GeneralInformation

Hostnames	dc-storybook-push.dr-heiko-hofer.de v2202105110995152462.supersrv.de
Domains	dr-heiko-hofer.de supersrv.de
Country	Germany
City	Nürnberg
Organization	netcup GmbH
ISP	netcup GmbH
ASN	AS197540
Operating System	Ubuntu

WebTechnologies

Font scripts

Glyphicons

JavaScript frameworks

JavaScript graphics

JavaScript libraries

Miscellaneous

UI frameworks

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 25 80 443 3000 9090 9100

508833560 | 2024-05-03T05:04:11.036056

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQC5KwPhGfftkibhoB2Rl0ESgAp1xGa41oQFl+lzpxZWiMco
GPSQ6KVHMfDEBT3W8l9qBusWlgY8T21c1om5V4KI/IO3+AqKucQdhxD45tLYp+msd8v7WO8y2ohP
PsioIGc1wgvXSwkgpbAoFSaPkXbn9K6kW+UVxXNB4FUaKR+rvLcxGQsl38XqpVwCp8705ob20b95
eyMAadhwf4khcyOJX6mqa6fLlnN5sJ/0CDpral19OhzgbedK5bhXDhFiPnnKglGUU7QVfACK7Aiu
9Zd+eeb9AyeUcoIc1tghz1j+pViDhTKQsZSzBf6emNIqADIQKFJsd4vMIKOKcGUh7lMa38IJfScY
VEdlSINMnk+gr2v8MvvSve8C+uKcx7wRe8FZFH4jxqdftIxKvw4ArZsarJ4JH50JD7NFkpBhzlsE
FeHBstIiSc01J/JGbKa5ii7aji0YZaL72WK1sQOiPMMcAZPsGlVtrhy6oq1xzg51TcidksuUbzqm
7PLTFYUKtsU=
Fingerprint: de:47:02:63:2b:2f:9d:46:5a:d1:d2:70:72:fc:46:3a

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-1911137397 | 2024-04-28T19:20:55.652410

25 / tcp

220 v2202003110995111601.quicksrv.de ESMTP Postfix (Ubuntu)
250-v2202003110995111601.quicksrv.de
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-STARTTLS
250-ENHANCEDSTATUSCODES
250-8BITMIME
250-DSN
250-SMTPUTF8
250 CHUNKING

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1b:a0:0b:53:ed:d9:56:e8:e0:05:d4:73:e8:68:04:b3:e4:e3:b3:d6
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=v2202105110995152462.supersrv.de
        Validity
            Not Before: May  4 16:36:56 2021 GMT
            Not After : May  2 16:36:56 2031 GMT
        Subject: CN=v2202105110995152462.supersrv.de
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c6:6c:07:59:f2:11:e4:1f:df:49:95:c2:d1:bf:
                    95:d6:68:79:f8:60:17:28:9e:18:b6:0a:3e:c0:6e:
                    f4:7b:fd:93:66:a7:87:ce:a3:dd:69:bf:13:74:62:
                    72:d3:38:4f:74:79:d3:92:d4:b2:54:02:a0:0f:1b:
                    5b:25:2d:b7:a5:66:4e:8c:b5:98:21:95:80:49:e7:
                    38:a9:22:94:a1:30:ab:26:d6:c9:68:db:a4:d4:c0:
                    c8:f1:b8:3c:83:7c:61:2c:b7:d2:2b:18:10:65:8a:
                    71:51:8b:37:c9:ca:2e:bb:d3:b1:e3:b3:59:2f:4d:
                    cc:20:c5:ae:ef:de:69:87:c3:ce:a1:a2:f5:bc:5f:
                    31:f9:44:f6:a8:52:35:bf:60:33:eb:91:31:48:32:
                    fb:9a:bb:89:cf:04:f1:b5:f1:ca:d6:78:60:84:fb:
                    b2:c5:d6:78:08:ed:89:fd:b3:12:c1:58:98:59:86:
                    85:b8:5c:46:96:05:99:a7:4a:e9:94:37:74:72:64:
                    de:fd:81:7a:b1:cf:a0:bc:92:b0:59:8d:24:08:8a:
                    d7:66:33:4b:e2:37:c0:a5:62:f2:de:11:05:06:77:
                    6a:1a:b4:38:98:94:16:ba:62:fb:ce:9d:4d:3c:71:
                    2b:67:18:f1:8f:c3:b3:93:79:9f:74:ce:e0:54:e4:
                    ca:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Subject Alternative Name: 
                DNS:v2202105110995152462.supersrv.de
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        91:0a:db:3f:8e:a7:b8:05:9a:f8:b6:02:ef:49:05:c2:3a:1f:
        16:dc:56:75:11:47:4c:03:1f:82:ea:9d:03:e1:e8:51:e2:6c:
        b3:e9:39:f7:e0:40:b8:e0:ff:35:ce:cb:24:db:b7:b3:5e:2f:
        c9:1b:a5:ba:28:ee:1d:d4:9f:d6:29:95:6f:46:cb:c3:76:ed:
        47:45:e0:36:a4:bd:d5:3e:1c:80:80:24:5b:34:81:01:bb:9e:
        90:99:98:36:37:b0:e0:04:32:f0:aa:da:27:f0:de:4b:ae:d0:
        dc:7d:8a:8b:f5:fd:fb:92:15:5d:d9:c6:db:0f:39:06:5e:36:
        26:71:f9:d6:a8:30:70:42:ff:73:2d:5d:40:37:14:ba:eb:73:
        0f:3d:3c:5d:c3:a8:ab:73:11:3b:64:1f:93:3d:d6:d6:a3:36:
        b8:8e:cd:21:3d:ae:d6:8c:b6:7c:3a:be:48:c5:ad:15:5e:89:
        ec:4f:8a:bb:4f:03:dc:e6:79:d8:fc:a0:70:13:0a:e5:02:ca:
        28:76:4a:7d:78:af:a7:e2:e3:03:36:86:df:86:9c:aa:28:b7:
        5c:17:52:b6:4c:31:9d:b4:9e:b2:e0:25:f8:25:ee:63:87:0d:
        94:a8:e4:68:5f:98:4e:2d:0b:af:41:ef:b7:d1:36:24:db:f2:
        49:3e:dd:60

