb:01:5c:ce:c2:cc:
        c0:e7:99:a9:17:a9:9f:0b:7e:7d:ea:16:68:96:aa:6c:f2:ae:
        b2:f0:b2:a3:6d:59:9e:fe:db:b1:b4:59:ad:fa:90:1a:79:a5:
        74:3a:c6:b4:e1:5d:d7:e7:4c:12:9c:88:f7:5d:74:6e:cd:67:
        50:db:6a:b7:e7:cf:13:3a:d5:67:48:79:0c:31:20:f7:aa:4e:
        bc:ad:77:e2:f8:cf:69:b0:03:f2:29:be:0d:03:59:d2:a8:e9:
        b6:bc:ef:54:b8:78:27:af:aa:83:0e:70:bd:8b:56:57:19:a5:
        10:63:65:2b:99:ad:01:64:cd:a2:fe:6c:7e:c8:4f:69:a8:1b:
        fa:16:23:d9:79:95:5a:ba:de:74:dc:4b:0d:b9:c4:b6:14:78:
        41:52:6d:fa:2d:e2:03:ea:6d:1f:c3:f3:26:ec:47:5d:cd:a8:
        2a:92:e8:44:82:ce:75:c1:f9:9a:d6:bb:a0:d6:6f:99:0e:a1:
        ec:5b:10:b3:26:a0:67:e1:51:53:48:d3:6d:24:e0:5e:60:53:
        69:b3:e0:c0:31:b1:b1:0a:8d:f4:0d:ea:39:02:12:85:4f:2f:
        12:9a:6a:f7:bd:ae:99:02:a1:2b:2d:27:84:40:f4:11:35:09:
        6b:3e:47:58:57:e8:08:d8:39:d8:25:7c:4c:af:8e:1b:ba:69:
        c8:c1:33:c6:1d:5a:fd:53:fc:c5:97:92:00:62:09:57:4b:8a:
        17:2b:63:60:92:58:d4:60

1886050425 | 2024-04-24T23:03:46.022778

18081 / tcp

HTTP/1.1 404 
Date: Wed, 24 Apr 2024 23:03:45 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 275
Connection: keep-alive
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
Content-Language: en-US

18.213.206.147

Last Seen: 2024-05-12

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

782228690 | 2024-05-05T16:58:00.023346
80 / tcp

nginx1.20.1

-485215261 | 2024-05-12T12:08:11.599146
443 / tcp

nginx1.20.1

1886050425 | 2024-04-24T23:03:46.022778
18081 / tcp

Products

Pricing

Contact Us

18.213.206.147

Last Seen: 2024-05-12

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

782228690 | 2024-05-05T16:58:00.023346 80 / tcp

nginx1.20.1

-485215261 | 2024-05-12T12:08:11.599146 443 / tcp

nginx1.20.1

1886050425 | 2024-04-24T23:03:46.022778 18081 / tcp

Products

Pricing

Contact Us

782228690 | 2024-05-05T16:58:00.023346
80 / tcp

-485215261 | 2024-05-12T12:08:11.599146
443 / tcp

1886050425 | 2024-04-24T23:03:46.022778
18081 / tcp