GeneralInformation

Hostnames	didox.uz
Domains	didox.uz
Country	Uzbekistan
City	Tashkent
Organization	UNITEL LLC
ISP	UNITEL LLC
ASN	AS41202

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443 8811

-1836475360 | 2024-05-06T15:56:16.193874

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.20.1
Date: Mon, 06 May 2024 15:56:16 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

-207482879 | 2024-05-09T22:46:43.510215

443 / tcp

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.20.1
Date: Thu, 09 May 2024 22:46:43 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 62
Connection: keep-alive
Location: http://185.183.243.56:8811
Vary: Origin

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            42:ab:20:64:c6:78:41:c7:bb:25:56:36
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=AlphaSSL CA - SHA256 - G4
        Validity
            Not Before: Nov 20 09:20:24 2023 GMT
            Not After : Dec 21 09:20:23 2024 GMT
        Subject: CN=*.didox.uz
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:da:ad:2f:3f:d1:4c:a3:f7:b7:ed:b9:a1:7b:c1:
                    f6:aa:25:0c:e4:30:43:e0:2e:35:09:10:f7:73:2e:
                    3c:03:f1:35:8a:86:b6:d9:1f:30:71:fe:29:13:f1:
                    65:1b:10:d1:5c:9c:da:e8:bd:50:5d:73:a4:d6:84:
                    38:e6:3b:1e:49:74:98:9a:69:4d:e2:39:f9:ff:79:
                    a4:60:91:76:59:d8:57:fc:a2:3f:ec:00:29:d9:9b:
                    e2:98:94:59:3d:a4:21:83:78:a0:67:82:a9:d5:ec:
                    ad:df:f2:65:89:7f:2e:55:9b:cb:58:ec:c1:fc:1e:
                    31:8a:65:eb:1e:49:22:cc:46:ee:b1:00:44:28:59:
                    ca:d5:43:5b:46:7b:36:c3:b2:4f:d6:47:58:11:a5:
                    cf:f5:70:80:d8:58:86:7b:9b:24:41:fc:2f:ac:b2:
                    af:c9:e8:c5:a8:dc:bc:11:af:31:51:84:94:f8:f0:
                    90:b7:04:8f:4b:5f:62:55:ca:0b:32:95:09:13:ba:
                    e9:60:c9:d8:be:b0:8b:49:5e:dd:68:2d:cb:07:e7:
                    83:2c:34:37:c5:a9:d7:94:8d:61:94:e8:34:d2:5d:
                    ff:2e:78:62:e5:b0:c2:65:eb:7f:63:79:d2:ac:fb:
                    b7:1a:67:11:d2:91:ca:6c:98:73:40:6a:c6:65:76:
                    1c:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            Authority Information Access: 
                CA Issuers - URI:http://secure.globalsign.com/cacert/alphasslcasha256g4.crt
                OCSP - URI:http://ocsp.globalsign.com/alphasslcasha256g4
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.4146.10.1.3
                  CPS: https://www.globalsign.com/repository/
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/alphasslcasha256g4.crl
            X509v3 Subject Alternative Name: 
                DNS:*.didox.uz, DNS:didox.uz
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                4F:CB:AC:A8:C2:EF:AB:DD:83:6F:6B:BF:CE:98:3D:5C:58:25:76:15
            X509v3 Subject Key Identifier: 
                59:25:8A:60:34:D8:5B:BB:59:02:01:5D:3F:6F:E5:E9:7B:A7:2D:A8
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Nov 20 09:20:26.213 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:72:59:BB:22:82:FE:79:FF:3D:33:BF:45:
                                93:FD:8C:32:BF:09:F7:27:E0:23:A0:E0:B7:A8:C1:95:
                                66:36:23:F6:02:20:77:D2:27:AC:D6:0D:E9:92:45:8F:
                                85:FF:28:E2:46:98:01:B2:CC:D9:FC:3C:28:F6:EF:DA:
                                99:32:91:D9:77:D8
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Nov 20 09:20:26.467 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:75:5D:11:81:B1:4B:24:17:19:70:46:5B:
                                35:CA:FC:7A:AA:3F:2F:36:2C:A1:74:34:77:C4:42:8A:
                                A0:99:7A:9B:02:21:00:C2:B6:83:E1:73:37:23:79:75:
                                F9:78:64:E2:C5:A3:37:61:BF:5D:84:6E:85:90:AF:E6:
                                FE:50:B7:96:77:A4:4A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Nov 20 09:20:26.094 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:A6:87:A8:D5:AB:8F:57:29:35:CE:D9:
                                44:03:00:89:B7:8B:EC:6F:AB:88:E6:E9:C0:4D:B4:59:
                                A5:75:47:0B:40:02:20:1B:D1:01:EB:4C:C2:2E:6A:82:
                                84:D3:5F:7B:CA:97:54:5A:61:54:86:98:E3:45:E7:05:
                                A6:E8:7C:83:5E:30:A3
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        30:5d:3c:1e:8d:ed:f9:d5:5b:83:84:d8:63:c9:9f:10:c4:29:
        ae:7f:12:2f:95:17:1f:95:26:30:ed:2d:04:32:59:8c:85:75:
        4f:8c:70:1f:13:c3:7a:4e:72:8c:49:5b:8f:f2:20:97:02:15:
        61:2b:d7:31:5e:ba:a3:86:35:72:92:80:0b:b2:f7:09:37:90:
        94:b2:eb:9b:f6:24:1d:55:01:2b:db:ae:c3:25:17:ff:47:7a:
        23:f0:78:0d:4d:a9:fe:69:b4:26:a3:1c:23:08:c2:76:76:d2:
        42:20:07:28:a5:36:cf:9a:ed:ac:87:19:58:1a:33:63:a2:ef:
        d3:fa:f3:bb:52:c7:4b:bb:8c:e5:ef:36:1f:66:cc:5b:08:f6:
        b6:80:89:45:29:e9:05:4c:02:02:8e:f4:bd:7c:0a:0c:37:51:
        62:1a:bf:ce:20:fd:a2:32:69:3d:4a:6e:12:cc:a2:d5:27:94:
        44:cf:32:5e:b4:40:a8:7b:ca:18:66:5e:35:53:bd:85:9b:cf:
        d8:a6:03:75:e4:84:69:bb:2f:53:b8:b6:3f:b8:26:46:aa:ce:
        e5:a7:b0:d0:3f:6c:fc:49:3c:bf:53:52:01:01:ec:86:d9:c6:
        cc:6e:49:4a:7a:d8:7c:d1:1a:51:06:3e:ec:dd:30:6e:0d:1a:
        09:bb:36:0d