MAC Addresses

22:02:10:51:10:99
    Unknown

677579724 | 2024-05-12T16:24:53.616148

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 12 May 2024 16:24:53 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive
Vary: Accept-Encoding

869281729 | 2024-05-04T19:59:19.496816

443 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 04 May 2024 19:59:19 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive
Vary: Accept-Encoding

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:f4:a6:5e:96:f1:5c:ab:9c:da:16:30:17:1d:5c:8f:7f:e4
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar  5 23:03:31 2024 GMT
            Not After : Jun  3 23:03:30 2024 GMT
        Subject: CN=dc-storybook-push.dr-heiko-hofer.de
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:dd:dd:fa:c0:02:4b:78:45:85:86:14:01:71:4b:
                    38:b5:e7:61:3d:37:ea:0f:2f:6e:ee:df:fd:c4:1e:
                    e9:0b:f9:c9:38:59:f3:0b:3c:af:15:e3:72:3e:86:
                    33:8e:32:91:31:d6:ed:82:ab:c1:8d:57:c2:e5:a1:
                    5c:57:5f:56:e1:ae:42:78:aa:06:49:15:15:c3:ee:
                    23:74:3d:2a:d2:1f:3c:6a:1d:6a:2a:c1:e7:0b:fb:
                    ed:13:47:a8:28:7a:11:a0:89:12:9f:0a:bc:74:3d:
                    0a:75:41:10:41:d8:2e:09:e5:df:78:fc:17:b9:6e:
                    2a:79:6a:be:45:d1:2a:10:b3:fd:50:da:eb:47:ee:
                    11:d0:b8:02:e7:05:d4:10:e1:3d:a8:5b:96:c5:77:
                    5b:80:7c:12:74:0d:36:3e:9a:3c:72:72:4e:46:29:
                    c5:f6:3a:49:ad:55:8a:fe:f6:55:7b:67:f5:80:01:
                    a0:2e:c9:df:2e:a4:b9:38:69:8c:65:df:77:b4:ab:
                    7e:ac:dc:07:99:c4:6f:1f:35:95:76:3b:6f:80:b7:
                    a4:4a:cc:e7:6c:1b:41:d3:78:2f:d7:71:47:9c:da:
                    dd:03:4d:9e:e7:b1:07:1a:1e:e8:0a:5e:0a:89:b1:
                    12:58:a4:4e:49:e7:72:fd:e3:b6:87:c0:48:c9:2c:
                    50:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                B7:53:B7:6B:A3:13:81:02:76:75:A9:D5:4C:10:E0:99:96:35:BA:9E
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:dc-storybook-push.dr-heiko-hofer.de
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar  6 00:03:31.730 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:7C:0C:0D:8D:D8:48:C9:0B:B3:9E:0C:6B:
                                CD:F9:5D:E5:27:B9:BE:ED:E6:65:47:E5:B5:C0:A2:4F:
                                F2:62:93:D6:02:20:55:AB:25:66:B8:AC:30:74:7C:B5:
                                10:72:31:94:3B:D5:A6:42:D2:5E:CE:49:07:AB:DF:9A:
                                92:6D:7D:67:16:EB
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Mar  6 00:03:31.750 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:91:32:DA:7B:46:65:58:4F:AF:A5:D6:
                                BE:8F:98:88:9B:88:47:76:B4:B4:1C:C6:79:C4:A9:AC:
                                6D:BE:8C:4A:C2:02:21:00:EE:55:6B:C0:DB:3F:F5:B4:
                                92:43:CB:EC:5A:1E:6F:27:06:1C:B3:56:C6:03:FB:15:
                                17:D2:87:E6:CE:0F:7A:7A
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        60:8e:05:5b:a1:5b:60:61:8e:35:f1:57:19:e0:e9:be:88:b9:
        87:25:4c:20:25:72:78:a3:22:2d:fe:71:4a:3b:07:33:10:c8:
        b4:62:bb:28:a6:9e:bc:ee:88:97:cc:e6:d2:97:7a:71:9b:a8:
        72:83:9d:ae:e6:68:9f:9e:a8:9e:15:3d:b0:41:13:61:3c:ed:
        f1:a9:c7:6e:8e:a3:27:0d:40:6d:c7:48:86:96:16:75:9f:f3:
        cf:8c:61:f8:44:54:f5:a4:7a:49:2e:ee:1c:16:3a:44:b8:d7:
        36:e8:90:8c:aa:88:c8:35:89:4a:a6:fd:09:1f:4f:c7:16:4f:
        ba:6e:fa:fa:67:d1:62:9b:ab:e9:be:28:8b:25:76:41:3d:ec:
        64:28:8c:e0:3b:bf:9b:ea:27:cf:43:73:bf:06:84:cb:26:db:
        7a:18:88:7c:9a:79:58:3e:9e:cf:80:7e:85:e5:8f:48:52:a4:
        a9:5f:3a:21:fc:3d:d8:ed:d7:2b:8b:72:98:fc:3d:7f:c5:1b:
        f9:52:a3:2f:4a:73:16:75:d4:a9:8c:ff:80:f3:a6:6a:14:37:
        54:bc:5f:a7:81:35:ca:13:52:a2:ee:8e:3d:e1:7b:6c:5c:20:
        c5:77:40:0a:98:e9:3c:a4:20:a3:ac:67:60:90:64:f5:c6:2b:
        8a:27:11:0e

