GeneralInformation

Hostnames	api.otherguild.xyz
Domains	otherguild.xyz
Country	United States
City	Santa Monica
Organization	Namecheap, Inc.
ISP	Namecheap, Inc.
ASN	AS22612

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 111 443 8080

1969290388 | 2024-04-18T04:49:53.536963

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQCYnIfLSQRkP5VFFk5lZrc4Ix/HZj5EokRraPIzf+lp/FQH
gc3tyfKyc5kfIQ7Np70HJqgYQbM9M7iUd2VxLEELt1vdwffF0q1/c23Of3xRI6HVXXy5BrlaqvOz
RgGtgc7VsAwHepjyWOYcBNdnh1DFNyU5wNaCWSBqVIiz7m7V+fsEZXJzw9X0RJJCuhK1HdBCrAmL
DulgBSSXFdHKPiuC/KHsAvJTcVX55d5WgkKXJ96JvGdWWsFRrJUBFC0PufcHuVTtJgdW8m3A1jOC
g19MW0rLBaB2Nlx2ktGdJhwV1aqMn4UmPbUPKR7Lox3+RjmxnRRO4JzQ5yInFnlKf8Id
Fingerprint: 4a:b7:33:61:ae:c2:48:a4:99:10:b2:52:01:33:5b:9f

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-04-05T15:17:28.041430

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 05 Apr 2024 15:17:28 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Mon, 12 Sep 2022 02:51:40 GMT
Connection: keep-alive
ETag: "631e9ebc-264"
Accept-Ranges: bytes

-1345205424 | 2024-04-21T08:45:42.156672

111 / tcp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

-1345205424 | 2024-04-04T22:26:55.841598

111 / udp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

-1060095501 | 2024-04-15T00:03:57.834931

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 15 Apr 2024 00:03:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 139
Connection: keep-alive
X-Powered-By: Express
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Security-Policy: default-src 'self'
X-Content-Type-Options: nosniff