-1623300924 | 2024-05-12T05:05:23.745194

8811 / tcp

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 1266
Content-Type: text/html
Last-Modified: Sun, 12 May 2024 05:05:23 GMT
Server: MinIO Console
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block
Date: Sun, 12 May 2024 05:05:23 GMT
Connection: close

185.183.243.56

Last Seen: 2024-05-12

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1836475360 | 2024-05-06T15:56:16.193874
80 / tcp

nginx1.20.1

-207482879 | 2024-05-09T22:46:43.510215
443 / tcp

nginx1.20.1

-1623300924 | 2024-05-12T05:05:23.745194
8811 / tcp

MinIO Server2024-05-10T01-41-38Z

Products

Pricing

Contact Us

185.183.243.56

Last Seen: 2024-05-12

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1836475360 | 2024-05-06T15:56:16.193874 80 / tcp

nginx1.20.1

-207482879 | 2024-05-09T22:46:43.510215 443 / tcp

nginx1.20.1

-1623300924 | 2024-05-12T05:05:23.745194 8811 / tcp

MinIO Server2024-05-10T01-41-38Z

Products

Pricing

Contact Us

-1836475360 | 2024-05-06T15:56:16.193874
80 / tcp

-207482879 | 2024-05-09T22:46:43.510215
443 / tcp

-1623300924 | 2024-05-12T05:05:23.745194
8811 / tcp