924696862 | 2024-04-25T10:16:42.785870

3000 / tcp

HTTP/1.1 200 OK
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Accept-Ranges: bytes
Content-Type: text/html; charset=UTF-8
Content-Length: 4094
ETag: W/"ffe-FH+0CraLV+zglzoDNu+udz6N66w"
Vary: Accept-Encoding
Date: Thu, 25 Apr 2024 10:16:37 GMT
Connection: keep-alive
Keep-Alive: timeout=5

-1625732686 | 2024-04-29T18:37:03.195373

9090 / tcp

HTTP/1.1 200 OK
Date: Mon, 29 Apr 2024 18:37:03 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked

-1051937449 | 2024-05-05T05:42:51.637706

9100 / tcp

HTTP/1.1 400 Bad Request
Content-Type: text/plain; charset=utf-8
Connection: close

400 Bad Request
Prometheus Node Exporter:
  node_exporter_build_info:
    branch: debian/sid
    goversion: go1.13.8
    revision: 0.18.1+ds-2ubuntu0.1
    version: 0.18.1+ds
  node_uname_info:
    domainname: (none)
    machine: x86_64
    nodename: v2202105110995152462
    release: 5.4.0-72-generic
    sysname: Linux
    version: #80-Ubuntu SMP Mon Apr 12 17:35:00 UTC 2021
  node_network_info:
    lo:
      address: 00:00:00:00:00:00
      broadcast: 00:00:00:00:00:00
      device: lo
      operstate: unknown
    eth0:
      address: 16:67:5e:eb:a0:df
      broadcast: ff:ff:ff:ff:ff:ff
      device: eth0
      duplex: unknown
      operstate: up

MAC Addresses

16:67:5E:EB:A0:DF
    Unknown

202.61.230.242

Last Seen: 2024-05-12

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

508833560 | 2024-05-03T05:04:11.036056
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

-1911137397 | 2024-04-28T19:20:55.652410
25 / tcp

Postfix smtpd

677579724 | 2024-05-12T16:24:53.616148
80 / tcp

nginx1.18.0

869281729 | 2024-05-04T19:59:19.496816
443 / tcp

nginx1.18.0

924696862 | 2024-04-25T10:16:42.785870
3000 / tcp

-1625732686 | 2024-04-29T18:37:03.195373
9090 / tcp

-1051937449 | 2024-05-05T05:42:51.637706
9100 / tcp

Prometheus Node Exporter0.18.1+ds

Products

Pricing

Contact Us

202.61.230.242

Last Seen: 2024-05-12

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

508833560 | 2024-05-03T05:04:11.036056 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

-1911137397 | 2024-04-28T19:20:55.652410 25 / tcp

Postfix smtpd

677579724 | 2024-05-12T16:24:53.616148 80 / tcp

nginx1.18.0

869281729 | 2024-05-04T19:59:19.496816 443 / tcp

nginx1.18.0

924696862 | 2024-04-25T10:16:42.785870 3000 / tcp

-1625732686 | 2024-04-29T18:37:03.195373 9090 / tcp

-1051937449 | 2024-05-05T05:42:51.637706 9100 / tcp

Prometheus Node Exporter0.18.1+ds

Products

Pricing

Contact Us

508833560 | 2024-05-03T05:04:11.036056
22 / tcp

-1911137397 | 2024-04-28T19:20:55.652410
25 / tcp

677579724 | 2024-05-12T16:24:53.616148
80 / tcp

869281729 | 2024-05-04T19:59:19.496816
443 / tcp

924696862 | 2024-04-25T10:16:42.785870
3000 / tcp

-1625732686 | 2024-04-29T18:37:03.195373
9090 / tcp

-1051937449 | 2024-05-05T05:42:51.637706
9100 / tcp