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:42:03:5f:f2:17:18:5b:48:e6:2b:6a:d7:97:da:78:7b:cc
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Nov 11 12:38:28 2022 GMT
            Not After : Feb  9 12:38:27 2023 GMT
        Subject: CN=api.otherguild.xyz
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b0:97:1e:31:26:55:9a:0b:d0:fc:0f:e7:d2:c7:
                    5c:15:7f:81:bd:d9:6c:47:e2:4c:fd:f0:6a:55:c6:
                    92:ab:ec:58:83:7b:8c:60:1a:cd:7d:64:1c:b7:b3:
                    c7:c0:3f:27:bc:b3:81:78:5f:9f:d4:58:26:6f:9a:
                    f2:1e:14:50:b0:db:e8:fd:a2:05:2b:5d:48:5d:2e:
                    c6:7e:fa:60:6b:54:0f:a0:b5:6d:8a:f5:71:82:21:
                    b3:6e:46:c3:86:60:48:41:de:d1:d4:31:b6:5b:50:
                    7e:8c:0e:ec:ad:54:a3:57:5d:9f:d8:10:97:a1:8f:
                    f8:ce:54:e0:4e:43:31:83:1c:b4:45:2c:09:9c:6d:
                    b4:01:e2:de:32:c2:56:43:06:58:cf:d5:73:00:77:
                    29:1d:fd:eb:4c:79:38:68:d1:75:03:d5:97:27:59:
                    03:cd:9e:03:b4:d1:fe:98:81:ed:33:9c:2b:e0:92:
                    e9:7d:fb:4f:43:29:d4:60:9b:c6:4e:2d:a0:04:1c:
                    ee:8c:23:90:90:fe:f7:37:76:9d:92:3c:20:bc:7b:
                    d0:32:a1:bc:b5:2c:7b:72:81:0e:52:3e:7c:23:df:
                    47:73:1a:99:5c:09:87:9e:bf:cb:19:9b:c9:9a:b8:
                    e4:39:91:b2:d3:8a:06:4c:5f:42:a3:27:04:9d:91:
                    0e:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                B5:74:1E:2D:26:19:26:1F:B0:76:30:BE:57:08:AE:23:B4:5F:B6:11
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:api.otherguild.xyz
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.44947.1.1.1
                  CPS: http://cps.letsencrypt.org
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E8:3E:D0:DA:3E:F5:06:35:32:E7:57:28:BC:89:6B:C9:
                                03:D3:CB:D1:11:6B:EC:EB:69:E1:77:7D:6D:06:BD:6E
                    Timestamp : Nov 11 13:38:28.497 2022 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:16:E6:B4:69:83:51:91:95:B8:3E:82:B6:
                                26:76:C7:DC:6F:5B:6F:CD:EB:40:B2:21:E6:3F:1A:17:
                                15:01:68:04:02:21:00:9E:42:AF:1C:FC:75:06:6D:94:
                                DB:89:FE:98:11:2B:1C:3C:EB:88:B4:FE:96:2B:E0:CD:
                                29:6E:50:D7:D6:38:0D
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7A:32:8C:54:D8:B7:2D:B6:20:EA:38:E0:52:1E:E9:84:
                                16:70:32:13:85:4D:3B:D2:2B:C1:3A:57:A3:52:EB:52
                    Timestamp : Nov 11 13:38:29.063 2022 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:BE:91:25:38:7C:12:3B:9D:75:77:52:
                                F5:07:4C:75:6F:E3:1D:8A:20:21:F2:B7:40:B9:29:84:
                                D8:1B:74:5B:74:02:20:20:01:EF:E3:AE:9B:7F:15:C6:
                                1B:C9:72:62:A9:47:3D:51:E4:4B:9E:68:6C:E6:1C:24:
                                2E:8C:16:BA:4B:6F:25
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        6f:63:88:10:76:79:d6:47:b1:d2:5f:9a:4e:68:ea:d3:82:70:
        64:63:00:f3:7c:3b:ae:9a:fb:0b:ba:71:cf:b6:fd:bf:d8:74:
        dc:4d:3a:c7:df:5b:0a:61:be:31:03:45:89:bd:24:68:37:f8:
        4c:aa:be:3e:ca:77:24:c2:43:cf:3f:10:b1:72:70:48:c6:ee:
        72:d1:27:fa:c0:e5:b4:cc:86:a3:ce:c2:4f:7e:e5:51:c8:41:
        06:10:ab:95:b7:be:63:b0:88:27:bf:0b:8a:f1:ca:dd:e9:50:
        af:0b:98:0d:5d:bd:d1:ca:9c:f9:49:1a:86:61:96:6f:12:56:
        e7:cb:52:9f:56:0c:ef:34:61:a7:cd:c3:ac:c3:84:f3:bd:9b:
        50:c4:14:de:2b:04:14:4d:b0:24:28:a1:8a:15:4f:41:1e:5a:
        a8:6a:cd:ba:5b:a1:6b:e2:9c:eb:b4:fb:db:d6:44:f3:a9:ec:
        b2:0e:74:72:42:9e:4f:bb:92:12:15:9f:f6:46:1b:54:e1:43:
        1f:1e:98:b0:c8:44:65:97:92:52:26:45:0c:b2:28:eb:6e:51:
        37:44:90:a1:40:47:66:25:4a:1b:9f:74:51:c3:f4:0e:f9:76:
        fe:be:85:e2:8c:42:81:52:24:a1:d0:46:78:36:7c:bb:ac:a6:
        c8:2a:93:fb

-1060095501 | 2024-04-24T04:17:17.314219

8080 / tcp

HTTP/1.1 404 Not Found
X-Powered-By: Express
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Security-Policy: default-src 'self'
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
Date: Wed, 24 Apr 2024 04:17:17 GMT
Connection: keep-alive
Keep-Alive: timeout=5

199.192.19.181

Last Seen: 2024-04-24

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1969290388 | 2024-04-18T04:49:53.536963
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-04-05T15:17:28.041430
80 / tcp

nginx1.18.0

-1345205424 | 2024-04-21T08:45:42.156672
111 / tcp

-1345205424 | 2024-04-04T22:26:55.841598
111 / udp

-1060095501 | 2024-04-15T00:03:57.834931
443 / tcp

nginx1.18.0

-1060095501 | 2024-04-24T04:17:17.314219
8080 / tcp

Products

Pricing

Contact Us

199.192.19.181

Last Seen: 2024-04-24

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1969290388 | 2024-04-18T04:49:53.536963 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-04-05T15:17:28.041430 80 / tcp

nginx1.18.0

-1345205424 | 2024-04-21T08:45:42.156672 111 / tcp

-1345205424 | 2024-04-04T22:26:55.841598 111 / udp

-1060095501 | 2024-04-15T00:03:57.834931 443 / tcp

nginx1.18.0

-1060095501 | 2024-04-24T04:17:17.314219 8080 / tcp

Products

Pricing

Contact Us

1969290388 | 2024-04-18T04:49:53.536963
22 / tcp

1651973090 | 2024-04-05T15:17:28.041430
80 / tcp

-1345205424 | 2024-04-21T08:45:42.156672
111 / tcp

-1345205424 | 2024-04-04T22:26:55.841598
111 / udp

-1060095501 | 2024-04-15T00:03:57.834931
443 / tcp

-1060095501 | 2024-04-24T04:17:17.314219
8080 / tcp